面向ICS的安全与警戒一体化评估  

作　　者：尚文利 卢家越 丁磊 曹忠[1] SHANG Wen-li;LU Jia-yue;DING Lei;CAO Zhong(School of Electronics and Communication Engineering,Guangzhou University,Guangzhou Guangdong 510006,China;School of Cyberspace Security,Guangzhou University,Guangzhou Guangdong 510006,China)

机构地区：[1]广州大学电子与通信工程学院,广州510006 [2]广州大学网络空间安全学院,广州510006

出　　处：《计算机仿真》2025年第2期338-344,共7页Computer Simulation

基　　金：国家重点研发计划项目(2021YFB2012400);国家自然科学基金(62173101);广东省自然科学基金(2022A1515010865);市校联合资助基础研究项目(202201020217);中国民航大学信息安全测评中心开放基金课题(ISECCA-202201)。

摘　　要：为保证ICS在网络环境中安全稳定运行,解决现有ICS功能安全性评估与信息安全分析割裂导致安全事件发生的问题。以研究功能安全与信息安全一体化风险评估为目的,融合ICS功能安全和信息安全等多方面因素,建立故障攻防树模型,运用模糊集理论与熵权法理论,提出基于ICS的功能安全与信息安全一体化评估方法,并在田纳西伊斯曼系统验证所提方法的可行性。实验结果得出系统同时发生故障与攻击时的失效概率以及部署相应安全措施的有效性,同时证明文章提出的功能安全与信息安全一体化风险评估方法具有合理性和实践有效性,从而在有限条件下为ICS安全保障提供指导性建议,最大限度地保障系统安全稳定运行。To ensure the safe and stable operation of ICS in the network environment and to solve the problem of security incidents caused by the fragmentation of the existing ICS safety assessment and security analysis.The article aimed to study the integrated risk assessment of safety and security,integrating various factors of safety and security of ICS.A Fault Attack-Defense Tree model was established,and an integrated assessment method of safety and security based on ICS was proposed,utilizing fuzzy set theory and entropy power method theory.The feasibility of the proposed method was verified in the Tennessee Eastman system.The experimental results show the probability of failure when the system fails and attacks at the same time and the effectiveness of deploying corresponding security countermeasures,and prove that the integrated safety and security risk assessment method proposed in the paper is reasonable and practically effective,thus providing guiding suggestions for ICS security under limited conditions and maximizing the safe and stable operation of the system.

关 键 词：工业控制系统 安全与警戒 故障攻防树 一体化评估 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术]