【作者】 刘金亮；

【导师】 谭国真；

【作者基本信息】 大连理工大学 ， 计算机应用技术， 2009， 硕士

【摘要】 随着现代社会日益趋于网络信息化,网络信息系统在日常生活中扮演着越来越重要的作用。虽然各种传统的安全措施提高了网络信息系统的安全性,但各种攻击、故障和意外事件还是会不断的发生。可生存性理论的提出可以帮助系统解决在受到威胁后,依然可以维持关键服务和基本属性的难题。可生存性是网络信息系统在安全性之上必需考虑的问题,而如何评价和提高系统的可生存性已成为一个重要的研究问题。可生存性评估的目的是对系统进行分析,评估其可生存性,衡量系统在不安全环境中提供服务的能力,提供系统的可生存性信息及增强系统可生存性的推荐策略。本文首先介绍了可生存性以及可生存性评估的基本概念,包括可生存性定义,可生存性与相关概念的区别和联系、系统可生存性评估方法以及未来可生存性研究趋势等,然后给出一种完整的对信息系统的可生存性进行量化评估的框架。该框架可大致分为系统可生存性需求分析、系统功能分解、可生存性测试、量化分析以及生成结果分析报告等阶段。重点介绍了一种侧重于信息系统的实时响应能力的可生存性量化方法。利用时间自动机模型在描述时间约束方面的优势,建立系统的时间自动机模型,并通过将时间变量离散化,使时间自动机中的无穷状态转化为有限状态,之后结合K路径算法对系统关键服务的实时响应能力进行量化计算,从而实现对信息系统的可生存性评估分析。通过仿真实验,验证了本文给出的可生存性评估方法的可行性和有效性。最后,对本文的工作进行了总结,并指出了下一步的研究计划。更多还原

【Abstract】 Along with the informatization of the modern society,network information system plays an important role in the daily life.The security of the network information system has been improved by the traditional security measures,but all kinds of attacks,failures and emergencies incessant occurred.Survivability can keep the essential services and basic attributes of the system after being attacked.It is must for survivability to consider problems about the security of the network information system and it is a very important research problem of how to evaluate and improve the survivability of the system.The purpose of the evaluation of the survivability is to analyze the system,evaluate its survivability,measure the system’s ability of providing services in the unsafe environment,provide the information of survivability of the system and improve the survivability of the system.Firstly,some concepts for the survivability and survivability evaluation are introduced such as the definition of the survivability,the difference and relationship of the related concepts of survivability,the method of evaluating the system’s survivability and the trend of research trend,then proposes a framework to evaluate the survivability of the information system.The framework includes the concepts of the survivability of the system,requirement analysis of the survivability,measurement of the survivability,quantitative analysis and generate the analysis report,mainly introduced a survivability quantization method.With the advantage of time automaton model for describing time constraints,time automaton model for the system is build and the transferring from infinite states to finite states is done by discretizing the time variable,then the real time response ability combining with K path algorithm for the essential services to evaluate the survivability of the information system is quantized.The feasibility and effectiveness for the given evaluating method are verified by simulation.Finally,the work in this paper is summarized,and research plans for next step is also pointed out.更多还原