Research on Threat Modeling of Industrial Control Network Based on Attack Graph

doi:10.3969/j.issn.1671-1122.2018.10.010

Abstract

Abstract:

Application of network and computer technology in industrial control network has been very common. The industrial control network security has been widely concerned followed by universal application of information technology. Security issues such as vulnerabilities have been exposed in industrial control network security incidents. In this paper, the attack graph based on the growth of attack level is used to model attack scenarios of the industrial control network. Firstly, the formal representation methods of the attack graph and attack graph generation procedure have been introduced. Next, the article describes the typical attack scenarios in the industrial control network as an example and build the attack graph based on the attack level growth for the attack scenarios. Furthermore, it uses the attack graph to analyze the security of the network, predict the attack path most likely to be taken by attackers, and to obtain the security requirements. The example shows that using the attack graph to analyze the network security of the warship platform network can provide scientific guidance for the constructing the industrial control network security architecture, and is practical in use.

Key words: industrial control network, attack graph, attach modeling, attack level, security analysis

CLC Number:

TP309

Ruiying CHEN, Zemao CHEN, Hao WANG. Research on Threat Modeling of Industrial Control Network Based on Attack Graph[J]. Netinfo Security, 2018, 18(10): 70-77.

Figures/Tables 12

References 13

[1]	LIU Wei, LI Dong, SUN Bo.ICS Security Analysis[J]. Netinfo Security, 2012, 12(8): 41-43.
	刘威,李冬,孙波. 工业控制系统安全分析[J]. 信息网络安全,2012,12(8):41-43.
[2]	YANG An, SUN Limin, WANG Xiaoshan, et al.Intrusion Detection Techniques for Industrial Control Systems[J]. Journal of Computer Research and Development, 2016, 53(9): 2039-2054.
	杨安,孙利民,王小山,等. 工业控制系统入侵检测技术综述[J]. 计算机研究与发展,2016,53(9):2039-2054.
[3]	WANG Xiaoshan, YANG An, SHI Zhiqiang, et al.New Trend of Information Security in Industrial Control Systems[J]. Netinfo Security, 2015, 15(1): 6-11.
	王小山,杨安,石志强,等. 工业控制系统信息安全新趋势[J]. 信息网络安全,2015,15(1):6-11.
[4]	LU Jijun, HUANG Liusheng, WU Shufeng.An Attack Tree Approach for Network Intrusion Modeling[J]. Computer Engineering and Applications, 2003, 39(27): 160-163.
	卢继军,黄刘生,吴树峰. 基于攻击树的网络攻击建模方法[J]. 计算机工程与应用,2003,39(27):160-163.
[5]	LI Hui, ZHANG Ru, LIU Jianyi, et al.Safety Assessment on Digital Radio Transmission Based on Attack Tree Model[J]. Netinfo Security, 2014, 14(8): 71-76.
	李慧,张茹,刘建毅,等. 基于攻击树模型的数传电台传输安全性评估[J]. 信息网络安全,2014,14(8):71-76.
[6]	YUAN Jinming.Research on Attack Graph Generation for Industrial Control Network Security and Vulnerability[J]. Modern Electronics Technique, 2016, 39(11): 103-107.
	原锦明. 面向工控网络安全和漏洞分析的攻击图生成研究[J]. 现代电子技术,2016,39(11):103-107.
[7]	PRASAD K, KUMAR S, NEGI A, et al. Generation and Risk Analysis of Network Attack Graph[EB/OL]. .
[8]	CHEN Xiaojun, FANG Binxing, TAN Qingfeng.et al.Inferring Attack Intent of Malicious Insider Based on Probabilistic Attack Graph Model[J]. Chinese Journal of Computers, 2014, 37(1): 62-72.
	陈小军,方滨兴,谭庆丰,等. 基于概率攻击图的内部攻击意图推断算法研究[J]. 计算机学报,2014,37(1):62-72.
[9]	CHEN Feng, MAO Handong, ZHANG Weiming, et al.Survey of Attack Graph Technique[J]. Computer Science, 2011, 38(11): 12-18.
	陈锋,毛捍东,张维明,等. 攻击图技术研究进展[J]. 计算机科学,2011,38(11):12-18.
[10]	WU Di, LIAN Yifeng, CHEN Kai, et al.A Security Threats Identification and Analysis Method Based on Attack Graph[J]. Chinese Journal of Computers, 2012, 35(9): 1938-1950.
	吴迪,连一峰,陈恺,等. 一种基于攻击图的安全威胁识别和分析方法[J]. 计算机学报,2012,35(9):1938-1950.
[11]	CHEN Feng, ZHANG Yi, SU Jinshu, et al.Two Formal Analyses of Attack Graphs[J]. Journal of Software, 2010, 21(4): 838-848.
	陈锋,张怡,苏金树,等. 攻击图的两种形式化分析[J]. 软件学报,2010,21(4):838-848.
[12]	ZHANG Haixia, SU Purui, FENG Dengguo.A Network Security Analysis Model Based on the Increase in Attack Ability[J]. Journal of Computer Research and Development, 2007, 44(12): 2012-2019.
	张海霞,苏璞睿,冯登国. 基于攻击能力增长的网络安全分析模型[J]. 计算机研究与发展,2007,44(12):2012-2019.
[13]	JHA S, SHEYNER O, WING J. Two Formal Analyses of Attack Graphs[EB/OL]. .

主机	HOST1	HOST2	HOST3	…
HOST1		80	…	…
HOST2	1		…	…
HOST3	…	…		trust
…	…	…	…

编号	脆弱性名称	脆弱性利用结果
V1	信任脆弱性	特定user权限远程访问
V2	LAN Server CVE-2012-0158漏洞	远程获得root权限
V3	监控主机远程执行代码漏（MS08-067）	远程获得user权限
V4	监控主机允许权限提升漏洞	提升获得root权限
V5	被控主机缓冲区溢出漏洞	远程获得root权限
V6	传输协议漏洞	数据包完整性破坏

序号	攻击路径	被利用脆弱性序列	环境改变量
1	0→1→2→C	V2→V3→V1	2.1667
2	0→1→2→D	V2→V3→V6	2.3333
3	0→1→2→4→C	V2→V3→V4→V1	2.6875
4	0→1→2→4→D	V2→V3→V4→V6	2.8125
5	0→1→2→4→3→C	V2→V3→V4→V5→V1	3.6000
6	0→1→2→4→3→D	V2→V3→V4→V5→V6	3.7000
7	0→1→2→3→4→C	V2→V3→V5→V4→V1	3.8000
8	0→1→2→3→4→D	V2→V3→V5→V4→V6	3.9000
9	0→1→2→3→C	V2→V3→V5→V1	3.1875
10	0→1→2→3→D	V2→V3→V5→V6	3.3125
11	0→1→3→2→C	V2→V5→V3→V1	3.5000
12	0→1→3→2→D	V2→V5→V3→V6	3.6250
13	0→1→3→2→4→C	V2→V5→V3→V4→V1	4.0500
14	0→1→3→2→4→D	V2→V5→V3→V4→V6	4.1500
15	0→1→3→C	V2→V5→V1	3.0000
16	0→1→3→D	V2→V5→V6	3.1667