摘要
采用当前方法计算网络攻击图节点回流时,计算所用的时间较长,计算得到的节点回流与实际不符,存在计算效率低和准确率低的问题。提出基于置信度的网络攻击图节点回流建模方法,分析构成攻击图的元素,通过计算攻击者攻击网络时占有的网络资源的资源状态节点集合,通过节点构成的有向边集合,计算需要消耗对应的攻击成本及攻击行为在网络发生的条件概率,通过概率计算,得到节点置信度分布情况,并分析网络安全威胁在网络的传播路径,利用脆弱点扫描器扫描脆弱点在节点中的置信度,通过单个脆弱点置信度推导出节点在网络的剩余置信度,在威胁传播路径和攻击图构成元素分析结果的基础上构建攻击图节点回流模型。仿真结果表明,所提方法可在较短的时间内准确的计算出节点在网络的剩余置信度,验证所提方法的效率高、准确率高。
At present,when the method is used to calculate the network attack graph node reflux,the calculation efficiency and accuracy is low.Therefore,this paper presented a modeling method for network attack graph node reflux based on confidence level.Firstly,the elements that composing the attack graph were analyzed,and then the resource state node set of network resource occupied by the attacker in attacking the network was calculated.On this basis,the corresponding attack cost and the conditional probability of attack behavior on network were calculated through the directed edge set formed by nodes.Through the probability calculation,the distribution of confidence level of nodes was obtained.Meanwhile,the propagation path of network security threat was analyzed.In addition,the vulnerability scanner was used to scan the confidence degree of vulnerabilities in nodes.Based on the confidence degree of a single vulnerability,the residual confidence degree of node in the network was derived.Based on the analysis results of threat propagation path and elements of attack graph,the reflux model of attack graph nodes was constructed.Simulation results show that the proposed method can accurately calculate the residual confidence of node on network in short time.Thus,the efficiency and accuracy of the proposed method is high.
作者
杨改贞
YANG Gai-zhen(HuangGang Normal University,Hubei Huanggang 438000,China)
出处
《计算机仿真》
北大核心
2019年第9期338-341,401,共5页
Computer Simulation
基金
湖北省教育科学规划课题
关键词
置信度
网络攻击图
节点回流
攻击成本
Confidence degree
Network attack graph
Node reflux
Attack cost
