Y Hu,XR Xie,YZ Xin

DOI: https://doi.org/10.1109/pes.2004.1372957

2005-01-01

Abstract:This paper presents a modeling language and a quantitative evaluation approach for the security of power information systems. We firstly design a security architecture design trace language to universally describe system structures, services, security policies, attack behaviors and countermeasures. Next an automated risk analysis algorithm is proposed to get attack traces of power information systems. Then, based on the concept of relative security degree, security architecture can be quantitatively evaluated. Finally, with a case study in a real power information system, the effectiveness of the presented approach is demonstrated. In practice, the approach can be employed for assessing various kinds of countermeasures, such as increasing a new security function, adjusting system self structure, and changing customer operation requirements. And it can greatly decrease the subjectivity of counter-measure selection.

Wei Sun,Xiangwei Kong,Dequan He,Xingang You

DOI: https://doi.org/10.1109/ISECS.2008.149

2008-01-01

Abstract:This paper analyzes information security in the E-commerce based on game theory, and this game analysis method is applied to information security for the first time. We set up the information security game model of the defender and the attacker, make the equilibrium analysis of this game model, and get the ideal strategy combination. Then we introduce the penalty parameter of the defender and the penalty parameter of the attacker to solve the problem that the restriction condition is not satisfied. The introduction of the penalty parameter of the defender promotes the defender to invest in information security, and the introduction of the penalty parameter of the attacker promotes the attacker to take no attack strategy. This paper provides good reference for information security in the E-commerce.

Xue-gang Lin,Rong-sheng Xu,Hua Xiong,Miao-liang Zhu

2006-01-01

Abstract:Survivability should be considered beyond security for information system, and quantitative analysis can assess system survivability accurately for improvement. Information system is presented by finite state machine and its state transition map is used to describe analysis process, where the hierarchical structure of system state avoids the problem of enumerating states in Markov chain model. Based on SNA method, a framework of quantitative analysis is introduced: defining system, testing system’s survivability, computing survivability, and giving analysis report finally, which is easily implemented by computer. In the framework, the event database which is based on event classification and grade makes creating test project automatically and objectively, and survivability is computed through resistance, recognition and recovery in a hierarchical process.

HU Yan,XIE Xiao-rong,XIN Yao-zhong

DOI: https://doi.org/10.3321/j.issn:1000-3673.2006.04.008

2006-01-01

Abstract:Power information system is a typical distributed and interconnected system, which needs a systematic security design method. The authors analyze the features and defects of existing security design methods such as risk management method, guideline adherence, formal verification, find and fix approach and preventive design approach, and summarize the research results, which are available for reference, such as information system security engineering, analysis and design of survivable systems and security requirements analysis methods. The ten points to assess security design methods proposed in this paper can be used to classify and compare various security design methods, which can promote the research of security design process.

黄益民,平玲娣,潘雪增

DOI: https://doi.org/10.3785/j.issn.1008-973x.2001.06.005

2001-01-01

Abstract:After study of existing security models; analysis of information flow model, Bell-LaPadula(BLP) access control model and Biba access control model; and collation and comparison of their advantages and disadvantages, an improved model is put forward that satisfies the actual demands of information security. An implementation strategy is put forward that ensures information security, reliability, practicality and compatibility in the designed security system. An implementation scheme of this security system and its components and functions is provided. This system combines the following functions: mandatory access contro1, privilege separation, security audit, identity authentication and self-protection. It achieves the level 3 of national information security standard and level B1 of TCSEC standard. It was implemented in the Windows NT and Linux operating system and has yielded good resultsin application.

ZHANG Hong,SONG Zhen-ya

DOI: https://doi.org/10.3969/j.issn.1006-8228.2010.12.026

2010-01-01

Abstract:First,the quantitative analysis on physical examination status is done by the historical data in healthcare center.Then,the improvement strategies are presented from the aspects of the hard environment,soft environment and informatization construction in the center.Finally,the quantitative analysis process of physical examination status based on information flow is worked out,the basic statistics analysis model is constructed,and a quantitative analysis system on physical examination status is designed.The system improves the service quality and efficiency of physical examination obviously.

YANG Hualin,GUO Tao,TONG Shuiguang

DOI: https://doi.org/10.3969/j.issn.1001-3881.2006.02.081

2006-01-01

Abstract:For the greater request of PDMS's security,static and dynamic data security model was presented,which realizes full-scale and partial security management pattern and the strict control of the database.For the new object,gene heredity based property inheritance model was given to speedup the course of security management.For the security of the net,cipher and digital signature were used to insure the integrality and secrecy during the data transmission.The PDMS's security was controlled roundly.

Xuesong Huo,Ming Zhang,Hongqin Zhu,Wei Li

DOI: https://doi.org/10.1109/cbd54617.2021.00052

2021-01-01

Abstract:At present, most of the security situation assessment methods for the power monitoring system only consider the network factors, ignore the security factors inside the system, and the weight distribution of assessment indicators is subjective. This paper analyzes the security factors affecting the power monitoring system, and gives the security situation assessment indicator system of the power monitoring system. On this basis, the security situation of each equipment is assessed based on Support Vector Regression, and the weight is calculated according to the importance of the security area division of the power monitoring system where different equipment is located. Finally, the overall security situation of the power monitoring system is comprehensively evaluated through weighted summation. On the one hand, it can improve the accuracy, the flexibility and the expansibility of the security situation assessment for the power monitoring system. On the other hand, it can also trace the source of security problems in the power monitoring system, which is convenient for managers to isolate risks quickly and efficiently or take defense strategies.

ZHANG Chi,CAO Jiandong,LI Yiquan,WANG Huifang

DOI: https://doi.org/10.3969/j.issn.1007-290x.2012.05.006

2012-01-01

Abstract:Aiming at lack of quantitative assessment and choosing design scheme of relaying protection system of digital substation,the paper proposes to develop quantitive assessment software for relaying protection scheme of digital substation and elaborates on technical lines for implementing reliability assessment,economy assessment and comprehensive assessment;it presents flow chart of the implementation and discusses content and implementing method of each functional module.It is indicated by the research that the implementation of the software can effectively help to scientific choose design scheme of relaying protection system of digital substation.

Weili Han,Chenguang Shen,Yuliang Yin,Yun Gu,Chen Chen

DOI: https://doi.org/10.1145/2046707.2093492

2011-01-01

Abstract:Risk and benefit are two implicit key factors to determine accesses in secure information sharing. Recent researches have shown that they can be explicitly quantified and used to improve the flexibility in information systems. This paper introduces the motivation and a technical design of Quantified riSk and Benefit adaptive Access Control (QSBAC) to strengthen the security of information sharing. The paper also introduces the key issues to design policies in QSBAC.

Quande Yuan,Yuzhen Pi,Lei Kou,Fangfang Zhang,Bo Ye

DOI: https://doi.org/10.48550/arXiv.2211.14422

IF: 14.4

2022-11-26

Artificial Intelligence

Abstract:Cybersecurity is the security cornerstone of digital transformation of the power grid and construction of new power systems. The traditional network security situation quantification method only analyzes from the perspective of network performance, ignoring the impact of various power application services on the security situation, so the quantification results cannot fully reflect the power information network risk state. This study proposes a method for quantifying security situation of the power information network based on the evolutionary neural network. First, the security posture system architecture is designed by analyzing the business characteristics of power information network applications. Second, combining the importance of power application business, the spatial element index system of coupled interconnection is established from three dimensions of network reliability, threat, and vulnerability. Then, the BP neural network optimized by the genetic evolutionary algorithm is incorporated into the element index calculation process, and the quantitative model of security posture of the power information network based on the evolutionary neural network is constructed. Finally, a simulation experiment environment is built according to a power sector network topology, and the effectiveness and robustness of the method proposed in the study are verified.

张鑫,顾庆,陈道蓄

DOI: https://doi.org/10.3969/j.issn.1002-137x.2009.09.032

2009-01-01

Computer Science

Abstract:Quality of protection can be seen as the security target of security modules when doing their security treatments,which can be judged by quantitative criteria.The question of how to evaluate whether the current software system has fulfills the quality of protection target objectively and effectively has become one of the hotspots of research.Currently,however,most security professionals use the qualitative method for security evaluation,which is highly subjective and makes the evaluation result dependent on the individual experience and thus unreliable.So what needed are substantive and quantitative security metrics.Because of the complexity and the difficulty of implementing the security metrics,a novel security evaluation model was presented in this paper,which analyzed the relative security level of given systems from the views of attack surface,denial of service and attack graph.At last,a general discussion for the process and the result of the evaluation were given.

Xiaohu Li,T. Paul Parker,Shouhuai Xu

DOI: https://doi.org/10.1109/aina.2007.138

2007-01-01

Abstract:Traditional security analyses are often geared towards cryptographic primitives or protocols. Although such analyses are absolutely necessary, they do not provide much insight for answering an equally important question: what is the security assurance of a physically or logically networked system when we consider it as a whole? This question is known to be notoriously difficult, and the state-of-the-art is that we know very little about it. In this paper, we make a step towards resolving it with a new modeling approach.

Xiaohu Li,Timothy Paul Parker,Shouhuai Xu

DOI: https://doi.org/10.1109/tdsc.2008.75

2011-01-01

Abstract:Traditional security analyses are often geared toward cryptographic primitives or protocols. Although such analyses are necessary, they cannot address a defender's need for insight into which aspects of a networked system having a significant impact on its security, and how to tune its configurations or parameters so as to improve security. This question is known to be notoriously difficult to answer, and the state of the art is that we know little about it. Toward ultimately addressing this question, this paper presents a stochastic model for quantifying security of networked systems. The resulting model captures two aspects of a networked system:1) the strength of deployed security mechanisms such as intrusion detection systems and 2) the underlying vulnerability graph, which reflects how attacks may proceed. The resulting model brings the following insights: 1) How should a defender “tune” system configurations (e.g., network topology) so as to improve security? 2) How should a defender “tune” system parameters (e.g., by upgrading which security mechanisms) so as to improve security? 3) Under what conditions is the steady-state number of compromised entities of interest below a given threshold with a high probability? Simulation studies are conducted to confirm the analytic results, and to show the tightness of the bounds of certain important metric that cannot be resolved analytically.

Roberto Vigo,Flemming Nielson,Hanne Riis Nielson

DOI: https://doi.org/10.2168/LMCS-12%284%3A5%292016

2016-10-19

Abstract:In the design of software and cyber-physical systems, security is often perceived as a qualitative need, but can only be attained quantitatively. Especially when distributed components are involved, it is hard to predict and confront all possible attacks. A main challenge in the development of complex systems is therefore to discover attacks, quantify them to comprehend their likelihood, and communicate them to non-experts for facilitating the decision process. To address this three-sided challenge we propose a protection analysis over the Quality Calculus that (i) computes all the sets of data required by an attacker to reach a given location in a system, (ii) determines the cheapest set of such attacks for a given notion of cost, and (iii) derives an attack tree that displays the attacks graphically. The protection analysis is first developed in a qualitative setting, and then extended to quantitative settings following an approach applicable to a great many contexts. The quantitative formulation is implemented as an optimisation problem encoded into Satisfiability Modulo Theories, allowing us to deal with complex cost structures. The usefulness of the framework is demonstrated on a national-scale authentication system, studied through a Java implementation of the framework.

Cryptography and Security,Logic in Computer Science

Xiu-Zhen Chen,Qing-Hua Zheng,Xiao-Hong Guan,Chen-Guang Lin,Jie Sun

DOI: https://doi.org/10.1016/j.cose.2004.08.009

IF: 5.105

2005-01-01

Computers & Security

Abstract:How to evaluate network security threat quantitatively is one of key issues in the field of network security, which is vital for administrators to make decision on the security of computer networks. A novel model of security threat evaluation with a series of quantitative indices is proposed on the analysis of prevalent network intrusions. This model is based on multiple behavior information fusion and two indices of privilege validity and service availability that are proposed to evaluate the impact of prevalent network intrusions on system security, so as to provide security evolution over time, i.e., monitor security changes with respect to modification of security factors. The Markov model and the algorithm of D-S evidence reasoning are proposed to measure these two indices, respectively. Compared with other methods, this method mitigates the impact of unsuccessful intrusions on threat evaluation. It evaluates the impact of important intrusions on system security comprehensively and helps administrators to insight into intrusion steps, determine security state and identify dangerous intrusion traces. Testing in a real network environment shows that this method is reasonable and feasible in alleviating the tremendous task of data analysis and facilitating the understanding of the security evolution of the system for its administrators.

Gangjun Gong,Qinglin Yuan,Jiaxuan Yang,Bo Zhou,Zeming Lv,Haixia Yang,Mingfeng Xu

DOI: https://doi.org/10.3390/en16186566

IF: 3.2

2023-09-13

Energies

Abstract:Aiming at the problems of the low integration of the current power information system security assessment method with classified protection 2.0, strong subjectivity, and the vague quantification of objective indexes, this article proposes to establish a safety index system suitable for the electric power information system with the existing safety inspection standards for power systems on the basis of the classified protection 2.0 evaluation system. Additionally, it quantifies each index through a quantitative method combining subjective and objective methods and uses the analytic hierarchy process entropy method to obtain the combined weight of the evaluation index system. Finally, this paper summarizes the expert scores and the graded protection evaluation reports of the six systems into the original data for comprehensive weight calculation and analyzes the rationality of the weight change. The comparison and analysis of the closeness of the TOPSIS (Technique for Order Preference by Similarity to an Ideal Solution) and the evaluation score of the equal guarantee have confirmed the scientificity and rationality of the evaluation model. It provides a reasonable logical idea for the implementation of the classified protection 2.0 system in the power information system.

energy & fuels

YE Xiaming,ZHAO Junhua,WEN Fushuan

DOI: https://doi.org/10.7500/AEPS20130324004

2013-01-01

Abstract:With the development of smart grids,a power system and its information system are going to be seamlessly integrated.Hence the quantitative vulnerability assessment for a power information system becomes an important research topic.Given this background,a quantitative vulnerability assessment method based on the adjacency matrix is developed first. The proposed method employs the transition probability to describe the characteristics of attackers at two stages,i.e.selecting the access point first,and then attacking other nodes in the network from the access point.Besides,the transfer probability index between nodes is used to describe the intelligent ability of the attacker to choose the attack node.Next,the effectiveness of the method developed is demonstrated through an established evaluation example based on the information model of a slave station of a distribution automation system.

Siyuan Cai,Wei Wei,Deng Chen,Jianping Ju,Yanduo Zhang,Wei Liu,Zhaohui Zheng

DOI: https://doi.org/10.3390/s22134663

IF: 3.9

2022-06-22

Sensors

Abstract:The current power distribution Internet of Things (PDIoT) lacks security protection terminals and techniques. Network security has a large exposure surface that can be attacked from multiple paths. In addition, there are many network security vulnerabilities and weak security protection capabilities of power distribution Internet of Things terminals. Therefore, it is crucial to conduct a scientific assessment of the security of PDIoT. However, traditional security assessment methods are relatively subjective and ambiguous. To address the problems, we propose to use the entropy-weight method and cloud model theory to assess the security risk of the PDIoT. We first analyze the factors of security risks in PDIoT systems and establish a three-layer PDIoT security evaluation index system, including a perception layer, network layer, and application layer. The index system has three first-level indicators and sixteen second-level indicators. Then, the entropy-weight method is used to optimize the weight of each index. Additionally, the cloud model theory is employed to calculate the affiliation degree and eigenvalue of each evaluation index. Based on a comprehensive analysis of all evaluation indexes, we can achieve the security level of PDIoT. Taking the PDIoT of Meizhou Power Supply Bureau of Guangdong Power Grid as an example for empirical testing, the experimental results show that the evaluation results are consistent with the actual situation, which proves that the proposed method is effective and feasible.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

LI Zhi-guo,ZENG Qing-kai

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.02.035

2008-01-01

Abstract:This paper proposes a quantitative security evaluation model,BFN,which reflects the probability relationship between functional components and threats in a system,based on risk analysis approach. By this model it can quantitatively evaluate the deficiency in functional components of a system as well as its impact on the system. The experiments demonstrate that the model can compare different systems in security,and optimize a system by analyzing its weakness.