计算机工程2011,Vol.37Issue(10):131-133,136,4.DOI:10.3969/j.issn.1000-3428.2011.10.044
基于攻击图的扩充Petri网攻击模型
Expanded Petri Net Attack Model Based on Attack Graph
摘要
Abstract
According to the possibility that an attacker can be detected during a network attack, an attack graph is transferred into a Petri Net,which is then expanded into an Expanded Petri Net(EPN). Attack costs of places are used to solve the optimum attach path and the total attack cost of an network attack; the concept of maximum flow is used defined the maximum burdening ability, and the concept of attack feasibility is put forward from the angle of two-dimensional analysis of network attack. The attack graph-based expanded Petri net attack net is represented, the ergodicity of the model's related algorithms is assured by the EPN inference rules. When there are many arcs in an original attack graph, the complexity of the algorithm is lower than that of the Dijkstra algorithm. More is the paths among attack launching points and attack goals in an attack graph, more is efficient the algorithms: Results of a testing case show that the model can make a comprehensive analysis to network attack.关键词
攻击模型/攻击图/Petri网/攻击路径/攻击成本Key words
attack model/ attack graph/ Petri net/ attack path/ attack cost分类
信息技术与安全科学引用本文复制引用
黄光球,程凯歌..基于攻击图的扩充Petri网攻击模型[J].计算机工程,2011,37(10):131-133,136,4.基金项目
国家重点学科培育基金资助项目(200808265) (200808265)
