[1]回赛男,胡 俊.一种面向等保系统的轻量级攻防模拟方法[J].计算机技术与发展,2022,32(08):96-102.[doi:10. 3969 / j. issn. 1673-629X. 2022. 08. 016]
 HUI Sai-nan,HU Jun.A Lightweight Attack and Defense Simulation Method for Grade Protection System[J].,2022,32(08):96-102.[doi:10. 3969 / j. issn. 1673-629X. 2022. 08. 016]
点击复制

一种面向等保系统的轻量级攻防模拟方法()
分享到:

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
32
期数:
2022年08期
页码:
96-102
栏目:
网络与安全
出版日期:
2022-08-10

文章信息/Info

Title:
A Lightweight Attack and Defense Simulation Method for Grade Protection System
文章编号:
1673-629X(2022)08-0096-07
作者:
回赛男胡 俊
北京工业大学 信息学部,北京 100124
Author(s):
HUI Sai-nanHU Jun
Faculty of Information,Beijing University of Technology,Beijing 100124,China
关键词:
等级保护轻量级应用场景攻击模拟防御模拟
Keywords:
grade protectionlightweightapplication scenarioattack simulationdefense simulation
分类号:
TP309
DOI:
10. 3969 / j. issn. 1673-629X. 2022. 08. 016
摘要:
等级保护制度是国内网络安全领域的基本制度,需要对等保安全保障方案防护能力进行分析评估,要求安全保障机制形成体系,满足“ 可信、可控、可管冶的要求。 在等级保护信息系统的特点和能力要求下,针对信息系统时刻面临的网络安全问题,提出了一种以业务流程为保护对象,通过轻量级软件重建应用场景,在应用场景下,从安全属性和信息流角度模拟攻击行为和部署纵深防御机制,通过安全攻防的推演来判断系统安全防护能力的安全分析方法。 该方法针对等级保护对网络系统安全防御的要求提出,可以低成本模拟多种应用场景,分析应用的安全性并尝试不同安全保障改进方案的效果。 最后,通过工业控制系统震网病毒应用实例说明了该方法的实施方式和验证效果。
Abstract:
Graded protection system is the basic system of Cyberspace Security in China. It needs to analyze and evaluate the protectioncapability of peer-to-peer protection security scheme,and requires the security mechanism to form a system to meet the requirements of "credibility, controllability and manageability" . Under the characteristics and capability requirements of graded protection informationsystem,aiming at the network security problems faced by information system at all times,a security analysis method is proposed,whichtakes the business process as the protection object,reconstructs the application scenario through lightweight software,simulates the attackbehavior and deploys the defense in depth mechanism from the perspective of security attributes and information flow,and judges thesystem security protection capability through the deduction of security attack and defense. This method is proposed in response to the requirements of graded protection for network system security defense,which can simulate a variety of application scenarios at low cost,analyze the security of the application and try the effect of different security improvement schemes. Finally,an application example ofStuxnet virus in an industrial control system is used to illustrate the implementation and verification effect? ?of the method.

相似文献/References:

[1]衡友跃 刘锋 仲红.基于J2EE轻量级框架的电子商务研究[J].计算机技术与发展,2009,(10):106.
 HF,NG You-yue,LIU Feng,et al.Research on E - business Based on Lightweight J2EE Framework[J].,2009,(08):106.
[2]朱平付 季桂树 尹辉.基于轻量级J2EE架构的一种持久层设计[J].计算机技术与发展,2008,(06):94.
 ZHU Ping-fu,JI Gui-shu,YIN Hui.A Solution of Data Persistence Based on Lightweight J2EE Framework[J].,2008,(08):94.
[3]严坤 倪桂强 姜劲松 冯钦.基于AOM和插件模式的轻量级框架研究[J].计算机技术与发展,2010,(10):54.
 YAN Kun,NI Gui-qiang,JIANG Jin-song,et al.Research of Lightweight Framework Based on AOM and Plug-in Pattern[J].,2010,(08):54.
[4]丁苍峰.轻量级工作流管理系统架构设计[J].计算机技术与发展,2011,(06):36.
 DING Cang-feng.Design of Lightweight Workflow Management System Framework[J].,2011,(08):36.
[5]朱 鹏,陈 虎*,李 科,等.一种轻量级的多尺度特征人脸检测方法[J].计算机技术与发展,2020,30(04):1.[doi:10. 3969 / j. issn. 1673-629X. 2020. 04. 001]
 ZHU Peng,CHEN Hu*,LI Ke,et al.A Face Detection Method with Lightweight and Multi-scale Feature[J].,2020,30(08):1.[doi:10. 3969 / j. issn. 1673-629X. 2020. 04. 001]
[6]王 晨.轻量级的仲裁半量子秘密共享[J].计算机技术与发展,2021,31(10):111.[doi:10. 3969 / j. issn. 1673-629X. 2021. 10. 019]
 WANG Chen.Lightweight Mediated Semi-quantum Secret Sharing[J].,2021,31(08):111.[doi:10. 3969 / j. issn. 1673-629X. 2021. 10. 019]
[7]王 成,潘 峰,杨建朝,等.互联网医疗信息系统等保建设研究与建议[J].计算机技术与发展,2021,31(增刊):91.[doi:10. 3969 / j. issn. 1673-629X. 2021. S. 018]
 WANG Cheng,PAN Feng,YANG Jian-chao,et al.Research and Suggestion of Network Security Level Protection Construction of Internet Healthcare Information System[J].,2021,31(08):91.[doi:10. 3969 / j. issn. 1673-629X. 2021. S. 018]
[8]束 阳,李汪根,高 坤,等.基于轻量级语义信息融合的动作识别方法[J].计算机技术与发展,2023,33(06):181.[doi:10. 3969 / j. issn. 1673-629X. 2023. 06. 027]
 SHU Yang,LI Wang-gen,GAO Kun,et al.Action Recognition Method Based on Lightweight Semantic Information Fusion[J].,2023,33(08):181.[doi:10. 3969 / j. issn. 1673-629X. 2023. 06. 027]

更新日期/Last Update: 2022-08-10