摘要
考虑漏洞利用时间和扫描时间对网络攻防对抗的影响,研究了基于时间-概率攻击图的网络安全评估方法。在概率攻击图的基础上,引入原子攻击时间、漏洞扫描时间的概念,构建时间-概率攻击图;分析攻击路径的成功概率计算方法,给出了基于时间-概率攻击图的网络安全评估方法;结合时间-概率攻击图实例,通过蒙特卡洛方法仿真验证了时间-概率攻击图中攻击路径成功概率计算方法的准确性,分析了防御系统部署位置和扫描周期对网络安全性能的影响。
Considering the influence of exploiting time and scanning time on network attack and defense,a network security assessment method based on time-probability attack graph is studied.Firstly,based on the probabilistic attack graph,the atomic attack time and vulnerability scanning time are introduced to construct the time-probabilistic attack graph. The successful probability calculation method of attack path is analyzed,and the network security evaluation method based on time-probability attack graph is given. Finally,combined with an example of time-probability attack graph,the accuracy of successful probability calculation method of attack path in the time-probability attack graph is verified by Monte Carlo simulation,and the influence of the deployment location and scanning period of the defense system on the network security performance is analyzed.
作者
仇铭阳
赛煜
王刚
孟庆微
QIU Ming-yang;SAI Yu;WANG Gang;MENG Qing-wei(Information and Navigation Institute,Air Force Engineering University,Xi’an 710077,China;Jinan Vocational College,Jinan 250101,China)
出处
《火力与指挥控制》
CSCD
北大核心
2022年第1期145-149,155,共6页
Fire Control & Command Control
关键词
时间-概率攻击图
原子攻击时间
扫描时间
安全评估
time-probability attack graph
atomic attack time
scanning time
security evaluation
