计算机工程

所属专题: 云计算专题

• 云计算专题 • 上一篇    下一篇

基于层次分析法与云模型的主机安全风险评估

翁迟迟1,2,齐法制1,2,陈刚1   

  1. (1.中国科学院高能物理研究所计算中心,北京 100049; 2.中国科学院大学,北京 100049)
  • 收稿日期:2015-01-27 出版日期:2016-02-15 发布日期:2016-01-29
  • 作者简介:翁迟迟(1990-),男,硕士,主研方向为云计算、网络安全;齐法制,高级工程师、博士研究生;陈刚,研究员、博士。
  • 基金项目:

    国家自然科学基金资助项目(11305196)。

Host Security Risk Assessment Based on Analytic Hierarchy Process and Cloud Model

WENG Chichi 1,2,QI Fazhi 1,2,CHEN Gang 1   

  1. (1.Computing Center,Institute of High Energy Physics,Chinese Academy of Sciences,Beijing 100049,China; 2.University of Chinese Academy of Sciences,Beijing 100049,China)
  • Received:2015-01-27 Online:2016-02-15 Published:2016-01-29

摘要:

针对当前主机安全风险评估指标不够全面、实际操作困难和评估结果可理解性差等问题,提出一种基于云模型的多层次主机安全风险评估方法。结合国家信息系统等级保护测评要求,采用层次分析法构建风险评估指标体系,在多层次指标体系基础上,引入云模型理论,实现主机安全风险的模糊量化评估。实验结果表明,该方法能对复杂主机系统进行合理评价,有效提高评估结果的准确性和科学性。

关键词: 主机安全, 安全风险评估, 等级保护, 层次分析法, 云模型

Abstract:

Aiming at the problem that the existed host Security Risk Assessment(SRA) index is not complete,difficult to operate and the result is hard to understand,this paper proposes a method for host SRA based on Analytic Hierarchy Process(AHP) and cloud model.It integrates the national information security classified protection policy,designs a multi-level index system using AHP and cloud model to assess the risk of host security fuzzily and quantifiably.Experimental results show that the proposed method achieves a satisfactory result in quantitative evaluation of complex host system,and effectively improves the accuracy and scientificity of the detection results.

Key words: host security, Security Risk Assessment(SRA), classified protection, Analytic Hierarchy Process(AHP), cloud model

中图分类号: