计算机工程与应用 ›› 2016, Vol. 52 ›› Issue (18): 122-126.

• 网络、通信与安全 • 上一篇    下一篇

赛博空间安全框架设计及风险评估方法

周  未1,解文彬2,李  磊3   

  1. 1.南京理工大学 计算机科学与工程学院,南京 210094
    2.解放军理工大学 指挥信息系统学院,南京 210007
    3.华北计算技术研究所,北京 100083
  • 出版日期:2016-09-15 发布日期:2016-09-14

A kind of Cyberspace security framework design and risk assessment method

ZHOU Wei1, XIE Wenbin2, LI Lei3   

  1. 1.School of Computer Science and Engineering, Nanjing University of Science & Technology, Nanjing 210094, China
    2.College of Command Information Systems, PLA University of Science & Technology, Nanjing 210007, China
    3.North China Institute of Computing Technology, Beijing 100083, China
  • Online:2016-09-15 Published:2016-09-14

摘要: 从赛博空间的安全需求出发,通过安全引擎和移动安全中间件技术,解决移动终端的异构性与安全性的难题,提出一个赛博空间抽象层面的安全体系结构并进行了技术描述。该体系结合风险管理技术,集成多种不同的安全技术和安全层次,实现了赛博空间环境下的有效防护。同时,基于隐马尔科夫理论,提出了基于隐马尔科夫模型的信息安全风险评估方法,计算机仿真实验结果表明,该方法实现了对赛博空间安全风险的定量评估,有一定的可行性。

关键词: 赛博空间, 安全风险管理, 体系结构

Abstract: This paper, after researching the security requirements of Cyberspace, through security engine and mobile security middleware technology, to solve the problem of the heterogeneity and security of the mobile terminal, puts forward a security architecture in abstract level of Cyberspace and gives out the technical description. The system combines the technique of risk management, and integrates variety of security technology and security levels, realizes the effective protection of Cyberspace environment. At the same time, it puts forward an information security risk assessment method based on hidden markov models. Computer simulation experiment results show that to realize the quantitative evaluation of Cyberspace security risk, the method has certain feasibility.

Key words: Cyberspace, security risk assessment, architecture