期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

一种信息系统生存性的量化分析框架 被引量:17

A Framework of Quantitative Analysis for Information System Survivability
在线阅读 下载PDF
导出
摘要 生存性是信息系统在安全性之上必需考虑的问题,对其量化分析可对系统生存性做出更为准确的评价以改进系统。基于有限状态机描述信息系统,利用系统状态转移图来定义生存性分析过程,而系统状态的层次化结构避免了Markov链模型中的列举系统状态问题。在SNA方法的基础上,提出一种便于计算机实现的生存性量化分析框架:通过系统定义、系统生存性测试和生存性计算,最后给出分析报告。其中基于事件分类分级建立的事件库使得测试方案的生成自动化和客观化,系统的生存性通过层次化的方式从可抵抗性、可识别性和可恢复性3个方面进行了量化计算。 Survivability should be considered beyond security for information system, and quantitative analysis can assess system survivability accurately for improvement. Information system is presented by finite state machine and its state transition map is used to describe analysis process, where the hierarchical structure of system state avoids the problem of enumerating states in Markov chain model. Based on SNA method, a framework of quantitative analysis is introduced: defining system, testing system's survivability, computing survivability, and giving analysis report finally, which is easily implemented by computer. In the framework, the event database which is based on event classification and grade makes creating test project automatically and objectively, and survivability is computed through resistance, recognition and recovery in a hierarchical process.
作者 林雪纲 许榕生 熊华 朱淼良
机构地区 浙江大学人工智能研究所 中国科学院高能物理研究所计算中心 总参第五十四研究所
出处 《电子与信息学报》 EI CSCD 北大核心 2006年第9期1721-1726,共6页 Journal of Electronics & Information Technology
基金 国家"973"项目(G1999035806)资助课题
关键词 生存性 信息系统 量化分析 分析框架 Survivability, Information system, Quantitative analysis, Analysis framework
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献13

  • 1Ellison R, Fisher D, et al.. Survivable network systems: an emerging discipline. Technical Report CMU/SE1-97-153,1997.11
  • 2Ellison R J, Linger R C, et al.. A case study in survivable network system analysis. Technical Report CMU/SE1-98-TR-014, 1998.9
  • 3Jha S, Wing J, Linger R, Longstaff T. Survivability analysis of network specifications. Proceeding of International Conference on Dependable Systems and Networks, New York, 2000.6:613-622.
  • 4Gao Zhixing, Ong Chen Hui, Tan Woon Kiong. Survivability assessment: modeling dependencies in information systems. 4^th Information Survivability Workshop (2001/2002).
  • 5Linger R, Hevner A, et al.. Semantic foundations for survivable system analysis and design. Proceedings of the International Conference on Dependable Systems and Networks, Goteberg,Sweden, 2001.7.
  • 6郭渊博,马建峰.分布式系统中服务可生存性的定量分析[J].同济大学学报(自然科学版),2002,30(10):1190-1193. 被引量:34
  • 7Lin Xuegang, Xu Rongsheng, Zhu Miaoliang. Survivability analysis for information systems. Proceedings of the 7th International Conference on Advanced Communication Technology, Phoenix Park, South Korea, 2005.2, 1 : 255-260.
  • 8Harrison W S, Krings A W, et al.. On the performance of a survivability architecture for networked computing systems.Proceedings of 35th Hawaii International Conference on System Sciences, Big Island, Hawaii, 2002.1 : 1-9.
  • 9Krings A W, Azadmanesh M H. A graph based model for survivability analysis. Technical Report UI-CS-TR-02-024,2004.
  • 10林雪纲,许榕生.计算机和网络事件的分类分析及应用.2005年中国计算机网络安全应急年会论文集,广西桂林,2005.3.

二级参考文献10

  • 1Hollway B A,Neumann P G.Survivable computer-communication systems:The problem and working group recommendations[R].Washington:US Army Research Laboratory,1993.
  • 2Neumann P.Commputer related risks[M].Boston:Addison-Wesley,1995.
  • 3Marsh T.Critical foundations:Protecting america's Infrastructures[R].Washington:President's Commission on Critical Infrastructure Protection,1997.
  • 4Ellison R,Fisher D,Linger R,et al.Survivable network systems:An emerging discpline[R].Pittsburgh:Software Engineering Institute,Carnegie Mellon Univesity,1997.
  • 5Vaidya N H.A case for two-level recovery schemes[J].IEEE Transactions on Computers,1998,47(6):656-666.
  • 6Ellison R,Linger R,Longstaff T,et al.Survivability network system analysis:A case study[J].IEEE Software,1999,16(4):70-77.
  • 7Ortalo R,Deswarte Y,Kaaniche M.Experimenting with quantitative evaluation tools for monitoring operational security[J].IEEE Transactions on Software Engineering,1999,25(5):633-650.
  • 8Courcoubetis C,Yannakakis M.The complexity of probabilistic verification[J].Journal of ACM,1995,42(4):857-907.
  • 9Lann G L.Predictability in critical systems[A].Lecture Notes in Computer Science,Formal Techniques in Real-Time and Fault-Tolerant Systems[C].Berlin:Springer-Verlag,1998.315-338.
  • 10Lann G L.Proof-based system engineering and embedded systems[A].Lecture Notes in Computer Science,Embedded Systems[C].Berlin:Springer-Veraly,1998.208-248.

共引文献33

同被引文献105

引证文献17

二级引证文献56

电子与信息学报
2006年 第9期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部