Method and system for detecting network security

A security and network technology, applied in the field of network security, which can solve the problems of inaccurate results, incomplete model description, and failure to consider the human behavior of network attacks, and achieves enhanced description capabilities, a wide range of applications, and high accuracy. Effect
CN102413003AActive Publication Date: 2012-04-11INST OF COMPUTING TECH CHINESE ACAD OF SCI
3 Cites 30 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Applications(China)
Current Assignee / Owner
INST OF COMPUTING TECH CHINESE ACAD OF SCI
Publication Date
2012-04-11

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a method and a system for detecting network security. The method comprises the following steps: 1) according to the initial state of equipment in a network, connection relationships among different pieces of equipment and the vulnerability information of the equipment, generating an attack graph comprising an attack node and a state node; 2) by aiming at a set target node, converting the attack graph into a stochastic Petri net model; 3) introducing the strategy and utility information of an attack behavior on the stochastic Petri net model, generating the stochastic game net model of an attack visual angle, and introducing the strategy and utility information of a defensive behavior on the stochastic Petri net model to generate the stochastic game net model of a defensive visual angle; 4) combining the stochastic game net model of the attack visual angle with the stochastic game net model of the defensive visual angle to generate an attack-defense game strategy model; and 5) detecting network security by the attack-defense game strategy model. According to the method and the system, the accuracy for detecting the network security can be improved.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the field of network security, in particular to a method and system for detecting network security. Background technique

[0002] In recent years, a large number of "derivatives" of the information age, such as computer viruses, Trojan horses, worms, and hacker attacks, have continuously grown and spread, and have affected important national infrastructures such as finance, transportation, commerce, medical care, communications, and electric power with a high degree of informatization. Cause serious damage and become a new threat to national security. Much targeted work has been done to counter these new threats.

[0003] For large-scale and complex cyberspace security issues, the most effective research method is to analyze network protocols, network behaviors, network performance, etc. in real cyberspace, obtain the most authentic and effective data, and apply research results to The most realistic scene. However, it is al...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More