###
Journal of Software:2012.23(3):712-723

基于静态贝叶斯博弈的蠕虫攻防策略绩效评估
刘玉岭,冯登国,吴丽辉,连一峰
(中国科学院 软件研究所 信息安全国家重点实验室,北京 100190; 信息网络安全公安部重点实验室(公安部第三研究所),上海 201204; 信息安全共性技术国家工程研究中心,北京 100190;中国科学院 办公厅,北京 100864;中国科学院 软件研究所 信息安全国家重点实验室,北京 100190; 信息安全共性技术国家工程研究中心,北京 100190)
Performance Evaluation of Worm Attack and Defense Strategies Based on Static Bayesian Game
LIU Yu-Ling,FENG Deng-Guo,WU Li-Hui,LIAN Yi-Feng
(State Key Laboratory of Information Security, Institute of Software, The Chinese Academy of Sciences, Beijing 100190, China; Key Laboratory of Information Network Security of Ministry of Public Security (The 3rd Research Institute of Ministry of Public Se;Clerical Office, The Chinese Academy of Sciences, Beijing 100864, China;State Key Laboratory of Information Security, Institute of Software, The Chinese Academy of Sciences, Beijing 100190, China; National Engineering Research Center for Information Security, Beijing 100190, China)
Abstract
Chart / table
Reference
Similar Articles
Article :Browse 2844   Download 3202
Received:July 07, 2010    Revised:October 29, 2010
> 中文摘要: 现有蠕虫攻击策略(防护策略)评估方法没有考虑防护策略(攻击策略)变化对攻击策略(防护策略)绩效评估的影响,且防护策略评估忽视了策略实施成本.针对这种情况,构建了基于静态贝叶斯博弈的绩效评估模型 (performance evaluation model based on static Bayesian game,简称PEM-SBG)以及对抗情形下的蠕虫攻防策略绩效评估方法.在模型PEM-SBG 基础上提出的基于灰色多属性理论的防护策略绩效评估方法,综合考虑了成本类和收益类的多个评估属性,有助于提高评估过程的全面性.针对典型的蠕虫攻防场景.利用仿真工具SSFNet 进行了模拟实验,验证了所提出的模型和方法的有效性.
Abstract:The existing performance evaluation methods of worm attack strategies (defense strategies) are not considered defense strategies (attack strategies) change’s influence on attack strategies (defense strategies) and performance evaluation of defense strategies are ignoring the implementation cost. In view of this situation, a performance evaluation model based on static Bayesian game (PEM-SBG) is proposed, and the performance evaluation methods of worm attack and defense mechanisms are presented. The performance evaluation method of defense mechanisms is based on gray multiple attributes theory and considers several evaluation metrics about cost and utility, so the evaluation process is much more comprehensive. Finally, the paper uses simulation tools SSFNet to implement simulation experiments under different attack and defense scenarios and validate the method.
文章编号:     中图分类号:    文献标志码:
基金项目:国家高技术研究发展计划(863)(2009AA01Z439); 国家高技术产业化项目信息安全专项; 信息网络安全公安部重点实验室(公安部第三研究所)开放基金(C10606) 国家高技术研究发展计划(863)(2009AA01Z439); 国家高技术产业化项目信息安全专项; 信息网络安全公安部重点实验室(公安部第三研究所)开放基金(C10606)
Foundation items:
Reference text:

刘玉岭,冯登国,吴丽辉,连一峰.基于静态贝叶斯博弈的蠕虫攻防策略绩效评估.软件学报,2012,23(3):712-723

LIU Yu-Ling,FENG Deng-Guo,WU Li-Hui,LIAN Yi-Feng.Performance Evaluation of Worm Attack and Defense Strategies Based on Static Bayesian Game.Journal of Software,2012,23(3):712-723