Netinfo Security ›› 2023, Vol. 23 ›› Issue (9): 85-94.doi: 10.3969/j.issn.1671-1122.2023.09.008

Previous Articles     Next Articles

Cross-Domain Dynamic Security Risk Analysis Method of Industrial Control System Based on Probabilistic Attack Graph

PU Junyan, LI Yahui, ZHOU Chunjie()   

  1. School of Artificial Intelligence and Automation, Huazhong University of Science and Technology, Wuhan 430074, China
  • Received:2023-06-25 Online:2023-09-10 Published:2023-09-18
  • Contact: ZHOU Chunjie E-mail:cjiezhou@hust.edu.cn

Abstract:

Security risk analysis is the foundation for ensuring the long-term safe and stable operation of industrial control systems. The characteristics of cyber-physical coupling make the system security risk increase sharply. In order to realize accurate security situation awareness of large-scale industrial control systems, a cross-domain dynamic security risk analysis framework based on probabilistic attack graph was proposed. Firstly, the cross-domain attack graph was automatically generated by cross-domain attack graph generation algorithm based on system security metadata, system topology and association constraints between preconditions and postconditions of vulnerabilities in security knowledge graph. Then, based on the cross-domain attack graph, the basic attributes of vulnerabilities and the time-varying characteristics of threats were incorporated into the risk propagation probability calculation to realize the cross-domain dynamic security risk analysis of industrial control system. The experimental results show that the method realizing the automatic cross-domain dynamic security risk analysis of industrial control systems, and the representation of the two-layer attack graph effectively improves the convenience of security analysts in analyzing complex systems.

Key words: industrial control system, probabilistic attack graph, knowledge graph, dynamic security risk analysis

CLC Number: