| 基于模糊信息融合的漏洞评估方法 |
| |
| 引用本文: | 陈秀真,郑庆华,管晓宏,冯力. 基于模糊信息融合的漏洞评估方法[J]. 小型微型计算机系统, 2004, 25(8): 1424-1427 |
| |
| 作者姓名: | 陈秀真 郑庆华 管晓宏 冯力 |
| |
| 作者单位: | 西安交通大学,网络化系统与信息安全研究中心,制造系统国家重点实验室,陕西,西安,710049 |
| |
| 基金项目: | 国家863计划(2001AA140213)资助;国家杰出青年基金(6970025)资助;国家自然科学基金(60243001)资助. |
| |
| 摘 要: | 利用漏洞扫描器及入侵检测系统的统计结果两方面信息 ,提出了应用模糊信息融合对安全漏洞进行定性评估的方法 .首先介绍了此方法的基本原理 ,然后介绍了该方法在安全漏洞评估中的具体实现 .此方法与基于专家经验的评估方法相比 ,具有准确度高、计算速度快的优点 .实验表明 ,该方法是可行、有效的
|
| 关 键 词: | 漏洞评估 定性评估 模糊信息融合 漏洞扫描器 入侵检测系统 |
| 文章编号: | 1000-1220(2004)08-1424-04 |
Method of Vulnerability Evaluation Based on Fuzzy Data Fusion |
| |
| CHEN Xiu zhen,ZHENG Qing hua,GUAN Xiao hong,FENG Li. Method of Vulnerability Evaluation Based on Fuzzy Data Fusion[J]. Mini-micro Systems, 2004, 25(8): 1424-1427 |
| |
| Authors: | CHEN Xiu zhen ZHENG Qing hua GUAN Xiao hong FENG Li |
| |
| Abstract: | This paper made use of statistical results of vulnerability scanner and intrusion detection systems and presented method of qualitative evaluation of security vulnerability based on fuzzy data fusion. First, we outlined the basic principle of this method. Then, this paper presented how this method applied to the evaluation of security vulnerability. Compared with the method based on expert experience, this method has high degree of precision and fast computation speed. The experiments showed that this method is practical and effective. |
| |
| Keywords: | vulnerability evaluation qualitative evaluation fuzzy data fusion vulnerability scanner intrusion detection system |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
