An Approach to Measure and Evaluate the Network Security

Based on the active defense model of the network data transmission, a method of security measurement of the network data transmission is proposed. Deceptive packets are used in the active defense model to trap attacks. In addition, statistical quantification is used to measure and evaluate the security of the network data transmission according to network status parameters. This method not only helps make the policy of network data transmission accurately and efficiently, but also guarantees the security of the network data transmission.

[1]  T. Olovsson,et al.  On measurement of operational security , 1994, IEEE Aerospace and Electronic Systems Magazine.

[2]  Bharat B. Madan,et al.  Modeling and quantification of security attributes of software systems , 2002, Proceedings International Conference on Dependable Systems and Networks.

[3]  Nevil Brownlee,et al.  Traffic Flow Measurement: Meter MIB , 1997, RFC.

[4]  Angelos D. Keromytis,et al.  SOS: secure overlay services , 2002, SIGCOMM '02.

[5]  Vern Paxson,et al.  Framework for IP Performance Metrics , 1998, RFC.

[6]  Angelos D. Keromytis,et al.  SOS: secure overlay services , 2002, SIGCOMM 2002.