摘要
电力系统的运行和控制逐渐依赖于智能测控设备、实时通信网络和集成软件系统,在提高系统效率和灵活性的同时,也带来了新的安全隐患,特别是跨域攻击的威胁。文中将系统性地探讨物理信息系统中的跨域攻击形式及其潜在风险,通过收集和分析历史上发生的跨域攻击事件,建立一个全面的漏洞知识库,针对CPS中各个资产之间的关联关系进行深入分析。通过构建基于攻击模型的跨域攻击机理,揭示潜在的攻击路径和薄弱环节。在技术实现方面,将采用有向攻击图模型,通过深度遍历算法分析可能的攻击路径,并设计一种创新的跨域攻击预测算法,文中研究旨在为工业控制系统安全分析提供一种实用策略,为该领域进一步探讨提供理论支持,增强电力系统的抗风险能力。
The operation and control of power systems are increasingly dependent on intelligent measurement and control equipment,real-time communication networks,and integrated software systems.This not only has improved the efficiency and flexibility of the system,but also has brought new security risks,especially the threat of cross-domain attacks.In this paper,the forms of cross-domain attacks in CPSs(cyber-physical systems)and their potential risks will be explored systematically.A comprehensive vulnerability knowledge base is established by collecting and analyzing historical cross-domain attack events.The correlation between various assets in CPSs will be analyzed deeply.A cross-domain attack mechanism based on an attack model is constructed to reveal the potential attack paths and weak links.In terms of technical implementation,a directed attack graph model is adopted,the possible attack paths are analyzed with a deep traversal algorithm,and an innovative cross-domain attack prediction algorithm is designed.This research aims to provide a practical strategy for the safety analysis of industrial control system,provide theoretical support for further discussion in this field,and enhance the anti-risk ability of power system.
作者
张蕾
万金晶
陈平
ZHANG Lei;WAN Jinjing;CHEN Ping(Institute of Big Data,Fudan University,Shanghai 200433,China)
出处
《现代电子技术》
北大核心
2025年第17期98-103,共6页
Modern Electronics Technique
基金
国家重点研发计划(2022YFB3104300)。
作者简介
张蕾(1982-),女,江苏扬州人,硕士研究生,助理研究员,研究方向为网络安全、密码学;万金晶(2001-),女,湖北荆州人,研究方向为网络安全;通讯作者:陈平(1985-),男,江苏南京人,博士研究生,教授,研究方向为软件和系统安全、内生安全、智能车安全、漏洞挖掘、区块链安全、反欺诈。
