摘要
研究网络安全准确评估问题,针对网络安全态势评估中多源数据的不确定和不完整性使传统评估方法的评估结果准确性不高,利用证据论处理不知道,不确定性问题的优势,提出了基于灰色关联分析和D-S证据论相结合的网络安全态势评估方法。首先确定了各评估指标对评估等级的隶属度函数,然后定义了放大加权隶属度函数来降低整体不确定性,利用灰色关联法确定各指标的不确信度,进而得到各指标下不同目标的Mass函数,最后通过D-S证据理论对各Mass函数进行合成,根据置信函数大小确定评估结果。通过仿真表明,基于改进证据论的评估方法可以保证安全评估的准确度,降低多源数据融合的不确定性。
The issue on accurate assessment of network security was researched. The uncertainties and incompleteness of multi-source data in the assessment of network security situation cannot make the high accuracy of assessment results with traditional assessment methods. A method based on grey incidence analysis and D-S theory of evidence was proposed which take the advantage of evidence theory to deal with the problems on unknowing and uncertainty. Firstly, membership functions of assessment indices for assessment levels were set up. Then an enlargedweighted membership function was defined to reduce the overall uncertainty. Meanwhile, uncertain degrees corresponding to different indices were determined through the methodology of grey incidence. Subsequently, the Mass functions of different targets in different indices were obtained. Finally, the fusion of different Mass functions was car- ried out on the basis of D-S theory of evidence, and the assessment result according was determined to the belief function value. The simulation results show that the method based on improved evidence theory can ensure the accura- cy of security assessment and reduce the uncertainty of multi-source data fusion.
出处
《计算机仿真》
北大核心
2018年第3期210-215,共6页
Computer Simulation
基金
国家自然科学基金资助项目(U1304606)
河南省科技攻关计划项目(152102410033)
河南省科技厅自然科学项目(152102210268)
河南省教育厅自然科学项目(14B520059)
河南工业大学高层次人才基金资助项目(2013BS007)
关键词
网络安全
态势评估
证据论
数据融合
灰色关联分析
Network security
Situation assessment
Evidence theory
Data fusion
Grey incidence analysis