计算机应用 ›› 2016, Vol. 36 ›› Issue (1): 203-206.DOI: 10.11772/j.issn.1001-9081.2016.01.0203

• 网络空间安全 • 上一篇    下一篇

基于攻击图的信息物理系统信息安全风险评估方法

武文博, 康锐, 李梓   

  1. 北京航空航天大学 可靠性与系统工程学院, 北京 100191
  • 收稿日期:2015-07-22 修回日期:2015-08-29 出版日期:2016-01-10 发布日期:2016-01-09
  • 通讯作者: 武文博(1992-),男,山东临沂人,硕士研究生,主要研究方向:信息物理系统测试与评价、信息物理系统信息安全
  • 作者简介:康锐(1966-),男,辽宁本溪人,教授,主要研究方向:可靠性系统工程理论、高可靠长寿命产品可靠性设计理论与方法、信息物理系统可靠性与安全性理论;李梓(1990-),女,河北廊坊人,博士研究生,主要研究方向:信息物理系统测试与评价、信息物理系统弹性理论。

Attack graph based risk assessment method for cyber security of cyber-physical system

WU Wenbo, KANG Rui, LI Zi   

  1. College of Reliability and System Engineering, Beihang University, Beijing 100191, China
  • Received:2015-07-22 Revised:2015-08-29 Online:2016-01-10 Published:2016-01-09

摘要: 震网病毒等事件实证了信息攻击能对信息物理系统(CPS)带来严重的物理影响。针对这类跨域攻击问题,提出了基于攻击图的风险评估方法。首先,对信息物理系统中的信息攻击行为进行了分析,指出可编程逻辑控制器(PLC)等物理设备中存在的漏洞是信息攻击实现跨域攻击的关键,并给出了信息物理系统中漏洞的利用模式及影响后果;其次,建立风险评估模型,提出攻击成功概率和攻击后果度量指标。综合考虑漏洞固有特性和攻击者能力计算攻击成功概率,根据主机重要程度和漏洞利用模式计算攻击后果。该方法能够将信息域与物理域作为一个整体进行建模,综合考虑多个跨域攻击对系统风险的影响。数值案例表明,多个跨域攻击组合下的风险值是单一攻击下的5倍,计算得到的风险值更为准确。

关键词: 信息物理系统, 信息安全, 跨域攻击, 攻击图, 风险评估

Abstract: Recent incidents such as the Stuxnet worm have shown that cyber attacks can cause serious physical damage of Cyber-Physical System (CPS). Aiming at this problem, a risk assessment method based on attack graph was proposed. Firstly, the attack behavior of CPS was analyzed and the result showed that the vulnerabilities in physical devices such as Programmable Logic Controller (PLC) were the keys of cross-domain attack. Then the utilization modes and impact of vulnerabilities were described. Secondly, the risk assessment model was proposed as well as the successful-attack-probability index and the attack-impact index. Furthermore, the successful-attack-probability index was calculated considering the intrinsic characteristics of vulnerabilities and the ability of attacker. The attack-impact index was calculated considering the host importance and the utilization mode of vulnerabilities. The method was developed to assess the cyber layer and physical layer as a whole system and the impact of multiple cross-domain attacks on system risk was considered. The numerical examples show that the risk of combined attack is five times the risk of a single attack and the risk value obtained is more accurate.

Key words: Cyber-Physical System (CPS), cyber security, cross-domain attack, attack graph, risk assessment

中图分类号: