基于通用攻击树的电力工控系统安全研究  

Security Research of Electric Power Industrial Control System Based onGeneral Attack Tree

在线阅读下载全文

作  者:张建珍[1] 祁彦军 闫波[1] Zhang Jianzhen;Qi Yanjun;Yan Bo(Shanxi Institute of Mechanical&Electrical Engineering,Changzhi Shanxi 046000,China;Shanxi Information Technology Co.Ltd.,Changzhi Shanxi 046000,China)

机构地区:[1]山西机电职业技术学院,山西长治046000 [2]山西因弗美讯科技有限公司,山西长治046000

出  处:《山西电子技术》2024年第6期98-99,117,共3页Shanxi Electronic Technology

基  金:山西省回国留学人员科研资助项目“信创背景下山西传统产业信息化转型的工控安全研究”(2020-154)。

摘  要:针对等级保护测评中电力行业工控系统普遍存在的安全风险,提出基于通用攻击树模型的风险量化评估方法。依据CVSSv3.1系统对通用攻击树模型进行安全分析,对攻击树节点进行风险量化及攻击路径加权运算,提出精准建模、加权攻击能力与攻击路径、攻击发生概率等因素改进通用攻击树。该方法减少工控系统等保测评中的量化的人为主观因素,加权树及安全框架能为企业提供科学有效的风险防范措施。Aiming at the common security risks of industrial control system in power industry in grade protection evaluation,a quantitative risk assessment method based on general attack tree model is proposed.According to CVSSv3.1 system,the security analysis of the general attack tree model is carried out,and the risk quantification and attack path weighting are carried out on the nodes of the attack tree,and the factors such as accurate modeling,weighted attack capability and attack path,and attack probability are proposed to improve the general attack tree.The method reduces the quantified subjective factors in the industrial control system and other insurance evaluation.The weighted tree and safety framework can provide scientific and effective risk prevention measures for enterprises.

关 键 词:工业控制系统 通用攻击树 等保2.0 加权树 风险量化评估 

分 类 号:TP309.2[自动化与计算机技术—计算机系统结构]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象