基于攻击图的表述性状态传递安全分析与评估

doi:10.11772/j.issn.1001-9081.2017112756

计算机应用 ›› 2018, Vol. 38 ›› Issue (6): 1653-1657.DOI: 10.11772/j.issn.1001-9081.2017112756

基于攻击图的表述性状态传递安全分析与评估

张游杰¹, 张清萍¹, 吴伟¹, 师哲²

1. 中国电子科技集团公司第三十三研究所中电科华北网络信息安全有限公司, 太原 030032;
2. 南京邮电大学计算机及软件学院, 南京 210023

收稿日期:2017-11-27 修回日期:2018-01-29 出版日期:2018-06-10 发布日期:2018-06-13
通讯作者: 张游杰
作者简介:张游杰(1973-),男,山西交城人,研究员级高级工程师,CCF会员,主要研究方向:计算机信息系统软件、信息系统集成、网络空间安全;张清萍(1974-),女,山西武乡人,高级工程师,主要研究方向:计算机软件工程、信息系统集成、大数据;吴伟(1980-),男,山西大同人,高级工程师,主要研究方向:计算机软件工程、信息系统集成、大数据;师哲(1995-),男,山西太原人,主要研究方向:信息安全。

Security analysis and evaluation of representational state transfer based on attack graph

ZHANG Youjie¹, ZHANG Qingping¹, WU wei¹, SHI Zhe²

1. CETC North-China Cyber Security Company Limited, No. 33 Research Institute of China Electronics Technology Group Corporation, Taiyuan Shanxi 030032, China;
2. School of Computer Science, Nanjing University of Posts and Telecommunications, Naijing Jiangsu 210023, China

Received:2017-11-27 Revised:2018-01-29 Online:2018-06-10 Published:2018-06-13

摘要/Abstract

摘要： 针对表述性状态传递（REST）架构本身安全机制不够完善的问题，提出基于攻击图的REST架构安全分析与评估，利用攻击图实现了对REST架构的安全性量化评估。首先，对REST架构可能受到的攻击进行了预测，据此构造了REST架构攻击图模型，并计算了攻击可能性指标和攻击实现度指标。然后，针对攻击图中的攻击状态及攻击行为，提出了安全防护措施，据此重新构造了REST架构攻击图模型，并计算了攻击可能性指标和攻击实现度指标。经比较，采用安全防护措施后，攻击可能性指标降低至原来的约1/10，攻击实现度指标降低至原来的约1/86。比较结果表明，所构造的攻击图模型能够对REST架构的安全性能进行有效的量化评估。

关键词: 表述性态传递, 攻击图, 安全评估, 攻击可能性, 攻击实现度

Abstract: The security mechanism of REpresentational State Transfer (REST) architecture is not perfect. In order to solve the problem, the security analysis and evaluation of REST architecture based on attack graph was proposed, and the security quantitative evaluation of REST architecture was realized by using attack graph. Firstly, the possible attack of REST architecture was predicted, the REST architecture attack graph model was constructed accordingly, and the attack probability parameter and attack realization parameter were calculated. Then, according to the attack state and attack behavior of attack graph, the security protection measures were proposed. In view of the above, the REST architecture attack graph model was reconstructed, and the attack probability parameter and attack realization parameter were recalculated too. By comparison, after the adoption of security protection measures, the attack possibility parameter has been reduced to about 1/10, and the attack realization parameter has been reduced to about 1/86. The comparison results show that the constructed attack graph can effectively and quantitatively evaluate the security performance of REST architecture.

Key words: REpresentational State Transfer (REST), attack graph, security evaluation, attack probability, attack realization

中图分类号:

TP393.08

张游杰, 张清萍, 吴伟, 师哲. 基于攻击图的表述性状态传递安全分析与评估[J]. 计算机应用, 2018, 38(6): 1653-1657.

ZHANG Youjie, ZHANG Qingping, WU wei, SHI Zhe. Security analysis and evaluation of representational state transfer based on attack graph[J]. Journal of Computer Applications, 2018, 38(6): 1653-1657.

参考文献

[1] FIELDING R T. Architectural styles and the design of network-based software architectures[D]. Irvine:University of California, 2000:76-106.
[2] 百度百科.REST[EB/OL].[2017-10-31].https://baike.baidu.com/item/rest/6330506?fr=aladdin.(Baidu Baike. REST[EB/OL].[2017-10-31]. https://baike.baidu.com/item/rest/6330506?fr=aladdin.)
[3] 程飞.REST的安全性分析与策略研究[D].北京:北京交通大学,2013:17-52.(CHENG F. The Security analysis and strategic research of REST[D]. Beijing:Beijing Jiaotong University, 2013:17-52.)
[4] 程飞,沈波.REST的安全性分析与策略研究[J].铁路计算机应用,2013,22(10):34-36.(CHENG F, SHEN B. Security analysis and strategic research of REST[J]. Railway Computer Application, 2013, 22(10):34-36.)
[5] 韩志杰,段晓阳.基于REST的Web服务安全模型[J].信息化研究,2011,37(6):49-51,56.(HAN Z J, DUAN X Y. Web service security model based on REST[J]. Informatization Research, 2011, 37(6):49-51, 56.)
[6] 王亚玲,王胜,李晓珍,等.基于面向资源架构的Web资源服务安全交互模型设计与实现[J].计算机应用,2015,35(S2):160-163,184.(WANG Y L, WANG S, LI X Z, et al. Design and implementation of Web resource service security interaction model based on resource-oriented architecture[J]. Journal of Computer Applications, 2015, 35(S2):160-163, 184.)
[7] 张玉凤,楼芳,张历.面向软件攻击面的Web应用安全评估模型研究[J].计算机工程与科学,2016,38(1):73-77.(ZHANG Y F, LOU F, ZHANG L. Security assessment of Web applications based on software attack surface[J]. Computer Engineering & Science, 2016, 38(1):73-77.)
[8] 李玲娟,孙光辉.网络攻击图生成算法研究[J].计算机技术与发展,2010,20(10):171-175.(LI L J, SUN G H. Research on algorithm of generating network attack graph[J]. Computer Technology and Development, 2010, 20(10):171-175.)
[9] 王继钢.基于攻击图模型的网络可能入侵估计研究[J].微电子学与计算机,2016,33(2):116-119.(WANG J G. Invade estimation research based on network attack graph mode[J]. Microelectronics & Computer, 2016, 33(2):116-119.)
[10] 程叶霞,姜文,薛质,等.基于攻击图模型的多目标网络安全评估研究[J].计算机研究与发展,2012,49(增刊):23-31.(CHENG Y X, JIANG W, XUE Z, et al. Multi-objective network security evaluation based on attack graph model[J]. Journal of Computer Research and Development, 2012, 49(Suppl.):23-31.)
[11] 陈锋,张怡,苏金树.攻击图的两种形式化分析[J].软件学报,2010,21(4):838-848.(CHEN F, ZHANG Y, SU J S, et al. Two formal analyses of attack graphs[J]. Journal of Software, 2010, 21(4):838-848.)
[12] 吴明峰,张永胜,李园园,等.Web服务攻击技术研究[J].计算机技术与发展,2012,22(1):213-216.(WU M F, ZHANG Y S, LI Y Y, et al. Research of Web services attack technology[J]. Computer Technology and Development, 2012, 22(1):213-216.)
[13] 华悦,徐涛.一种基于SOA的SOAP消息安全传输机制[J].计算机科学,2012,39(6):77-80.(HUA Y, XU T. SOAP message security transport mechanism based on SOA[J]. Computer Science, 2012, 39(6):77-80.)
[14] 高妮,高岭,贺毅岳,等.基于贝叶斯攻击图的最优安全防护策略选择模型[J].计算机工程与应用,2016,52(11):125-130.(GAO N, GAO L, HE Y Y, et al. Optimal security hardening measures selection model based on Bayesian attack graph[J]. Computer Engineering and Applications, 2016, 52(11):125-130.)
[15] 仝青,张铮,张为华,等.拟态防御Web服务器设计与实现[J].软件学报,2017,28(4):883-897.(TONG Q, ZHANG Z, ZHANG W H, et al. Design and implementation of mimic defense Web server[J]. Journal of Software, 2017, 28(4):883-897.)

基于攻击图的表述性状态传递安全分析与评估

Security analysis and evaluation of representational state transfer based on attack graph

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 10

编辑推荐

Metrics

[1]	武文博, 康锐, 李梓. 基于攻击图的信息物理系统信息安全风险评估方法[J]. 计算机应用, 2016, 36(1): 203-206.
[2]	朱梦影徐蕾. 基于攻击图与报警相似性的混合报警关联模型[J]. 计算机应用, 2014, 34(1): 108-112.
[3]	谢丽霞江典盛张利杨宏宇. 漏洞威胁的关联评估方法[J]. 计算机应用, 2012, 32(03): 679-682.
[4]	崔颖章丽娟吴灏. 基于攻击图的渗透测试方案自动生成方法[J]. 计算机应用, 2010, 30(8): 2146-2150.
[5]	黄光球李艳. 基于粗糙图的网络风险评估模型[J]. 计算机应用, 2010, 30(1): 190-195.
[6]	武小年张润莲周胜源. 一种基于实体行为风险评估的信任计算方法[J]. 计算机应用, 2009, 29(05): 1305-1307.
[7]	王伟光丁宏达曾庆凯. 基于形式化描述测试用例生成的研究与实现[J]. 计算机应用, 2008, 28(4): 1018-1022.
[8]	马涛单洪. 无线局域网安全量化评估方法与系统设计研究[J]. 计算机应用, 2008, 28(2): 412-414,.
[9]	王娟张凤荔傅翀陈丽莎. 网络态势感知中的指标体系研究[J]. 计算机应用, 2007, 27(8): 1907-1909.
[10]	任帅慕德俊朱灵波 . 一种基于灰色层次分析法的信息安全评估模型[J]. 计算机应用, 2006, 26(9): 2111-2113.