摘要
为了解决复杂网络中相似攻击手段和相似节点对象在攻击模型中造成冗余的问题,提出一种基于脆弱关联模型的粗糙网络攻击建模方法。在攻击变迁域和节点对象域上定义属性集,将相似的攻击方式和网络节点分类,形成论域Petri网上的类空间。通过定义路径相似度,利用蚁群算法找出所有可达攻击目标的特征路径,并在这些特征路径中找出给目标节点带来最大威胁的攻击路径。实验证明,该方法能够快速地定位实时监控信息中涉及的节点对象和攻击方式,在各种特征攻击路径中准确找到其所在位置。
To solve the redundancy problem caused by similar attack methods and similar node objects in an attack model of complex network,a rough network attack model based on the vulnerability relation model was put forward.The attribute set was defined on the node domain and the transition domain in a Petri net,similar attack methods and similar node objects were classified to form the class space of the domain Petri nets.By defining similar degree of path,all characteristic attack paths which could arrive at an attack goal could be searched out by the ant algorithm,and the maximal threat path,which could access the goal node,could be found out from all these characteristic attack paths.The experimental results show that the proposed model can quickly locate the node objects and the related attack methods from on-time monitoring information and find accurately their positions from all these characteristic attack paths.
出处
《计算机应用》
CSCD
北大核心
2011年第8期2146-2151,2155,共7页
journal of Computer Applications
基金
陕西省重点学科建设专项资金资助项目(zdxk2010)
