Information Security Risk Assessment Method for Ship Control System Based on Fuzzy Sets and Attack Trees
文献类型:期刊论文
| 作者 | Shang WL(尚文利)1,2,4,5 ; Gong TY(巩天宇)1,3,4,5; Chen CY(陈春雨)1,2,4,5; Hou J(侯静)3; Zeng P(曾鹏)1,2,4,5
|
| 刊名 | SECURITY AND COMMUNICATION NETWORKS
 |
| 出版日期 | 2019 |
| 卷号 | 2019页码:1-11 |
| ISSN号 | 1939-0114 |
| 产权排序 | 1 |
| 英文摘要 | Information security risk assessment for industrial control system is usually influenced by uncertain factors. For effectively dealing with problem that the uncertainty and quantification difficulties are caused by subjective and objective factors in the assessment process, an information security risk assessment method based on attack tree model with fuzzy set theory and probability risk assessment technology is proposed, which is applied in a risk scenario of ship control system. Firstly, potential risks of the control system are analyzed and the attack tree model is established. Then triangular fuzzy numbers and expert knowledge are used to determine the factors that influence the probability of a leaf node and the leaf nodes are quantified to obtain the interval probability. Finally, the fuzzy arithmetic is used to determine the interval probability of the root node and the attack path. After defuzzification, the potential risks of the system and the probability of occurrence of each attack path are obtained. Compared with other methods, the proposed method can greatly reduce the impact of subjectivity on the risk assessment of industrial control systems and get more stable, reliable, and scientific evaluation results. |
| 资助项目 | National Natural Science Foundation of China Research on Anomaly Detection and Security Awareness Method for Industrial Communication Behaviors[61773368] ; State Grid Corporation Science and Technology Project[52110118001H] ; Chinese Academy of Sciences Strategic Pilot Science and Technology Project[XDC02000000] |
| WOS研究方向 | Computer Science ; Telecommunications |
| 语种 | 英语 |
| WOS记录号 | WOS:000462439100001 |
| 源URL | [http://ir.sia.cn/handle/173321/24475]  |
| 专题 | 沈阳自动化研究所_工业控制网络与系统研究室 |
| 通讯作者 | Shang WL(尚文利) |
| 作者单位 | 1.Shenyang Institute of Automation, Chinese Academy of Sciences, Shenyang 110016, China 2.University of Chinese Academy of Sciences, Beijing 100049, China 3.Information and Control Engineering Faculty, Shenyang Jianzhu University, Shenyang 110168, China 4.Institutes for Robotics and Intelligent Manufacturing, Chinese Academy of Sciences, Shenyang 110016, China 5.Key Laboratory of Networked Control Systems, Chinese Academy of Sciences, Shenyang 110016, China |
| 推荐引用方式 GB/T 7714 | Shang WL,Gong TY,Chen CY,et al. Information Security Risk Assessment Method for Ship Control System Based on Fuzzy Sets and Attack Trees[J]. SECURITY AND COMMUNICATION NETWORKS,2019,2019:1-11. |
| APA | Shang WL,Gong TY,Chen CY,Hou J,&Zeng P.(2019).Information Security Risk Assessment Method for Ship Control System Based on Fuzzy Sets and Attack Trees.SECURITY AND COMMUNICATION NETWORKS,2019,1-11. |
| MLA | Shang WL,et al."Information Security Risk Assessment Method for Ship Control System Based on Fuzzy Sets and Attack Trees".SECURITY AND COMMUNICATION NETWORKS 2019(2019):1-11. |
入库方式: OAI收割
来源:沈阳自动化研究所
其他版本
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。