论文部分内容阅读
为了有效地对网络安全策略的正确性进行验证,提出了一种基于安全保障能力的网络安全策略评估模型.在安全域的划分和策略建立的基础上,通过对安全策略各特征属性之间关系的分析,建立了其安全防御方式对策略应用对象的保护因子和策略应用对象对信息安全属性的敏感因子,进而获得策略的安全因子值,达到评估策略安全保障能力的目的.结果表明,该模型能有效地反映安全策略的安全保障能力,为网络安全策略的评估提供了一种新的解决途径.
In order to validate the correctness of the network security strategy, a network security policy evaluation model based on security assurance capability is proposed.On the basis of security domain division and policy establishment, , We set up the security factor of the security strategy and the sensitivity factor of the application object to the information security attribute, and then obtain the security factor value of the strategy to reach the goal of assessing the security of the strategy.The results show that the model Which can effectively reflect the security assurance ability of the security strategy and provide a new solution for the assessment of the network security strategy.