摘要
提出了一种基于多维度网络安全行为的动态信任评估模型,该模型通过在现有的身份认证、网络安全、终端安全等各类系统中采集信任指标数据,并对指标数据进行综合的处理和评估,帮助应用系统从各种角度评估网络实体的可信度,并且根据信任度评定相应的信任等级,最终实现为用户分配动态的权限,保证用户访问应用业务系统的数据安全性。该模型在信任度评估方面具有动态、高效和稳定的特点,使用该多维动态评估方法的应用系统能够实现对用户的操作安全性和合法性进行持续动态的高效评估,并根据评估结果,为用户分配动态的数据访问权限,从而解决复杂网络环境数据安全的问题。
This paper proposes a dynamic trust evaluation model based on multi-dimensional cyber security behavior,which collects trust indicator data from existing identity authentication,cyber security,terminal security and other systems,and comprehensively processes and evaluates the indicator data to help application systems evaluate the trustworthiness of network entities from various perspectives,and assigns corresponding trust level according to the trust degree,and finally achieves dynamic permission allocation for users to ensure the data security of users accessing application business systems.The model has the characteristics of dynamic,efficient and stable in trust degree evaluation.The application system using this multi-dimensional dynamic evaluation method can achieve continuous dynamic and efficient evaluation of the security and legitimacy of users’operations,and assign dynamic data access permissions for users according to the evaluation results,thus solving the problem of data security in complex network environments.
作者
李佳楠
周吉
阴俊恺
LI Jianan;ZHOU Ji;YIN Junkai(No.30 Institute of CETC,Chengdu Sichuan 610041,China)
出处
《通信技术》
2023年第5期634-639,共6页
Communications Technology
关键词
网络安全
多维模型
信任评估
行为授权
cyber security
multi-dimensional model
trust evaluation
behavior authorization
