Security policy dynamic acquisition method of process control system based on attack-defense game

A technology of process control system and security policy, which is applied in the field of dynamic acquisition of security policy of process control system, and can solve the problems of fixed response mode and excessive response.
CN106453379AActive Publication Date: 2017-02-22HUAZHONG UNIV OF SCI & TECH
5 Cites 23 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Patent Type
Applications(China)
Current Assignee / Owner
HUAZHONG UNIV OF SCI & TECH
Publication Date
2017-02-22

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a security policy dynamic acquisition method of a process control system based on an attack-defense game. The method comprises an offline process and an online process; the method comprises the following steps: firstly, analyzing the process control system and establishing a Bayesian network; secondly, building a defense strategy model; thirdly, screening a potential attack strategy set and a potential defense strategy set; fourthly, quantizing an attack-defense payoff matrix; and finally, according to the attack-defense payoff matrix, establishing an equation solution and acquiring an optimal security strategy. The method of the invention comprehensively considers various consequences caused by the attack-defense strategy, and performs uniform scale quantization; an idea of an attack-defense game theory is introduced to a solving process of the optimal security strategy, so that the problems that the traditional dynamic strategy decision is excessive responsive, and the response mode of a dynamic decision response method is fixed and easily exploited by attackers are solved; and besides, the Bayesian network and the attack-defense strategy model are used for screening the potential attack-defense strategy, so that the number of alternative attack-defense strategies can be greatly reduced, thereby reducing the computing time of cost-benefit quantification of the attack-defense strategies, and improving the real-time performance of a dynamic decision.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention belongs to the technical field of process control system information security protection, and more specifically relates to a method for dynamically acquiring security policies of a process control system based on an attack-defense game. Background technique

[0002] The process control system has realized the management, monitoring and control of a wide area; the rapid development of computer technology, sensor technology, network communication technology and automatic control technology has broken the deadlock of traditional process control system information islands, but while enjoying the convenience brought by openness, it is also Faced with various information security problems. The consequences of intrusion attacks on process control systems are very serious, and its information security issues are imminent. Dynamic information security policy decision-making is the key to solving process control system information security issues. ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More