CN115204567A - System target vulnerability analysis method, device, equipment and medium - Google Patents
System target vulnerability analysis method, device, equipment and medium Download PDFInfo
- Publication number
- CN115204567A CN115204567A CN202210556350.0A CN202210556350A CN115204567A CN 115204567 A CN115204567 A CN 115204567A CN 202210556350 A CN202210556350 A CN 202210556350A CN 115204567 A CN115204567 A CN 115204567A
- Authority
- CN
- China
- Prior art keywords
- target
- subsystem
- damage degree
- function
- determining
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 42
- 238000012038 vulnerability analysis Methods 0.000 title claims abstract description 34
- 230000006378 damage Effects 0.000 claims abstract description 325
- 230000006870 function Effects 0.000 claims description 154
- 238000004891 communication Methods 0.000 claims description 16
- 238000004590 computer program Methods 0.000 claims description 13
- 238000012545 processing Methods 0.000 claims description 7
- 238000003860 storage Methods 0.000 claims description 6
- 238000010586 diagram Methods 0.000 description 14
- 230000008859 change Effects 0.000 description 6
- 230000008569 process Effects 0.000 description 5
- 230000009471 action Effects 0.000 description 4
- 238000004458 analytical method Methods 0.000 description 4
- 230000000694 effects Effects 0.000 description 4
- 239000012634 fragment Substances 0.000 description 4
- 230000009528 severe injury Effects 0.000 description 4
- 238000012986 modification Methods 0.000 description 3
- 230000004048 modification Effects 0.000 description 3
- 230000001186 cumulative effect Effects 0.000 description 2
- 238000013507 mapping Methods 0.000 description 2
- 230000009525 mild injury Effects 0.000 description 2
- 239000000203 mixture Substances 0.000 description 2
- 230000009526 moderate injury Effects 0.000 description 2
- 230000035515 penetration Effects 0.000 description 2
- 230000035939 shock Effects 0.000 description 2
- 208000034656 Contusions Diseases 0.000 description 1
- 206010033799 Paralysis Diseases 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 230000015556 catabolic process Effects 0.000 description 1
- 238000012512 characterization method Methods 0.000 description 1
- 238000005336 cracking Methods 0.000 description 1
- 238000006731 degradation reaction Methods 0.000 description 1
- 230000008030 elimination Effects 0.000 description 1
- 238000003379 elimination reaction Methods 0.000 description 1
- 238000011156 evaluation Methods 0.000 description 1
- 238000012854 evaluation process Methods 0.000 description 1
- 238000004880 explosion Methods 0.000 description 1
- 238000011835 investigation Methods 0.000 description 1
- 238000012886 linear function Methods 0.000 description 1
- 230000007774 longterm Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
- 230000001172 regenerating effect Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000004088 simulation Methods 0.000 description 1
- 230000001629 suppression Effects 0.000 description 1
- 230000009897 systematic effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/06—Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
- G06Q10/063—Operations research, analysis or management
- G06Q10/0639—Performance analysis of employees; Performance analysis of enterprise or organisation operations
- G06Q10/06393—Score-carding, benchmarking or key performance indicator [KPI] analysis
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
- G06Q50/26—Government or public services
- G06Q50/265—Personal security, identity or safety
Landscapes
- Business, Economics & Management (AREA)
- Human Resources & Organizations (AREA)
- Engineering & Computer Science (AREA)
- Strategic Management (AREA)
- Development Economics (AREA)
- Educational Administration (AREA)
- Economics (AREA)
- Tourism & Hospitality (AREA)
- General Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Entrepreneurship & Innovation (AREA)
- Marketing (AREA)
- Physics & Mathematics (AREA)
- Game Theory and Decision Science (AREA)
- Quality & Reliability (AREA)
- Operations Research (AREA)
- Computer Security & Cryptography (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Primary Health Care (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a method, a device, equipment and a medium for analyzing the vulnerability of a system target, wherein when the vulnerability of a target function of the system target is analyzed, the system damage degree value of a target subsystem related to the target function is determined according to the damage degree value of each entity in each subsystem of the system target, and then the damage degree of the target function of the system target is determined according to the system damage degree value of the target subsystem, so that the vulnerability analysis of the system target is realized.
Description
Technical Field
The invention relates to the technical field of target damage effect evaluation, in particular to a method, a device, equipment and a medium for analyzing vulnerability of a system target.
Background
The target vulnerability analysis is an important content in the simulation evaluation process, the traditional target vulnerability mainly aims at single targets, such as airplanes, airport runways, hangars, radars, vehicles and the like, the system target is different from the single target, the system target consists of a plurality of single targets with the same or different types and has relatively complex functions, generally speaking, the simple system target consists of a plurality of single targets with the same or similar types, for example, a transport vehicle fleet consists of a plurality of transport vehicles with the same or similar types, the complex system target can be divided into subsystems and can be further divided into a plurality of single targets, and each single target is an entity in the system target.
Taking an airport as an example, the airport is taken as a system target, the system target can be decomposed into an airplane subsystem, a transportation vehicle subsystem, a runway subsystem, a radar subsystem, a command subsystem, a guarantee subsystem and the like according to functional compositions, the airplane subsystem comprises a plurality of types, a plurality of types and a plurality of airplanes, each airplane is a single target, the runway subsystem comprises a plurality of runways, and each runway is a single target.
In the prior art, a method for analyzing vulnerability of a single target exists, but a method for analyzing vulnerability of a system target does not exist, so how to analyze vulnerability of the system target becomes a technical problem to be solved urgently.
Disclosure of Invention
The invention provides a method, a device, equipment and a medium for analyzing vulnerability of a system target, which are used for solving the problem that vulnerability analysis cannot be carried out on the system target in the prior art.
The invention provides a system target vulnerability analysis method, which comprises the following steps:
acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
determining each target subsystem corresponding to the target function according to the target function and a pre-stored corresponding relation between each function and the subsystem of the system target;
determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of each target subsystem is provided by any target entity in each target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree values.
Further, the determining the target damage degree of the target function of the system target according to the target damage degree value comprises:
and determining a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a corresponding relation between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree.
Further, the determining the damage level value of each target entity in each target subsystem according to the damage level value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystem comprises:
for each target subsystem, if the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the damage degree value of each target entity in the target subsystem as the system damage degree value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage level values of each target entity in the target subsystem as the system damage level value of the target subsystem.
Further, the determining the average value of the damage degree values of each target entity in the target sub-system as the system damage degree value of the target sub-system includes:
determining the damage degree value of each target entity in the target subsystem and the pre-stored accumulated sum value of the weight of each target entity in the target subsystem;
and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
Accordingly, the present invention provides a system target vulnerability analysis apparatus, the apparatus comprising:
the system comprises an acquisition module, a judgment module and a processing module, wherein the acquisition module is used for acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
the determining module is used for determining each target subsystem corresponding to the target function according to the target function and the corresponding relation between each function and the subsystem of the system target, wherein the corresponding relation is stored in advance; determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
Further, the determining module is specifically configured to determine a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a pre-stored correspondence between the damage degree and the damage degree value range, and determine the damage degree corresponding to the target damage degree value range as the target damage degree.
Further, the determining module is specifically configured to, for each target subsystem, determine, if the function of the target subsystem is provided by any target entity in the target subsystem, a minimum value of the damage level value of each target entity in the target subsystem as the system damage level value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
Further, the determining module is specifically configured to determine a damage degree value of each target entity in the target sub-system and a pre-stored cumulative sum value of a weight of each target entity in the target sub-system; and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
Accordingly, the present invention provides an electronic device comprising a processor and a memory, said memory storing program instructions, said processor being adapted to carry out the steps of any of the above described method for systematic target vulnerability analysis when executing a computer program stored in the memory.
Accordingly, the present invention provides a computer readable storage medium having stored thereon a computer program which, when executed by a processor, performs the steps of any of the above-described system target vulnerability analysis methods.
The invention provides a system target vulnerability analysis method, a device, equipment and a medium, wherein the method comprises the steps of obtaining a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target; determining each target subsystem corresponding to the target function according to the target function and the pre-stored corresponding relationship between each function and the subsystem of the system target; according to the damage degree value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystems, determining the system damage degree value of each target subsystem, determining the minimum value in each system damage degree value as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings required to be used in the description of the embodiments will be briefly introduced below, and it is apparent that the drawings in the description below are only some embodiments of the present invention, and it is obvious for those skilled in the art that other drawings may be obtained according to the drawings without inventive labor.
FIG. 1 is a schematic process diagram of a system target vulnerability analysis provided by an embodiment of the present invention;
FIG. 2 is a schematic structural diagram of a system target vulnerability analysis apparatus according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention clearer, the present invention will be described in further detail with reference to the accompanying drawings, and it is apparent that the described embodiments are only a part of the embodiments of the present invention, not all of the embodiments. All other embodiments, which can be obtained by a person skilled in the art without making any creative effort based on the embodiments in the present invention, belong to the protection scope of the present invention.
In order to implement vulnerability analysis on a system target, the embodiment of the invention provides a method, a device, equipment and a medium for vulnerability analysis of the system target.
Example 1:
fig. 1 is a schematic process diagram of a system target vulnerability analysis method provided in an embodiment of the present invention, where the process includes the following steps:
s101: and acquiring a target function of the system target for vulnerability analysis and a damage degree value of each entity in each sub-system of the system target.
In order to implement vulnerability analysis on a system target, the vulnerability analysis method for the system target provided by the embodiment of the invention is applied to electronic equipment, wherein the electronic equipment can be an intelligent terminal such as a host, a tablet computer, a mobile terminal and the like, and can also be a server; the server can be a local server or a cloud server; specifically, the embodiment of the present invention is not limited to this.
In the embodiment of the invention, the electronic equipment analyzes the vulnerability of a system target, the system target can be an airport, a railway station, an automobile station, a subway station, a wharf and the like, and the system target is different from a single target in the aspects of complexity, classification, analysis method and the like. In terms of complexity, the single target is relatively fixed in relation to the function and the position of the single target, and the system target is composed of a plurality of single targets, so that the structure and the function are more complex and have certain changes. In terms of classification, the classification of a single target is generally fixed, and generally is a single vehicle, airplane, building, etc., and the system targets are different according to the user purposes and the system scale, for example, an airport can be regarded as one system, and a traffic related system such as an airport, a train station, a bus station, a subway station, a dock, etc. can also be regarded as one system. In terms of the analysis method, because the system target has the characteristics of currency, progressiveness, openness and the like due to the complexity, the system target is generally decomposed into a plurality of systems and single targets according to the analysis purpose by combining the system method, and then the analysis is carried out by combining the research results of the single targets.
The vulnerability of the system target can be described from multiple dimensions, taking an airport as an example, the system target comprises different dimensions such as a communication function, a command control function and a transportation function, taking the transportation function as an example, if the purpose of damaging the transportation function is achieved, the system target relates to subsystems such as airplanes, runways, radars, command control systems and the like, the transportation function fails in a short term, the runway subsystem, the radar subsystem and the command control system subsystem can be attacked, and if the transportation function fails in a long term, the airplane subsystem with the transportation function is attacked.
When a system target for vulnerability analysis is determined, since the entities of a plurality of single targets in the system target dynamically change with the time-space change, including the quantity change, the position change, the capability change and the like, when the user determines the system target, on one hand, the state and the range of the system target at a certain moment, the type and the quantity of the included entities, the position of the entities and the capability of the entities are determined, and on the other hand, the change of the system target is determined by combining the time-space relationship.
In order to realize vulnerability analysis of a system target, firstly, a user determines a target function of the system target for vulnerability analysis, wherein the target function can be any one of all functions of the system target; taking the system target as an airport as an example, the airport comprises functions such as a communication function, a command control function, a transportation function and the like, and the target function can be a communication function, a command control function or a transportation function.
The electronic equipment acquires a target function of a system target for vulnerability analysis and a damage degree value of each entity in each sub-system of the system target, and specifically, the electronic equipment can acquire the target function and the damage degree value of each entity from data stored in advance; or acquiring the target functions and the damage degree value of each entity transmitted by other electronic equipment connected with the electronic equipment.
The method is characterized in that the damage degree value of each entity in each sub-system of the system target is predetermined, and each entity is a single target, so the method in the prior art is adopted to determine the damage degree value of each entity, and when the damage degree value of each entity is determined, the damage degree value is a quantitative description of a damage task and the damage degree, and is a specific reflection of the target function loss degree and the fighting efficiency reduction degree, and the method is mainly used for quantifying the damage task, calculating military ammunition and evaluating the striking effect. Generally, the damage area and the damage probability are used for representation.
S102: and determining each target subsystem corresponding to the target function according to the target function and the pre-stored corresponding relationship between each function and the subsystem of the system target.
After determining the target function of the system target for performing vulnerability analysis, the electronic device needs to determine a target subsystem related to the target function in the system target, where the electronic device pre-stores a correspondence between each function and the subsystem of the system target, and determines each target subsystem corresponding to the target function in the correspondence according to the correspondence between the target function and the pre-stored correspondence.
S103: determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of each target subsystem is provided by any target entity in each target subsystem, determining the system damage degree value of each target subsystem, determining the minimum value of each system damage degree value as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
After each target subsystem corresponding to the target function is determined, the damage degree value of each target entity in each target subsystem is determined according to the acquired damage degree value of each entity in each subsystem of the system target.
In order to determine the system damage degree value of each target subsystem, for each target subsystem, the electronic device pre-stores identification information corresponding to the target subsystem, where the identification information identifies whether a function of the target subsystem is provided by any target entity in the target subsystem, if the identification information is 1, the function of the target subsystem is provided by any target entity in the target subsystem, and if the identification information is 0, the function of the target subsystem is not provided by any target entity in the target subsystem.
Each kind of identification information corresponds to a determination function with different system damage degree values, wherein the system damage degree values refer to the damage degree values of the whole target subsystem comprising a plurality of target entities; and determining the system damage degree value of the target subsystem according to the damage degree value of each target entity in the target subsystem and a determination function of the system damage degree value corresponding to the identification information of the target subsystem.
And determining the minimum value of the damage degree values of each system according to the damage degree value of each system of each target subsystem, determining the minimum value as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
As a possible implementation, the electronic device pre-stores a damaged tree model with a target function of the system target, wherein the damaged tree model is based on the structural tree model, but different from the structural tree model, the structural tree model is systematically composed and fixed, and the damaged tree model is systematically changed in function according to the function of performing damage. Generally, the structure tree model is a tree shape, one entity belongs to one system, and the damage tree model is a tree shape or a net shape.
After the damage degree value of each target entity in each target subsystem is determined, the damage degree value of each target entity is input to a node corresponding to each target entity at the bottom layer of the damage tree model, the output target damage degree value of the target function of the system target is obtained from the node at the top layer of the damage tree, and the target damage degree of the target function of the system target is determined according to the target damage degree value.
In the embodiment of the invention, when the method is used for analyzing the vulnerability of the target function of the system target, the system damage degree value of the target subsystem related to the target function is determined according to the damage degree value of each entity in each subsystem of the system target, and then the damage degree of the target function of the system target is determined according to the system damage degree value of the target subsystem, so that the vulnerability analysis of the system target is realized.
Example 2:
in order to determine the target damage level of the target function of the system target, in an embodiment of the present invention based on the above embodiments, the determining the target damage level of the target function of the system target according to the target damage level value includes:
and determining a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a corresponding relation between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree.
In order to determine the damage degree of the target function of the system target, the electronic device pre-stores the corresponding relationship between the damage degree and the damage degree value range, wherein the damage degree is the grade for dividing the damage effect of the system target, and is the grading specification and qualitative description of the damage task and the damage condition, which can also be called as the damage grade. The target damage level is usually determined based on typical target value, structural status and regenerative recovery capability. For example, the damage degree includes three kinds of damage, namely severe damage, moderate damage, and mild damage, the severe damage generally refers to the condition of severe damage such as destruction, sinking, paralysis, etc. to the system target, in which case the system target can be restored within several weeks, the moderate damage generally refers to the condition of important damage such as suppression, severe damage, etc. to the system target, in which case the system target can be restored within several days, and the mild damage generally refers to the condition of general damage such as damage, bruising, attack, etc. to the system target, in which case the system target can be restored within several hours.
And determining the target damage degree value range in which the target damage degree value is located according to the target damage degree value and the corresponding relationship between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree of the target function of the system target.
Example 3:
in order to determine the system damage level value of each target subsystem, on the basis of the above embodiments, in an embodiment of the present invention, the determining the system damage level value of each target subsystem according to the damage level value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystem includes:
for each target subsystem, if the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the damage degree value of each target entity in the target subsystem as the system damage degree value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
In order to determine the system damage degree value of each target subsystem, in this embodiment of the present invention, the electronic device determines, for each target subsystem, whether the function of the target subsystem is provided by any target entity in the target subsystem, and the electronic device stores corresponding identification information for each target subsystem, where if the identification information is 1, the function of the target subsystem is provided by any target entity in the target subsystem, and if the identification information is 0, the function of the target subsystem is not provided by any target entity in the target subsystem.
If the function of the target subsystem is determined to be provided by any target entity in the target subsystem, determining the minimum value in the damage degree values of each target entity according to the damage degree value of each target entity in the target subsystem, and determining the minimum value as the system damage degree value of the target subsystem.
If the function of the target subsystem is determined to be provided by all target entities in the target subsystem, determining the ratio of the sum of the damage degree values of each target entity to the number of the target entities according to the damage degree value of each target entity in the target subsystem and the number of the target entities contained in the target subsystem to obtain the average value of the damage degree values of each target entity in the target subsystem, and determining the average value as the system damage degree value of the target subsystem.
Example 4:
in order to accurately determine the system damage degree value of the target sub-system, on the basis of the above embodiments, in an embodiment of the present invention, the determining the average value of the damage degree values of each target entity in the target sub-system as the system damage degree value of the target sub-system includes:
determining the damage degree value of each target entity in the target subsystem and the accumulated sum value of the weight of each target entity in the target subsystem, which is preserved in advance;
and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
In order to accurately determine the system damage degree value of the target subsystem, in the embodiment of the present invention, if the functions of the target subsystem are provided by all target entities in the target subsystem, since the weights of the functions provided by each target entity in the target subsystem in the overall functions of the target subsystem are different, the electronic device further includes the weight of each target entity in the target subsystem, where the weight of each target entity is determined by a user according to the size of the function provided by the entity.
Because the composition and action information of the system target are relatively insufficient, the weight of each target entity in the subsystem is determined mainly by adopting two types of methods: the method comprises an Analytic Hierarchy Process (AHP) and an optimal sequence graph method, wherein the method is a subjective value assigning method, the scoring condition of the importance of each target entity is usually obtained by an expert scoring or by a questionnaire investigation mode, and the higher the score is, the larger the weight is; the other is an entropy method, and the method is carried out by weighting by using the information quantity which is the data entropy information of the relevant target system. The method is suitable for the conditions of relative fuzzy recognition of the target, uncertain information and fluctuation among data.
And adding the product values of the damage degree values of the target entities and the corresponding weights according to the damage degree values of the target entities in the target subsystem and the pre-stored weights of the target entities in the target subsystem to obtain the accumulated sum value of the damage degree values of the target entities and the corresponding weights.
And determining the ratio of the accumulated sum value to the number according to the determined accumulated sum value and the number of the target entities contained in the target subsystem, and determining the ratio as the system damage degree value of the target subsystem.
Example 5:
in order to determine the damage degree value of each entity in each sub-system of the system target, the damage criterion and the damage criterion of each failure mode of the entity under the damage element need to be researched, only the damage criterion and the damage criterion of the entity are determined, the damage criterion of the damage element on the entity at a certain damage grade is quantitatively analyzed according to the damage criterion, and the damage degree calculation of the entity under the effect of the damage element is completed.
The damage criterion is a basis for judging whether the action load constitutes effective damage to the entity and achieves different damage degrees, and is a mapping relation between the damage action load and a target damage degree established on the basis of a damage mechanism.
The damage criterion is the basis for determining the quantitative and detailed damage degree of an entity, and is described by the type and quantitative characterization quantity of a damage element acting on the entity, generally a certain point on a damage criterion mapping relation curve.
The entity has different damage modes and different expressed forms under the action of various damage elements, wherein the damage elements comprise fragments, shock waves, penetration bullets, shrapnel, jet flow, explosion and the like. Such as cracking, deformation, area loss, functional degradation, etc., of the entities, and thus represent the criteria for failure of different types of entities in a very uniform manner. Different damage sources, different entities or damage modes, and different types of damage criteria.
The damage criterion for the entity can be divided into the number of through fragments and the number of fragments reaching a certain kinetic energy per square, and the damage criterion function can be a 0-1 function, a linear function, an exponential function and the like. For example, the damage probability of an entity in a hit, the area elimination criterion, the critical speed criterion, the energy density criterion, the shock wave damage criterion, the vibration damage criterion, etc., wherein the damage probability refers to the damage probability of an entity in a fragment or penetration strike.
Example 6:
on the basis of the foregoing embodiment, fig. 2 is a schematic structural diagram of a system target vulnerability analysis apparatus provided in an embodiment of the present invention, where the apparatus includes:
an obtaining module 201, configured to obtain a target function of a system target for vulnerability analysis and a damage level value of each entity in each sub-system of the system target;
a determining module 202, configured to determine each target sub-system corresponding to the target function according to the target function and a pre-stored correspondence between each function and a sub-system of the system target; determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
Further, the determining module is specifically configured to determine a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a pre-stored correspondence between the damage degree and the damage degree value range, and determine the damage degree corresponding to the target damage degree value range as the target damage degree.
Further, the determining module is specifically configured to, for each target subsystem, determine, if the function of the target subsystem is provided by any target entity in the target subsystem, a minimum value of the damage level value of each target entity in the target subsystem as the system damage level value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage level values of each target entity in the target subsystem as the system damage level value of the target subsystem.
Further, the determining module is specifically configured to determine a damage degree value of each target entity in the target sub-system and a pre-stored cumulative sum value of a weight of each target entity in the target sub-system; and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
Example 7:
fig. 3 is a schematic structural diagram of an electronic device according to an embodiment of the present invention, and on the basis of the foregoing embodiments, an embodiment of the present invention further provides an electronic device, as shown in fig. 3, including: the system comprises a processor 301, a communication interface 302, a memory 303 and a communication bus 304, wherein the processor 301, the communication interface 302 and the memory 303 are communicated with each other through the communication bus 304.
The memory 303 has stored therein a computer program which, when executed by the processor 301, causes the processor 301 to perform the steps of:
acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
determining each target subsystem corresponding to the target function according to the target function and a pre-stored corresponding relation between each function and the subsystem of the system target;
determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of each target subsystem is provided by any target entity in each target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree values.
Further, the processor 301 is specifically configured to determine the target damage level of the target function of the system target according to the target damage level value, including:
and determining a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a corresponding relation between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree.
Further, the processor 301 is specifically configured to determine the system damage level value of each target sub-system according to the damage level value of each target entity in each target sub-system and whether the function of the target sub-system is provided by any target entity in the target sub-system, including:
for each target subsystem, if the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the damage degree value of each target entity in the target subsystem as the system damage degree value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
Further, the processor 301 is specifically configured to determine the average value of the damage level values of each target entity in the target sub-system as the system damage level value of the target sub-system, including:
determining the damage degree value of each target entity in the target subsystem and the accumulated sum value of the weight of each target entity in the target subsystem, which is preserved in advance;
and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
The communication bus mentioned in the electronic device may be a Peripheral Component Interconnect (PCI) bus, an Extended Industry Standard Architecture (EISA) bus, or the like. The communication bus may be divided into an address bus, a data bus, a control bus, etc. For ease of illustration, only one thick line is shown, but this does not mean that there is only one bus or one type of bus.
The communication interface 302 is used for communication between the above-described electronic apparatus and other apparatuses.
The Memory may include a Random Access Memory (RAM) or a Non-Volatile Memory (NVM), such as at least one disk Memory. Alternatively, the memory may be at least one memory device located remotely from the processor.
The Processor may be a general-purpose Processor, including a central processing unit, a Network Processor (NP), and the like; but may also be a Digital instruction processor (DSP), an application specific integrated circuit, a field programmable gate array or other programmable logic device, discrete gate or transistor logic, discrete hardware components, or the like.
Example 8:
on the basis of the foregoing embodiments, an embodiment of the present invention further provides a computer-readable storage medium, in which a computer program executable by a processor is stored, and when the program runs on the processor, the processor is caused to execute the following steps:
acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
determining each target subsystem corresponding to the target function according to the target function and a pre-stored corresponding relation between each function and the subsystem of the system target;
determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of each target subsystem is provided by any target entity in each target subsystem, determining the system damage degree value of each target subsystem, determining the minimum value of each system damage degree value as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
Further, the determining the target damage degree of the target function of the system target according to the target damage degree value comprises:
and determining a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a corresponding relation between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree.
Further, the determining the system damage level value of each target sub-system according to the damage level value of each target entity in each target sub-system and whether the function of the target sub-system is provided by any target entity in the target sub-system comprises:
for each target subsystem, if the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the damage degree value of each target entity in the target subsystem as the system damage degree value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
Further, the determining the average value of the damage degree values of each target entity in the target sub-system as the system damage degree value of the target sub-system includes:
determining the damage degree value of each target entity in the target subsystem and the accumulated sum value of the weight of each target entity in the target subsystem, which is preserved in advance;
and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and so forth) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present application without departing from the spirit and scope of the application. Thus, if such modifications and variations of the present application fall within the scope of the claims of the present application and their equivalents, the present application is intended to include such modifications and variations as well.
Claims (10)
1. A method for analyzing vulnerability of a system target, the method comprising:
acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
determining each target subsystem corresponding to the target function according to the target function and a pre-stored corresponding relation between each function and the subsystem of the system target;
determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of each target subsystem is provided by any target entity in each target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree values.
2. The method of claim 1, wherein said determining a target damage level for a target function of the system target from the target damage level value comprises:
and determining a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a corresponding relation between the pre-stored damage degree and the damage degree value range, and determining the damage degree corresponding to the target damage degree value range as the target damage degree.
3. The method of claim 1, wherein said determining a system damage level value for each target entity in each target sub-system based on the damage level value of each target entity and whether the functionality of the target sub-system is provided by any target entity in the target sub-system comprises:
for each target subsystem, if the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the damage degree value of each target entity in the target subsystem as the system damage degree value of the target subsystem; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
4. The method of claim 3, wherein determining the average of the damage level values of each target entity in the target sub-system as the damage level value of the target sub-system comprises:
determining the damage degree value of each target entity in the target subsystem and the accumulated sum value of the weight of each target entity in the target subsystem, which is preserved in advance;
and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
5. A system target vulnerability analysis apparatus, the apparatus comprising:
the system comprises an acquisition module, a judgment module and a processing module, wherein the acquisition module is used for acquiring a target function of a system target for vulnerability analysis and a damage degree value of each entity in each subsystem of the system target;
the determining module is used for determining each target subsystem corresponding to the target function according to the target function and the corresponding relation of each function and the subsystem target prestored; determining the system damage degree value of each target subsystem according to the damage degree value of each target entity in each target subsystem and whether the function of the target subsystem is provided by any target entity in the target subsystem, determining the minimum value of the system damage degree values as the target damage degree value of the target function of the system target, and determining the target damage degree of the target function of the system target according to the target damage degree value.
6. The apparatus of claim 5, wherein the determining module is configured to determine a target damage degree value range in which the target damage degree value is located according to the target damage degree value and a pre-stored correspondence relationship between the damage degree and the damage degree value range, and determine the damage degree corresponding to the target damage degree value range as the target damage degree.
7. The apparatus of claim 5, wherein the determining module is specifically configured to determine, for each target sub-system, if the function of the target sub-system is provided by any target entity in the target sub-system, a minimum value of the damage level values of each target entity in the target sub-system to be the system damage level value of the target sub-system; if the function of the target subsystem is provided by all target entities in the target subsystem, determining the average value of the damage degree values of each target entity in the target subsystem as the system damage degree value of the target subsystem.
8. The apparatus of claim 7, wherein the determining module is specifically configured to determine a sum of the damage level value of each target entity in the target sub-system and a pre-stored weight of each target entity in the target sub-system; and determining the system damage degree value of the target subsystem according to the accumulated sum value and the number of the target entities contained in the target subsystem.
9. An electronic device, comprising: the system comprises a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory complete mutual communication through the communication bus;
the memory has stored therein a computer program which, when executed by the processor, causes the processor to carry out the method of any one of claims 1-4.
10. A computer-readable storage medium, characterized in that it stores a computer program executable by a processor, which program, when run on the processor, causes the processor to carry out the method of any one of claims 1-4.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210556350.0A CN115204567A (en) | 2022-05-19 | 2022-05-19 | System target vulnerability analysis method, device, equipment and medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210556350.0A CN115204567A (en) | 2022-05-19 | 2022-05-19 | System target vulnerability analysis method, device, equipment and medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115204567A true CN115204567A (en) | 2022-10-18 |
Family
ID=83574936
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210556350.0A Pending CN115204567A (en) | 2022-05-19 | 2022-05-19 | System target vulnerability analysis method, device, equipment and medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115204567A (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2020113090A (en) * | 2019-01-15 | 2020-07-27 | 三菱電機株式会社 | Vulnerability influence evaluation system |
| CN112131749A (en) * | 2020-09-25 | 2020-12-25 | 河北工业大学 | Damage assessment method for tank target |
| CN114492170A (en) * | 2021-12-30 | 2022-05-13 | 中国人民解放军总参谋部第六十研究所 | Typical target vulnerability damage assessment method and system |
-
2022
- 2022-05-19 CN CN202210556350.0A patent/CN115204567A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2020113090A (en) * | 2019-01-15 | 2020-07-27 | 三菱電機株式会社 | Vulnerability influence evaluation system |
| CN112131749A (en) * | 2020-09-25 | 2020-12-25 | 河北工业大学 | Damage assessment method for tank target |
| CN114492170A (en) * | 2021-12-30 | 2022-05-13 | 中国人民解放军总参谋部第六十研究所 | Typical target vulnerability damage assessment method and system |
Non-Patent Citations (1)
| Title |
|---|
| 李新其等: "系统目标毁伤效果指标建模方法探讨", 《指挥控制与仿真》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108615122A (en) | A kind of air-defense anti-missile system combat capability assessment method | |
| CN111080108B (en) | Data-driven weapon equipment combat effectiveness evaluation index screening method and system | |
| KR20190070702A (en) | System and method for automatically verifying security events based on text mining | |
| CN110011976B (en) | Network attack destruction capability quantitative evaluation method and system | |
| CN109656818B (en) | Fault prediction method for software intensive system | |
| CN111489166A (en) | Risk prevention and control method, device, processing equipment and system | |
| Moore et al. | Regression Approach for Estimating Procurement Cost | |
| Khoshgoftaar et al. | Process measures for predicting software quality | |
| CN115204567A (en) | System target vulnerability analysis method, device, equipment and medium | |
| CN110708296B (en) | VPN account number collapse intelligent detection model based on long-time behavior analysis | |
| Wang et al. | Performance evaluation of a risk-based three-tier inspection system | |
| CN116739742A (en) | Monitoring method, device, equipment and storage medium of credit wind control model | |
| CN114884712B (en) | Method, device, equipment and medium for determining risk level information of network asset | |
| CN113919186B (en) | Event tree-based flight overrun event comprehensive consequence severity calculation method | |
| CN115795353A (en) | Underground metal target classification method and system based on unbalanced data set | |
| CN113011893B (en) | Data processing method, device, computer equipment and storage medium | |
| CN114879193A (en) | Radar bird-emotion analysis system, radar bird-emotion analysis method, electronic device, and storage medium | |
| CN112000954B (en) | Malicious software detection method based on feature sequence mining and simplification | |
| CN114491563A (en) | Method for acquiring risk level of information security event and related device | |
| CN114398887A (en) | Text classification method and device and electronic equipment | |
| CN113779564A (en) | Security event prediction method and device | |
| CN111008038B (en) | Pull request merging probability calculation method based on logistic regression model | |
| CN110704614B (en) | Information processing method and device for predicting user group type in application | |
| KR101872406B1 (en) | Method and apparatus for quantitavely determining risks of malicious code | |
| CN116958607B (en) | Data processing method and device for target damage prediction |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20221018 |
|
| RJ01 | Rejection of invention patent application after publication |