计算机工程与应用 ›› 2008, Vol. 44 ›› Issue (14): 130-133.

• 网络、通信、安全 • 上一篇    下一篇

网络态势分析中服务可用性评估方法

王慧莹,周 宁,陈秀真,李建华   

  1. 上海交通大学 电子信息与电气工程学院,上海 200240
  • 收稿日期:2007-08-24 修回日期:2007-10-22 出版日期:2008-05-11 发布日期:2008-05-11
  • 通讯作者: 王慧莹

Approach to network service availability evaluation in situation analysis

WANG Hui-ying,ZHOU Ning,CHEN Xiu-zhen,LI Jian-hua   

  1. School of Electronic,Information and Electrical Engineering,Shanghai Jiaotong University,Shanghai 200240,China
  • Received:2007-08-24 Revised:2007-10-22 Online:2008-05-11 Published:2008-05-11
  • Contact: WANG Hui-ying

摘要: 随着网络的迅速发展,网络流量不断增大,各种攻击日趋频繁,在这样的环境下,网络所提供的服务并不是时刻都能保证处于可用状态,需要一个服务评价指标来衡量服务可用性。利用态势评估方法,从节点、系统两个层次进行分析[4],定义了针对给定特定的系统服务的态势分析函数,从而构建了一个针对网络服务可用性的监测评估方法。该方法能够提供针对某一个特定服务的直观态势分析,并且可以看到系统资源使用情况,使其对系统的安全威胁状况有具体的了解。通过在正常和受DDOS攻击网络中进行实验,验证了该方法的有效性。

关键词: 态势分析, 网络评估, 服务可用性, DDOS攻击

Abstract: The increasing use of the Internet and attacks make it necessary to develop techniques that analyze network and service availability.Monitoring and quantifying network component behavior is key to make network reliable and robust. By using situation analysis,this paper proposes an approach to network service availability evaluation which is aimed at certain systems.The contribution of this paper is two-fold: First,key-factors and secondly,the system.This approach can provide a direct situation analysis to the certain services and can also analyze the system resource usage,thus havs a concrete and whole scope of the system situation.The effectiveness of this approach is approved by the large amounts of experiments in both normal and DDOS attacked network.

Key words: situation analysis, network evaluation, service availability, DDOS attack