网络与信息安全学报 ›› 2020, Vol. 6 ›› Issue (5): 54-66.doi: 10.11959/j.issn.2096-109x.2020070

• 学术论文 • 上一篇    下一篇

高安全属性价值设备威胁态势量化评估方法

韩磊1,2(),刘吉强3,王健3,石波1,和旭东3   

  1. 1 北京计算机技术及应用研究所,北京 100854
    2 信息保障技术重点实验室,北京 100072
    3 北京交通大学智能交通数据安全与隐私保护技术北京市重点实验室,北京 100044
  • 修回日期:2020-03-21 出版日期:2020-10-15 发布日期:2020-10-19
  • 作者简介:韩磊(1983- ),男,内蒙古呼伦贝尔人,博士(后),北京计算机技术及应用研究所高级工程师,主要研究方向为信息安全、密码应用、智能安全|刘吉强(1973- ),男,山东烟台人,博士,北京交通大学教授、博士生导师,主要研究方向为可信计算、隐私保护、云计算安全|王健(1975- ),男,山东烟台人,博士,北京交通大学副教授,主要研究方向为密码应用及区块链、网络安全|石波(1988- ),男,江苏南通人,北京计算机技术及应用研究所高级工程师,主要研究方向为信息安全|和旭东(1993- ),男,河北保定人,北京交通大学博士生,主要研究方向为网络安全、物联网安全
  • 基金资助:
    国家自然科学基金(61672092);国防基础科研(JCKY2017204B063);中央高校基本科研业务费专项基金(2018JBZ103);山东省重大科技创新工程(2019JZZY020128);中国博士后科学基金(2018M633698)

Quantitative threat situational assessment method for higher secure attribute value device

Lei HAN1,2(),Jiqiang LIU3,Jian WANG3,Bo SHI1,Xudong HE3   

  1. 1 Beijing Institute of Computer Technology and Applications,Beijing 100854,China
    2 Science and Technology on Information Assurance Laboratory,Beijing 100072,China
    3 Key Laboratory of Security and Privacy in Intelligent Transportation,Beijing Jiaotong University,Beijing 100044,China
  • Revised:2020-03-21 Online:2020-10-15 Published:2020-10-19
  • Supported by:
    The Natural Science Foundation of China(61672092);National Defense Basic Research(JCKY2017204B063);The Fundamental Research Funds for the Central Universities of China(2018JBZ103);The Major Scientific and Technological Innovation Projects of Shandong Province,China(2019JZZY020128);China Postdoctoral Science Foundation(2018M633698)

摘要:

传统的网络安全态势量化评估方法主要面向宏观网络安全态势,未针对安全价值较高的网络设备,给出了高安全属性价值设备的定义,设计了针对设备的威胁态势量化评估框架和评估指标,根据评估框架和指标提出了高安全属性价值设备威胁态势量化评估方法。对具体网络中实际设备的评估结果表明,该方法能够准确、有效地量化评估高安全属性价值设备的威胁态势。

关键词: 态势感知, 安全威胁, 量化评估, 高安全属性价值设备

Abstract:

Traditional network security situational assessment is mainly for the macro network security situation, not for the specific equipment,especially for the key network device.A conception about the higher secure attribute value device was introduced,based on which a threat situational assessment research framework was presented and assessment indexes were discussed.A quantitative threat situational assessment method for higher secure attribute value device was proposed based on assessment research framework and assessment indexes.The experiment resultsshow that the proposed method can assess device threat situation accurately and effectively.Meanwhile,the method is more general and objective than traditional methods.

Key words: situational awareness, security threat, quantitative evaluation, higher security attribute value device

中图分类号: 

No Suggested Reading articles found!