先应秘密共享系统安全性的动态分析和评估

先应秘密共享系统安全性的动态分析和评估

史庭俊1,2;王超1;马建峰1

(1. 西安电子科技大学计算机网络与信息安全教育部重点实验室, 陕西西安 710071;
2. 扬州大学信息工程学院, 江苏扬州 225009)

收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2004-12-20 发布日期:2004-12-20

Dynamic analysis and evaluation of the security of a proactive secret sharing system

SHI Ting-jun1,2;WANG Chao1;MA Jian-feng1

(1. Ministry of Education Key Lab. of Computer Network and Information Security, Xidian Univ., Xi'an 710071, China;
2. Inst. of Information Technology, Yangzhou Univ., Yangzhou 225009, China)

Received:1900-01-01 Revised:1900-01-01 Online:2004-12-20 Published:2004-12-20

摘要/Abstract

摘要： 针对目前先应秘密共享系统基于经验的设计和系统管理问题，采用随机过程的建模技术，建立了系统的安全性与配置参数之间的定量关系．将先应秘密共享系统中的服务器组由初始安全态向失效态转移的渐进过程抽象为马尔可夫过程，因而可在服务器组构成多样性的前提下，获得对先应秘密共享系统安全性的理论估算．通过建立系统的状态转移强度图和转移方程，获得了系统的配置参数与其安全性之间的定量关系，并给出了应用该方法的具体步骤．仿真实验验证了该方法在秘密共享系统安全性动态分析与定量评估方面具有有效性．

关键词: 先应秘密共享, 移动攻击, 入侵强度, 马尔可夫链, 失效概率

Abstract: This paper proposes a method for evaluating and analyzing the security of a proactive secret sharing system. Due to the difficulty in quantitatively estimating the adversary ability, the stochastic modeling techniques are used for depicting the relationships of the security to teh threshold, the time period and the behavior of adversary. Thus, the process of state transition from the secure state to the compromised state can be modeled as the Markov chain. With the state-transition diagram, the security probability of the system is obtained. Simulation experiment shows that te method has good feasibility and effectiveness. As a result, the threshold and the time period can be selected based on the quantitative method rather than on the empirical knowledge.

Key words: proactive secret sharing, mobile attack, intrusion rate, Markov chain, failture probability

中图分类号:

TP393

史庭俊1;2;王超1;马建峰1. 先应秘密共享系统安全性的动态分析和评估[J]. J4, 2004, 31(6): 905-909.

SHI Ting-jun1;2;WANG Chao1;MA Jian-feng1.

Dynamic analysis and evaluation of the security of a proactive secret sharing system

[J]. J4, 2004, 31(6): 905-909.

[1]	廖希;薛睿;赵旦峰. 一种适用于双卫星系统窄带LMS信道的状态模型[J]. J4, 2015, 42(1): 161-167.
[2]	李振兴;刘进忙;周政;郭相科;李延磊. 联合Metropolis算法和MDL准则的密集多目标分辨算法[J]. J4, 2014, 41(3): 174-180.
[3]	夏双志;严俊坤;戴奉周;刘宏伟. 目标存在状态变量的非齐次马尔可夫链模型[J]. J4, 2013, 40(4): 48-55.
[4]	张俊根;姬红兵;蔡绍晓. 并行高斯粒子滤波被动多目标跟踪新算法[J]. J4, 2011, 38(1): 117-122.
[5]	张薇1,2;马建峰2;杨晓元1. 分布式存储系统的可靠性研究[J]. J4, 2009, 36(3): 480-485.
[6]	鲍丹;王玉军;杨绍全. 频率选择性衰落中基于MCMC的调制分类 [J]. J4, 2007, 34(4): 526-531.