Electric CPS Information Network Vulnerability and Assessment Method

doi:10.11930/j.issn.1004-9649.201609022

Abstract

Abstract: Electric power information network is an integral part of electric CPS, and its threat assessment of vulnerability is one of the important basis for the risk assessment of the electric CPS. In view of the limitations of the existing vulnerability threat assessment technology of general information network, a new vulnerability threat assessment method is proposed for electric power information network based on the common vulnerability scoring system (CVSS). Three assessing elements are selected including vulnerability distribution threat, access vector and utilization complexity. The analytic hierarchy process (AHP) is adopted to build a vulnerability threat assessment model, and the way of forming parameters is given. The assessment results are defined into vulnerability threat levels on the basis of quantitative assessment. A case study of the assessment is made and the results are compared with the CVSS system. The assessment results show that the AHP-based vulnerability assessment of information network reflects the coupling relationship between information and physics.

Key words: CPS, electric power information network, vulnerability, threat assessment, AHP

CLC Number:

TM621
TK37

YANG Guotai, WANG Yufei, LUO Jianbo, CHEN Xiong, LI Jun'e, LIU Jian, RU Yeqi, WU Yibei. Electric CPS Information Network Vulnerability and Assessment Method[J]. Electric Power, 2018, 51(1): 83-89.

Add to citation manager EndNote|Ris|BibTeX

URL: https://www.electricpower.com.cn/EN/10.11930/j.issn.1004-9649.201609022

https://www.electricpower.com.cn/EN/Y2018/V51/I1/83

References

[1] 王宇飞,徐志博,王婧. 层次化电力信息网络威胁态势评估方法[J]. 中国电力,2013,46(7):121-125. WANG Yufei, XU Zhibo, WANG Jing. Hierarchical cyber-threat situation evaluation method for electric power information network[J]. Electric Power, 2013, 46(7):121-125.
[2] 苏盛,吴长江,马钧,等. 基于攻击方视角的电力CPS网络攻击模式分析[J]. 电网技术,2014,38(11):3115-3120. SU Sheng, WU Changjiang, MA jun, et al. Perspective based analysis on cyber attack mode to cyber-physical system[J]. Power System Technology, 2014, 38(11):3115-3120.
[3] 翟瑞聪,高雅. 电力设备远程监测诊断中心系统遥视信息联动应用研究[J]. 电力系统保护与控制,2015,43(8):150-154. ZHAI Ruicong, GAO Ya. Research on application of remote video information linkage of the power equipment monitoring and diagnosis center system[J]. Power System Protection and Control, 2015, 43(8):150-154.
[4] FARWELL J P, ROHOZINSKI R. Stuxnet and the future of cyber war[J]. Survival, 2011, 53(1):23-40.
[5] 金波,肖先勇,陈晶,等. 考虑保护失效和电网动态平衡特性的连锁故障风险评估[J]. 电力系统保护与控制,2016,44(8):1-7. JIN Bo, XIAO Xianyong, CHEN Jing, et al. A method of risk assessment considering protection failures and dynamic equilibrium of power grid[J]. Power System Protection and Control, 2016, 44(8):1-7.
[6] 刘仲,牟龙华,杨智豪. 大停电后含分布式电源的电网分区及负荷恢复方案[J]. 电力系统保护与控制,2015,43(22):55-61. LIU Zhong, MU Longhua, YANG Zhihao. Scheme for partitioning and load restoration of power grid containing distributed generation after blackout[J]. Power System Protection and Control, 2015, 43(22):55-61.
[7] 张帅. 对APT攻击的检测与防御[J]. 信息安全与技术,2011, 2(9):125-127. ZHANG Shuai. The Detection and defense about APT attack[J].Information Securiy and Technology, 2011, 2(9):125-127.
[8] MELL P, SCARFONE K, ROMANOSKY S. Common vulnerability scoring system[J]. IEEE Security & Privacy, 2006, 4(6):85-89.
[9] FRUHWIRTH C, MANNISTO T. Improving CVSS-based vulnerability prioritization and response with context information[C]//International Symposium on Empirical Software Engineering and Measurement. IEEE Computer Society, 2009:535-544.
[10] 刘奇旭,张翀斌,张玉清,等. 安全漏洞等级划分关键技术研究[J]. 通信学报,2012,33(S1):79-87. LIU Qixu, ZHANG Chongbin, ZHANG Yuqing, et al. Research on key technology of vulnerability threat classification[J]. Journal on Communications, 2012, 33(S1):79-87.
[11] 周亮,李俊娥,陆天波,等. 信息系统漏洞风险定量评估模型研究[J]. 通信学报,2009,30(2):71-76. ZHOU Liang, LI Jun'e, LU Tianbo, et al. Research on quantitative assessment model on vulnerability risk for information system[J]. Journal on Communications, 2009, 30(2):71-76.
[12] 李文武,游文霞,王先培. 电力系统信息安全研究综述[J]. 电力系统保护与控制,2011,39(10):140-147. LI Wenwu, YOU Wenxia, WANG Xianpei. Survey of cyber security research in power system[J]. Power System Protection and Control, 2011, 39(10):140-147.
[13] SAATY T L, VARGAS L G. Models, methods, concepts & applications of the analytic hierarchy process[M]. Kluwer Acdemic Publishers, 2012.
[14] 李鑫,李京春,郑雪峰,等. 一种基于层次分析法的信息系统漏洞量化评估方法[J]. 计算机科学,2012,39(7):58-63. LI Xin, LI Jingchun, ZHENG Xuefeng, et al. Analytic hierarchy process (AHP)-based vulnerability quantitative assessment method for information systems[J]. Computer Science, 2012, 39(7):58-63.

[1]	Weiping ZHU, Yi TANG, Xingshen WEI, Zengji LIU. Defense Methods for Adversarial Attacks Against Power CPS Data-Driven Algorithms [J]. Electric Power, 2024, 57(9): 32-43.
[2]	LIU Linbin, MIAO Quanqiang, LI June. A Method for Mining GOOSE Protocol Parsing Vulnerabilities Based on Fuzzing [J]. Electric Power, 2022, 55(4): 33-43.
[3]	WANG Sihua, CHEN Long, WANG Junjun, ZHAO Lei. Fuzzy Comprehensive Evaluation of Aging State of Silicone Rubber Sheds of Composite Insulators [J]. Electric Power, 2021, 54(5): 156-165.
[4]	LI Xiao, LI Manli, NI Ming. A Review of Analysis and Control of Cyber Physical Distribution System [J]. Electric Power, 2020, 53(1): 11-21.
[5]	ZHOU Xia, YANG Zhou, NI Ming, BU Chengjie, LIN Husheng, LI Manli. Security Evaluation of Distribution Network CPS Considering Cyber-Physical Combinations for Anticipated Fault Screening [J]. Electric Power, 2020, 53(1): 40-48.
[6]	DUAN Xuchen, PENG Daogang, YAO Jun, ZHAO Huirong, XIA Fei. Assessment on the Threat to the Information Security of Power Plant Control System Based on SA-PSO-AHP Method [J]. Electric Power, 2019, 52(5): 29-35.
[7]	SUN Zhou, PAN Mingyu, CHEN Zhen, YUAN Xiaoxi, CHEN Ping. Research and Design of Automatic Penetration Testing System for Electric Vehicle Charging Piles [J]. Electric Power, 2019, 52(1): 57-62,109.
[8]	GAO Zhiyuan, HUANG Haifeng, SUN Qian, ZHANG Hong, CAO Yang, TANG Baoguo. Research on Information and Communication Support for Transnational Interconnection of Power Dispatching and Trading Systems [J]. Electric Power, 2019, 52(1): 40-47.
[9]	LIANG Yun, HUANG Li, HOU Xingzhe, XU Xin, HU Zhiyuan, WANG Dayang. Discussion on Communication Requirement and Network Resource Allocation Scheme of Cyber Physical System for Distribution Network [J]. Electric Power, 2019, 52(1): 32-39.
[10]	LI Manli, CHEN Xuetong, LIU Dongyang, DING Weidong. Reliability Analysis of the Current Differential Protection with Integration of Cyber and Physical System [J]. Electric Power, 2019, 52(1): 25-31.
[11]	WEI Peng, ZHOU Qian, ZHU Xinyao, JI Tuo, ZHANG Ningyu. Research on Impact of TCPST on Receiving-End Power Grid with UHVAC and UHVDC Accessing [J]. Electric Power, 2018, 51(7): 7-12.
[12]	CHENG Meng, ZHAO Shuangzhi, WU Lijie, HU Chuansheng, XU Hui. A Comprehensive Evaluation Method for Urban Photovoltaic Power Generation Project Based on AHP-TOPSIS [J]. Electric Power, 2016, 49(10): 171-175.
[13]	CHEN Yuan, WANG Lu, HUANG Youzhen, TANG Qinglan, XU Yuqin, HONG Qianli, ZHAO Beibei. Economic Benefit Evaluation Model of Distribution Network Planning Based on Multi-level Extension Evaluation Method [J]. Electric Power, 2016, 49(10): 159-164.
[14]	LI Min, SU Xiaolin, YAN Xiaoxia, ZHANG Yanjuan. The Optimal Strategy of Level 2 Sharing Residential EVSE for Electric Vehicles [J]. Electric Power, 2015, 48(6): 94-101.
[15]	YANG Jun, ZENG Zhaoqiang, SUN Qiuye, HUANG Xu. A Distributed Wind Farms Siting Method based on Fuzzy Analytic Hierarchy Process [J]. Electric Power, 2015, 48(4): 151-155.