| At present, Computer Network faces with a large number of security risks and threats. However, the lack of network security theory leads to the low efficiency and poor standard. So it is necessary to build a scitific and high efficiency model of security evaluation of information system. At present most of the security assessment on the risk assessment, which can not be based on the network security equipment massive, multi-dimensional, a wide variety of security information to make rapid, timely response.Network security posture assessment and comprehensive network security equipment from different time and spatial information. Accuracy of safety management system to grasp the situation and the trend of network security, and provide support for decision-making. It is the operation of the network macro reaction of a network of past and current conditions and forecast the next stage may be the network status. It intuitive operation of the performance of the network, greatly simplifying network administrator workload.Overseas, the assessment of the security situation in the network already have a solid foundation is in the study stage, but in the country it is only at the initial stage.This paper describes a computer network security assessment of the status quo, principles, main contents and common network security assessment methods, and introduced the network and information security evaluation criteria. In this paper, the qualitative evaluation of the network, uncertainty factors more features, the network of military situational awareness theory, the network security posture assessment of the concept of the network structure to assess the security situation in the process model. On this basis, a classification based on offensive and defensive attack against the environment of network security posture quantitative evaluation model. The model in-depth analysis of the factors affecting the security situation on the basis of the traditional risk assessment and network protection status, assets environmental factors such as security features combine extracted a number of quantitative indicators, in accordance with the types of attacks carried out in the security situation assessment. In the process, this paper presents the network security posture of the concept of information access channel model, the model is given in the various indicators of the need to quantify, to calculated values of network security posture, the paper also constructed a real attack Situation Assessment algorithm and the potential threat situation assessment algorithm is presented comprehensive situation assessment algorithm. Finally, the model and algorithm, through experimental results show that this method can provide for the safety management is more objective, informative situation information to make it more clear grasp of the security situation in the entire network.In the study period, I practised in Machinery Institute of Science &Technology and Tsinghua IT Co.,Ltd. During the internship, I participated in a large number of research projects and conducted a lot of the actual work,which improved my research capability. Especially in Machinery Institute of Science &Technology, I participated in the "data sharing project"of national 973 plan and maintained and improved the management Information System for Ministry of Science and Technology, which benefit me most. And the development of "Document patron saint" in Tsinghua IT gave me the first chance to develop a security product, I think these experiences play a positive role in writing this paper. |
PDF Full Text Request