基于 SIR 模型的无线网络安全威胁态势量化评估算法

吉林大学学报(信息科学版) ›› 2024, Vol. 42 ›› Issue (4): 710-716.

基于 SIR 模型的无线网络安全威胁态势量化评估算法

胡斌, 马平, 王越, 杨浩

西北核技术研究所五室, 西安 710024

收稿日期:2023-06-20 出版日期:2024-07-22 发布日期:2024-07-22
作者简介: 胡斌(1980— ), 男, 河南汝南人, 西北核技术研究所工程师, 主要从事计算机科学与技术研究, ( Tel) 86-17392819317 ( E-mail)568908427@ qq. com。
基金资助:
陕西省自然科学研究计划基金资助项目( DLBD2020CG615-BZ)

Quantitative Assessment Algorithm for Security Threat Situation of Wireless Network Based on SIR Model

HU Bin, MA Ping, WANG Yue, YANG Hao

Five Rooms, Northwest Institute of Nuclear Technology, Xian 710024, China

Received:2023-06-20 Online:2024-07-22 Published:2024-07-22

摘要/Abstract

摘要：

为确保网络安全, 及时掌控安全状况, 以易感者、感染者和免疫者( SIR: Susceptible Infected Recovered)模型为基础, 面向无线网络提出安全威胁态势量化评估算法。选取资产价值性,系统脆弱性与威胁性作为量化评估指标, 分别根据信息资产的安全属性与主机劣势的 Agent 检测值, 得到价值性量化值与脆弱性量化值。基于病毒的传播特性, 改进 SIR 模型, 分析病毒传播特征, 获得威胁性量化值。结合 3 个指标量化值, 建立无线网络安全威胁态势的量化评估算法, 用所得态势值评估网络安全状况。测试结果表明, 该方法评估出的主机与整个无线网络的安全威胁态势值均与期望值高度拟合, 且评估时间更短。所提算法具备良好的评估准确性与实时性, 能为网络安全状况分析提供有效的数据依据, 及时给予管理员可靠的决策支持。

关键词: SIR 模型, 无线网络, SIR 改进模型, 病毒传播特征, 安全威胁态势

Abstract: To ensure network security and timely control the security situation, a security threat quantification assessment algorithm is proposed for wireless networks based on susceptible, infected, and susceptible infected recovered models. Asset value, system vulnerability, and threat are selected as quantitative evaluation indicators. Value and vulnerability quantification values are obtained based on the security attributes of information assets and the agent detection values of host weaknesses, respectively. Based on the propagation characteristics of the virus, the SIR ( Susceptible Infected Recovered) model is improved, the propagation characteristics of the virus are analyzed. A quantitative evaluation algorithm for wireless network security threat situation is established based on the quantification of three indicators, and the obtained situation values is used to evaluate the network security situation. The test results show that the security threat situation values of the host and the entire wireless network evaluated by this method are highly fitted with the expected values, and the evaluation time is shorter. It can be seen that the proposed algorithm has good evaluation accuracy and real-time performance, which can provide effective data basis for network security analysis and provide reliable decision- making support to administrators in a timely manner.

Key words: susceptible infected recovered ( SIR ) model, wireless network, SIR improvement model, characteristics of virus transmission, security threat situation

中图分类号:

TP393

胡斌, 马平, 王越, 杨浩. 基于 SIR 模型的无线网络安全威胁态势量化评估算法[J]. 吉林大学学报(信息科学版), 2024, 42(4): 710-716.

HU Bin, MA Ping, WANG Yue, YANG Hao. Quantitative Assessment Algorithm for Security Threat Situation of Wireless Network Based on SIR Model[J]. Journal of Jilin University (Information Science Edition), 2024, 42(4): 710-716.

[1]	葛学东. 基于格网系的无线网络多信道信息融合方法[J]. 吉林大学学报(信息科学版), 2019, 37(6): 617-622.
[2]	李宏磊, 丛玉良, 任柏寒. 基于隐朴素贝叶斯分类方法的垂直切换算法[J]. 吉林大学学报(信息科学版), 2019, 37(3): 238-344.
[3]	谢冰, 李莉, 韩力, 胡贵军. 基于CC-RB 算法的认知无线网络信道分配研究[J]. 吉林大学学报(信息科学版), 2016, 34(1): 16-22.
[4]	张怀柱, 姚林林, 沈扬, 姚欣宜. 基于树莓派的农作物低空观测系统设计[J]. 吉林大学学报(信息科学版), 2015, 33(6): 625-.
[5]	杨晓萍, 王瑞, 狄特, 牛超. 对TCP Westwood算法的改进研究[J]. 吉林大学学报(信息科学版), 2015, 33(3): 223-229.
[6]	董立岩, 隋鹏, 辛晓华, 田耕. 基于Android的智能家居终端控制系统[J]. 吉林大学学报(信息科学版), 2014, 32(3): 303-307.
[7]	李志军, 孙波, 赵颖, 宋振, 董浩. 基于动态门限的异构无线网络协作节能算法[J]. 吉林大学学报(信息科学版), 2014, 32(1): 20-28.