本文選題：工業(yè)控制系統(tǒng) + 安全評(píng)估模型�。� 參考：《遼寧科技大學(xué)》2016年碩士論文

【摘要】：隨著工業(yè)控制系統(tǒng)(Industry Control System,ICS)越來(lái)越復(fù)雜,安全要求越來(lái)越高,傳統(tǒng)的安全評(píng)價(jià)系統(tǒng)遇到了瓶頸,已經(jīng)不能滿足現(xiàn)代工業(yè)安全評(píng)估的要求。由于ICS安全攻擊大多為大規(guī)模、各系統(tǒng)相互協(xié)作、持續(xù)長(zhǎng)時(shí)間的高級(jí)威脅(Advanced Persistent Threat,APT)攻擊,傳統(tǒng)的系統(tǒng)安全評(píng)估方法已經(jīng)不能夠滿足。目前,無(wú)論是國(guó)內(nèi)還是國(guó)際,ICS評(píng)估指標(biāo)較少,所以很難對(duì)ICS安全進(jìn)行評(píng)估與指導(dǎo)。除此之外,受實(shí)際數(shù)據(jù)少、主觀性太強(qiáng)等因素的限制,工業(yè)控制系統(tǒng)安全評(píng)估的模型量化實(shí)現(xiàn)困難。本文針對(duì)ICS安全評(píng)估領(lǐng)域的缺陷,進(jìn)行了如下工作:(1)對(duì)ICS安全評(píng)估系統(tǒng)與傳統(tǒng)信息系統(tǒng)進(jìn)行了對(duì)比,找到了二者的差異,為后面的系統(tǒng)方案設(shè)計(jì)奠定了基礎(chǔ)。對(duì)信息安全屬性模型進(jìn)行了研究,構(gòu)造了以SCIAM(安全性、機(jī)密性、完整性、可用性以及可管性)為基礎(chǔ)框架的安全評(píng)估指標(biāo)體系。(2)基于SCIAM安全屬性模型,通過(guò)使用熵權(quán)分析法獲得指標(biāo)體系中每個(gè)指標(biāo)的權(quán)重,采用了灰色多屬性群決策方法對(duì)評(píng)估結(jié)果進(jìn)行量化分析。該工作能夠在一定程度上排除安全評(píng)估過(guò)程中評(píng)估人員主觀因素的影響,在實(shí)際工程中有重要意義。(3)結(jié)合國(guó)內(nèi)外ICS安全評(píng)估準(zhǔn)則及上述評(píng)估模型及評(píng)估方法,給出了ICS安全評(píng)估系統(tǒng)的設(shè)計(jì)方案,并且對(duì)方案進(jìn)行了分析,保證了方案的可行性和可靠性。通過(guò)上述研究,從工業(yè)控制安全的實(shí)際情況出發(fā),對(duì)各個(gè)系統(tǒng)模塊進(jìn)行了理論分析和創(chuàng)新。該工作對(duì)工業(yè)控制安全領(lǐng)域系統(tǒng)的設(shè)計(jì)參考具有重要意義。
[Abstract]:With the increasing complexity and high safety requirements of the industrial control system (Control), the traditional safety evaluation system has encountered a bottleneck and can no longer meet the requirements of modern industrial safety assessment.Because most of the ICS security attacks are large-scale, the systems cooperate with each other, and the advanced Persistent threat (Advanced Persistent threat) attacks persist for a long time, the traditional methods of system security evaluation can not be satisfied.At present, it is difficult to evaluate and guide the security of ICS because of the lack of evaluation indexes both at home and abroad.In addition, due to the limitation of less actual data and too much subjectivity, it is difficult to quantify the safety evaluation model of industrial control system.Aiming at the defects in the field of ICS security evaluation, this paper makes the following work: 1) compares the ICS security assessment system with the traditional information system, finds out the difference between them, and lays a foundation for the design of the system scheme.In this paper, the information security attribute model is studied, and the security evaluation index system based on SCIAM (security, confidentiality, integrality, usability and manageability) is constructed, which is based on SCIAM security attribute model.The weight of each index in the index system is obtained by using entropy weight analysis, and the evaluation results are analyzed quantitatively by grey multi-attribute group decision making method.This work can eliminate the influence of subjective factors in the process of safety assessment to a certain extent, and is of great significance in practical engineering. It combines the ICS safety assessment criteria at home and abroad and the above evaluation models and methods.The design scheme of ICS security evaluation system is given, and the scheme is analyzed to ensure the feasibility and reliability of the scheme.Through the above research, the theoretical analysis and innovation of each system module are carried out based on the practical situation of industrial control safety.This work is of great significance to the design reference of industrial control safety system.
【學(xué)位授予單位】：遼寧科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類(lèi)號(hào)】：TP273;TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前6條

1 周小鋒;陳秀真;;面向工業(yè)控制系統(tǒng)的灰色層次信息安全評(píng)估模型[J];信息網(wǎng)絡(luò)安全;2014年01期

2 程平;劉偉;;多屬性群決策中一種基于主觀偏好確定屬性權(quán)重的方法[J];控制與決策;2010年11期

3 龔艷冰;;基于方案偏好和部分權(quán)重信息的模糊多屬性決策方法[J];控制與決策;2008年05期

4 王娜,方濱興,羅建中,劉勇;“5432戰(zhàn)略”:國(guó)家信息安全保障體系框架研究[J];通信學(xué)報(bào);2004年07期

5 朱巖,楊永田,張玉清,馮登國(guó);基于層次結(jié)構(gòu)的信息安全評(píng)估模型研究[J];計(jì)算機(jī)工程與應(yīng)用;2004年06期

6 賈東耀,汪仁煌;工業(yè)控制網(wǎng)絡(luò)結(jié)構(gòu)的發(fā)展趨勢(shì)[J];工業(yè)儀表與自動(dòng)化裝置;2002年05期

，

本文編號(hào)：1773673