Suzhou Electric Appliance Research Institute
期刊号: CN32-1800/TM| ISSN1007-3175

Article retrieval

文章检索

首页 >> 文章检索 >> 最新索引

基于贝叶斯攻击图的电力信息物理系统脆弱性评估

来源:电工电气发布时间:2022-07-19 08:19 浏览次数:278

基于贝叶斯攻击图的电力信息物理系统脆弱性评估

吴义尧
(广西大学 电气工程学院,广西 南宁 530004)
 
    摘 要:网络攻击可以通过信息层的通信漏洞进入电力信息物理系统中,因此需要对电力信息物理系统的脆弱性进行评估。提出了基于贝叶斯攻击图与继电保护机制相融合的电力信息物理系统综合脆弱性评估方法,即在信息层利用贝叶斯网络、漏洞评分体系和联合树算法,对信息层配电子站节点的风险概率进行赋值,在物理层中使用交流级联故障模型分析配电子站所控制的母线故障时,所触发的继电保护机制,计算继电保护机制为了消除级联故障所切除的负载占比。将信息层风险概率与物理层故障相结合,提出新的脆弱性评估指标负荷削减概率,以此来寻找脆弱性节点,对信息物理系统中的脆弱性进行评估。基于 IEEE 14 节点网络进行分析,验证了所提方法的有效性。
    关键词: 信息物理系统;脆弱性;攻击图;网络攻击;级联故障;潮流计算
    中图分类号:TM732     文献标识码:A     文章编号:1007-3175(2022)07-0006-08
 
Vulnerability Assessment of the Cyber-Physical Power
System Based on the Bayesian Attack Graphs
 
WU Yi-yao
(School of Electrical Engineering, Guangxi University, Nanning 530004, China)
 
    Abstract: Network attacks could enter into the cyber-physical power system through the network security holes of the information layers and pose a threat to the power system operation. So it is necessary to evaluate the vulnerability of the cyber-physical power system. This paper proposed a comprehensive vulnerability assessment method of the cyber-physical power system based on the integration of Bayesian attack graphs and relay protection mechanism. This method could assign values to the risk probability of the distribution substation nodes by using the Bayesian network, vulnerability scoring system, and junction tree algorithm in the information layers. The AC cascading failure model was used to analyze the busbar fault in the physical layer and triggered the relay protection mechanism. It calculated the proportion of load removed by the relay protection mechanism to eliminate cascading faults. Combining the risk probability of information layers with the failure of the physical layer, it proposed a new load reduction probability of the vulnerability evaluation index to find the vulnerable node and evaluate the vulnerability in the cyber-physical system. The effectiveness of this method is verified by the analysis based on IEEE 14.
    Key words: cyber-physical system; vulnerability; attack graph; network attack; cascading failure; power flow calculation
 
参考文献
[1] 郭庆来,辛蜀骏,孙宏斌,等. 电力系统信息物理融合建模与综合安全评估:驱动力与研究构想[J].中国电机工程学报,2016,36(6):1481-1489.
[2] 赵俊华,文福拴,薛禹胜,等. 电力 CPS 的架构及其实现技术与挑战[J] . 电力系统自动化,2010,34(16):1-7.
[3] 刘东,盛万兴,王云,等. 电网信息物理系统的关键技术及其进展[J] . 中国电机工程学报,2015,35(14):3522-3531.
[4] 汤奕,陈倩,李梦雅,等. 电力信息物理融合系统环境中的网络攻击研究综述[J] . 电力系统自动化,2016,40(17):59-69.
[5] 王琦,邰伟,汤奕,等. 面向电力信息物理系统的虚假数据注入攻击研究综述[J] . 自动化学报,2019,45(1):72-83.
[6] ETEMADI A H, FOTUHI-FIRUZABAD M.New considerations in modern protection system quantitative reliability assessment[J].IEEE Transactions on Power Delivery,2010,25(4) :2213-2222.
[7] DENG C.Distributed resilient control for cyber-physical systems under denial-of-service attacks[C]//2019 23rd International Conference on Mechatronics Technology(ICMT),2019.
[8] WANG Junsheng, YANG Guanghong.Data-driven methods for stealthy attacks on TCP/IP based networked control systems equipped with attack detectors[J].IEEE Transactions on Cybernetics,2019,49(8) :3020-3031.
[9] 蒲石,陈周国,祝世雄. 震网病毒分析与防范[J].信息网络安全,2012(2) :40-43.
[10] 郭庆来,辛蜀骏,王剑辉,等. 由乌克兰停电事件看信息能源系统综合安全评估[J] . 电力系统自动化,2016,40(5):145-147.
[11] 邢栩嘉,林闯,蒋屹新. 计算机系统脆弱性评估研究[J]. 计算机学报, 2004,27(1):1-11.
[12] 印永华,郭剑波,赵建军,等. 美加“8.14”大停电事故初步分析以及应吸取的教训[J] . 电网技术,2003,27(10):8-11.
[13] 王宇飞,高昆仑,赵婷,等. 基于改进攻击图的电力信息物理系统跨空间连锁故障危害评估[J] . 中国电机工程学报,2016,36(6):1490-1499.
[14] 冀星沛,王波,董朝阳,等. 电力信息-物理相互依存网络脆弱性评估及加边保护策略[J] . 电网技术,2016,40(6):1867-1873.
[15] LIU Nian, ZHANG Jianhua, ZHANG Hao, et al.Security assessment for communication networks of power control systems using attack graph and MCDM[J].IEEE Transactions on Power Delivery,2010,25(3) :1492-1500.
[16] 李培恺,刘云,辛焕海,等. 分布式协同控制模式下配电网信息物理系统脆弱性评估[J] . 电力系统自动化,2018,42(10):22-29.
[17] 张鹏. 配电网信息物理系统脆弱性评估与网络攻击研究[D]. 北京:华北电力大学,2021.
[18] 陈德成,付蓉,宋少群,等. 基于攻击图的电网信息物理融合系统风险定量评估[J] . 电测与仪表,2020,57(2):62-68.
[19] 张宇航,倪明,孙永辉,等. 针对网络攻击的配电网信息物理系统风险量化评估[J] . 电力系统自动化,2019,43(21):12-22.
[20] 高妮,高岭,贺毅岳,等. 基于贝叶斯攻击图的动态安全风险评估模型[J] . 四川大学学报(工程科学版),2016,48(1):111-118.
[21] NOEBELS M, PREECE R, PANTELI M.AC cascading failure model for resilience analysis in power networks[J].IEEE Systems Journal,2022,16(1) :374-385.
[22] 叶夏明,赵俊华,文福拴. 基于邻接矩阵的电力信息系统脆弱性定量评估[J] . 电力系统自动化,2013,37(22):41-46.
[23] TEN C W, LIU C C, MANIMARAN G.Vulnerability assessment of cybersecurity for SCADA systems [J] . IEEE Transactions on Power Systems,2008,23(4) :1836-1846.