一种面向组合攻击效能评估的Enhanced LAMBDA描述语言

J4 ›› 2013, Vol. 35 ›› Issue (7): 53-59.

一种面向组合攻击效能评估的Enhanced LAMBDA描述语言

彭子枚1，赵文涛2，邹荣念1

(1.91669部队，海南海口 571100;2.国防科学技术大学计算机学院，湖南长沙 410073)

收稿日期:2011-07-29 修回日期:2011-09-28 出版日期:2013-07-25 发布日期:2013-07-25
基金资助:
国家自然科学基金资助项目（61271252,61105050）

An enhanced LAMBDA description language
oriented to combined attack effectiveness evaluation

PENG Zimei1，ZHAO Wentao2，ZOU Rongnian1

(1.Troop 91669,Haikou 571100;
2.School of Computer Science,National University of Defense Technology,Changsha 410073,China)

Received:2011-07-29 Revised:2011-09-28 Online:2013-07-25 Published:2013-07-25

摘要/Abstract

摘要：

利用描述语言进行攻击建模能够更有效地刻画攻击细节。通过对网络攻击效能进行评估，可以对网络攻击的效果给出定性和定量的评价，检验攻击行为的有效性，有助于制定有效的网络安全策略。基于LAMBDA语言，扩充了时间约束和效能约束方面的描述能力，提出了一种增强的攻击描述语言Enhanced LAMBDA，并给出了Enhanced LAMBDA的应用实例。最后，利用DARPA数据集LLDOS1.0构造了网络组合攻击的测试场景，基于Enhanced LAMBDA对其进行效能评估。实验结果表明，Enhanced LAMBDA能有效支持网络组合攻击的效能评估。

关键词: 攻击建模, LAMBDA, 描述语言, 效能评估

Abstract:

Modeling attack actions with description language can depict the details of the attack more effectively. By evaluating the effectiveness of network attacks, the qualitative and quantitative evaluation of the effect of network attacks is concluded, and it can test the effectiveness of attack actions and help to establish effective security policy of network. Based on the LAMBDA description language, this paper expands its expressiveness on time constraints and effectiveness constraints, proposes an enhanced attack description language, the enhanced LAMBDA, and then gives an application example of the enhanced LAMBDA. In the end, this paper uses DARPA data set, the LLDOS1.0, to construct a test scenario of combined attack of network and evaluates its effectiveness based on the enhanced LAMBDA. The experimental results indicate that Enhanced LAMBDA can effectively support the evaluation of effectiveness of combined attacks.

Key words: attack modeling;LAMBDA;description language;effectiveness evaluation

彭子枚1，赵文涛2，邹荣念1. 一种面向组合攻击效能评估的Enhanced LAMBDA描述语言[J]. J4, 2013, 35(7): 53-59.

PENG Zimei1，ZHAO Wentao2，ZOU Rongnian1. An enhanced LAMBDA description language
oriented to combined attack effectiveness evaluation [J]. J4, 2013, 35(7): 53-59.

[1]	丁湘陵1，王志刚2 . 基于B方法的体系结构描述语言的形式化研究[J]. J4, 2013, 35(1): 100-106.
[2]	马晓普1, 李争艳1, 鲁剑锋2. 访问控制策略描述语言与策略冲突研究[J]. J4, 2012, 34(10): 48-52.
[3]	杨〓磊，潘正华. 基于带有三种否定的模糊集FScom的模糊综合评判[J]. J4, 2011, 33(9): 136-140.
[4]	董孟高1，毛新军1，杨〓华2，齐治昌1. 自适应策略描述语言编译器的设计与实现[J]. J4, 2011, 33(10): 93-98.
[5]	吴钰飞，常显奇，廖育荣. 基于Agent的应急空间装备体系效能评估研究[J]. J4, 2010, 32(6): 77-80.
[6]	毛春丽[1] 郑帅[2] 贾焰[3] 周斌[3]. IDL到WSDL映射的研究及实现[J]. J4, 2008, 30(3): 24-27.
[7]	魏慧[1] 戎玫[2] 张广泉[1]. 一种基于体系结构的Web服务组合描述方法[J]. J4, 2008, 30(12): 5-8.
[8]	王建勇郑芳. DRTSADL分析器的设计与实现[J]. J4, 2007, 29(6): 102-104.
[9]	赵康边计年吴强薛宏熙. C语言系统描述的HCDFG-Ⅱ实现[J]. J4, 2005, 27(4): 80-83.
[10]	古西睿凌云翔邱涤珊王志勇. 指挥自动化效能评估系统中的仿真引擎研究[J]. J4, 2004, 26(3): 90-93.