基于贝叶斯网络的网构软件可信性评估模型

对于运行在开放、动态、难控的互联网环境的网构软件,其可信性评估是一个重要课题,但目前大量研究中可信性计算多是基于黑盒的,没有深入考虑系统结构,且评价指标过于单一.因此,提出了一个基于贝叶斯网络的网构软件可信性评估模型.该模型通过对网构软件进行结构分析,根据其结构模式,建立多层的网构软件可信性评估指标体系.基于贝叶斯网络采用自底向上逐层分析计算的方法,对网构软件的各组成实体及其系统整体的多方面可信性指标进行评估,形成统一的可信性结果,并使用客观数据对其进行修正.实验证明,该模型可以明确、客观地对网构软件的可信性进行评估,并能够对网构软件的设计、开发和部署提供帮助.     

基于云模型的可信性评估模型*

软件应用领域极度扩展,促使软件可信问题被高度重视,但量化的软件可信性评估却是可信问题研究的难点。针对软件可信性量化问题,提出了基于云模型的可信性评估模型。以REST表述性状态转移超媒体分布式架构为背景,根据云模型理论定义了其组成构件的信任云以及系统综合信任云,用于评估构件的可信性和系统的可信性。从四个层面,探讨软件可信问题,以可信基础参数获取作为最底层输入,进而生成云模型,合并云模型,最终进入可信评估应用层面。实验结果表明,基于云模型的可信性评估模型是有效实用的,在可信度的不确定性方面增加了评估的灵活性。     

网构软件可信性演化评估分层Petri网模型

对网构软件系统初始化及系统演化时实体间信任关系的建立、演化和评估问题进行了研究。通过结构分析,建立了网构软件系统结构模型,并给出了基于分层Petri网的评估模型;从系统整体组成结构与各实体内部访问控制策略两方面,对网构软件演化过程中的可信性演化情况进行了评估;解决了原有基于信任度量的模型对系统初始化及新建立实体可信性支持不足的问题,并提供了服务实体对客户实体的反向信任机制。     

Trust assessment of security for e-health systems

The expansive connectivity of emerging information systems has set the stage for pervasive access to healthcare services via e-health systems for selecting the best possible healthcare services. Emerging systems are expected to be highly dynamic open environments connecting diverse number of healthcare services and autonomous entities that are autonomous agents or software applications representing patients. Entities in such dynamic environments may have different security needs from e-health systems raising the challenge of trust computations regarding security. In this research, we proposed a trust assessment model of an e-health service from the viewpoint of an entity. The model contains a comprehensive architecture applicable to different types of entities, and a novel set of trust assessment metrics may be used to assess a specific property of a security system (i.e. partial metrics) or all properties (i.e. total metrics). The simulation based evaluation of proposed model in the context of a Hospital Online Appointment Service has shown that the proposed model provides better trust computation results than existing trust models for e-health systems. Furthermore, the entities are also able to assess the trust even with incomplete security information.     

A dependability profile within MARTE

The importance of assessing software non-functional properties (NFP) beside the functional ones is well accepted in the software engineering community. In particular, dependability is a NFP that should be assessed early in the software life-cycle by evaluating the system behaviour under different fault assumptions. Dependability-specific modeling and analysis techniques include for example Failure Mode and Effect Analysis for qualitative evaluation, stochastic Petri nets for quantitative evaluation, and fault trees for both forms of evaluation. Unified Modeling Language (UML) may be specialized for different domains by using the profile mechanism. For example, the MARTE profile extends UML with concepts for modeling and quantitative analysis of real-time and embedded systems (more specifically, for schedulability and performance analysis). This paper proposes to add to MARTE a profile for dependability analysis and modeling (DAM). A case study of an intrusion-tolerant message service will offer insight on how the MARTE-DAM profile can be used to derive a stochastic Petri net model for performance and dependability assessment.     

面向Web服务的动态可信性评估模型

网络化软件是由分布在互联网上多源异构的Web服务构成,但受其所处动态开放网络环境的影响,服务可信性处在不断变化之中.针对传统Web服务可信性难以适应动态评估的问题,提出了一种基于信息熵权重和带修正指标的动态信任评估模型（Dynamic Trustworthy Evaluation based on Information Entropy and Correction Metrics,DTEIECM）.首先,该模型充分挖掘模糊矩阵中的客观信息,利用信息熵对易受人为因素影响的主观权重进行修正.同时,考虑到所处运行环境对当前服务可信性的影响,增加了修正指标和受反馈影响的外部指标,以提高评估模型的自适应性.最后,通过对一个商务订单管理系统中的地图服务进行实例分析,结果表明DTMIECM模型在可信性度量中具有可行性,而且能够适应多变的环境并重新配置服务组合,有利于提高整个系统的可信度.     

An automated approach to dependability evaluation of virtual networks

Network virtualization has been pointed as a promising approach to solve Internet’s current ossification. A major challenge is the mapping of virtual networks (VNs) onto the substrate network due to its NP-hard nature, and, thus, several heuristics have been proposed aiming to achieve efficient allocations. However, the existing approaches only focus on performance, and dependability issues are usually neglected. Dependability involves metrics such as reliability and availability, which directly impact the quality of service, and a limitation is the absence of mechanisms for estimating dependability metrics in virtual networks. This paper proposes an automated approach for estimating dependability metrics in virtual network environments and a mapping algorithm based on GRASP metaheuristic. The approach is based on stochastic Petri nets (SPN) and reliability block diagrams (RBD), and a tool is also presented for automating model generation and evaluation. Experimental results demonstrate the feasibility of the proposed technique, as well as the trade-off between VN’s availability and cost.     

Dependability Evaluation of Software Systems in Operation

This paper deals with evaluation of the dependability (considered as a generic term, whose main measures are reliability, availability, and maintainability) of software systems during their operational life, in contrast to most of the work performed up to now, devoted mainly to development and validation phases. The failure process due to design faults, and the behavior of a software system up to the first failure and during its life cycle are successively examined. An approximate model is derived which enables one to account for the failures due to the design faults in a simple way when evaluating a system's dependability. This model is then used for evaluating the dependability of 1) a software system tolerating design faults, and 2) a computing system with respect to physical and design faults.     

基于AADL的IoP系统可靠性评估方法

人联网（IoP）系统的架构复杂且存在海量、实时变化的数据,使得基于IoP系统的可靠性分析变得十分困难,目前仍缺乏一种健全的基于IoP系统的可靠性建模及评估方法。提出一种新型的IoP系统可靠性评估方法,利用AADL及其附件语言对IoP系统进行可靠性建模,并基于该模型从定性角度评估系统故障的根本原因和风险。此外,结合Ocarina模型转换技术提出一种基于连续时间马尔科夫链（CTMC）的定量评估算法,将AADL可靠性模型转换为CTMC模型,实现对系统动态、实时等特性的评估。在此基础上,设计一个IoP系统通用模型,并以此为案例验证所提方法的可行性。实验结果表明,该方法不仅能对IoP系统建模,而且能自动、准确地对其进行可靠性分析,具有良好的应用价值。     

基于信任评估的安全路由方案设计

分析基于贝叶斯方法的信任评估过程,针对其不能较好反映信任评估的一些重要属性的缺陷,对其信任更新过程进行改进与优化,增强贝叶斯信任评估方法的健壮性和有效性。提出基于贝叶斯方法的信任评估模型和安全路由框架,并实现一种基于AODV的安全可信路由方案TBAODV。仿真实验验证了该方案的有效性。     

物联网节点动态行为信任度评估方法仿真

在物联网中节点恶意行为会促使节点的信任度大幅降低,如何确保高信任度并加强网络安全性已经成为首要问题,提出一种物联网节点动态行为信任度评估方法。首先依据多实体贝叶斯建立信任模型,可以控制恶意节点对物联网的攻击和入侵;采用贡献资源数值权重来抑制自私节点,并对其初始化处理;通过对信任的传递与合成计算出推荐信任值,能够减少运算复杂度;并利用综合信任度调高可信任的阈值,最后根据节点间直接的交互记录,来完成信任度的评估。仿真结果表明,所提方法可以较好地识别恶意节点和抑制恶意推荐行为,能够保证信任评估的有效性、可靠性以及安全性。     

基于云模型的电力生产管理软件可信评估方法

随着电力生产管理软件的规模和复杂度不断增加,对此类软件可信性的评估越来越重要。通过对电力生产管理软件质量特性的分析,确定电力生产管理软件可信性的二级评估指标,然后,利用云模型定性与定量之间的转换关系,提出基于云模型理论的电力生产管理软件可信性评估方法,通过评估因素的云模型化和云合并算法,以云模型数字特征图的形式给出最终软件可信评估等级。经过实例证实,该方法的评价结果直观,更加符合实际情况。     

面向组合式软件功能正确性和非功能满足性的统一建模方法

在Internet动态、开放、异构、多变的环境下,组合式软件不仅要满足功能正确,非功能(时间、代价、概率等)属性的满足也日益成为一个重要的问题。在组合式软件的设计阶段,建立组合式软件功能和非功能的统一模型并验证其功能正确性和非功能满足性,是确保组合式软件可信性的重要手段。在UML序列图的基础上进行时间、代价、概率属性的扩展,提出了一种可对组合式软件的交互行为及其时间、代价、概率属性统一建模的属性序列图,该属性序列图以两层模式进行建模,其中基本属性序列图可对涉及时间、代价属性的具体交互场景建模,高层属性序列图通过概率合成基本属性序列图可形成全局场景。给出了针对BPEL4WS的建模实例以说明所提建模方法的有效性。     

动态贝叶斯网络在战术态势估计中的应用*

针对战术态势估计的特点和要求,分析和建立了应用于态势估计的动态贝叶斯网络模型。该模型以离散变量集为研究对象。由于该动态贝叶斯网络满足Markovian特性和平稳特性,降低了网络的复杂度。相比较于贝叶斯网络模型,该动态贝叶斯网络模型考虑了时序因素,将前时刻的态势因素作为当前时刻态势估计的证据的一部分,并能对下一时刻的态势进行预测。文中采用集树（junction tree）算法,利用相关的贝叶斯网络推理软件进行了实验,实验结果表明基于动态贝叶斯网络的估计结果较贝叶斯网络的估计结果好,验证了该模型的有效性。     

物联网节点动态信任度评估方法

针对现有物联网（IoT）信任度评估方法未考虑信任的时效性、非入侵因素对直接信任度评估的影响以及缺乏对推荐节点可靠度的评估,造成信任评估准确度低且不能有效应对节点恶意行为的不足,提出一种IoT节点动态信任度评估方法（IDTEM）。首先,设计节点服务质量持续因子评估节点行为,并采用动态信任衰减因子表达信任的时效性,改进基于贝叶斯的直接信任度评估方法;其次,从推荐节点价值、评价离散度与节点自身的信任度值三个方面评估推荐节点可靠度,并据此优化推荐信任度权重计算方法;同时,设计推荐信任反馈机制,通过服务提供节点完成服务后的实际信任度与推荐信任度的反馈误差实现对协同恶意推荐节点的惩罚;最后,基于熵计算节点自适应权重,得到节点综合信任度值。实验结果表明,同基于贝叶斯理论的面向无线传感器网络的信誉信任评估框架（RFSN）模型及基于节点行为的物联网信任度评估方法（BITEM）相比,IDTEM可较好地识别恶意服务和抑制恶意推荐行为,且具有较低的传输能耗。     

Human-centered control scheme for delayed bilateral teleoperation of mobile robots

Teleoperation task performance strongly depends on how well the human operator’s commands are executed. In this paper, we propose a control scheme for delayed bilateral teleoperation of mobile robots that considers user’s commands execution in order to achieve a high-performance teleoperation system in some important aspects like time to complete the task, safety, and operator dependence. We describe some evaluation metrics that allow us to address these aspects and a quantitative metric is proposed and incorporated in the control scheme to compensate wrong commands. A force feedback is applied to the master at the local site as a haptic cue. In addition, the system stability is analyzed taking into consideration the master and remote robot dynamic models and the asymmetric time-varying delays of the communication channel. Multiple human-in-the-loop simulations were carried out and the results of the evaluation metrics were discussed. Additionally, we present experiments where a user teleoperates a mobile robot via the Internet connection between Argentina and Italy.     

Automated assembly of Internet-scale software systems involving autonomous agents

On the Internet, there is a great amount of distributed software entities deployed independently and behaving autonomously. This paper describes an automated approach to constructing Internet-scale software systems based on autonomous software agents. In the approach, the systems are modeled by interconnected divisions and cooperative roles. The approach adopts a dynamic trial-and-evaluation strategy to select high quality autonomous agents to undertake the responsibilities of roles, and implements a special mobile agent, called delegate, carrying the interaction information specified for responsibilities of roles to facilitate the interoperations among autonomous agents. The experiments show that the approach is highly scalable and improves the overall qualities of systems remarkably.     

网构软件系统中实体协作的贝叶斯博弈分析

现有的网构软件系统信任模型缺乏对软件实体信任协作过程的分析,以及对信任协作结果的有效预测。为此,运用贝叶斯博弈对软件实体的信任协作关系进行研究。阐述网构软件系统中存在的安全问题,给出网构软件的演化模型,在此基础上,采用贝叶斯博弈理论对系统中软件实体的信任协作过程进行建模。针对博弈过程中信息不完整的问题,通过引入自然选择的概率,利用Harsanyi转换得到更符合实际情况的贝叶斯纳什均衡解,对信任协作结果进行有效预测。实验结果表明,信任协作结果与软件实体与自然选择概率的判断有关,通过调整博弈模型中的相关参数可以促进软件实体有效地进行协作。     

一个适用于网构软件的信任度量及演化模型

网构软件的构建依赖于对开放协同环境中各种异构的、自治的软件服务实体间的有效协同.Internet的开放性与动态性,使得对于诚实的、具有可靠服务质量协同实体的选择难度较大,难以确保网构软件的可信性.软件实体间的信任关系对于保障网构软件的可信性具有重要的指导意义.软件实体间的信任关系通常随协作的进行而不断变化,但现有的信任模型缺乏对实体间信任关系的自动形成与更新的支持,从而无法刻画信任关系的动态性.针对该问题,提出了一个适用于网构软件的信任度量及演化模型.该模型不仅对信任关系度量过程和信任信息传递及合并过程进行了合理抽象,而且还提供了一种合理的方法,用于促进协同实体间信任关系的自动形成与更新.该模型有助于解决开放环境下网构软件的可信性问题.     

军队院校课程评估的云模型方法研究

针对当前课程评估存在评价指标主观随意、评价结果形式单一的问题,将云理论引入军队院校课程评估中,提出一种基于云重心评判的课程评估方法。首先建立评估的指标体系,并将各指标值分别用云模型表示,然后确定各指标的权重,计算出加权偏离度,最后将加权偏离度输入评测云发生器得到评估结果。实例验证的结果表明,此方法对课程评估可给出有效的综合评价和理解,具有较高的可信性。