摘要
以传统的攻击树为研究对象,在对攻击节点进行重定义的基础上,将多阶段网络攻击与其所处的复杂网络环境相结合,给出了一种上下文敏感的结构化攻击建模方法,使之能够捕获网络漏洞和多阶段网络攻击的行为特征.实例分析表明,利用此方法构建的附带有多种评估参数的攻击树模型,能够有效地对系统进行脆弱性分析和攻击预警,具有较好的扩展性和实用性.
As a sort of tools for modeling network attacks, attack trees proposed a goal-oriented approach and possessed the characteristics of strueturization and reusability. On the basis of redefining the attack node, multi-stage network attacks was combined with complex network environment and provided a context-sensitive attack model that can capture the structure of various network vulnerabilities and multi-stage attacks. The examples showed that the attack tree model with abundant parameters constructed by this method can aid in the analysis of vulnerabilities and future attacks on system and its prediction. It was characterized by good expansibility and praetibility.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2006年第2期70-72,共3页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
关键词
网络攻击
攻击树
攻击建模
脆弱性分析
network attacks
attack tree
attack modeling
vulnerability analysis
