基于模糊层次分析法的电动汽车充电桩信息安全风险评估方法

doi:10.11930/j.issn.1004-9649.202002053

中国电力 ›› 2021, Vol. 54 ›› Issue (1): 96-103.DOI: 10.11930/j.issn.1004-9649.202002053

基于模糊层次分析法的电动汽车充电桩信息安全风险评估方法

王伟贤¹, 孙舟¹, 潘鸣宇¹, 张宝群¹, 李中伟², 叶麟³

1. 国网北京市电力公司，北京 100075;
2. 哈尔滨工业大学电气工程及自动化学院，黑龙江哈尔滨 150001;
3. 哈尔滨工业大学计算机科学与技术学院，黑龙江哈尔滨 150001

收稿日期:2020-02-12 修回日期:2020-03-11 出版日期:2021-01-05 发布日期:2021-01-11
作者简介:王伟贤(1987—)，女，硕士，工程师，从事电动汽车及数据分析研究，E-mail：772093280@qq.com;孙舟(1986—)，男，硕士，高级工程师，从事电动汽车充换电技术研究，E-mail：sunzhou0812@163.com;潘鸣宇(1985—)，男，硕士，高级工程师，从事充电网络规划运营和关键设备研制工作，E-mail：pan_my619@sina.com
基金资助:
国家自然科学基金资助项目(61872111)

Information Security Risk Assessment Method for Electric Vehicle Charging Piles Based on Fuzzy Analytic Hierarchy Process

WANG Weixian¹, SUN Zhou¹, PAN Mingyu¹, ZHANG Baoqun¹, LI Zhongwei², YE Lin³

1. State Grid Beijing Electric Power Company, Beijing 100075, China;
2. College of Electrical Engineering and Automation, Harbin Institute of Technology, Harbin 150001, China;
3. College of Computer Science and Technology, Harbin Institute of Technology, Harbin 150001, China

Received:2020-02-12 Revised:2020-03-11 Online:2021-01-05 Published:2021-01-11
Supported by:
This work is supported by National Natural Science Foundation of China (No.61872111)

摘要/Abstract

摘要： 为定量评估电动汽车充电桩系统信息安全水平，发现其脆弱之处和安全隐患，基于模糊层次分析法设计电动汽车充电桩系统信息安全风险评估方案与流程；建立电动汽车充电桩系统资产安全价值层次分析模型、安全威胁层次分析模型及其评价指标体系；将电动汽车充电桩系统分为电动汽车充电桩、运营管理平台、用户资产及其之间的通信链路与通信数据，通过调研以及问卷调查的方式获得专家意见并进行量化。基于模糊层次分析法计算资产价值权重与安全威胁权重，在此基础上，计算得到各资产的风险值大小，有效识别出充电桩系统的脆弱点与安全风险，并给出安全防护措施及建议。

关键词: 电动汽车充电桩, 信息安全评估, 模糊层次分析法

Abstract: In order to quantitatively evaluate the information security level of the electric vehicle charging pile system and identify its vulnerability and hidden security risks, an information security risk assessment scheme and process is designed for electric vehicle charging pile system based on the fuzzy analytic hierarchy process; a security value hierarchical analysis model, a security threat hierarchic analysis model and an evaluation index system are established for the electric vehicle charging pile system assets. The assets of the electric vehicle charging pile system are divided into electric vehicle charging infrastructure pile asset, operation management platform asset, user asset and communication data asset, and they are quantified through investigation and expert opinions obtained by questionnaire surveys. The asset value weight and security threat weight are calculated based on the fuzzy analytic hierarchy process, and consequently the risk value of each asset is calculated. In this way, the fragile points and security risks of the charging pile system are effectively identified, and the corresponding security protection measures and recommendations are provided.

Key words: electric vehicle charging pile, information security assessment, fuzzy analytic hierarchy process

王伟贤, 孙舟, 潘鸣宇, 张宝群, 李中伟, 叶麟. 基于模糊层次分析法的电动汽车充电桩信息安全风险评估方法[J]. 中国电力, 2021, 54(1): 96-103.

WANG Weixian, SUN Zhou, PAN Mingyu, ZHANG Baoqun, LI Zhongwei, YE Lin. Information Security Risk Assessment Method for Electric Vehicle Charging Piles Based on Fuzzy Analytic Hierarchy Process[J]. Electric Power, 2021, 54(1): 96-103.

导出引用管理器 EndNote|Ris|BibTeX

链接本文: https://www.electricpower.com.cn/CN/10.11930/j.issn.1004-9649.202002053

https://www.electricpower.com.cn/CN/Y2021/V54/I1/96

参考文献

[1] 孙舟, 潘鸣宇, 陈振, 等. 电动汽车充电桩自动化渗透测试系统的研究和设计[J]. 中国电力, 2019, 52(1): 57-62, 109
SUN Zhou, PAN Mingyu, CHEN Zhen, et al. Research and design of automatic penetration testing system for electric vehicle charging piles[J]. Electric Power, 2019, 52(1): 57-62, 109
[2] 赵丽莉, 刘忠喜, 孙国强, 等. 基于非线性状态估计的虚假数据注入攻击代价分析[J]. 电力系统保护与控制, 2019, 47(19):38-45.
ZHAO Lili, LIU Zhongxi, SUN Guoqiang, et al. Cost analysis of the false data injection attack based on nonlinear state estimation[J]. Power System Protection and Control, 2019, 47(19):38-45.
[3] 黄玉洁, 唐作其. 基于改进贝叶斯模型的信息安全风险评估[J]. 计算机与现代化, 2018(4): 95-99, 126
HUANG Yujie, TANG Zuoqi. Information security risk assessment based on improved Bayesian network model[J]. Computer and Modernization, 2018(4): 95-99, 126
[4] Information Technology-Security Techniques—Information Security Management Systems-Requirements: ISO/IEC 27001-2005[S].
[5] BROCKWELL P J, DAVIS R A. 时间序列的理论与方法[M]. 北京: 世界图书出版公司, 2015.
[6] 信息安全技术信息安全风险评估规范: GB/T 20984—2007[S]. 北京: 中国标准出版社, 2007.
[7] 信息安全技术信息安全风险管理指南: GB/Z 24364—2009[S]. 北京: 中国标准出版社, 2009.
[8] 信息安全技术信息安全风险评估实施指南: GB/T 31509—2015[S]. 北京: 中国标准出版社, 2016.
[9] 信息技术安全技术信息安全风险管理 GB/T 31722—2015[S]. 北京: 中国标准出版社, 2016.
[10] 梁智强, 林丹生. 基于电力系统的信息安全风险评估机制研究[J]. 信息网络安全, 2017(4): 86-90
LIANG Zhiqiang, LIN Dansheng. Information security risk assessment mechanism research based on power system[J]. Netinfo Security, 2017(4): 86-90
[11] 杨小宁, 李晓娥. 浅析信息安全风险评估在供电企业的实践[J]. 电力信息化, 2010, 8(2): 26-30
[12] 刘念, 张建华, 张昊. 网络环境下变电站自动化系统的信息资产识别[J]. 电力系统自动化, 2009, 33(13): 53-57
LIU Nian, ZHANG Jianhua, ZHANG Hao. Information asset identification for network-based substation automation systems[J]. Automation of Electric Power Systems, 2009, 33(13): 53-57
[13] 刘柳. 面向SCADA业务的电力通信传输网安全性评估[D]. 北京: 华北电力大学, 2013.
LIU Liu. SCADA services oriented security evaluation for electric power communication networks[D]. Beijing: North China Electric Power University, 2013.
[14] 齐伟钢, 彭凝多, 黄慧萍. 基于静态贝叶斯博弈的SCADA系统安防策略选择[J]. 通信技术, 2017, 50(9): 2037-2044
QI Weigang, PENG Ningduo, HUANG Huiping. Defense strategy selection based on static Bayesian game for enhancing the cyber security of the SCADA system[J]. Communications Technology, 2017, 50(9): 2037-2044
[15] 郭莹, 吕伟鹏. 电动汽车充电设施建设发展综述[J]. 科技广场, 2013(11): 60-63
GUO Ying, LV Weipeng. Development overview for construction of electric vehicle charging facilities[J]. Science Mosaic, 2013(11): 60-63
[16] WANG Y, HONG Z, LI J, et al. Challenges and future trends for embedded security in electric vehicular communications[C]//IEEE International Conference on Asic. IEEE, 2016.
[17] 郭磊, 王克文, 文福拴, 等. 电动汽车充电设施规划研究综述与展望[J]. 电力科学与技术学报, 2019, 34(3):56-70.
GUO Lei, WANG Kewen, WEN Fushuan, et al. Review and prospect of charging facility planning of electric vehicles[J]. Journal of Electric Power Science and Technology, 2019, 34(3):56-70.
[18] 官嘉玉, 江修波, 刘丽军. 考虑电动汽车随机充电行为及低碳效益的充电站规划[J]. 电力科学与技术学报, 2019, 34(4): 93-100
GUAN Jiayu, JIANG Xiubo, LIU Lijun. Optimal allocation of charging stations considering stochastic charging behavior and low carbon efficiency of electric vehicles[J]. Journal of Electric Power Science and Technology, 2019, 34(4): 93-100

基于模糊层次分析法的电动汽车充电桩信息安全风险评估方法

Information Security Risk Assessment Method for Electric Vehicle Charging Piles Based on Fuzzy Analytic Hierarchy Process

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 4

编辑推荐

Metrics

[1]	郑云安, 夏哲辉, 罗毅, 陈耀红, 周力行, 彭俊程. 基于模糊层次分析法的扶贫光伏电站运维模式选型[J]. 中国电力, 2021, 54(6): 191-198.
[2]	杨珺，曾昭强，孙秋野，黄旭. 一种基于模糊层析分析法的分散式风电场选址方法[J]. 中国电力, 2015, 48(4): 151-155.
[3]	高亚静, 郭艳东, 李天天. 城市电动汽车充电站两步优化选址方法[J]. 中国电力, 2013, 46(8): 143-147.
[4]	程超, 周渝慧, 岳开伟, 杨建, 何战勇, 梁娜. 城市绿色电力战略环境评价指标体系[J]. 中国电力, 2012, 45(3): 76-80.

模态框（Modal）标题

基于模糊层次分析法的电动汽车充电桩信息安全风险评估方法

Information Security Risk Assessment Method for Electric Vehicle Charging Piles Based on Fuzzy Analytic Hierarchy Process

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 4

编辑推荐

Metrics