计算机科学

计算机科学 ›› 2023, Vol. 50 ›› Issue (11A): 230300144-6.doi: 10.11896/jsjkx.230300144

• 信息安全 • 上一篇    下一篇

基于综合赋权的网络安全等级灰色评价方法

秦富童, 袁学军, 周超, 樊永文   

  1. 中国人民解放军63891部队 河南 洛阳 471000
  • 发布日期:2023-11-09
  • 通讯作者: 秦富童(ftqin@163.com)

Grey Evaluation Method of Network Security Grade Based on Comprehensive Weighting

QIN Futong, YUAN Xuejun, ZHOU Chao, FAN Yongwen   

  1. Unit.No.63891,Luoyang,Henan 471000,China
  • Published:2023-11-09
  • About author:QIN Futong,born in 1985,master.His main research interests include information security and risk analysis.

PDF (PC)

463

摘要: 网络安全等级评价是信息系统等级保护的关键,进行网络安全等级评价需要依据网络安全等级保护的国家标准或行业标准建立指标体系,并设置指标权重,选择合适的模型进行综合评判。基于层次分析法和粗糙集理论对指标进行综合赋权,消除了指标权重设置的主观性和样本数据的突发性。以灰色关联度为测度去评价指标数列与目标数列的关联程度,更能体现信息系统实际网络安全水平与评价标准之间的符合度。实例分析表明,该方法能够有效地对网络安全等级进行综合评价。

关键词: 综合赋权, 层次分析法, 粗糙集, 灰色关联度分析, 网络安全等级评价

Abstract: Network security grade evaluation is the key of information system grade protection,to evaluate the grade of network security,it is necessary to establish an index system according to the national or industrial standards of network security grade protection,set index weights,and select an appropriate model for comprehensive evaluation.Based on the analytic hierarchy process and rough set theory,the index is comprehensively weighted,which overcomes the subjectivity of index weight setting and the burst of sample data.The correlation degree of the number series and the target sequence is measured by the grey correlation degree,and the coincidence degree between the actual network security level and the evaluation standard is more reflected.The example shows that the proposed method can effectively evaluate the network security grade.

Key words: Comprehensive weighting, Analytic hierarchy process, Rough set, Grey relational analysis, Network security grade evaluation

中图分类号: 

  • TP393
[1]SHEN C X,ZHANG P,LI H,et al.Principles and Practices of Classified Protection of Information System Security[M].Beijing,Posts and Telecommunications Press,2017.
[2]WANG H M,WANG Y J,ZHANG Y R,et al.Research of Network Attack Effect Evaluating Based on Rough Set[J].Application Research of Computers,2007,24(6):118-120.
[3]JIA C Q,FENG D Q.Security assessment for industrial control systems based on fuzzy analytic hierarchy process[J].Journal of Zhejiang University(Engineering Science),2016,50(4):7.
[4]SONG C.Research on Network Attack effect Evaluation Model based on Rough and fuzzy comprehensive evaluation[D].Beijing:Beijing University of Posts and Telecommunications,2021.
[5]XU H Z,LIU S T FENG L W.Operational Effectiveness Evaluation of Shipborne Radar Reconnaissance System Based on Vague Set and Combined Weighting[J].Journal of Detection and Control,2022,44(3):97-101,109.
[6]DENG J L.Fundamentals of Grey Theory[M].Wuhan,Huazhong University of Science and Technology Press,2002.
[7]State Administration for Market Regulation,StandardizationAdministration of the People's Republic of China.Information security technology:Baseline for Classified Protection of Cybersecurity:GB/T22239-2019[S].Beijing,Standards Press of China,2019.
[8]ZHANG S Y,LI D J,YANG N D.Grey Comprehensive Evaluation on Value Added Potential of Venture Business Based on Combination Weighting[J].Control and Decision,2008,23(10),1122-1128.
[9]LI H J,XU T X.Missile Condition Evaluation and DecisionBased on Improved Grey Relational Analysis with Combination Weighting[J].Modern Defence Technology,2021,49(4):91-98,114.
[10]JIN B Y,LIU Z,QIN J K.Two-stage Real-time Track Correlation Algorithm Based on Gray Correlation [J].Acta Armamentarii,2020,41(7):1330-1338.
Viewed
Full text


Abstract

Cited
  Shared   
  Discussed   
No Suggested Reading articles found!
渝ICP备16013121号-4
地址:重庆市渝北区洪湖西路18号    邮编:401121  
电话:023-63500828(编辑部) 023-67039612(会议/专题) 023-67039623(财务/发票)
E-mail:jsjkx12@163.com
本系统由北京玛格泰克科技发展有限公司设计开发