论文信息 - Assessing Cyber-threats Situation for Electric Power Information Networks

Assessing Cyber-threats Situation for Electric Power Information Networks

The Cyber-threats Situation Assessment (CSA) could show the macro security situation of Electric Power Information Networks (EPIN) in real time. Researching the efficient CSA method will be helpful to enhance the security protection ability of EPIN. A hierarchical CSA method, which is based on both the Analytic Hierarchy Process (AHP) and the Grey Clustering Algorithm (GCA), is proposed and implemented. The Cyber-threats Situation Value (CSV) is used to describe the cyber-threats situation. The higher CSV shows worse security situation, on the contrary, the lower CSV shows the better. In order to determine the weights of all cyber-threats, the AHP is used to design the hierarchical CSA index system that could divide all cyber-threats into the “Strong”, “Medium” and “Weak” 3 grey clustering classes. At the same time, the GCA is used to construct the criteria layer of index system. The key components of CSV could be clearly shown by those above ways. The CSV value is the summation of products, which products are multiplied by the occurrences number of each cyber-threat and its weight. Finally, the experimental results and system normal operation show that this method can dynamic display the macro security situation of EPIN in real time, with a high practical value.

[1] Feng Li. Research on hierarchical network security threat situation assessment , 2011 .

[2] Chen Xiu. Quantitative Hierarchical Threat Evaluation Model for Network Security , 2006 .

[3] Zhang Xiang,et al. Research on Network Attack Situation Forecast Technique Based on Support Vector Machine , 2007 .

[4] Wang Bao-shu. Research on the Bayesian networks model in situation assessment , 2009 .

[5] Wei Yong. Method of Security Situation Assessment Based on Graph Clustering , 2009 .

[6] Gao Kunlun. A Hybrid Security Situation Prediction Model for Information Network Based on Support Vector Machine and Particle Swarm Optimization , 2011 .

[7] Yang Ai-min,et al. P2P traffic classification method based on SVM , 2008 .

[8] Wang Yufei. A Study on Electric Power Information Network-Oriented Security Situation Awareness , 2013 .

[9] Luo Yun-qian. Application of Graph Theory in Threat Situation Analysis of Network Security , 2009 .

[10] Chen Shaohua,et al. Mining Algorithm for Constrained Maximum Frequent Itemsets Based on Frequent Pattern Tree , 2011 .

[11] Wang Shuang. Security situation evaluation system for large scale network , 2008 .

[12] Yuan Huan. Method of Network Attack Graph Generation Based on Greedy Policy , 2011 .

[13] Zhu Jianjun. Research on evaluations of several grey relational models adapt to grey relational axioms , 2009 .