论文部分内容阅读
为了能够实时的进行网络安全风险评估,建立主机安全状态描述模型是非常必要的,在选择模型输入时,以入侵检测系统的报警信息为出发点,将主机的被攻击状态概率计算出来。在攻击报警下,将攻击成功概率的计算方法制定出来,再对主机节点的风险指数进行计算,这种评估策略能够确保网络系统持续安全的发展,满足人们对网络安全风险评估不断增长的需要。
In order to evaluate the network security risk in real time, it is necessary to set up the description model of the host security state. When selecting the model input, taking the alarm information of the intrusion detection system as the starting point, the attacked state probability of the host is calculated. Under attack alarm, the method of calculating the probability of attack success is developed, and then the risk index of the host node is calculated. This assessment strategy can ensure the continuous and safe development of the network system and meet the increasing demand of network security risk assessment.