449第40卷第6期2023年6月真机仿算文章编号:1006-9348(2023)06-0449-04基于证据推理的无线网络安全态势量化评估徐健,冯宝龙(东北农业大学,黑龙江哈尔滨150038)摘要:为明确人侵攻击对无线网络产生的不良影响,精准呈现网络安全态势走向,设计一种基于证据推理规则的无线网络安全态势量化评估方法。围绕保密性、完整性、可靠性、可用性原则,创建无线网络安全态势评估指标体系。利用模糊调度策略,构建网络安全态势数据采集模型,获取网络安全态势特征序列,代人告警质量因子,从告警频率、告警重要水平和告警严重水平三方面实现入侵攻击检测;全方位考虑正常行为和人侵攻击行为差异,将网络资源要素变化作为评估核心,使用证据推理规则计算无线网络安全等级,量化计算得到最终的安全态势值,展现网络安全变化情况。实验结果表明,所提方法安全态势评估结果准确、效率高,具有极强的适用性,能够为保证无线网络安全运行提供借鉴思路。关键词:人侵攻击;无线网络;安全态势;量化评估;证据推理规则中图分类号:TP393文献标识码:BQuantitativeEvaluationofWirelessNetworkSecuritySituationBasedonEvidentialReasoningXUJian,FENGBao-long(NortheastAgriculturalUniversity,HarbinHeilongjiang150038,China)ABSTRACT:Inordertoclarifytheadverseeffectsofintrusionattackonwirelessnetworksystemandaccuratelypresentthetrendofnetworksecurity,aquantitativeevaluationmethodforwirelessnetworksecuritysituationwasde-signedbasedonevidentialreasoningrules.Basedontheprinciplesofconfidentiality,integrity,reliabilityandavaila-bility,anevaluationsystemwasconstructedforwirelessnetworksecuritysituation.Andthen,thefuzzyschedulingstrategywasadoptedtoconstructamodelforcollectingnetworksecuritysituationdataandthustoobtainasequenceofnetworksecuritysituationfeatures.Meanwhile,thequalityfactorofalertswasintroduced,sothatintrusionattackdetectioncanbecompletedfromtheaspectsofalarmfrequency,alarmimportancelevelandalarmseveritylevel.Mo-reover,thedifferencebetweennormalbehaviorandintrusionattackbehaviorwasconsideredinanall-roundway,andthechangeofnetworkresourceelementswastakenasthecoreofassessmentatthesame.Finally,evidentialreasoningruleswereadoptedtocalculatethesecuritylevelofwireless...
