基于故障树和DSET的电力控制系统信息安全风险评估
发布时间:2018-05-03 02:32
本文选题:电力控制系统 + 信息安全 ; 参考:《华东理工大学》2014年硕士论文
【摘要】:作为国家能源领域重心的电力行业,其信息安全问题日趋严峻,近年来不断发生的电力控制系统重大信息安全事故使得对加强信息安全的需求更加迫切。信息安全风险评估是信息安全关键技术的一项重要内容,通过有效评估可以更加全面地了解电力控制系统的风险点和风险等级,有针对性地加强电力控制系统信息安全措施和防范,对提高系统整体安全具有重要的意义。 本文分析了电力控制系统的安全现状和信息安全研究进展,对信息安全关键技术研究成果进行了总结。根据对现有风险评估解决方案和量化方法的比较,提出了基于故障树和D-S证据理论的信息安全风险评估模型和量化方法,并详细介绍了其设计过程。 将该方法应用到某电厂的辅控系统信息安全风险评估中,进行了完整的风险评估模型构建和量化过程。同时,通过综合评估结果与专家主观评价结果的对比分析,构建了该系统的安全模型,并提出了风险处理意见。 本文提出的量化方法和评估模型优点在于能够清楚地描述风险传播的过程和路径,利用底层风险的区间概率优劣排序作为制定风险防护和控制决策的依据。D-S证据理论中似然函数和信任函数构成的不确定区间解决了数据获取的不准确性和不确定性问题。故障树模型中由下而上的风险传播过程,能够使得系统风险的计算结果区间范围降低,评估数据准确性提高。
[Abstract]:As the focus of national energy field, the information security problem of electric power industry is becoming more and more serious. In recent years, the important information security accidents of electric power control system make the need to strengthen information security more urgent. The risk assessment of information security is an important part of the key technology of information security. It is of great significance to strengthen the information security measures and precautions of electric power control system. This paper analyzes the security situation and information security research progress of electric power control system, and summarizes the research results of key technologies of information security. Based on the comparison of existing risk assessment solutions and quantification methods, the information security risk assessment model and quantification method based on fault tree and D-S evidence theory are proposed, and the design process is introduced in detail. The method is applied to the information security risk assessment of auxiliary control system in a power plant, and a complete risk assessment model is constructed and quantified. At the same time, the security model of the system is constructed by comparing the comprehensive evaluation results with the expert subjective evaluation results, and the risk handling suggestions are put forward. The advantage of the quantitative method and evaluation model proposed in this paper lies in its ability to clearly describe the process and path of risk propagation. The uncertainty interval composed of likelihood function and trust function in the evidence theory of D-S is used to solve the problem of inaccuracy and uncertainty of data acquisition by using the order of interval probability of bottom risk as the basis of risk protection and control decision. The bottom-up risk propagation process in the fault tree model can reduce the interval range of the calculated results of the system risk and improve the accuracy of the evaluation data.
【学位授予单位】:华东理工大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TM76
【参考文献】
相关期刊论文 前10条
1 李凤祁;余克武;佘振球;常乃超;;三峡直流输电工程控制保护系统故障及处理[J];电力建设;2010年05期
2 段斌;刘念;王键;黄生龙;;基于PKI/PMI的变电站自动化系统访问安全管理[J];电力系统自动化;2005年23期
3 廖建容;段斌;谭步学;孙璐;;基于口令的变电站数据与通信安全认证[J];电力系统自动化;2007年10期
4 刘念;张建华;段斌;刘文霞;张昊;;网络环境下变电站自动化通信系统脆弱性评估[J];电力系统自动化;2008年08期
5 倪明,,单渊达;证据理论及其应用[J];电力系统自动化;1996年03期
6 梁潇;赵婷;高昆仑;;电力工业信息安全标准化工作研究与思考[J];电力信息化;2010年05期
7 周静;熊素琴;苏斌;卢利峰;陈希;;一种电力通信网络运行质量量化评估方法及应用[J];电网技术;2012年09期
8 张琨;;发电企业信息安全风险分析及控制策略[J];电力信息化;2008年07期
9 唐一鸿;杨建军;王惠莅;;SP800-82《工业控制系统(ICS)安全指南》研究[J];信息技术与标准化;2012年Z1期
10 李文武;游文霞;王先培;;电力系统信息安全研究综述[J];电力系统保护与控制;2011年10期
本文编号:1836603
本文链接:https://www.wllwen.com/kejilunwen/dianlilw/1836603.html