Font Size: a A A

Research On Survivability Analysis For Network Information Systems

Posted on:2007-12-05Degree:DoctorType:Dissertation
Country:ChinaCandidate:X G LinFull Text:PDF
GTID:1118360182493820Subject:Computer Science and Technology
Abstract/Summary:PDF Full Text Request
As we turn into informationa society, information systems are more important for people's normal life. Though traditional security can improve information system's security, kinds of intrusions remain as before. Then, we must consider whether system can provide satisfied service when they have been intruded, and this is called survivability. In the research of survivability, there are two major fields: survivability design and survivability analysis, and the latter mostly study how to evaluate system survivability, whose purpose is to provide an evaluation standard for realizing survivability certification.The history of researching information system's survivability is not long, and the research result is far from mature, which can be concluded as following: the definition of survivability was not unified, and most researches are on qualitative analysis and theoretical quantificative analysis which is far from being applied in practice.This thesis focuses on quantificative analysis framework of information system, which is composed of the following aspects:Firstly, based on comparing survivability with correlative concept such as dependability, fault tolerance and QoS, the definition of information system survivability is gived by formalization based on the relations between sytem and environment.Secondly, as information system is an open complex system, the entire problem of survability analysis is divided into three subproblmes: system, environment and analysis process, each of whose models is provided. The three models fully consider the feasibility of practice: system components are combined through system service which avoids system's complex structure;environment is described by events degradation and combination of differentevents;Hierarchical structure of system state is provided, which avoids definition of system state and analysis of state transitions in the traditional system state-based analysis model.Thirdly, a framework of information system survivability analysis is provided, which is named SAF-NIS. According to the analysis model, the entire analysis process is composed of seven steps in this framework, which can be concluded into four phases: system definition, environment definition, survivability test and result analysis. Comparing with SNA method, this framework ultimately realizes quantificative analysis of survivability, and the event database in the framework makes the analysis more simple and fair. For the key issue of the framework: quantificative analysis, a hierarchical computation process is provided, and survivability is computed through "3R+A" (resistance, recognition, recovery and adaption), which contribute to the survivability degradation in the future.Fourthly, based on the concept of event scenario in survivability analysis, event is a part of event scenario, and a target-intention based hierarchical classification method is present. This classification method has the advantage of good expansibility and quickly locating event, for the refined process of event target and multidimensional space of event classification. Moreover, sevent quantificative indexes are present to grade events, and an event database is developed to collect normal events through classification and degradation, which is compatible with CVE and other vulnerability database.Finally, a case study is provided to demonstrate the entire process of survivability analysis. Furthermore, a prototype analysis platform is described which is developed to unify the entire analysis process, decrease the analysis workload and interference of human.
Keywords/Search Tags:information system, survivability, security, analysis model, quanlitative analysis, analysis framework, event
PDF Full Text Request
Related items