通信学报 ›› 2013, Vol. 34 ›› Issue (11): 59-70.doi: 10.3969/j.issn.1000-436x.2013.11.008

• 学术论文 • 上一篇    下一篇

在线监测的路由器安全威胁态势量化评估方法

杨君刚1,梁礼2,刘故箐1,张倩1,张长青2   

  1. 1 西安通信学院 信息传输系,陕西 西安 710106
    2 西安通信学院 研究生管理大队,陕西 西安 7101061
  • 出版日期:2013-11-25 发布日期:2017-06-23
  • 基金资助:
    国家自然科学基金资助项目;陕西省自然科学基金资助项目

Method for router online security risk assessment quantification

Jun-gang YANG1,Li LIANG2,Gu-jing LIU1,Qian ZHANG1,Chang-qing ZHANG2   

  1. 1 Department of Information Transmission, Xi'an Communications Institute, Xi'an 710106, China
    2 Administration Office for Graduate Students, Xi'an Com unications Institute, Xi'an 710106, China
  • Online:2013-11-25 Published:2017-06-23
  • Supported by:
    The National Natural Science Foundation of China;The Natural Science Foundation of Shaanxi Province

摘要:

在对路由器安全问题本质分析基础上提出路由器安全效能的概念并对路由器攻击进行分类,提出一种在线监测的路由器安全威胁态势量化评估的计算方法。该方法在对路由器攻击分类的基础上,以路由器带宽占用率和CPU平均使用率计算服务下降型威胁安全风险因子,以威胁发生可能性和威胁严重程度计算权限提升型安全风险因子,结合路由器本身的重要性计算其安全风险,进而分析路由器的安全威胁态势。实验表明:所提方法能够很好地反映路由器的安全风险,为网络管理员提供直观的安全威胁态势,以便调整路由器安全策略,更好地提高其安全性能。

关键词: 路由器安全, 威胁态势, 在线监测, 风险评估

Abstract:

The concept of router safety performance was proposed based on the nature of router security issues and router attacks were classified. Then a method for router online security risk assessment quantification was also presented.The security risk factor of service decline was calculated by router bandwidth consumption and average CPU usage and the security risk factor of privilege escalation was calcu ated by the possibility of threat occurrence and severity based on the router attack classification. The router security threat status was evaluated combining weighting the importance of router and the security risk factor. The experiment results show the method is effective in calculating the quantitive risk of the router and helpful for administrators to assess security risks.

Key words: router security, threat situation, online monitoring, risk assessment

No Suggested Reading articles found!