Security Modeling and Quantification Method for Cyberspace Mimic Defense Based on Vulnerability Consistency Rate

Abstract

The invention provides a security modeling and quantification method for network space mimicry defense based on the vulnerability consistency rate. The method comprises: step 1: determining the defense parameter information that affects the security of the DHR system; step 2: determining the attack parameter information that affects the attacker's ability; step 3: establishing the DHR system about the defense parameter information and the attack parameter information Model; step 4: deriving the DHR system security metrics about the defense parameter information and the attack parameter information, the metrics include: the system attack success rate of an attack and the system attack success rate of the attack task; step 5 : According to the DHR system model, the system attack success rate of an attack and the system attack success rate of an attack task, calculate the system attack success rate of the DHR system for a specific vulnerability and the system attack success rate of the DHR system for a combination of vulnerabilities. A mathematical model is established for the DHR system, and the security of the system is represented by indicators such as output consistency rate and system attack success rate, and the security and anti-attack ability of the DHR system are analyzed by solving the model.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a security modeling and quantification method for network space mimicry defense based on vulnerability consistency rate. Background technique [0002] The problem of vulnerabilities and backdoors is one of the most serious problems in cyber attacks. Vulnerabilities usually refer to defects in the specific implementation of hardware, software or protocols, or system security policies, which make it possible for attackers to access or destroy the system without authorization. Software and hardware backdoors usually refer to malicious codes left in software and hardware systems, aiming to provide methods and means for special users to bypass security control links in special ways to gain access to the system. Due to the low attack threshold and the high cost of network defense due to the network attack using loopholes and backdoors, it seriously threatens the security of n...

AI Technical Summary

Problems solved by technology

"Security Analysis of Dynamic Heterogeneous Redundant Systems [J]. Computer Engineering, 2018, 44(10): 42-45,50" provides a security analysis method, in which only one attack The probability of success is analyzed, but the attack success rate of the attack task is not analyzed and solved, that is, an attack task may need to be completed in multiple dynamic transformation cycles, and the system attack success rate at this time is not analyzed.

Images