黄益民,平玲娣,潘雪增

DOI: https://doi.org/10.3785/j.issn.1008-973x.2001.06.005

2001-01-01

Abstract:After study of existing security models; analysis of information flow model, Bell-LaPadula(BLP) access control model and Biba access control model; and collation and comparison of their advantages and disadvantages, an improved model is put forward that satisfies the actual demands of information security. An implementation strategy is put forward that ensures information security, reliability, practicality and compatibility in the designed security system. An implementation scheme of this security system and its components and functions is provided. This system combines the following functions: mandatory access contro1, privilege separation, security audit, identity authentication and self-protection. It achieves the level 3 of national information security standard and level B1 of TCSEC standard. It was implemented in the Windows NT and Linux operating system and has yielded good resultsin application.

HU Yan,XIE Xiao-rong,XIN Yao-zhong

DOI: https://doi.org/10.3321/j.issn:1000-3673.2006.02.002

2006-01-01

Abstract:At present there are not quantitative security architecture design methods and computer-aided design tools for power information system. The authors propose a pattern based quantitative security architecture design method, in which the aggressive behavior and safeguard are modeled by aggressive pattern and safeguard pattern respectively and the quantitative indices to select several safeguards are strictly defined with set theory. The advantages of the proposed method over the traditional risk management method are demonstrated in detail in security policy, system modeling, attack modeling, safeguard modeling, risk measurement, risk analysis and selection of safeguards. In order to decrease the cost of security architecture design and implement computer-aided design tools, the security architecture design process is further abstracted into a mathematical model of 0-1-integer programming.

Ruiwen He,Xiaoyu Ji,Wenyuan Xu

DOI: https://doi.org/10.1109/ei250167.2020.9346835

2020-01-01

Abstract:With the development of information technology and Power Internet of Things, the increasing number of networked terminals presents new network security threats. Industrial control equipment and systems have vulnerabilities in hardware, software and firmware, and advanced persistent threat against ICS has become more complex and diverse. However, most of the research are aimed at the detection of single vulnerability, and lack attack mechanism analysis and threat assessment for attack chain. We proposed a threat assessment method based on vulnerability descriptive text and described the attributes of attack samples according to the classification results in attack targets, methods and consequences. We constructed attack graphs based on attack sample attributes and cyber-physical topology to quantitatively evaluate the feasibility and benefits of each attack path from vulnerability capabilities and the impact of devices in the physical world. Finally, we took the substation device status monitoring system as an example to verify the feasibility of this method.

Y Hu,XR Xie,YZ Xin

DOI: https://doi.org/10.1109/pes.2004.1372957

2005-01-01

Abstract:This paper presents a modeling language and a quantitative evaluation approach for the security of power information systems. We firstly design a security architecture design trace language to universally describe system structures, services, security policies, attack behaviors and countermeasures. Next an automated risk analysis algorithm is proposed to get attack traces of power information systems. Then, based on the concept of relative security degree, security architecture can be quantitatively evaluated. Finally, with a case study in a real power information system, the effectiveness of the presented approach is demonstrated. In practice, the approach can be employed for assessing various kinds of countermeasures, such as increasing a new security function, adjusting system self structure, and changing customer operation requirements. And it can greatly decrease the subjectivity of counter-measure selection.

Xuesong Huo,Ming Zhang,Hongqin Zhu,Wei Li

DOI: https://doi.org/10.1109/cbd54617.2021.00052

2021-01-01

Abstract:At present, most of the security situation assessment methods for the power monitoring system only consider the network factors, ignore the security factors inside the system, and the weight distribution of assessment indicators is subjective. This paper analyzes the security factors affecting the power monitoring system, and gives the security situation assessment indicator system of the power monitoring system. On this basis, the security situation of each equipment is assessed based on Support Vector Regression, and the weight is calculated according to the importance of the security area division of the power monitoring system where different equipment is located. Finally, the overall security situation of the power monitoring system is comprehensively evaluated through weighted summation. On the one hand, it can improve the accuracy, the flexibility and the expansibility of the security situation assessment for the power monitoring system. On the other hand, it can also trace the source of security problems in the power monitoring system, which is convenient for managers to isolate risks quickly and efficiently or take defense strategies.

Yu Zhiwei,Tang Rengzhong,Jia Dongjiao,Ye Fanbo

DOI: https://doi.org/10.3321/j.issn:1004-132X.2007.04.021

2007-01-01

Abstract:To identify the security requirements of information systems, a business process-based security requirement analysis method was presented. Focused on the business process security, the related assets which affect the business process security were identified by security tree model. The security requirements of assets were identified by risk packet and risk transferring model, and then the security requirements list was formed after coverage analysis. Finally, a case was studied to illustrate the proposed method.

Guihai Chen,Victoria C. Yan,Qing Li,Zengzhi,Liao,Zhigang

2005-01-01

Abstract:The wide application of network technology in power systems brings not only convenience and flexibility but also security threats. An architecture of network security for power system was proposed in this study,which protected data and facilities from being attacked by outside users by means of firewall, security monitor and control system. Firewall was basically the first line of defense for the intranet; the security monitoring system was a kind of IDS (Intrusion Detection System), while security control system provided authentication, authorization,data-encrypted transmission and security management. This architecture provides various security services, such as identification, authentication, authorization, data integrity and confidentiality.

Siyuan Cai,Wei Wei,Deng Chen,Jianping Ju,Yanduo Zhang,Wei Liu,Zhaohui Zheng

DOI: https://doi.org/10.3390/s22134663

IF: 3.9

2022-06-22

Sensors

Abstract:The current power distribution Internet of Things (PDIoT) lacks security protection terminals and techniques. Network security has a large exposure surface that can be attacked from multiple paths. In addition, there are many network security vulnerabilities and weak security protection capabilities of power distribution Internet of Things terminals. Therefore, it is crucial to conduct a scientific assessment of the security of PDIoT. However, traditional security assessment methods are relatively subjective and ambiguous. To address the problems, we propose to use the entropy-weight method and cloud model theory to assess the security risk of the PDIoT. We first analyze the factors of security risks in PDIoT systems and establish a three-layer PDIoT security evaluation index system, including a perception layer, network layer, and application layer. The index system has three first-level indicators and sixteen second-level indicators. Then, the entropy-weight method is used to optimize the weight of each index. Additionally, the cloud model theory is employed to calculate the affiliation degree and eigenvalue of each evaluation index. Based on a comprehensive analysis of all evaluation indexes, we can achieve the security level of PDIoT. Taking the PDIoT of Meizhou Power Supply Bureau of Guangdong Power Grid as an example for empirical testing, the experimental results show that the evaluation results are consistent with the actual situation, which proves that the proposed method is effective and feasible.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

韩祯祥,曹一家

DOI: https://doi.org/10.3321/j.issn:1000-3673.2004.09.001

2004-01-01

Abstract:Power system security and its recent development is introduced. Based on the analysis of various factors influencing power system security and current technological developments, some strategies are proposed to enhance power system security and to prevent the blackouts. Some views on the future research methodology and directions are also presented.

Gangjun Gong,Qinglin Yuan,Jiaxuan Yang,Bo Zhou,Zeming Lv,Haixia Yang,Mingfeng Xu

DOI: https://doi.org/10.3390/en16186566

IF: 3.2

2023-09-13

Energies

Abstract:Aiming at the problems of the low integration of the current power information system security assessment method with classified protection 2.0, strong subjectivity, and the vague quantification of objective indexes, this article proposes to establish a safety index system suitable for the electric power information system with the existing safety inspection standards for power systems on the basis of the classified protection 2.0 evaluation system. Additionally, it quantifies each index through a quantitative method combining subjective and objective methods and uses the analytic hierarchy process entropy method to obtain the combined weight of the evaluation index system. Finally, this paper summarizes the expert scores and the graded protection evaluation reports of the six systems into the original data for comprehensive weight calculation and analyzes the rationality of the weight change. The comparison and analysis of the closeness of the TOPSIS (Technique for Order Preference by Similarity to an Ideal Solution) and the evaluation score of the equal guarantee have confirmed the scientificity and rationality of the evaluation model. It provides a reasonable logical idea for the implementation of the classified protection 2.0 system in the power information system.

energy & fuels

Zijun WANG,Yang LIU,Yuanyi BAO,Xiaohong GUAN,Tong WU,Jiangang LU,Zhiwen YU,Xiaoshu YUAN,Ting LIU

DOI: https://doi.org/10.1360/ssi-2021-0210

2022-01-01

Scientia Sinica Informationis

Abstract:Power system security simulation technologies study system behaviors via simulation experiments or numerical calculations to deal with security threats such as system faults and external attacks. With the wide application of information technologies such as automatic control, network communication, and artificial intelligence, the power system has developed into a cyber-physical system (CPS), where the physical and information systems are deeply coupled. Faults caused by physical damage or network attacks are interrelated in the power system and can spread across domains, resulting in new security threats. Therefore, power system security simulation is facing new challenges. This paper reviewed the security incidents that have significantly impacted the power system and analyzed the requirement and development of security simulation technologies for power systems from three dimensions: engineering security, network security, and cyber-physical integrated security. Therefore, the representative security simulation testbeds were classified and summarized. Moreover, the challenges and development trends of the power system security simulation technologies were explored.

Yan Li,Guang-qiu Huang,Chun-zi Wang,Ying-chao Li,Yan Li,Guang-qiu Huang,Chun-zi Wang,Ying-chao Li

DOI: https://doi.org/10.1186/s13638-019-1506-1

2019-08-13

EURASIP Journal on Wireless Communications and Networking

Abstract:Information technology has penetrated into all aspects of politics, economy, and culture of the whole society. The information revolution has changed the way of communication all over the world, promoted the giant development of human society, and also drawn unprecedented attention to network security issues. Studies, focusing on network security, have experienced four main stages: idealized design for ensuring security, auxiliary examination and passive defense, active analysis and strategy formulation, and overall perception and trend prediction. Under the background of the new strategic command for the digital control that all countries are scrambled for, the discussion of network security situational awareness presents new characteristics both in the academic study and industrialization. In this regard, a thorough investigation has been made in the present paper into the literature of network security situational awareness. Firstly, the research status both at home and abroad is introduced, and then, the logical analysis framework is put forward concerning the network security situational awareness from the perspective of the data value chain. The whole process is composed of five successive stages: factor acquisition, model representation, measurement establishment, solution analysis, and situation prediction. Subsequently, the role of each stage and the mainstream methods are elaborated, and the application results on the experimental objects and the horizontal comparison between the methods are explained. In an attempt to provide a panoramic recognition of network security situational awareness, and auxiliary ideas for the industrialization of network security, this paper aims to provide some references for the scientific research and engineering personnel in this field.

telecommunications,engineering, electrical & electronic

DING Li-jie,CHEN Wei-hua,BAO Zhe-jing

2009-01-01

Abstract:To ensure the static security of the power system,which is one of the key factors in power system operation,a method of risk assessment and preventive control was proposed based on the risk of line overload and voltage exceeding.In this method,the probabilistic power flow(PPT) and cumulant method were used to analyze the randomness of system statuses,and the severity function was applied to describing the impact and outcome of line overhead and voltage exceeding.Moreover,the product of probability and severity of line overload and voltage exceeding was defined as the risk index of the system.Finally,a preventive control model for static security,based on optimal power flow and particle swarm optimization method,was developed and used to optimize the outputs of the system active and reactive resources,which reduced the risks of overload and voltage exceeding and increased system security.The method was proved effective through testing.

Bei-bei WENG,Shu-ping MA,Hao ZHANG

DOI: https://doi.org/10.3969/j.issn.1009-0665.2007.06.007

2007-01-01

Abstract:Considering the critical situations of the modern power grid,this article discusses the stability requirements of the system,and the reason for system errors that is a chance factor is presented at one time.And then the measures of prevention control,self-corrector control,emergency control and restorative control must be taken,and a four defensive line scheme is presented in order to ensure the stability of the system.The article focuses on discussing emergency control,and introduces the importance and feasibility of emergency control,and introduces the goals and means of it,and in the end this paper introduces the design principles and examples of emergency control system.

Yang Yu

2008-01-01

Abstract:The state of the arts on power-system security region methodology studies,that have been mainly done in Tianjin University,is to be concisely introduced.At first the stimulations on the study,the concepts and the definitions of security regions are given.Then three kinds of practical security regions of power system found up to now are presented.Among them the first one is practical dynamic security region(PDSR)in power injection space of pre-fault power system to guarantee transient stabil-ity,the second one is practical security region to guarantee static voltage stability in cut-set power flow space(CVSR)and the third one is practical security region to guarantee small disturbance stability related to Hopf bifurcation(PHSR)in power injec-tion space.They are based on the facts that the critical boundaries of stabilities can be approximately represented by hyper-planes,in engineering point of view.Such kinds of mathematic descriptions have significant superiorities as follows:they are able to develop direct methods of computing the boundaries of the security regions,to realize visualizations of the security re-gions,to reduce dramatically the computation burden of probabilistic security assessment of power system in case of considering the uncertainty of node power injections,as well as to overcome easily the difficulties in dealing with stability constraints for a series of optimization problems of power system.Based on the PDSR and CVSR,a visualization system and a probabilistic security monitoring system have been developed in Tianjin University,and some promising study results are obtained in various aspects such as optimal power flow,security synthesis control,risk assessment and control,and security pricing.

ZHOU Han,LIU Dong,WU Zimei,JIANG Yue,CHENG Haozhong

DOI: https://doi.org/10.3321/j.issn:1000-1026.2007.20.010

2007-01-01

Abstract:The transition of power system operation state directly influences the system security performance analysis and dispatch operation strategy.If the security state of a power system and the damage degree can be known before the state transition,it would be a great help for power system security stability.Based on the forewarning of the security state with assessment indices,the quantitative security assessment indices of five power system operation states according to a risk analysis are proposed,which forewarn the probability of the risk in state transition and support the decision-making on low voltage prevention,overload prevention and system voltage instability prevention.The simulative analysis of an 84-bus system in Shanghai Power Grid shows that the proposed approach proposed is feasible and effective.

Xianxu Li,Wei Hu,Tao Shang,Junchen Liu,Da Li,Ming Wang,Jing Li,Jianwei Liu

DOI: https://doi.org/10.1109/ei250167.2020.9347205

2020-01-01

Abstract:The power system network is developing towards a more intelligent and integrated direction. Compared with the past, the attack and dispatching of power system network are more diversified and antagonistic, and the security of power system network is facing more severe challenges. In this paper, we attempt to analyze the security of power system network based on complex network. Firstly, the IEEE57 power system is modeled by reactance weighted and undirected network, the cascading failure model is used to describe the relationship between nodes and edges. Then three types of attack of power system network are analyzed. According to the dynamic characteristics and damage degree of power system network, corresponding attack countermeasures are provided.

HAN Yuqi,GUO Jia,GUO Chuangxin,HUANG Han

DOI: https://doi.org/10.13334/j.0258-8013.pcsee.2016.06.005

2016-01-01

Abstract:With the deep incorporating of information and communication technology in power systems, the power system has involved into the cyber-physical power system. The application of software-defined networking theory into the cyber physical power system can improve the system flexibility and provide room for new functions. Under this circumstance, the assessment of intelligent substation security risk should consider both the information device hardware factor and software factor. This paper combines the specifics of software defined networking and cyber physical power systems and then divided the system into the application layer, the control layer, the cyber operation layer and the physical operation layer. Based on the function decomposed modelling method, this paper put forwards the system security risk assessment method incorporating the failures of application layer control and function software and cyber device application software. The calculation and sensitive analysis of the security risk of T1-1 substation is operated using the assessment method in this paper.

Dajun Du,Minggao Zhu,Xue Li,Minrui Fei,Siqi Bu,Lei Wu,Kang Li

DOI: https://doi.org/10.35833/mpce.2021.000604

IF: 4.469

2023-01-01

Journal of Modern Power Systems and Clean Energy

Abstract:Potential malicious cyber-attacks to power systems which are connected to a wide range of stakeholders from the top to tail will impose significant societal risks and challenges. The timely detection and defense are of crucial importance for safe and reliable operation of cyber-physical power systems (CPPSs). This paper presents a comprehensive review of some of the latest attack detection and defense strategies. Firstly, the vulnerabilities brought by some new information and communication technologies (ICTs) are analyzed, and their impacts on the security of CPPSs are discussed. Various malicious cyber-attacks on cyber and physical layers are then analyzed within CPPSs framework, and their features and negative impacts are discussed. Secondly, two current mainstream attack detection methods including state estimation based and machine learning based methods are analyzed, and their benefits and drawbacks are discussed. Moreover, two current mainstream attack defense methods including active defense and passive defense methods are comprehensively discussed. Finally, the trends and challenges in attack detection and defense strategies in CPPSs are provided.

engineering, electrical & electronic

Qiang YAN,Hua-ying SHU,Zhong CHEN,Yun-suo DUAN

DOI: https://doi.org/10.3969/j.issn.1007-5321.2005.04.017

2005-01-01

Abstract:Security evaluation is an important approach for the security risk management of the information system. But there are lack of effective methods and tools for security evaluation. To resolve the problem, an object model of security evaluation is established based on the object oriented technology. The concepts of correlation test and dependency test are introduced and a set of tools is also developed according to the model. The practical application indicates that the object oriented technology can improve the efficiency of security evaluation, and the correlation test and dependency test also improve the penetration testing effects.