摘要
基于图论的方法被引入来进行分析多阶段、多主机之间的网络渗透行为,但非形式化的数据描述及状态爆炸等问题难以适应中大规模网络系统。通过分析多种网络渗透行为,提出一种基于逻辑渗透图的网络安全分析模型(LEG-NSAM)。通过分析对比看出,LEG-NSAM的形式化描述和推理机制有助于更加准确、清晰地评估安全风险。采用LEG及其简化算法能够对大规模网络进行有效安全分析。
Recent work in network security focuses on the fact that combinations of exploits are the typical means by which an attacker breaks into a network. This paper describes a new approach to represent and analyze network vulnerability. It proposes logic exploitation graph, which directly illustrates logical dependencies among exploitation goals and network configure. The logic exploitation graph generation tool builds upon LEG-NSA, a network security analyzer based on prolog logic programming, and demonstrates how to reason all exploitation paths using bottom-up and top-down evaluation algorithms in the prolog logic-programming engine. Experimental evidence show that the logic exploitation graph generation algorithm is very efficient.
出处
《计算机工程》
CAS
CSCD
北大核心
2009年第9期147-149,152,共4页
Computer Engineering
基金
国家自然科学基金资助项目(70401003
70771109)
关键词
安全分析
逻辑渗透图
逻辑推理
网络渗透
security analysis
logic exploitation graph
logic reasoning
network exploitation
作者简介
钱猛(1968-),男,讲师、博士研究生,主研方向:知识管理和知识工程,网络安全技术;E-mail:qianmeng@nudt.edu.cn
毛捍东,讲师、博士;
姚莉,教授、博士
张维明,教授、博士
