作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2021, Vol. 47 ›› Issue (3): 139-146,154. doi: 10.19678/j.issn.1000-3428.0057483

• 网络空间安全 • 上一篇    下一篇

一种基于攻击树的4G网络安全风险评估方法

王赛娥, 刘彩霞, 刘树新, 柏溢   

  1. 中国人民解放军战略支援部队信息工程大学, 郑州 450001
  • 收稿日期:2020-02-24 修回日期:2020-04-07 发布日期:2020-04-21
  • 作者简介:王赛娥(1990-),女,硕士研究生,主研方向为新一代通信网络、移动网络安全;刘彩霞,研究员、博士生导师;刘树新,助理研究员、博士;柏溢,副研究员、硕士。
  • 基金资助:
    国家自然科学基金青年基金项目(61803384)。

A Method of 4G Network Security Risk Assessment Based on Attack Tree

WANG Saie, LIU Caixia, LIU Shuxin, BAI Yi   

  1. People's Liberation Army Strategic Support Force Information Engineering University, Zhengzhou 450001, China
  • Received:2020-02-24 Revised:2020-04-07 Published:2020-04-21

摘要: 针对4G网络的安全风险评估问题,提出一种基于攻击树模型的评估方法,以分析网络的风险状况,评估系统的风险程度和安全等级。对4G网络的安全威胁进行分类,通过梳理攻击行为和分解攻击流程来构造攻击树模型,利用多属性理论赋予叶节点3个安全属性并通过等级评分进行量化,结合模糊层次分析法和模糊矩阵计算叶节点的风险概率,根据节点间的依赖关系得到根节点的风险概率,最终得到4G网络的安全风险等级。实验结果表明,该方法能够准确评估4G网络的风险因素,预测可能的攻击路径,为安全防护策略选择提供依据。

关键词: 4G网络, 安全威胁, 攻击树模型, 风险评估, 模糊层次分析法

Abstract: This paper proposes a security risk evaluation method for 4G network based on attack tree model,which can be used to analyze the risks faced by the network and evaluate the risk level and security level of the system.The security risks of 4G network are categorized,and the attack tree model is constructed by sorting out the attack behavior and decomposing the attack flow.Then,the multi-attribute theory is used to give three security attributes to the leaf nodes and quantify them by scoring the level.The risk probability of the leaf node is calculated by combining Fuzzy Analytical Hierarchy Process(FAHP) and the fuzzy matrix.The risk probability of the root node is obtained according to the dependency between nodes.Experimental results show that the proposed method can accurately evaluate the risk factors of 4G network,predict the possible attack paths,and assist in the selection of security protection strategies.

Key words: 4G network, security threats, attack tree model, risk assessment, Fuzzy Analytical Hierarchy Process(FAHP)

中图分类号: