作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (13): 182-184. doi: 10.3969/j.issn.1000-3428.2007.13.062

• 安全技术 • 上一篇    下一篇

基于模糊信息融合的网络化系统安全态势评估

张秋余,孙 宁,迟 宁,刘 晔   

  1. (兰州理工大学计算机与通信学院,兰州 730050)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-07-05 发布日期:2007-07-05

Evaluation for Security Situation of Networked Systems Based on Fuzzy Information Fusion

ZHANG Qiuyu, SUN Ning, CHI Ning, LIU Ye   

  1. (School of Computer and Communication, Lanzhou University of Technology, Lanzhou 730050)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-07-05 Published:2007-07-05

摘要: 网络化系统安全态势知识的获得不是孤立的,它通过对攻击频率、攻击难易性和攻击严重性等攻击要素的关联和服务、主机、网络3层的态势融合构成了一个复杂的系统工程。通过识别攻击要素间具有相互依赖的关联关系,该文使用模糊信息融合技术对攻击要素进行关联,在服务、主机、网络3个层次使用统计技术完成相应的态势信息融合过程。实验表明,模型可以真实地反映安全态势情况。

关键词: 态势评估, 模糊信息融合, 攻击要素, 关联

Abstract: Obtaining of security situation of networked systems is not isolated. It is a complex systemic work including association of three attack factors(attack frequency, attack difficulty, attack importance) and data fusion based on service, host and LAN level. By distinguishing interdependent association of attack factors, this paper makes use of fuzzy information fusion to associate the factors. And it also makes use of statistic method on service, host and LAN level to attain situation information. Experiments show that the model can evaluate the security situation effectively.

Key words: situation evaluation, fuzzy information fusion, attack factors, association

中图分类号: