Abstract: Aiming at the problem of the key service security situation for the quantitative analysis, this paper designs and implements a novel quantitative evaluation model for key service security situation. This model makes survivability and service performance indicator as internal and external factors for reflecting service change, and performance indicator is taken into account to validate outside change in fastness survivability. It uses Domain Name System(DNS) to verify this model, results show that the model can accomplish comprehensively the quantitative analysis and situation generating, effectively detect the deviation and the failure of service, and help security administrators to make correct decisions.

Key words: network security, situation evaluation, survivability, Domain Name System(DNS)

摘要： 针对关键服务安全态势量化分析难的问题，设计并实现一种面向关键服务安全态势的定量评估模型。该模型将服务可生存性和服务性能指标作为反映服务变化内因和外因，综合考虑性能指标来表征服务在一定可生存性下的外在表现形式。利用域名系统服务对该模型的验证结果表明，该模型能完成对服务安全状态的量化分析和态势生成，有效检测服务的偏离和失效，为安全管理员正确决策提供支持。

关键词: 网络安全, 态势评估, 可生存性, 域名系统

CLC Number: 

• TP393.08