检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:宋宇[1] 张春杰 程超[1] Song Yu;Zhang Chunjie;Cheng Chao(School of Computer Science and Engineering,Changchun University of Technology,Changchun 130000,Jilin,China)
机构地区:[1]长春工业大学计算机科学与工程学院,吉林长春130000
出 处:《计算机应用与软件》2024年第6期329-335,共7页Computer Applications and Software
基 金:国家自然科学基金项目(61903047);吉林省发展改革委项目(2019C040-3);吉林省科技厅项目(20200401127GX)。
摘 要:针对目前大多数工业控制系统风险评估方法未思考防御者策略以及攻防两者之间的对抗问题,提出一种基于博弈模型的风险评估方法。通过攻击防御图模型,计算攻击收益和防御收益;建立静态贝叶斯攻防博弈模型,计算混合策略贝叶斯纳什均衡,获得攻防两者最优策略概率分布。根据信息安全风险评估的计算方法,以防御者收益和攻击者最优策略选择概率分布为基础进行风险评估计算。通过一个实例证明了该方法的可行性和有用性。At present,most industrial control system risk assessment methods do not consider the defender strategy and the confrontation between attack and defense.Therefore,this paper proposes a risk assessment method based on game model.The attack defense graph was used to calculate attack gain and defense gain.The static Bayesian attack and defense game model was established to calculate the mixed strategy Bayesian Nash equilibrium,and the optimal probability distribution of attack and defense strategies was obtained.According to the calculation method of information security risk assessment,the risk assessment analysis method was calculated based on the probability distribution of the defender's benefit and the attacker's optimal strategy selection.An example was used to illustrate the feasibility and usefulness of the proposed method.
关 键 词:工业控制系统 风险评估 静态贝叶斯博弈 贝叶斯博弈均衡
分 类 号:TP3[自动化与计算机技术—计算机科学与技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.144.193.1