张恺伦,江全元

2013-01-01

Abstract:With the promotion and application of wide area measurement systems (WAMS) in power system, the security of its communication system is attracting a growing body of research. To analyze the vulnerability of WAMS communication infrastructures when facing network intrusions, an assessing method of vulnerability based on attack tree model is proposed. First, the attack tree model of WAMS communication system is established, which directly reflects the intrusion scenarios when the system is maliciously attacked. Second, a more reasonable assessing method for the vulnerability of passwords and ports is proposed, as well as the vulnerability of the system with all scenarios taken into consideration. Finally, the paper puts forth the concept of vulnerability sensitivity, which can quantitatively evaluate the effect of changes in the leaf vulnerability on the system, so as to find out the critical port.

Ruiwen He,Xiaoyu Ji,Wenyuan Xu

DOI: https://doi.org/10.1109/ei250167.2020.9346835

2020-01-01

Abstract:With the development of information technology and Power Internet of Things, the increasing number of networked terminals presents new network security threats. Industrial control equipment and systems have vulnerabilities in hardware, software and firmware, and advanced persistent threat against ICS has become more complex and diverse. However, most of the research are aimed at the detection of single vulnerability, and lack attack mechanism analysis and threat assessment for attack chain. We proposed a threat assessment method based on vulnerability descriptive text and described the attributes of attack samples according to the classification results in attack targets, methods and consequences. We constructed attack graphs based on attack sample attributes and cyber-physical topology to quantitatively evaluate the feasibility and benefits of each attack path from vulnerability capabilities and the impact of devices in the physical world. Finally, we took the substation device status monitoring system as an example to verify the feasibility of this method.

Yinan Wang,Gangfeng Yan,Ronghao Zheng

DOI: https://doi.org/10.3390/app8050768

2018-01-01

Applied Sciences

Abstract:The integration of modern computing and advanced communication with power grids has led to the emergence of electrical cyber-physical systems (ECPSs). However, the massive application of communication technologies makes the power grids become more vulnerable to cyber attacks. In this paper, we study the vulnerability of ECPSs and develop defence strategies against cyber attacks. Detection and protection algorithms are proposed to deal with the emergency of cascading failures. Moreover, we propose a weight adjustment strategy to solve the unbalanced power flows problem which is caused by splitting incidents. A MATLAB-based platform with advantages of easy programming, fast calculation, and no damage to systems is built for the offline simulation and analysis of the vulnerability of ECPSs. We also propose a five-aspect method of vulnerability assessment which includes the robustness, economic costs, degree of damage, vulnerable equipment, and trip point. The study is of significance to decision makers as they can get specific advice and defence strategies about a special power system.

Chen Weihua,Jiang Quanyuan,Cao Yijia

DOI: https://doi.org/10.1109/ipec.2005.207004

2005-01-01

Abstract:With the increasing utilization of HVDC system, security assessment of HVDC system has become a hot topic. This paper presents a novel approach using the framework of vulnerability to assess HVDC system security. First, equivalent models of HVDC systems, based on Markov model and logical diagram, are built to solve "dimension disaster" problem. Second, the risk index is used as an indicator of the level of security, and its sensitivity to a changing system parameter is used as an indicator of its trend. These two indicators are combined to determine the degree of HVDC system vulnerability to contingent disturbances. Finally, artificial neural network (ANN) is applied to the fast pattern recognition and classification of system vulnerability status. A case of Gezhouba-Shanghai HVDC system in China is presented to verify correctness and effectiveness of the approach.

CHEN Wei-hua,JIANG Quan-yuan,CAO Yi-jia,HAN Zhen-xiang

DOI: https://doi.org/10.3321/j.issn:1000-3673.2005.04.004

2005-01-01

Abstract:Based on probability theory the risk theory was applied to the vulnerability assessment of power system. Here, the power system was defined as a vulnerable system and a set of risk indices to assess the power system vulnerability and corresponding algorithm were built, thus the defects of traditional determinsistic security assessment method, which cannot satisfy the requirement of electricity market and complicated power grid, could be overcome. On this basis, a risk theory and risk indices based power system vulnerability assessment software was developed. Taking the New England test system for example, the effectiveness and advanced property of the presented method were proved.

Bo Wang,Hengrui Ma,Xunting Wang,Guiping Deng,Yan Yang,Shaohua Wan

DOI: https://doi.org/10.1007/s11227-019-03027-w

IF: 3.3

2019-01-01

The Journal of Supercomputing

Abstract:Considering the different weights of various heterogeneity node importance in power grid and communication network and the possibility of the power grid island as well as the independent operation of the local area network, a more accurate method is proposed to evaluate the fragility of a cyber-physical system. According to the quo of grid construction and the background of cyber-physical fusion, the hierarchical system and distributed system model are established, respectively. Simulation results of conducting random attack and deliberate attack on two systems indicate that the proposed method is correct and better than others and it can identify the balance of the network structure. The distributed system is more robust than the hierarchical system under different weighting factors, while the robustness of the hierarchical system is more sensitive to the weighting factor.

Peizhe Li,Zhenfeng Xiao,Yefan Wu,Haotian Liu,Yong Wang,Jianhan Zhou,Xiaoping Wu,Lilin Qiao,Quanbiao An,Siyu Yang

DOI: https://doi.org/10.1145/3468691.3468723

2021-01-01

Abstract:Power communication network is an important supporting network of smart power grid. According to the complex characteristics of power communication network to identify the structural vulnerability of power communication network, how to carry out comprehensive and effective assessment of its vulnerability, this paper proposes an effective assessment method based on the vulnerability loss of power communication network. Firstly, the topology modeling of power communication network is carried out. According to the static parameter characteristics of the network and the static statistical characteristics of the network, the typical model corresponding to the complex network is pointed out, and its characteristics are summarized and verified. Secondly, considering the physical layer and the network layer comprehensively, the importance loss of the physical layer and the maximum connectivity rate of the network layer are defined, and then the vulnerability loss of the network is finally obtained by giving the corresponding weight value respectively, which is used as the vulnerability evaluation index of the power communication network. Finally, based on the simulation background of the actual power communication network in a province, the effectiveness of the method in this paper is proved by comparing the vulnerability loss of different curves.

YE Xiaming,ZHAO Junhua,WEN Fushuan

DOI: https://doi.org/10.7500/AEPS20130324004

2013-01-01

Abstract:With the development of smart grids,a power system and its information system are going to be seamlessly integrated.Hence the quantitative vulnerability assessment for a power information system becomes an important research topic.Given this background,a quantitative vulnerability assessment method based on the adjacency matrix is developed first. The proposed method employs the transition probability to describe the characteristics of attackers at two stages,i.e.selecting the access point first,and then attacking other nodes in the network from the access point.Besides,the transfer probability index between nodes is used to describe the intelligent ability of the attacker to choose the attack node.Next,the effectiveness of the method developed is demonstrated through an established evaluation example based on the information model of a slave station of a distribution automation system.

Jin He,Boxiang Shang,Yan Li,Bo Yin

DOI: https://doi.org/10.1088/1742-6596/1550/3/032057

2020-05-01

Journal of Physics: Conference Series

Abstract:Abstract With the promotion of the ubiquitous power IoT strategy, as well as the extensive application of advanced information communication technology and Internet + in the power grid, the power system has gradually broken the previous closure and exclusivity. The construction and deployment of open, interactive, extensive and interconnected power web business system are becoming more and more widespread. The inherent vulnerability and hidden danger of power web system make power face the risk transfer from network and information security to power system. Aiming at the potential security problems of vulnerability in the massive power web system, an in-depth study is made on the automatic mining and utilization technology of the vulnerability in the power web system. By carrying out researches on the framework design of automatic mining and utilization of vulnerabilities in power web system and the intelligent new mode of exploiting vulnerabilities in power web system, the overall design is made for the mechanism and model of automatic mining of asset vulnerabilities in power information system.

Shuliang Wang,Jianhua Zhang,Mingwei Zhao,Xu Min

DOI: https://doi.org/10.1016/j.physa.2017.01.003

2017-01-01

Abstract:This paper takes central China power grid (CCPG) as an example, and analyzes the vulnerability of the power systems under terrorist attacks. To simulate the intelligence of terrorist attacks, a method of critical attack area identification according to community structures is introduced. Meanwhile, three types of vulnerability models and the corresponding vulnerability metrics are given for comparative analysis. On this basis, influence of terrorist attacks on different critical areas is studied. Identifying the vulnerability of different critical areas will be conducted. At the same time, vulnerabilities of critical areas under different tolerance parameters and different vulnerability models are acquired and compared. Results show that only a few number of vertex disruptions may cause some critical areas collapse completely, they can generate great performance losses the whole systems. Further more, the variation of vulnerability values under different scenarios is very large. Critical areas which can cause greater damage under terrorist attacks should be given priority of protection to reduce vulnerability. The proposed method can be applied to analyze the vulnerability of other infrastructure systems, they can help decision makers search mitigation action and optimum protection strategy.

Bo Wang,Dahai You,Xianggen Yin

DOI: https://doi.org/10.4028/www.scientific.net/amr.204-210.622

2011-01-01

Advanced Materials Research

Abstract:The factors which lead to large-area power outages are more than ever, when the complexity of the expansion power system is increasing. Therefore, it is important to assess the vulnerability of the complicated power system. This paper first proposes an objective, practical and adaptive vulnerability assessment system of complicated power system by use of Analytic Hierarchy Process, which based on multi-factors analysis of large-area outages. This system can find out the vulnerability point of the power system，and take advantages of the government, who can over-all plan, correspond and organize the social resource to reduce the vulnerability of power system and prevent large-area power outages, and the power enterprises who can maintaining the stability of power system by technology. Finally, the paper gives an assessment example of provincial power system.

Keren CHEN,Fushuan WEN,Junhua ZHAO,Li LI,Yinguo YANG,Yan TAN

DOI: https://doi.org/10.16081/j.issn.1006-6047.2017.12.009

2018-01-01

Abstract:The wide applications of the ever-developing automation and communication technologies have significantly enhanced the operation level of modem power system,while the interactions between the power information system and the power physical system are becoming more extensively and more in-depth,and hence the cyber-physical power system is formed.In the cyber-physical power system,the failure of information equipment has impacts on the security and reliability of power physical system,while attacks from outsiders against either physical or information equipment may result in power supply interruptions.On this background,the cyber-physical power system is simulated as five elements:physical node,physical-physical link,cyber-node,cyber-cyber link and cyber-physical link,to analyze the interactive influence between physical equipment and information equipment,based on which,the influence of information system failure on the operation of physical system is assessed.A bi-level mathematic programming model under the game theory framework is established for distributing defending resources on information and power modules,to quantify the importance degrees of modules under given attacks.The modified IEEE 14-bus power system is simulated and calculated,whose results verify the feasibility and effectiveness of the proposed method.

Xueqin Gao,Tao Shang,Da Li,Jianwei Liu

DOI: https://doi.org/10.1109/pst55820.2022.9851965

2022-01-01

Abstract:SCADA systems are one of the critical infrastructures and face many security threats. Attackers can control SCADA systems through network attacks, destroying the normal operation of the power system. It is important to conduct a risk assessment of security threats on SCADA systems. However, existing models for risk assessment using attack trees mainly focus on describing possible intrusions rather than the interaction between threats and defenses. In this paper, we comprehensively consider intrusion likelihood and defense capability and propose a quantitative risk assessment model of security threats based on attack countermeasure tree (ACT). Each leaf node in ACT contains two attributes: exploitable vulnerabilities and defense countermeasures. An attack scenario can be constructed by means of traversing the leaf nodes. We set up six indicators to evaluate the impact of security threats in attack scenarios according to NISTIR 7628 standard. Experimental results show the attack probability of security threats and high-risk attack scenarios in SCADA systems. We can improve defense countermeasures to protect against security threats corresponding to high-risk scenarios. In addition, the model can continually update risk assessments based on the implementation of the system’s defensive countermeasures.

甘早斌,吴平,路松峰,李瑞轩

DOI: https://doi.org/10.3969/j.issn.1671-0428.2006.11.013

2007-01-01

Abstract:This paper extended the attack tree model,and proposed a new quantitative risk evaluation method.While the risk value of the leaf node(atomic attack) was quantified,the multi-attribute utility theory was adopted,which could make the result more reasonable.Presented all algorithms for each steps of this new evaluation method that offered a good foundation for the implementation of the automatic evaluation tool.

Qunying Liu,Jun Liu,Qi Huang

DOI: https://doi.org/10.1109/SUPERGEN.2009.5347888

2009-01-01

Abstract:According to the integral theory of energy function, branch potential energy function model is constructed, and then two indexes are proposed: one is the current vulnerability, which quantifies the distance between the current transmitted power and initial transmitted power to identify the current vulnerable area, the other is the forecasting vulnerability, which is gained through computing the branch vulnerability considering the impact of power injection changing. By the two indexes, the current and forecasting vulnerable area can be identified and the correctness of the former one can be validated. Through the simulations in IEEE-30 bus system and the comparison with optimal power flow under N-1 and N-2 faults, the results show that the branch potential energy function model have many advantages such as rapid computation without being influenced by the convergent condition of power flow, identifying and forecasting the vulnerable branch exactly. Because of these, the application of this method on the on-line security monitoring is expected.

LU Zhi-yong,JIANG Liang,TANG Chao-jing

DOI: https://doi.org/10.3969/j.issn.1007-130x.2011.08.008

2011-01-01

Abstract:The attack graph,attack tree and attack net are important modeling methods for testing and evaluating network security,but these methods are disordered and short of pertinence when choosing attacks.To overcome these shortages,this paper models the vulnerability tree of the security attributes for each host,taking the network vulnerability as the leaf node and attacks as tree borders.After analyzing the fruit efficiency and time efficiency comprehensively,we present an approach for vulnerability tree modeling of the host security attributes by efficiency priority.Finally,the feasibility and validity of the approach are verified using some practical examples.

XIA Yang,LU Yu-Liang

DOI: https://doi.org/10.3969/j.issn.1002-137X.2007.10.017

2007-01-01

Computer Science

Abstract:In the field of network security,the research of quantitative vulnerability assessment of computer host and network is becoming highlighting.This paper brings forward a method of network-vulnerability quantitative assess- ment,and a corresponding system,based on this method,is established closely after that.In order to obtain the vul- nerability measurement of target host,the possibility of the existence and the exploitability of vulnerability are evalua- ted quantitatively in the system.On the basis of that,by combining with network topology,the dangerous path and critical node of network are analyzed in terms of the refined shortest-path algorithms.Thereby,the administrator can patch the vulnerability with a definite purpose,and which undoubtedly would enhance the general security performance of the network.

Rong Jiang,Jun Luo,Xiaoping Wang

DOI: https://doi.org/10.1109/WiCOM.2012.6478402

2012-01-01

Abstract:The challenging nature of insecure wireless channels and constrained resources make protection for wireless sensor networks (WSNs) an especially essential problem. The existing work has focused on preventive techniques to achieve location privacy protection, while the location privacy risk assessment receives less attention. In this paper, we propose a novel risk assessment approach to evaluate the risk of WSNs privacy based on attack tree. Using the attack tree model, we can estimate the degree that a certain threat might bring to the WSNs and identify possible attack sequences that an attacker may launch towards the privacy preserving system in WSNs. Then we adopted the multi-attribute utility theory to calculate the system's total risk value as well as the probabilities of each attack sequence. The analysis results can provide support for decision makers to make corresponding protection measures of location privacy.

Meng Sun,Qi Wang,Jue He,Huailin Huang,Yu Huang,Xiaojie Shen,Yaohui Xiao,Suchun Fan

DOI: https://doi.org/10.1088/1742-6596/2290/1/012036

2022-01-01

Journal of Physics Conference Series

Abstract:Abstract Power system network is an important guarantee for the smooth operation of power enterprises. Considering the current automatic network vulnerability scanning method of power system, the detection rate of network vulnerability scanning is low due to its poor scheduling ability. Therefore, this paper designs a new automatic scanning method for network vulnerabilities in power system. According to the infrastructure of power system network vulnerability scanner, the power system web page interaction behavior recognition model is constructed to complete the power system web page interaction behavior recognition. On this basis, the power system network scanning scheduling algorithm is designed. Combined with genetic algorithm, the variation process of power system network vulnerabilities is determined, the power system network security situation is determined, the power system network scanning scheduling and vulnerability mining are realized, and the design of power system network leakage automatic scanning method is completed. The experimental link is constructed to verify this method. The verification shows that this method can effectively improve the detection rate of network vulnerability scanning and the efficiency of vulnerability scanning to a certain extent.

Fei Wang,Xia-zhong Zheng,Nan Li,Xuesong Shen

DOI: https://doi.org/10.1016/j.ijcip.2019.05.002

IF: 3.683

2019-01-01

International Journal of Critical Infrastructure Protection

Abstract:Water distribution networks (WDNs) are vital infrastructures in cities. However, reports about urban WDNs incidents that result in major system breakdowns and water outages are not uncommon, which repeatedly highlights the urgency of addressing vulnerability challenges of WDNs. This study aims to propose a new method for system-level, scenario-independent vulnerability assessment of WDNs, which considers the uncertainty in various failures that may happen in the system. The proposed method is developed based on the notion that the vulnerability of WDN is largely determined by its heterogeneity in node importance, which impacts how likely system malfunction or breakdown would happen should a small amount of nodes be attacked. Accordingly, the proposed method uses a set of indicators to measure the functional, structural and overall importance of each node in WDN, and introduces a novel network entropy model to measure the heterogeneity of importance of these nodes. The proposed method then assesses the systemic vulnerability of WDN, by benchmarking its current entropy against the entropies associated with the least and most vulnerable states of the system. The efficacy of the proposed method is demonstrated in a case study, in which the assessment yielded by the proposed method was found theoretically reasonable as well as consistent with actual conditions of the case WDN.