| 引用本文: | 何 慧,张宏莉,王 星,曲晶莹.网络安全事件危害度的量化评估[J].哈尔滨工业大学学报,2012,44(5):66.DOI:10.11918/j.issn.0367-6234.2012.05.013 |
| HE Hui,ZHANG Hong-li,WANG Xing,QU Jing-ying.Detriment quantitative assessment of the network security incidents[J].Journal of Harbin Institute of Technology,2012,44(5):66.DOI:10.11918/j.issn.0367-6234.2012.05.013 |
|
| 摘要: |
| 为评价安全事件造成的危害程度,从网络系统可用性的角度出发提出基于性能指标的网络安全事
件危害度量化评估方法,选取路由器节点与链路等网络底层关键组成部分的性能评价指标,利用网络熵值量
化描述网络底层性能属性,用网络熵值在安全事件攻击前后的变化来度量攻击对网络可用性的影响程度.搭
建了大规模网络蠕虫攻击事件模拟试验平台,采用省级节点的实际网络环境进行验证.实验结果表明,在攻
击发生时,选取的底层性能指标能有效反映网络的危害程度,省级节点实验更一步验证该方法能有效地应用
于大规模网络可用性量化评估中 |
| 关键词: 网络安全 网络可用性 信息熵 量化评估 性能指标 |
| DOI:10.11918/j.issn.0367-6234.2012.05.013 |
| 分类号:TP393.4;TP309.5 |
| 基金项目:围家重点基础研究发展规划资助项目(2011CB302605);围
家高技术研究发展计划资助项目( 2010AA012504,
2011AA010705);国家自然科学基金资助项目(60903166,
61173145) |
|
| Detriment quantitative assessment of the network security incidents |
|
HE Hui, ZHANG Hong-li, WANG Xing, QU Jing-ying
|
|
School of Computer Science and Technology, Harbin Institute of Technology, 150001 Harbin, China
|
| Abstract: |
| From the point of view on the network system availability, to evaluate the harm caused by security
incidents, a performance - based quantification assessment method of network security is proposed. The meth-
od references the concept of entropy in information theory to quantify the performance indexes by choosing
router nodes, and compares these index changes in the entropy before and after the security incident to meas-
ure the impact on the network. Worm simulation and actual provincial nodes experiment show that the pro-
posed approach can be effectively applied to the quantification assessment of large-scale network availability |
| Key words: network security network availability entropy in information theory quantification assessment performance index |
