Abstract: Using information system security assurance evaluation framework GB/T20274 as evaluation standard, it usually uses Dempster method to combine evidence results according to D-S evidential theory, but this method gets wrong result when the evidences have high conflicts. This paper puts forward an evidence combination rule based on fuzzy distance to solve the problem, and compares it with other evidence combination methods like Murphy method and the combination method based on the distances between evidences. Experimental result shows that the method can reduce the conflicts, and it has higher speed of constringency and lower complexity.

Key words: GB/T20274 information system security assurance evaluation framework, fuzzy distance, Dempster method, security evaluation

摘要： 以GB/T20274信息系统安全保障评估框架作为评估标准，在评估结果融合阶段通常根据D-S证据理论采用Dempster方法进行证据合成，但在处理高冲突数据时常出现违背常理的结果。为解决上述问题，提出基于模糊距离的证据合成方法，并与Dempster方法、Murphy方法、基于证据间距离的方法进行实验比较，结果证明，该合成方法能有效降低证据间的冲突，收敛速度较快，算法复杂度较低。

关键词: GB/T20274信息系统安全保障评估框架, 糊距离, empster方法, 全评估

CLC Number: 

• TP393.08