%0 Journal Article
%T Security-State-Region-Based Model of Network Security Evaluation<br>基于安全状态域的网络评估模型
%A ZHANG Hai-Xi
%A LIAN Yi-Feng
%A SU Pu-Rui
%A FENG Deng-Guo
%A <br>张海霞
%A 连一峰
%A 苏璞睿
%A 冯登国
%J 软件学报
%D 2009
%I 
%X A security-state-region-based (SSR-based) model called security-state-region-based evaluation model (SSREM) is proposed, which integrates the assessment based on the attack graph and the evaluation according to criteria together. In the model, the attack result is divided into the change in the attack ability and environment. The cause and effect relationship among them lays a foundation for building mathematic equations. After that, the definition of SSR is proposed, and also curve and surface fitting recurring to Matlab is used to analyze the attack trend, the result of which provides a theoretical basis for the division of SSR and the network security assessment based on SSR. Experiments in the posterior part of the paper show that, the evaluation according to SSREM can reflect how difficult it is to enter into different states through SSR and the tendency coefficient of security state region (TC_SSR), which can be used for reference by quantitative evaluation of network security.
%K security state region (SSR)
%K security-state-region-based evaluation model (SSREM)
%K tendency coefficient of security state region (TC_SSR)
%K attack graph
%K vulnerability<br>安全状态域
%K 基于安全状态域的评估模型
%K 安全状态域趋向指数
%K 攻击图
%K 脆弱性
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=7735F413D429542E610B3D6AC0D5EC59&aid=E323E026D821BD89A6111E6D15802108&yid=DE12191FBD62783C&vid=A04140E723CB732E&iid=0B39A22176CE99FB&sid=9B95A71E6639C039&eid=FCACFF68346F8D4F&journal_id=1000-9825&journal_name=软件学报&referenced_num=2&reference_num=22