对系统中固有或潜在的风险进行定性、定量分析,得出系统.docVIP

安全评价也称危险性评价或风险评估，是以实现系统安全为目的，应用安全系统工程原理和工程技术方法，对系统中固有或潜在的风险进行定性、定量分析，得出系统发生危险的可能 本文档由【中文word文档库】提供，转载分发敬请保留本信息； 中文word文档库免费提供海量范文、教育、学习、政策、报告和经济类word文档。 性及其后果严重程度的评价。Safety Assessment, also known as risk assessment or risk assessment, the purpose is to achieve system security, application security systems engineering principles and engineering methods, the system or the potential risks inherent in qualitative and quantitative analysis, the system may be hazardous and its assessment of the severity of the consequences. 传统评价方法存在这样一些问题，除了普遍存在评价过程复杂和难以量化问题以外，由于采用静态的手段，因而不能用于网络安全状态的实时在线评估。Traditional evaluation methods such problems, in addition to common complex and difficult to quantify the evaluation process issues, as a means of static and therefore can not be used for real-time network security online assessment 在当今网络飞速发展的情况下，网络入侵行为和越权行为泛滥的今天，我们需要一个新的能够对网络安全风险进行实时的、动态的评估方法。In the case of the rapid development of todays network, the network intrusion and spread of ultra vires acts of today, we need a new network security risks can be real-time, dynamic assessment methods. 另外它又能够整体的、不孤立的对整个网络状况作出判断。In addition it can be whole, not isolated to determine the state of the entire network. 为此本文提出了一种新的基于免疫的网络安全实时定量风险评估方法。This paper proposes a new immune-based quantitative real-time network security risk assessment methods. 传统的网络风险评估手段缺乏有效的对网络安全风险进行实时感知机制，从而导致系统只能依据历史经验来确定当前系统的防御策略，对系统正在遭受攻击时的风险缺乏实时、定量的计算手段，不能依据网络环境威胁的变化，主动调整整个系统的防御策略。Traditional network means a lack of effective risk assessment of security risks in real-time network awareness mechanism, causing the system can only be based on historical experience to determine the current system of defense strategy, the system is the risk of attack on the lack of real-time, quantitative calculation means threats can not be based on changes in the network environment, the initiative to adjust the entire system of defense strategy. 而现有的网络攻击分类方法大多是先使用小波分析、统计分析等手段进行分析，与已知的某类异常表征信息（结合端口、网络协议等信息） 逐个进行对比。The existing classificatio