| 赵庆,刘朝晖,陈智.基于攻击树的核电厂DCS系统信息安全脆弱性分析[J].南华大学学报(自然科学版),2018,32(3):54~59.[ZHAO Qing,LIU Zhaohui,CHEN Zhi.Information Security Vulnerability Analysis of DCS System in Nuclear Power Plant Based on Attack Tree[J].Journal of University of South China(Science and Technology),2018,32(3):54~59.] |
| 基于攻击树的核电厂DCS系统信息安全脆弱性分析 |
| Information Security Vulnerability Analysis of DCS System in Nuclear Power Plant Based on Attack Tree |
| 投稿时间:2018-01-29 |
| DOI: |
| 中文关键词: 攻击树 信息安全 模糊层次分析法 脆弱性分析 |
| 英文关键词:attack tree information security fuzzy analytic hierarchy process vulnerability analysis |
| 基金项目: |
|
| 摘要点击次数: 861 |
| 全文下载次数: 1325 |
| 中文摘要: |
| 随着计算机在核电仪控系统中的广泛运用,其信息安全问题受到越来越大的挑战.提出一种基于攻击树的核电仪控系统信息安全脆弱性分析方法,旨在对系统信息安全脆弱性进行量化分析.该方法首先给叶节点赋予三个不同属性,然后采用模糊层次分析法计算各攻击事件属性的权值.最后计算出叶节点、根节点及攻击路径发生概率.实际案例分析表明:计算得出的结果即给出了各节点和攻击路径发生的概率,还指出了攻击者最有可能采取的攻击路径,证明了该方法是合理可行的.基于攻击树的核电仪控系统信息安全脆弱性分析方法对系统管理者建设防御措施有积极的指导意义. |
| 英文摘要: |
| Computer is widely used in nuclear power instrumentation and control systems,its information security issues are increasingly challenged.In this essay,an information security vulnerability analysis method for nuclear power control system based on attack tree is proposed to analyze the vulnerability of the system information security.First,the leaf nodes are assigned three different attributes.Then the fuzzy analytic hierarchy process (FAHP) is applied to calculate the weights of the attributes of each attack.Finally,the probability of leaf node,root node and attack path are calculated.The actual case analysis shows that the calculated result gives the probability of each node and the attack path,and points out the attack path that the attacker is most likely to take,which proves that the method is reasonable and feasible.The information security vulnerability analysis method of nuclear power plant control system based on attack tree is of positive guidance to the system manager to build the defense measures. |
| 查看全文 查看/发表评论 下载PDF阅读器 |
| 关闭 |
|
|
|