性评价或风险评估,是以实现系统安全为目的,应用安全系.docVIP

安全评价也称危险性评价或风险，是以实现系统安全为目的，应用安全系统工程原理和工程技术方法，对系统中固有或潜在的风险进行定性、定量分析，得出系统发生危险的可能性及其后果严重程度的评价。Safety Assessment, also known as hazard assessment or risk assessment, with the purpose of achieving system security, applies the security system engineering principles and engineering methods to do qualitative and quantitative analysis on the system inherent and potential risks, then obtaining assessments on the probability of system risk occurrence and the severity of the consequences. 传统评价方法存在这样一些问题，除了普遍存在评价过程复杂和难以量化问题以外，由于采用静态的手段，因而不能用于网络安全状态的实时在线评估。Traditional evaluation method has such problems that, in addition to the commonly existing complexity and quantification difficulty in the evaluation process, failure to be used for real-time online assessment of network security because of applying static method. 在当今网络飞速发展的情况下，网络入侵行为和越权行为泛滥的今天，我们需要一个新的能够对网络进行实时的、动态的评估方法。这种方法一方面能够迅速的、动态的、在线的作出网络风险评；另外它又能够整体的、不孤立的对整个网络状况作出判断。为此本文提出一种新的基于免疫的网络风险评方法。 todays network rapid development, network intrusion and ultra vires spread unchecked. We need a new assessment method that can do real-time and dynamic supervision on network security risks. On one hand, this method can be rapid, dynamic and on-line to assess network risks; on the other hand, it can determine the state of the entire network integrally and not isolatedly. Therefore, this paper proposes a new immune-based quantitative real-time network security risk assessment method. 传统的网络风险评估手段缺乏有效的对网络安全风险进行实时感知机制，从而导致系统只能依据历史经验来确定当前系统的防御策略，对系统正在遭受攻击时的风险缺乏实时、定量的计算手段，不能依据网络环境威胁的变化，主动调整整个系统的防御策略。当其发生大规模网络入侵时，经常导致系统崩溃，造成巨大的灾难，已不能防范日益严重的网络安全威胁，适应性较差。 Traditional network risk assessment method lacks effective real-time network awareness mechanism of security risks, causing that the system can only determine the current system defense strategy based on historical experience, and that when the system being attacked there is a lack of real-time quantitative risk calculation means, unable to initiatively adjust the entire system defense strate