摘要： 计算机网络安全脆弱性评估是网络安全领域的研究热点。该文提出了计算机网络脆弱性评估的研究目标，指出了在研究过程中存在的若干问题。从总体上分析了近年来针对计算机网络脆弱性评估的若干研究方法和技术，包括从网络连通性进行网络评估、基于入侵路径的网络安全性评估、基于图的网络脆弱性分析、网络脆弱性分析工具、基于Agent的网络脆弱性分析、运用层次分析法的网络脆弱性评估以及基于漏洞依赖关系图的网络脆弱性评估等，同时指出了每种方法的可取之处及存在问题。

关键词: 计算机网络, 脆弱性, 评估

Abstract: Computer network security vulnerability assessment is a research focus in network security field. This paper puts forward the research target of computer network vulnerability assessment and the major problems appeared in the course of research. It analyses some resent research methods and techniques aimed at computer network vulnerability assessment, such as network vulnerability assessment in terms of network connectivity, intrusion path, graph theory, analysis tools, agent, AHP, as well as vulnerability dependence relation graph. Based on the analysis, it points out the advantage and disadvantage of each method.

Key words: computer network, vulnerability, assessment

中图分类号: 

• TP393