Heping Jia,Yi Ding,Rui Peng

DOI: https://doi.org/10.1109/icsrs.2018.8688837

2018-01-01

Abstract:With the deep integration of cyber physical systems, data storage systems might suffer from both physical failures and cyber attacks which significantly impact the systems' reliability. The data can be partitioned into several data parts to enhance data security and multiple replications can be created for each data part in the storage systems. In this paper, both the failures of data storage devices and cyber attacks including data theft and data corruption are considered in the proposed system model. Moreover, the multi-valued decision diagram (MDD) technique is developed for considering chronological characteristics of sequential events to achieve the quantitative reliability assessment. A numerical example is provided to validate the proposed model and method.

Heping Jia,Rui Peng,Yi Ding,Changzheng Shao

DOI: https://doi.org/10.1177/1748006x19885508

2020-01-01

Abstract:With the advancement of cloud computing and internet of things, data are usually stored on distributed computers and these data may risk being lost or stolen. In this article, we consider a common case where the entirety of the data is partitioned into several parts and each data part can be allocated to one or more computers. In the case where a computer fails, all the data parts on it are lost. Before the failure of any computer, the data parts may also be stolen by hackers. The basic model of computer failure and computer intrusion resulting in the theft of all the data parts on the computer is considered first. Then, the case is extended to a general model where computer failure, as well as data part corruption and theft caused by hacking are embedded. It is essential to study the reliability of distributed storage systems considering both data loss and data theft, which can be a basis for decision making on system structure optimization. In this article, a multi-valued decision diagram–based approach is developed to quantitatively evaluate system reliability for both models considering the time-dependence property of sequential events. The proposed method is applicable to systems where the random time to failure, theft, or corruption follows arbitrary distributions including the commonly used exponential distributions. Illustrative examples are provided to validate the proposed method.

Jiajia Liu,Xiaohong Jiang,Hiroki Nishiyama,Nei Kato

DOI: https://doi.org/10.1109/TVT.2011.2114684

IF: 6.8

2011-01-01

IEEE Transactions on Vehicular Technology

Abstract:Wireless networks in an open environment are exposed to various large region threats, e.g., natural disasters and malicious attacks. Available works with regard to region failures generally adopt a kind of “deterministic” failure models, which failed to reflect some key features of a real region failure. In this paper, we provide a more general “probabilistic” region failure model to capture the k...

Fan Lin,Jianbin Xiahou,Wenhua Zeng

DOI: https://doi.org/10.6138/jit.2015.16.7.20151103e

2015-01-01

Abstract:Virtualization asks for safer and better quality to service-oriented cloud computing system suppliers. Most of the traditional researching is focus on the risk assessment of the information system and DDoS, but lacking of researching on cloud computing in deep. So that the service-oriented cloud computing system risk evaluation researching is very essential. In this paper, we build a service-oriented cloud computing system risk assessment framework that using distributed dynamic status monitoring of virtual machine system and making risk prediction value to summarizing the final risk assessment level of the system as a whole. The model can be used in monitoring, identifying, predicting and evaluating for cloud computing security risk that is having effect on the risk evaluation of virtual machine node and whole cloud system. First we proposed a new method to identifying risk named LSA-GCC that used LSA for analyzing log files and cluster for classifying. The method doing the feed forward risk identification by collecting the log of the operating system and Web Service that are on VM node level,and the LSA-SAM method can improved the detecting accuracy for abnormal events. Then the risk predictiton method had been proposed that combined with RBFNN(Radial Basis Function Neural Network) and AHP. This method build a risk predicting model by AHP(Analytic Hierarchy Process) that consists of four indicators, that are P (performance), T (Time), A (event statistics) and R (risk identification). Each indicator include some monitoring parameters that can compute the risk indicator value by weight matrix. Experimental results show that MRPGA-RBF risk prediction method can predictive risk value accurately.

Xuan Zhang,Nattapong Wuwong,Hao Li,Xuejie Zhang

DOI: https://doi.org/10.1109/cit.2010.501

2010-06-01

Abstract:The security risks associated with each cloud delivery model vary and are dependent on a wide range of factors including the sensitivity of information assets, cloud architectures and security controls involved in a particular cloud environment [7]. Over time, organizations tend to relax their security posture. To combat a relaxation of security, the cloud provider should perform regular security assessments [3]. Risk management framework is one of security assessment tool to reduction of threats and vulnerabilities and mitigates security risks. The goal of this paper is to present information risk management framework for better understanding critical areas of focus in cloud computing environment, to identifying a threat and identifying vulnerability. This framework is covering all of cloud service models and cloud deployment models. Cloud provider can be applied this framework to organizations to do risk mitigation.

Xi Rongrong,Yun Xiaochun,Hao Zhiyu

DOI: https://doi.org/10.1049/iet-ifs.2018.5189

2019-01-01

IET Information Security

Abstract:A large number of data is generated to help network analysts to evaluate the network security situation in traditional detection and prevention measures, but it is not used fully and effectively, there is not a holistic view of the network situation on it for now. To address this issue, a framework is proposed to evaluate the security situation of the network from three dimensions: threat, vulnerability and stability, and merge the results at decision level to measure the security situation of the overall network. In the case studies, the authors demonstrate how the framework is deployed in the network and how to use it to reflect the security situation of the network in real time. Results of the case study show that the framework can evaluate the security situation of the network accurately and reasonably.

Xiaoliang Wang,Xiaohong Jiang,Achille Pattavina

DOI: https://doi.org/10.1109/HPSR.2011.5986021

2011-01-01

Abstract:The mission critical network infrastructures are facing potential large region threats, both intentional (like EMP attack, bomb explosion) and natural (like earthquake, flooding). The available research on region failure related vulnerability studies generally adopt a kind of simple “deterministic” region failure models, which can not capture some important features of real region failure scenarios, where a network component in the region only fails with certain probability, and more importantly, such failure probability tends to vary with both its dimension and its distance to failure center. In this paper, we provide a more general “probabilistic” region failure model to capture the key features of a region failure and apply it for the network vulnerability assessment. To facilitate such assessment, we adopt a grid partition-based scheme to estimate various statistical network metrics under a random region failure. A theoretical framework is also established to determine a suitable grid partition such that a specified estimation error requirement is satisfied. The grid partition technique is also useful for identifying the vulnerable zones of a network, which can guide network designers to initiate proper network protection against such failures. The work in this paper helps us more deeply understand the network vulnerability behavior under region failure and facilitates the design and maintenance of future highly survivable mission critical networks.

Shu-xiang Guo,Zhen-Zhou Lu,Yan-yu Mo,Cheng Tang

DOI: https://doi.org/10.1615/Int.J.UncertaintyQuantification.2016016979

IF: 1.544

2016-01-01

International Journal for Uncertainty Quantification

Abstract:In the reliability assessment of structures, a situation we frequently encounter is that by means of available information some parameters involved can be depicted accurately by their probability distributions and others can only be described by the bounds or ranges of variations. So, it is meaningful to construct a reliability model by which the probabilistic and nonprobabilistic uncertainties can be treated reasonably in an integrated framework. The main purpose of this paper is to establish a strictly mathematical foundation and a unified framework for reliability assessment and reliability based design optimization (RBDO) of structures in the presence of both probabilistic and nonprobabilistic (bounded) hybrid uncertainties. The input uncertain parameters are divided into two different groups and treated respectively as random variables and interval variables, and the traditional probability and convex set models are adopted to describe the probabilistic and bounded uncertainties, respectively. In the reliability measuring system developed in the paper, dimensionless hybrid reliability indices are defined in different situations by adopting a similar method as for the traditional probabilistic reliability method for structures. A computational procedure for performing the RBDO of structures with hybrid uncertainties is presented. Two numerical examples are investigated to demonstrate the effectiveness and feasibility of the presented method.

Xiao-Yang Li,Yue Liu,Yan-Hui Lin,Liang-Hua Xiao,Enrico Zio,Rui Kang

DOI: https://doi.org/10.1016/j.ress.2020.107381

IF: 7.247

2021-01-01

Reliability Engineering & System Safety

Abstract:A cloud data center is a critical infrastructure whose service reliability is relevant for service delivery. Constituting the carrier of service for cloud computing, the IT architecture of a cloud data center plays an important role, since it directly relates to service reliability. However, most existing research focuses only on the connectivity of the IT architecture and on service considering only the processing procedure. In order to bridge the gap between the existing works and reality, a hierarchical colored generalized stochastic petri net is proposed to evaluate the service reliability by Monte Carlo simulation, which comprehensively considers the connectivity and performance of the IT architecture and the dynamic of service delivery. The modeling and simulation framework is applied to the cloud data center of an insurance company and cost-effective strategies are found to support the configuration, operation and maintenance of the cloud data center.

Chenyu Jiang,Zhanyu He,Fengjun Li,Fei Xie,Licheng Zheng,Jun Yang,Ming Yang

DOI: https://doi.org/10.1002/qre.3196

2022-09-08

Quality and Reliability Engineering International

Abstract:Nowadays, the emerging digital technologies and digitalization trend in safety‐critical industrial process systems are bringing great opportunities for system performance improvements. However, new big challenges are also encountered in the reliability and safety evaluation of large complex industrial process systems due to its multi‐state, multi‐phase dynamic interactions, resilience on software and inter‐dependencies among digital components. The objectives of this study are i) to present an introductory overview of a hybrid computing framework as a supplementary to conventional fault tree analysis toolkit for risk‐oriented reliability analysis in dynamic probabilistic safety assessment context; ii) to illustrate how to combine the three methods of DDET, Markov/CCMT, and GO‐FLOW for integrated risk solutions by a case study of small‐break LOCA in nuclear power plants. Within the hybrid computing framework, the DDET model is implemented based on graph‐based search and sequence diagram refactoring by linking with Markov/CCMT and GO‐FLOW solver for branch probability estimation. The dynamic event tree model is adopted to represent the accident sequence of small‐break LOCA, where the heading events of system failure of digital RPS and phased‐mission ECCS in realization of safety‐critical functions of reactivity control and emergency core cooling are respectively modeled and analyzed by Markov chain and GO‐FLOW method. The demonstration results show that the failure analysis of complex dynamic process interactions together with time‐dependent mission reliability analysis of safety systems involved in accident prevention and mitigation can be easily implemented with accurate modeling and fast evaluation within the hybrid integration platform. The core algorithms and principles implemented for dynamic risk scenarios development by DDET, modeling, and analysis of dynamic process interactions by Markov/CCMT, time‐dependent and multi‐phase mission reliability analysis by GO‐FLOW as well as their integration to provide comprehensive solutions for the application of dynamic reliability in risk assessment are also discussed as open problems for future research.

engineering, industrial, multidisciplinary,operations research & management science

Han Qin,Jiaming Weng,Dong Liu,Donglian Qi,Yufei Wang

DOI: https://doi.org/10.17775/cseejpes.2020.04550

IF: 6.014

2024-01-01

CSEE Journal of Power and Energy Systems

Abstract:With the help of advanced information technology, real-time monitoring and control levels of cyber-physical distribution systems (CPDS) have been significantly improved. However due to the deep integration of cyber and physical systems, attackers could still threaten the stable operation of CPDS by launching cyber-attacks, such as denial-of-service (DoS) attacks. Thus, it is necessary to study the CPDS risk assessment and defense resource allocation methods under DoS attacks. This paper analyzes the impact of DoS attacks on the physical system based on the CPDS fault self-healing control. Then, considering attacker and defender strategies and attack damage, a CPDS risk assessment framework is established. Furthermore, risk assessment and defense resource allocation methods, based on the Stackelberg dynamic game model, are proposed under conditions in which the cyber and physical systems are launched simultaneously. Finally, a simulation based on an actual CPDS is performed, and the calculation results verify the effectiveness of the algorithm.

Yubo Song,Subham Sahoo,Yongheng Yang,Frede Blaabjerg

DOI: https://doi.org/10.1109/tpel.2023.3278037

IF: 5.967

2023-01-01

IEEE Transactions on Power Electronics

Abstract:Microgrids are being developed with higher penetration of renewable energy sources and utilization of power electronics. The functionality of microgrids is normally measured by two indices, stability and reliability, which are highly influenced by system configuration and generation/load mission profiles. Although system-level modeling approaches have been proposed to evaluate both the said indices for microgrids, they are still considered independently due to the mismatch in their timescales. To this end, it limits the derivation of a comprehensive risk framework to exploit the interdependencies between stability and reliability. Hence, this article addresses this gap for the first time in the realm of microgrids by proposing a probabilistic risk framework by considering stability and reliability simultaneously. Long-timescale reliability are basically decomposed into shorter timescale events, whereas stability is treated as probabilistic events to be integrated into the risk evaluation. This framework can quantify the operation risk of microgrids, thereby providing a more intuitive approach to the design of microgrids. To validate the ruggedness of the proposed framework, system stability and reliability are assessed and interpreted under experimental conditions.

Jing Li,Mingze Li,Gang Wang,Xiaoguang Liu,Zhongwei Li,Huijun Tang

DOI: https://doi.org/10.1109/tdsc.2018.2882512

2020-01-01

Abstract:As cloud storage systems increase in scale, hard drive failures are becoming more frequent, which raises reliability issues. In addition to traditional reactive fault tolerance, proactive fault tolerance is used to improve a system's reliability. However, there are few studies which analyze the reliability of proactive cloud storage systems, and they typically assume an exponential distribution for drive failures. This paper presents closed-form equations for estimating the number of data-loss events in proactive cloud storage systems using RAID-5, RAID-6, 2-way replication, and 3-way replication mechanisms, within a given time period. The equations model the impact of proactive fault tolerance, operational failures, failure restorations, latent block defects, and drive scrubbing on the systems reliability, and use time-based Weibull distributions to represent processes (instead of homogeneous Poisson processes). We also design a Monte-Carlo simulation method to simulate the running of proactive cloud storage systems. The proposed equations closely match time-consuming Monte-Carlo simulations, using parameters obtained from the analysis of field data. These equations allow designers to efficiently estimate system reliability under varying parameters, facilitating cloud storage system design.

Jiayue Huang,Jianfeng Yang,Zhoutao Zheng,Zhengxia Qiu

DOI: https://doi.org/10.1002/qre.3533

2024-03-22

Quality and Reliability Engineering International

Abstract:Cyber‐Physical Systems (CPS) are at the forefront of the intersection between information technology and physical operations, revolutionizing industries such as communication, automation, control, and intelligent transportation. However, evaluating the reliability of CPS, especially in the presence of multilateral random attacks, poses a complex challenge. This paper introduces an inventive probabilistic modeling approach to enhance the analysis of CPS reliability under the influence of multilateral random attacks. We provide an overview of fundamental CPS concepts and their significant role in modern society, followed by a comprehensive exploration of multilateral random attacks. Our novel probabilistic modeling approach is presented as a means to improve the accuracy and robustness of CPS reliability assessments when faced with multilateral random attacks. Numerical experiments and simulations validate the effectiveness of our innovative approach, emphasizing its potential to fortify the reliability of Cyber‐Physical Systems.

engineering, industrial, multidisciplinary,operations research & management science

Aiguo Chen,Hanwen Xing,Kun She,Guiduo Duan

DOI: https://doi.org/10.1109/BDCloud-SocialCom-SustainCom.2016.90

2016-01-01

Abstract:Cloud computing environment is full of massive resources and provides resource services to the outside environment. There are lots of resource access requests both from the dynamic internal environment of cloud and the uncontrollable external environment. Traditional access control method is being widely used in cloud computing, whose rule-based method leads to huge security risk and can't fulfill the security needs of the cloud. In this paper, a dynamic risk-based access control model (DRAC) is proposed, which emphasizes the risk measurement as an auxiliary decision indicator. Moreover, a dynamic threshold of the risk is derived from the history records, and the comprehensive final decision is affect by the policy, risk measurement and dynamic threshold. To improve performance, the sliding window calculation method based on data stream is adopted. Finally, we analyze the scalability and effectiveness of the model in cloud environment application.

Satvik Jain,Arun Balaji Buduru,Anshuman Chhabra

DOI: https://doi.org/10.48550/arXiv.1810.11937

2018-10-29

Abstract:Cloud infrastructures are being increasingly utilized in critical infrastructures such as banking/finance, transportation and utility management. Sophistication and resources used in recent security breaches including those on critical infrastructures show that attackers are no longer limited by monetary/computational constraints. In fact, they may be aided by entities with large financial and human resources. Hence there is urgent need to develop predictive approaches for cyber defense to strengthen cloud infrastructures specifically utilized by critical infrastructures. Extensive research has been done in the past on applying techniques such as Game Theory, Machine Learning and Bayesian Networks among others for the predictive defense of critical infrastructures. However a major drawback of these approaches is that they do not incorporate probabilistic human behavior which limits their predictive ability. In this paper, a stochastic approach is proposed to predict less secure states in critical cloud systems which might lead to potential security breaches. These less-secure states are deemed as `risky' states in our approach. Markov Decision Process (MDP) is used to accurately incorporate user behavior(s) as well as operational behavior of the cloud infrastructure through a set of features. The developed reward/cost mechanism is then used to select appropriate `actions' to identify risky states at future time steps by learning an optimal policy. Experimental results show that the proposed framework performs well in identifying future `risky' states. Through this work we demonstrate the effectiveness of using probabilistic modeling (MDP) to predictively secure critical cloud infrastructures.

Artificial Intelligence

Karim Djemame,Django J. Armstrong,Mariam Kiran,Ming Jiang

2011-01-01

Abstract:As the realization of Cloud computing environments advances from a simple and single private Cloud towards a more complex Cloud Service Ecosystem consisting of multiple coexisting public or hybrid Clouds, there are emerging high level concerns such as risk, trust, ecological, security, cost and legal factors that underpin the non-functional properties of the ecosystem. These concerns are beyond the traditional focus of providing functionalities at levels close to a single Cloud infrastructure such as hardware resource virtualization. In this paper we present ongoing research work to analyze and address the risk factor in such a Cloud Service Ecosystem for the purpose of optimizing Cloud service. The main contributions of the work are the design and implementation of an effective and efficient risk assessment framework (methodologies of risk identification, evaluation, mitigation and monitoring) for Cloud service provision. Together with the corresponding mitigation strategies, the framework provides technological assurance that will lead to a higher confidence of Cloud service consumers on one side and a cost-effective and reliable productivity of Cloud Service Provider (SP) and resources organized by individual Infrastructure Provider (IP) on the other side. The design of the risk assessment framework and its software toolkit implementation is part of the research and development work of the OPTIMIS (Optimized Infrastructure Services) project whose objective is to enable an open and dependable Cloud Service Ecosystem that delivers IT services that are adaptable, reliable, auditable and sustainable both ecologically and economically.

liangliang huang,yongjun shen,guidong zhang,huixia luo

DOI: https://doi.org/10.1109/ICEIEC.2015.7284476

2015-01-01

Abstract:Nowadays, information system security is faced with some serious problems which suffer increasing threats, the increasingly complicated environment and more and more uncertain factors. Moreover, there are some uncertainty, randomness and fuzziness in transforming between qualitative concepts and their quantitative expressions in the process of information security risk assessment. In order to improve objectivity and accuracy of information security risk assessment, information system security risk assessment based on multidimensional cloud model and the entropy theory is proposed in this paper.

Yu Jianxing,Chen Haicheng,Wu Shibo,Fan Haizhao

DOI: https://doi.org/10.1109/access.2021.3058392

IF: 3.9

2021-01-01

IEEE Access

Abstract:The fuzziness and randomness are significant epistemic uncertainty within the qualitative categorization of the two critical factors, the frequency and severity, which are not fully considered in the traditional risk matrix. This paper mainly proposes a cloud risk matrix method for the risk assessment of process safety considering the epistemic uncertainty in expert elicitation. The cloud model is employed to provide a mathematical expression for the fuzziness and randomness in the linguistic variables by its two numerical characteristics entropy En and hyperentropy He. An adjusted Mamdani inference algorithm is constructed for the determination of an integrated risk cloud given the value of input variables. And the centroid method is improved to be adapted to the calculation of risk index from the enormous cloud droplets in the integrated risk cloud. A case study of risk assessment for distillation column unit is performed to illustrate the process of cloud risk matrix in detail, and the validity and rationality are verified by contrast to the results from the fuzzy risk matrix. Results indicate the proposed method can handle the randomness of qualitative concepts, which is more suitable to the practical condition. Moreover, the effect of the hyperentropy He on the randomness of risk index is also investigated and discussed for the reference to parameter selection. The proposed cloud risk matrix can provide an effective risk inference tool in a wide range of engineering fields.

Qian Li,Yaqiu Li,Guangze Pan,Jiawei Zhu,Baimao Lei,Xiaobing Li,JiaWei Zhu

DOI: https://doi.org/10.1109/icrms.2018.00084

2018-10-01

Abstract:Failure mechanisms are the root cause of product failure, and describes the internal physical and chemical process during a products’ lifetime, reflecting the relationship between internal variables and product life under specific circumstances. By modelling the failure mechanism of parts or components, designers can quantify the reliability of device-level and predict remaining lifespan without requiring abundant history failure data. This is significant in developing the failure mechanism modelling method for the use in system failures. Based on the physics of failure, this study proposes a system level reliability evaluation framework which considers the physics of failure mechanisms, and describes an evaluation method based on Bayesian inference, which was tested using typical threshold dynamic parameters of system failure.