Research On Network Risk Defense Strategy Based On Attack And Defense Graph

The prosperity of the network has brought great convenience to people's lives,which has enabled the rapid development of society,but it has also caused network security problems.This topic uses the network risk assessment theory,combined with the structural characteristics of the network system and the behavior characteristics of the attacker,modeling and analyzing the attack and defense map generation method,evaluating the network risk and defense cost,and formulating the best defense strategy selection method.main tasks as follows:Firstly,the traditional network risk assessment process is analyzed,and a network risk assessment method based on attack and defense map is proposed.The method comprehensively considers the shortcomings of the previous model analysis methods,develops the attack and defense map generation process,analyzes the CVSS scoring system,and quantifies the vulnerability information in the network.It can effectively avoid the problem that the scale of the attack and defense map is uncontrollable and the vulnerability analysis is not timely.Secondly,the attack graph is only analyzed from the angle of the attacker,and the defender factor is not considered.This paper proposes an attack and defense graph modeling method based on defensive behavior.According to the idea of privilege elevation,this method analyzes the attacker's attack behavior,and qualitatively represents the defensive behavior information and joins it as a node in the attack and defense map.On the basis of modeling analysis,the attack and defense map generation algorithm is proposed,which can effectively simplify the attack scale,comprehensively reflect the information of offensive and defensive behaviors,and facilitate managers to make reasonable security decisions.Thirdly,due to the lack of consideration of defensive behavior in current network risk assessment,a defensive strategy research method based on offensive and defensive maps is proposed to evaluate network security.This method uses the PageRank algorithm to calculate the attack risk of the network,and quantifies the cost of taking the defense behavior through the basic metric group index in the vulnerability scoring system.On thisbasis,the global attack path is constructed to calculate the attack risk and the defense cost,and the design evaluation method selects the best defense strategy to protect the network security.Finally,the experiment in this paper is implemented in the Java language on the Windows platform.Based on the network topology environment,the attack and defense map is constructed,the network risk is evaluated,and the best defense strategy is selected to verify the validity and correctness of the proposed method.