Safety Assessment on Digital Radio Transmission based on Attack Tree Model

doi:10.3969/j.issn.1671-1122.2014.08.013

Abstract

Abstract: Digital radio is widely used in supervisory control and data acquisition system, and the transmission security is increasingly challenged. In order to systematically analyze and assess the digital radio transmission security in supervisory control and data acquisition system, this paper uses attack tree modeling method for the existing risk in the digital radio transmission stage, improves the traditional attack tree, refines attack nodes, quantifies the attack risk of leaf nodes, and establishes an attack tree model in which threats to the supervisory control and data acquisition system is the target. And it directly reflects the various possible attack picture based on the attack tree. This paper calculates the probability of the occurrence of each attack picture based on attack tree, and considers the overall safety of the system under various attack pictures. Finally, it analyzes quantitatively the impact of each change in the probability of attacks on the system security based on security sensitivity. And it identifies the key way which has a greater impact on system security, and proposes measures to improve the system security level. This attack tree model can be used to assess systemic risk and to distinguish different security threat levels of different attacks to the system, thus to provide a basis for decision-makers to take appropriate protective measures for the digital radio transmission.

Key words: attack tree, data acquisition and supervisory control system, digital radio transmission, safety assessment, attack picture

CLC Number:

TP309

LI Hui, ZHANG Ru, LIU Jian-yi, ZHAO Jing. Safety Assessment on Digital Radio Transmission based on Attack Tree Model[J]. 信息网络安全, 2014, 14(8): 71-76.

References

[1] Nve Xiao, Peng Wang, Yi Tian, et al. Research and application of Preliminary System Safety Assessment on civil airborne systems[A]. Quality, Reliability, Risk, Maintenance, and Safety Engineering (ICQR2MSE), 2011 International Conference on[C]. Xi’an, China: IEEE, 2011: 562-566.
[2] Zhang Dachao, Wen Xiaojun. Assessment of mining area’s environmental system safety by fuzzy logic[A]. Remote Sensing, Environment and Transportation Engineering (RSETE), 2011 International Conference on[C]. Nanjing, China: IEEE, 2011:2971-2975.
[3] Ziyan Zhao, Jianming Liu, RuiuiZhang, et al. Research of safety and risk assessment technology for power system communication services[A]. Power System Technology (POWERCON), 2010 International Conference on[C]. HangZhou, China: IEEE, 2010: I-VII.
[4] Xin zuo, Huiliang Zhang, Qianjin Deng, et al. Safety assessment of control system based on fuzzy comprehensive evaluation[A]. Fuzzy Systems and Knowledge Discovery (FSKD), 2012 9th International Conference on[C]. Sichuan, China: IEEE, 2012:586-591.
[5] Disso J.P., Jones K., Bailey S. A Plausible Solution to SCADA Security Honeypot Systems[A]. Broadband and Wireless Computing, Communication and Application (BWCCA), 2013 Eighth International Conference on[C]. Compiegne, France: IEEE, 2013: 443-448.
[6] XU Hong-hua, ZHANG Xu. Security protection strategy of networked SCADA system[J]. Journal of Safety Science and Technology, 2011, 7(011): 164-168.
[7] Xue Liang. Optimizing Alarm Placement in Safety Critical Systems[J]. Information Security and Technology, 2012, 3(09): 100-105.
[8] Suoto H., Breckenridge M., Hoppe J., et al. Specific Absorption Rate (SAR) safety assessment for Wireless Network after Next (WNaN) radio antennas[A]. Wireless Information Technology and System (ICWITS), 2010 IEEE International Conference on[C]. Honolulu, USA: IEEE, 2010:1-4
[9] Sze K.Y., Keller M.G. Field characterization of an air surveillance radar at near-ground locations[A]. Antenna Technology and Applied Electromagnetics & the American Electromagnetics Conference (ANTEM-AMEREM), 2010 14th International Symposium on[C]. Ottawa, Canada: IEEE, 2010: 1-4
[10] ZHENG Li, LIAO Zhen-lin. Civil Airliner VHF Communication Radio Architecture Based on Safety Assessment[J]. Telecommunication Engineering, 2013, 5(08): 994-1000.
[11] Rong Jiang, Rongxing Lu, Ye Wang, et al. Energy-Theft Detection Issues for Advanced Metering Infrastructure in Smart Grid[J]. Tsinghua Science and Technology, 2014, 19(02): 105-120.
[12] Ren Dan-dan, DU Su-guo. Novel attack tree based risk assessment approach for location privacy preservation in VANETs[J]. APPLICATION RESEARCH OF COMPUTERS, 2011, 2(02): 728-732.
[13] Jie Wang, Phan R.C.-W., Whitley J.N., Parish D.J. Augmented Attack Tree Modeling of Distributed Denial of Services and Tree Based Attack Detection Method[A]. Computer and Information Technology (CIT), 2010 IEEE 10th International Conference on[C]. Bradford, Britain: IEEE, 2010: 1009-1014.
[14] Morais A., Martins E., Cavalli A., et al. Security Protocol Testing Using Attack Tree[A]. Computational Science and Engineering, 2009. CSE’09. International Conference on (Volume:2)[C]. Vancouver. BC, Canada: IEEE, 2009: 690-697.
[15] Ping Wang, Wen-Hui Lin, Pu-Tsun Kuo, et al. Threat risk analysis for cloud security based on Attack-Defense Trees[A]. Computing Technology and Information Management (ICCM), 2012 8th International Conference on (Volume:1)[C]. Seoul, Korea: IEEE, 2012: 106-111.
[16] Yi Xiao, Wang Y.J., Huang Z.G. Survivability analysis of SOA based on attack tree models[A]. Communication Technology (ICCT), 2012 IEEE 14th International Conference on[C]. Chengdu, China: IEEE, 2012: 819-823.
[17] Babovic E., Velagic J. Lowering SCADA development and implementation costs using PtP concept[A]. Information, Communication and Automation Technologies, 2009. ICAT 2009. XXII International Symposium on[C]. Bosnia: IEEE, 2009: 1-7.
[18] ZHANG Kai-lun, JIANG Quan-yuan. Vulnerability assessment on WAMS communication system based on attack tree model[J]. Power System Protection and Control, 2013, 41(07): 116-122.