关键词: 网络安全, 面向对象, 时间Petri网, 脆弱性关联模型, 威胁度

Abstract: To solve the problems in network vulnerability model and threat analysis method, the paper proposed a network vulnerability relation model based on extended time Petri net. By introducing complexity and harmfulness of network attack, and defining each index's quantization, the generation algorithm of vulnerability relation model was proposed. Combined with network threat definition, a non-target oriented network threat analysis method based on improved Dijkstra algorithm was presented. The model was suitable for describing complicated network attack, which could reduce the scale of state space effectively. The experiment proves the correctness and performance of vulnerability relation model, and the threat analysis method based on the model is more reasonable and effective.

Key words: network security, object-oriented, time Petri net, vulnerability relation model, threat