基于模拟攻击的高校网络安全风险评估研究

J4 ›› 2012, Vol. 34 ›› Issue (12): 51-55.

基于模拟攻击的高校网络安全风险评估研究

史姣丽

（九江学院信息科学与技术学院，江西九江 332005)

收稿日期:2011-09-28 修回日期:2012-03-11 出版日期:2012-12-25 发布日期:2012-12-25

Research for the Risk Assessment of University Network Security Based on Simulated Attack

SHI Jiaoli

(College of Information Science and Technology,Jiujiang University,Jiujiang 332005,China）

Received:2011-09-28 Revised:2012-03-11 Online:2012-12-25 Published:2012-12-25

摘要/Abstract

摘要：

针对高校网络目前存在的安全风险，提出一种新型的基于模拟攻击的高校网络安全风险评估模型。该模型综合考虑了单机脆弱性和网络攻击威胁，首先结合原有基于单机脆弱性测出的风险值，模拟攻击者利用网络弱点的入侵过程，产生攻击状态图；然后基于生成的攻击状态图和原有风险值，识别攻击者入侵网络所利用的攻击行为、可能路线及导致的安全状态变化，评估潜在威胁的位置；并对新方法的风险值给出了定量分析，从而为针对性地实施风险控制决策提供更准确的依据。实验结果表明，该模型是正确的，并且平均要比目前存在的风险评估模型多发现大约50%的安全风险。由此可以看出，本模型方法的评估结论较传统方法更为准确。

关键词: 高校网络安全, 模拟攻击, 风险评估

Abstract:

For the existing network security risks, this paper provides a novel network security risk assessment model based on simulated attack, which comprehensively considers the vulnerabilities of single computer and network attack menace. Firstly, the model uses the assessment value based on the vulnerabilities of single computer to simulate the intrusion process of attacker using the network weakness initially and produce the attack state chart. Secondly, the model identifies the attack behaviors, the possible attack line, the change of security state and the location of potential threat according to the attack state chart and the initial assessment value. Finally, the paper gives the quantitative analysis on the new assessment value by the new method, and provides a more accurate basis for the implement on risk control decision pointedly. The experimental results show that this model is correct, and can find out about more 50% security risk than the existing risk assessment models averagely. It means that the assessment results estimated by the model designed in this paper are more accurate than the traditional methods.

Key words: university network security;simulated attack;risk assessment

史姣丽. 基于模拟攻击的高校网络安全风险评估研究[J]. J4, 2012, 34(12): 51-55.

SHI Jiaoli. Research for the Risk Assessment of University Network Security Based on Simulated Attack[J]. J4, 2012, 34(12): 51-55.

[1]	王克克, 郭莉丽, 郎静宏 . 基于STAMP模型的风险评估行为安全指标体系[J]. 计算机工程与科学, 2022, 44(08): 1372-1381.
[2]	郭昊, 何小芸, 孙学洁, 陈红松, 刘周斌, 颉靖. 国家电网边缘计算应用安全风险评估研究[J]. 计算机工程与科学, 2020, 42(09): 1563-1571.
[3]	张瑞芝1,唐湘滟1,程杰仁1,2. 基于改进模糊C-均值聚类的DDoS攻击安全态势评估模型[J]. 计算机工程与科学, 2018, 40(11): 1957-1966.
[4]	李艳，黄光球，张斌. 基于攻击事件的动态网络风险评估框架[J]. 计算机工程与科学, 2016, 38(09): 1803-1811.
[5]	余定坤，王晋东，张恒巍，王娜，陈宇. 基于静态贝叶斯博弈的风险评估方法研究[J]. J4, 2015, 37(06): 1079-1086.
[6]	王娜1，张健2，王晋东1，张恒巍1. 单调指标空间在信息系统风险评估中的应用研究[J]. J4, 2015, 37(03): 486-491.
[7]	陈永艳，戴伟. 分层渗透深度下隐马尔科夫风险评估模型[J]. J4, 2014, 36(09): 1690-1696.
[8]	吴叶科1,宋如顺1,陈波2. 基于博弈论的综合赋权法的信息安全风险评估[J]. J4, 2011, 33(5): 9-13.
[9]	王淼，凌捷，郝彦军. 电子政务系统安全域划分技术的研究与应用[J]. J4, 2010, 32(8): 52-55.
[10]	陆琳琳，马鑫. 一种基于移动代理的网络安全联合风险评估系统模型[J]. J4, 2010, 32(5): 26-29.
[11]	刘春芬[1,2] 宣蕾[2] 王正华[2] 李旭峰[2]. 基于SVM的网络威胁频率预测算法研究[J]. J4, 2007, 29(5): 11-14.
[12]	吉勇李瑞轩. 基于模糊评判的多自治域风险关联评估算法[J]. J4, 2007, 29(12): 107-110.