黄益民,平玲娣,潘雪增

DOI: https://doi.org/10.3785/j.issn.1008-973x.2001.06.005

2001-01-01

Abstract:After study of existing security models; analysis of information flow model, Bell-LaPadula(BLP) access control model and Biba access control model; and collation and comparison of their advantages and disadvantages, an improved model is put forward that satisfies the actual demands of information security. An implementation strategy is put forward that ensures information security, reliability, practicality and compatibility in the designed security system. An implementation scheme of this security system and its components and functions is provided. This system combines the following functions: mandatory access contro1, privilege separation, security audit, identity authentication and self-protection. It achieves the level 3 of national information security standard and level B1 of TCSEC standard. It was implemented in the Windows NT and Linux operating system and has yielded good resultsin application.

Yimei Meng,Di Liu,Wenyu Rong,Meng Wu

DOI: https://doi.org/10.1155/2022/6571007

IF: 1.43

2022-04-23

Mathematical Problems in Engineering

Abstract:At present, the secondary security check at the transfer station between high-speed railway and urban rail transit brings inconvenience to passengers. The aim of this study is to develop a methodology for evaluating the safety level of high-speed railway and subway stations by using variable fuzzy set theory, so as to determine the conditions for security check mutual recognition. In this research, considering transportation capacity, personnel and equipment, and environment and management, three aspects are considered to construct an evaluation index system for mutual recognition of high-speed railway and urban rail transit security check. Then, the variable fuzzy safety evaluation model has been established for high-speed railway and subway stations and their transport modes to analyse the feasibility of security check mutual recognition. Using the variable fuzzy set theory and the important consistency sorting theorem, the decision approach proposed in this study was tested for the high-speed rail station A and subway station B. As a result of using the methodology, the safety evaluation result of high-speed railway station A is 1.60, and the result of subway station B is 2.26. It is concluded that the safety of high-speed rail station A is higher than that of subway station B, and it is possible to enter the metro station without security check in one direction. The approach presented in this research can be used for judging the conditions for security check mutual recognition at interchange stations between high-speed railway and urban rail transit, which provides reference for the implementation of security check mutual recognition.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Wenmin Zhu,Yuanhua Jia

DOI: https://doi.org/10.1088/1755-1315/108/4/042067

2018-01-01

IOP Conference Series: Earth and Environmental Science

Abstract:Based on the risk management theory and the PDCA cycle model, requirements of the railway passenger transport safety production is analyzed, and the establishment of the security risk assessment team is proposed to manage risk by FTA with Delphi from both qualitative and quantitative aspects. The safety production committee is also established to accomplish performance appraisal, which is for further ensuring the correctness of risk management results, optimizing the safety management business processes and improving risk management capabilities. The basic framework and risk information database of risk management information system of railway passenger transport safety are designed by Ajax, Web Services and SQL technologies. The system realizes functions about risk management, performance appraisal and data management, and provides an efficient and convenient information management platform for railway passenger safety manager.

刘新东,江全元,曹一家,陈为化

DOI: https://doi.org/10.3969/j.issn.1006-6047.2009.02.004

2009-01-01

Abstract:Based on probability theory,risk theory and fuzzy reasoning are applied to the transient security risk assessment of power system.Quantified risk indices are achieved by using specified severity function to quantify the maximal offsets of frequency and voltage and the margins of angle rotor stability and fault clearing time.The quantified frequency and voltage risk index are used to calculate the steady index by the steady fuzzy controller while the quantified margins of angle rotor stability and fault clearing time are used to calculate the transient index by the transient fuzzy controller.The system transient stability index is calculated by the weighted integration of steady index and transient index.Based on it,the software of transient security risk assessment is developed.Case study of risk indices calculation for a permanent three-phase grounding fault of New England 39-bus test system shows its effectiveness and rationality.

Xiaotong Li,Hua Li,Bingzhen Sun,Fang Wang

DOI: https://doi.org/10.3233/jifs-172097

2018-01-01

Journal of Intelligent & Fuzzy Systems

Abstract:Through advancing in information and communications technology, Smart Cities provide many potential advantages like improved energy efficiency, new economic opportunities and management methods, however the information security in the top-level design of building a quite efficient smart city is easy to be ignored and caused a huge economic losses for citizens. We focus on mining information risks of smart city from the perspective of system, identifying the key risks and determining the importance of each factor, in order to measure the risk accurately. This paper presents a failure mode and effects analysis (FMEA) method to analyze five dimensions of the information security of smart city, and assess the risks on the basis of the fuzzy set theory and the grey relational theory. Due to the problem is the risk assessment of multi-dimension for an organization information security, we present a decision model that provides an efficient framework for calculating the value of risk assessment. The results indicate that aspects of the highest importance of the information security risk of smart city are the threats in natural, contrived and physical aspects, followed by the lack of public security education and training. Through the analysis we can find out the relationship between the failure modes and the overall situation of the system, then it can distinguish the main factors which play a driving role, and the secondary factors which have less impact on the system. According to the assessment results, some suggestions are put forward to guarantee the information security of smart city. The practical application of fuzzy and grey FMEA proposed in this paper helps enhance the reliability of the prediction, and the ranking of risk factors can be used for better decision-making concerning taking measures, which in turn will make smart city safer.

Huifeng Li,Tiecheng Li,Qigui Yao,Weixun Li,Libo Yang,Guanghui Sun

DOI: https://doi.org/10.1088/1742-6596/2137/1/012023

2021-01-01

Journal of Physics Conference Series

Abstract:The security threat of power monitoring system is increasing, it is valuable to carry out effective risk assessment, which helps to find the security threats of the system in time, then carry out security management and avoid disasters. This paper presents a risk assessment method of power monitoring system based on Fuzzy Analytic Hierarchy Process (FAHP) and CVSS. Firstly, Considering the structure and security requirements of power monitoring system, the analytic hierarchy process (AHP) model is established, and CVSS is used to quantify the evaluation indicators. Then, the fuzzy consistent judgment matrix is constructed by using the results of index quantification by using AHP and fuzzy comprehensive evaluation theory, and the power monitoring system is comprehensively evaluated from the bottom to the top. Finally, the risk evaluation value and safety level of the system are obtained. The example shows that the method can effectively overcome the difficulty of AHP in checking the consistency of judgment matrix, and can effectively quantify the system risk, and provide reference and basis for risk management decision-making of power monitoring system.

LI Zhi-guo,ZENG Qing-kai

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.02.035

2008-01-01

Abstract:This paper proposes a quantitative security evaluation model,BFN,which reflects the probability relationship between functional components and threats in a system,based on risk analysis approach. By this model it can quantitatively evaluate the deficiency in functional components of a system as well as its impact on the system. The experiments demonstrate that the model can compare different systems in security,and optimize a system by analyzing its weakness.

S. Meng,W. Schmitz,Bo Hu,F. Schultmann,S. Pickl,M. Wiens

Abstract:study RiKoV deals with mitigating risks of a terrorist attack against the German public railway system. The research method and first results will be presented and discussed in this paper. In the project, a scenario-based risk assessment method was developed tailored to intelligent, rationally acting attackers. We consider risk as a function of the system’s vulnerability, the threat to the system, and the consequences of an attack. In particular, we apply three complementary ways to deal with the problem of fundamental uncertainty with respect to the terrorists’ motivation. In a first approach, the input parameters “intention” and “capability” are regarded as fuzzy parameters which are measured in qualitative categories. The second approach is the derivation of optimal rules in a multi-criteria framework for decisions under uncertainty. Finally, we complement our elaborated risk analysis with game-theoretic arguments.

Political Science,Business,Engineering

LIU Sen-sen,CHEN Wei-hua,JIANG Quan-yuan

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.03.036

2009-01-01

Abstract:The risk theory was applied to static security analysis of power system,and a power system risk model with obvious parallel processing was built.A novel parallel processing approach of risk assessment of power system was presented based on the parallel model.The approach was implemented by PC cluster.In the implementation of specific parallel computing,the PC cluster technology was used.The New England 10-machine 39-node system was used to verify power system static security risk assessment methodology based on parallel computing.System's N-1 breaking accidents were used as the system's expected accident set.The risk of line power overload and that of bus low voltage were used as the two risk indicators to describe static security.The performance of parallel computing algorithm based on indicators and that of parallel computing algorithm based on static incidents allocation were compared.

Junting Lin,Qian Li,Yang Wang

DOI: https://doi.org/10.1177/1748006x241234700

2024-02-28

Proceedings of the Institution of Mechanical Engineers Part O Journal of Risk and Reliability

Abstract:Proceedings of the Institution of Mechanical Engineers, Part O: Journal of Risk and Reliability, Ahead of Print. In order to achieve the goal of transforming China into a modernized railway powerhouse, a comprehensive evaluation model of intrinsic safety is constructed in this paper by focussing on the intrinsic safety of railway facilities and equipment. Firstly, the index system for evaluating the intrinsic safety of railway facilities and equipment is divided. Secondly, the fuzzy Petri net (FPN) model for intrinsic safety evaluation is constructed according to the fuzzy generative rules, and the similarity calculation method of the cloud model based on shape and distance is applied to derive the initial state value of the FPN model and carry out the calculation of fuzzy reasoning of the intrinsic safety. Finally, the comprehensive evaluation of intrinsic safety is carried out using the example of railroad facilities and equipment at one China Railway Group bureau's station section. The results indicate that the intrinsic safety level of the station section falls into Class IV intrinsic safety, exhibiting a few vulnerabilities. However, the risk level is low, aligning with the findings of the actual research. Moreover, the evaluation results based on the FPN, the cloud model's similarity calculation method and the suggested method are compared and analysed with the findings of the actual research. The comparative results demonstrate the accuracy and scientificity of the proposed method, providing a reference for enhancing the intrinsic safety of railway facilities and equipment.

engineering, industrial, multidisciplinary,operations research & management science

Yue Zhang,Wang Zhao

DOI: https://doi.org/10.1109/icngn59831.2023.10396667

2023-01-01

Abstract:The rapid development of information technology has greatly improved the level of enterprise informatization. However, while providing a variety of services to users, there may also be security issues such as data breaches, denial of service attacks, and extortion attempts. To address the aforementioned issues and enhance the security of information systems, multiple security devices have implemented protective measures. However, relying solely on the configuration and construction of security facilities cannot fundamentally resolve network security issues. Therefore, an important challenge currently faced is how to quantitatively assess, evaluate, and guide security personnel to optimize the configuration of the network security system. This is a significant matter that requires careful consideration.Currently, most existing quantitative security evaluation schemes focus on assessing security risks, but the entire security protection system has not been utilized as an evaluation criterion, and its protective effectiveness has not been quantitatively evaluated. Simultaneously, establishing quantitative connections between security impact factors and the security protection system, linking the protection effectiveness of individual security devices to overall security protection effectiveness, and then optimizing and improving the protection effectiveness have become critical bottlenecks in measuring the protection effectiveness of the network security protection system.

Y Hu,XR Xie,YZ Xin

DOI: https://doi.org/10.1109/pes.2004.1372957

2005-01-01

Abstract:This paper presents a modeling language and a quantitative evaluation approach for the security of power information systems. We firstly design a security architecture design trace language to universally describe system structures, services, security policies, attack behaviors and countermeasures. Next an automated risk analysis algorithm is proposed to get attack traces of power information systems. Then, based on the concept of relative security degree, security architecture can be quantitatively evaluated. Finally, with a case study in a real power information system, the effectiveness of the presented approach is demonstrated. In practice, the approach can be employed for assessing various kinds of countermeasures, such as increasing a new security function, adjusting system self structure, and changing customer operation requirements. And it can greatly decrease the subjectivity of counter-measure selection.

Yong Qin,Jingxuan Shi,Yuan Zhang,Shengzhi Zhu,Limin Jia

2013-01-01

Abstract:For security service of rail vehicles, the online quantitative security assessment method of service status of key equipments of rail vehicles is urgently needed. So, the method based on safety region was proposed. At first, the formal description and definition of the safety region were given for railway engineering practice. And for research objects whose models were known, safety region estimation method of system stability analysis based on Lyapunov exponent was proposed; and for research objects whose models were unknown, the data-driven safety region estimation method was presented. Safety region boundary equations of different objects can be obtained by above two approaches. At last, by real-time analysis of location relationship and generalized distance between equipment service status points and safety region boundary, the online safety assessment model of key equipments can be established. This method can provide a theoretical basis for online safety evaluation of trains operation; furthermore, it can support for real-time monitoring, early warning and systematic maintenance of rail vehicles based on active security.

Qi Zhang,Yanhui Zhuang,Yuguang Wei,Hao Jiang,Hao Yang

DOI: https://doi.org/10.1155/2020/3158468

IF: 2.249

2020-02-01

Journal of Advanced Transportation

Abstract:In order to make safety risk assessment more accurately and more reasonably for high-speed railway station in China, this paper analyzes risk factors of fault tree and transfers the fault tree of risk accident into fuzzy petri net and then builds the FPN-FTA model by combining the dynamic weighting fuzzy petri net (FPN) and fault tree analysis (FTA) based on the latter. This paper simulates the FTA-FPN model with Stateflow of Matlab software. Then, it builds up a bi-objective risk control model, making the minimum safety risk level and minimum necessary cost as the objectives, and it designs discrete particle swarm optimization algorithm to solve the risk control model. Finally, this paper selects stampede accident of Shijiazhuang high-speed railway station as an example in case study for assessing stampede risk level and gets the risk control schemes for this station. The results verify the feasibility and validity of the model and algorithm.

transportation science & technology,engineering, civil

陈秀真,郑庆华,管晓宏,林晨光

DOI: https://doi.org/10.3321/j.issn:0253-987X.2004.12.005

2004-01-01

Abstract:Aiming at the weakness of being unable to evaluate the threat of combination of vulnerabilities on network security for most systems of security evaluation, a novel model of security evaluation based on rough set theory was put forward. This model considered the vulnerability as a security factor and the security evaluation model was built from historical evaluation records by using attribute reduction. Further, the measurement model of hierarchical security risk with three levels: security factor, service and host computer, was built, which calculated the security risk of the host by weighting the importance of service and security factor, then the security situation of the system was analyzed and evaluated. Compared with other evaluation methods, this method can create a rule-based model of security evaluation automatically and has advantage of evaluating threat of isolated security factor and combination of security factors on the same host. It can also monitor the impact of changes of the system configuration on system security. Nine useful rules for security evaluation were discovered from 7 days' evaluation records and security situation curves were established through simulation experiment, which shows that evaluation results by our method are more accurate and intuitive than others.

Shi Jian,Guo Shanqing,Xie Li

DOI: https://doi.org/10.3321/j.issn:1002-8331.2006.01.034

2006-01-01

Abstract:Risk assessment is critical to establishing an effective Information Security Management System and it is the foundation of information system security systematism.After introducing information security risk assessment briefly,this paper provides a real-time risk assessment method using qualitative and quantitative assessment synthetically.By analyzing the assets,vulnerabilities and threats of information system,this method can evaluate the risk of the system in real time with the events produced by security devices.

Zhou Guoqiang,Lu Wei,Zeng Qingkai

DOI: https://doi.org/10.3969/j.issn.1000-386X.2007.11.002

2007-01-01

Abstract:An information security evaluation model is proposed.Based on the analyses of contents and functions of security evolution,the architecture of the security evaluation model and platform is presented,and its implementation is given.The main functions of this model are to organize,manage and control the security test and evaluation.It also has features in generalization,integration and configuration.

Haiyan Ji,Zongyi Xing,Yong Qin,Limin Jia,GuoJun Wu

2011-01-01

Abstract:To evaluate railway passenger service quality objectively and precisely, an evaluation index system was established based on analysis of the relevant factors, i.e., security, punctuality, economy, convenience and comfort. Then two evaluation approaches were proposed based on the comprehensive fuzzy evaluation model and neural network. Finally the proposed approaches were illustrated to evaluate the service quality in Nanjing Station based on questionnaire investigation. The results show that the proposed methods can evaluate service quality effectively and successfully, and that the approaches can provide theoretical basis for improving and enhancing railway passenger service quality.

YAN Qiang,SHU Huaying,CHEN Zhong,DUAN Yunsuo

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.02.045

2006-01-01

Abstract:Security elements evaluation is a primary problem of information system security evaluation. However the security elements defined in evaluation standard GB 17859 are abstract and hard to measure directly. It has become an urgent task to establish an understandable and practicable evaluation method for security elements. Based on the research and development process of security evaluation tools, this paper introduces the factor-criteria-metrics-evidence (FCME) model, which is used in security elements evaluation process, and discusses the implementation of the model.

Zhenyu Zhang,Xuejun Zhao,Yong Qin,Hongyun Si,Lixin Zhou

DOI: https://doi.org/10.1007/s12652-021-03182-0

IF: 3.662

2021-04-07

Journal of Ambient Intelligence and Humanized Computing

Abstract:As a distributing center for passengers, the subway station directly affects the entire subway system's safe operation. Accurate operational subway station risk evaluation has an important significance in risk avoidance and accident emergency response. By analyzing the application of interval type-2 fuzzy TOPSIS (IT2-FTOPSIS) method in risk evaluation, the existing research lacks consideration of the utility function and cannot reflect the actual operational risk of the subway station. To overcome these shortcomings, we develop an IT2-FTOPSIS approach with a utility function and utilize it to evaluate the subway station's operational risk. Finally, the example of Beijing Subway is selected to illustrate the developed risk evaluation approach's performance. The results show that the same event has different effects on subway station safe operation at different times or spaces. Namely, the same event may have different risk utility values in different situations. Thus, the developed IT2-FTOPSIS model with a utility function can improve the risk evaluation's accuracy and reflect the subway station's operational risk state more reasonable than the previous method.

computer science, information systems,telecommunications, artificial intelligence