• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>IFIP 253; Annual IFIP(International Federation for Information Processing) Working Group 11.10 International Conference on Critical Infrastructure Protection; 20070319-21; Hanover,NH(US) >A SERVICE-ORIENTED APPROACH FOR ASSESSING INFRASTRUCTURE SECURITY
【24h】

A SERVICE-ORIENTED APPROACH FOR ASSESSING INFRASTRUCTURE SECURITY

机译:服务导向的基础架构安全性评估方法

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

The pervasive use of information and communication technologies (ICT) in critical infrastructures requires security assessment approaches that consider the highly interconnected nature of ICT systems. Several approaches incorporate the relationships between structural and functional descriptions and security goals, and associate vulnerabilities with known attacks. However, these methodologies are typically based on the analysis of local problems. This paper proposes a methodology that systematically correlates and analyzes structural, functional and security information. The security assessment of critical infrastructure systems is enhanced using a service-oriented perspective, which focuses the analysis on the concept of service, linking the interactions among services - modeled as service chains - with vulnerabilities, threats and attacks.
机译:在关键基础设施中普遍使用信息和通信技术(ICT),需要考虑ICT系统高度互连的本质的安全评估方法。几种方法结合了结构和功能描述与安全目标之间的关系,并将漏洞与已知攻击相关联。但是,这些方法通常基于对本地问题的分析。本文提出了一种系统地关联和分析结构,功能和安全信息的方法。使用面向服务的视角增强了对关键基础架构系统的安全评估,该视角将分析重点放在服务的概念上,将服务之间的交互(建模为服务链)与漏洞,威胁和攻击联系起来。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号