摘要： 威胁网络空间安全的主要原因是漏洞和后门问题。为解决网络空间中基于未知漏洞、后门或病毒木马等不确定性的威胁,针对拟态防御的典型架构——动态异构冗余(DHR)系统,建立概率数学模型。从输出一致率、系统攻击成功率等角度讨论系统的安全性,通过对模型的求解和分析,得到DHR系统的攻击成功率的表达式,并给出DHR系统的性质。分析结果表明,DHR系统的抗攻击能力优于静态异构冗余系统。

关键词: 拟态防御, 动态异构冗余, 漏洞, 后门, 主动防御

Abstract: The main causes of threats to cyberspace security are vulnerabilities and backdoor problems.In order to solve the threats based on unknown vulnerabilities,backdoor or virus Trojans in cyberspace,a probabilistic mathematical model is established for the typical architecture of mimic defense,Dynamic Heterogeneous Redundancy(DHR) system.The security of the system is discussed from the perspective of output consistency rate and system attack success rate.Through the solution and analysis of the model,the expression of the attack success rate of the DHR system is obtained,and some properties of the DHR system are analyzed.Analysis results show that the DHR system has better anti-attack capability than the static heterogeneous redundant system.

Key words: mimic defense, Dynamic Heterogeneous Redundancy(DHR), vulnerability, backdoor, active defense

中图分类号: 

• TP391