基于攻击树模型的数传电台传输安全性评估

doi:10.3969/j.issn.1671-1122.2014.08.013

信息网络安全 ›› 2014, Vol. 14 ›› Issue (8): 71-76.doi: 10.3969/j.issn.1671-1122.2014.08.013

基于攻击树模型的数传电台传输安全性评估

李慧, 张茹, 刘建毅, 赵静

北京邮电大学信息安全中心,北京 100876

收稿日期:2014-06-19 出版日期:2014-08-01
作者简介:李慧（1989-）,女,辽宁,硕士研究生,主要研究方向：信息内容安全、工业控制安全;张茹（1976-）,女,山东,副教授,博士,主要研究方向：多媒体安全、信息安全;刘建毅（1980-）,男,山西,副教授,博士,主要研究方向：信息内容安全、灾难备份;赵静（1990-）女,天津,硕士研究生,主要研究方向：软件安全、内容安全、网络安全。
基金资助:
国家科技支撑计划[2012BAH08B02]、国家高技术研究发展计划[2012AA012606]、中央高校基本科研业务费专项资金[2013RC0310]、教育部科技发展中心网络时代科技论文快速共享专项研究课题[2013114]、数字版权研发工程项目[1681300000119]、北京高等学校青年英才计划[YETP0448]

Safety Assessment on Digital Radio Transmission based on Attack Tree Model

LI Hui, ZHANG Ru, LIU Jian-yi, ZHAO Jing

Information Security Center, Beijing University of Posts and Telecommunications, Beijing 100876, China

Received:2014-06-19 Online:2014-08-01

摘要/Abstract

摘要： 数传电台在数据采集与监视控制系统中广泛应用,其传输安全也受到越来越大的挑战。文章为了系统分析评估数据采集与监视控制系统中数传电台传输的安全性,针对数传电台传输阶段可能存在的风险,采用攻击树建模方法,对传统攻击树进行改进,重新定义了攻击节点,量化了叶子节点的攻击风险,建立了以威胁数据采集与监视控制系统安全为攻击目标的攻击树模型,在攻击树的基础上可以直观地反映各种可能的攻击图景。并根据攻击树计算出了各攻击图景发生的概率,根据多攻击图景考虑系统总的安全性。最后利用安全性灵敏度,定量分析各攻击方式发生概率变化对系统安全性的影响,找出对系统安全性影响较大的关键方式,提出提高系统安全水平的措施。文中攻击树模型可以用于评估系统风险,区分不同攻击方式对系统的不同安全威胁程度,由此为决策者采取相应的数传电台传输保护措施提供依据。

关键词: 攻击树, 数据采集与监视控制系统, 数传电台传输, 安全性评估, 攻击图景

Abstract: Digital radio is widely used in supervisory control and data acquisition system, and the transmission security is increasingly challenged. In order to systematically analyze and assess the digital radio transmission security in supervisory control and data acquisition system, this paper uses attack tree modeling method for the existing risk in the digital radio transmission stage, improves the traditional attack tree, refines attack nodes, quantifies the attack risk of leaf nodes, and establishes an attack tree model in which threats to the supervisory control and data acquisition system is the target. And it directly reflects the various possible attack picture based on the attack tree. This paper calculates the probability of the occurrence of each attack picture based on attack tree, and considers the overall safety of the system under various attack pictures. Finally, it analyzes quantitatively the impact of each change in the probability of attacks on the system security based on security sensitivity. And it identifies the key way which has a greater impact on system security, and proposes measures to improve the system security level. This attack tree model can be used to assess systemic risk and to distinguish different security threat levels of different attacks to the system, thus to provide a basis for decision-makers to take appropriate protective measures for the digital radio transmission.

Key words: attack tree, data acquisition and supervisory control system, digital radio transmission, safety assessment, attack picture

中图分类号:

TP309

李慧, 张茹, 刘建毅, 赵静. 基于攻击树模型的数传电台传输安全性评估[J]. 信息网络安全, 2014, 14(8): 71-76.

LI Hui, ZHANG Ru, LIU Jian-yi, ZHAO Jing. Safety Assessment on Digital Radio Transmission based on Attack Tree Model[J]. 信息网络安全, 2014, 14(8): 71-76.

参考文献

[1] Nve Xiao, Peng Wang, Yi Tian, et al. Research and application of Preliminary System Safety Assessment on civil airborne systems[A]. Quality, Reliability, Risk, Maintenance, and Safety Engineering (ICQR2MSE), 2011 International Conference on[C]. Xi’an, China: IEEE, 2011: 562-566.
[2] Zhang Dachao, Wen Xiaojun. Assessment of mining area’s environmental system safety by fuzzy logic[A]. Remote Sensing, Environment and Transportation Engineering (RSETE), 2011 International Conference on[C]. Nanjing, China: IEEE, 2011:2971-2975.
[3] Ziyan Zhao, Jianming Liu, RuiuiZhang, et al. Research of safety and risk assessment technology for power system communication services[A]. Power System Technology (POWERCON), 2010 International Conference on[C]. HangZhou, China: IEEE, 2010: I-VII.
[4] Xin zuo, Huiliang Zhang, Qianjin Deng, et al. Safety assessment of control system based on fuzzy comprehensive evaluation[A]. Fuzzy Systems and Knowledge Discovery (FSKD), 2012 9th International Conference on[C]. Sichuan, China: IEEE, 2012:586-591.
[5] Disso J.P., Jones K., Bailey S. A Plausible Solution to SCADA Security Honeypot Systems[A]. Broadband and Wireless Computing, Communication and Application (BWCCA), 2013 Eighth International Conference on[C]. Compiegne, France: IEEE, 2013: 443-448.
[6] XU Hong-hua, ZHANG Xu. Security protection strategy of networked SCADA system[J]. Journal of Safety Science and Technology, 2011, 7(011): 164-168.
[7] Xue Liang. Optimizing Alarm Placement in Safety Critical Systems[J]. Information Security and Technology, 2012, 3(09): 100-105.
[8] Suoto H., Breckenridge M., Hoppe J., et al. Specific Absorption Rate (SAR) safety assessment for Wireless Network after Next (WNaN) radio antennas[A]. Wireless Information Technology and System (ICWITS), 2010 IEEE International Conference on[C]. Honolulu, USA: IEEE, 2010:1-4
[9] Sze K.Y., Keller M.G. Field characterization of an air surveillance radar at near-ground locations[A]. Antenna Technology and Applied Electromagnetics & the American Electromagnetics Conference (ANTEM-AMEREM), 2010 14th International Symposium on[C]. Ottawa, Canada: IEEE, 2010: 1-4
[10] ZHENG Li, LIAO Zhen-lin. Civil Airliner VHF Communication Radio Architecture Based on Safety Assessment[J]. Telecommunication Engineering, 2013, 5(08): 994-1000.
[11] Rong Jiang, Rongxing Lu, Ye Wang, et al. Energy-Theft Detection Issues for Advanced Metering Infrastructure in Smart Grid[J]. Tsinghua Science and Technology, 2014, 19(02): 105-120.
[12] Ren Dan-dan, DU Su-guo. Novel attack tree based risk assessment approach for location privacy preservation in VANETs[J]. APPLICATION RESEARCH OF COMPUTERS, 2011, 2(02): 728-732.
[13] Jie Wang, Phan R.C.-W., Whitley J.N., Parish D.J. Augmented Attack Tree Modeling of Distributed Denial of Services and Tree Based Attack Detection Method[A]. Computer and Information Technology (CIT), 2010 IEEE 10th International Conference on[C]. Bradford, Britain: IEEE, 2010: 1009-1014.
[14] Morais A., Martins E., Cavalli A., et al. Security Protocol Testing Using Attack Tree[A]. Computational Science and Engineering, 2009. CSE’09. International Conference on (Volume:2)[C]. Vancouver. BC, Canada: IEEE, 2009: 690-697.
[15] Ping Wang, Wen-Hui Lin, Pu-Tsun Kuo, et al. Threat risk analysis for cloud security based on Attack-Defense Trees[A]. Computing Technology and Information Management (ICCM), 2012 8th International Conference on (Volume:1)[C]. Seoul, Korea: IEEE, 2012: 106-111.
[16] Yi Xiao, Wang Y.J., Huang Z.G. Survivability analysis of SOA based on attack tree models[A]. Communication Technology (ICCT), 2012 IEEE 14th International Conference on[C]. Chengdu, China: IEEE, 2012: 819-823.
[17] Babovic E., Velagic J. Lowering SCADA development and implementation costs using PtP concept[A]. Information, Communication and Automation Technologies, 2009. ICAT 2009. XXII International Symposium on[C]. Bosnia: IEEE, 2009: 1-7.
[18] ZHANG Kai-lun, JIANG Quan-yuan. Vulnerability assessment on WAMS communication system based on attack tree model[J]. Power System Protection and Control, 2013, 41(07): 116-122.

基于攻击树模型的数传电台传输安全性评估

Safety Assessment on Digital Radio Transmission based on Attack Tree Model

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 4

编辑推荐

Metrics

本文评价

[1]	冯帆;罗森林. 基于智能代理和攻击树的自动攻击系统研究[J]. , 2013, 13(1): 0-0.
[2]	杨卫军;张舒;胡光俊. 基于攻击树模型的木马检测方法[J]. , 2011, 11(9): 0-0.
[3]	李战宝;潘卓. 透视“震网”病毒[J]. , 2011, 11(9): 0-0.
[4]	陈莉;方勇;刘亮;钟倩. 基于扩展攻击树的文件安全度评估研究[J]. , 2010, (2): 0-0.