Security policy dynamic acquisition method of process control system based on attack-defense game

Abstract

The invention discloses a security policy dynamic acquisition method of a process control system based on an attack-defense game. The method comprises an offline process and an online process; the method comprises the following steps: firstly, analyzing the process control system and establishing a Bayesian network; secondly, building a defense strategy model; thirdly, screening a potential attack strategy set and a potential defense strategy set; fourthly, quantizing an attack-defense payoff matrix; and finally, according to the attack-defense payoff matrix, establishing an equation solution and acquiring an optimal security strategy. The method of the invention comprehensively considers various consequences caused by the attack-defense strategy, and performs uniform scale quantization; an idea of an attack-defense game theory is introduced to a solving process of the optimal security strategy, so that the problems that the traditional dynamic strategy decision is excessive responsive, and the response mode of a dynamic decision response method is fixed and easily exploited by attackers are solved; and besides, the Bayesian network and the attack-defense strategy model are used for screening the potential attack-defense strategy, so that the number of alternative attack-defense strategies can be greatly reduced, thereby reducing the computing time of cost-benefit quantification of the attack-defense strategies, and improving the real-time performance of a dynamic decision.

Description

technical field [0001] The invention belongs to the technical field of process control system information security protection, and more specifically relates to a method for dynamically acquiring security policies of a process control system based on an attack-defense game. Background technique [0002] The process control system has realized the management, monitoring and control of a wide area; the rapid development of computer technology, sensor technology, network communication technology and automatic control technology has broken the deadlock of traditional process control system information islands, but while enjoying the convenience brought by openness, it is also Faced with various information security problems. The consequences of intrusion attacks on process control systems are very serious, and its information security issues are imminent. Dynamic information security policy decision-making is the key to solving process control system information security issues. ...

AI Technical Summary

Problems solved by technology

[0005] Aiming at the above defects or improvement needs of the prior art, the present invention provides a method for dynamically acquiring security policies of a process control system based on an attack-defense game, which solves the tight coupling between the information system and the physical system in the process of dynamic security policy decision-making through the risk assessment system , fixed response patterns, over-response issues

Images