基于故障树和DSET的电力控制系统信息安全风险评估

发布时间：2018-05-03 02:32

本文选题：电力控制系统 + 信息安全　；参考：《华东理工大学》2014年硕士论文

【摘要】：作为国家能源领域重心的电力行业,其信息安全问题日趋严峻,近年来不断发生的电力控制系统重大信息安全事故使得对加强信息安全的需求更加迫切。信息安全风险评估是信息安全关键技术的一项重要内容,通过有效评估可以更加全面地了解电力控制系统的风险点和风险等级,有针对性地加强电力控制系统信息安全措施和防范,对提高系统整体安全具有重要的意义。本文分析了电力控制系统的安全现状和信息安全研究进展,对信息安全关键技术研究成果进行了总结。根据对现有风险评估解决方案和量化方法的比较,提出了基于故障树和D-S证据理论的信息安全风险评估模型和量化方法,并详细介绍了其设计过程。将该方法应用到某电厂的辅控系统信息安全风险评估中,进行了完整的风险评估模型构建和量化过程。同时,通过综合评估结果与专家主观评价结果的对比分析,构建了该系统的安全模型,并提出了风险处理意见。本文提出的量化方法和评估模型优点在于能够清楚地描述风险传播的过程和路径,利用底层风险的区间概率优劣排序作为制定风险防护和控制决策的依据。D-S证据理论中似然函数和信任函数构成的不确定区间解决了数据获取的不准确性和不确定性问题。故障树模型中由下而上的风险传播过程,能够使得系统风险的计算结果区间范围降低,评估数据准确性提高。
[Abstract]:As the focus of national energy field, the information security problem of electric power industry is becoming more and more serious. In recent years, the important information security accidents of electric power control system make the need to strengthen information security more urgent. The risk assessment of information security is an important part of the key technology of information security. It is of great significance to strengthen the information security measures and precautions of electric power control system. This paper analyzes the security situation and information security research progress of electric power control system, and summarizes the research results of key technologies of information security. Based on the comparison of existing risk assessment solutions and quantification methods, the information security risk assessment model and quantification method based on fault tree and D-S evidence theory are proposed, and the design process is introduced in detail. The method is applied to the information security risk assessment of auxiliary control system in a power plant, and a complete risk assessment model is constructed and quantified. At the same time, the security model of the system is constructed by comparing the comprehensive evaluation results with the expert subjective evaluation results, and the risk handling suggestions are put forward. The advantage of the quantitative method and evaluation model proposed in this paper lies in its ability to clearly describe the process and path of risk propagation. The uncertainty interval composed of likelihood function and trust function in the evidence theory of D-S is used to solve the problem of inaccuracy and uncertainty of data acquisition by using the order of interval probability of bottom risk as the basis of risk protection and control decision. The bottom-up risk propagation process in the fault tree model can reduce the interval range of the calculated results of the system risk and improve the accuracy of the evaluation data.
【学位授予单位】：华东理工大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TM76

【参考文献】