首页|一种轨道列车车载通信系统信息安全风险评估方法

一种轨道列车车载通信系统信息安全风险评估方法

Cyber Security Risk Assessment Approach for Rolling Stock Onboard Communication Systems

扫码查看
原文链接
  • 国家科技期刊平台
  • NETL
  • NSTL
  • 维普
  • 万方数据
提出一种基于通用漏洞评价系统(Common Vulnerability Scoring System,CVSS)的列车车载通信系统信息安全风险评估方法,详细介绍该方法的工作流程,开展缺陷概率评估、缺陷影响评估,得出各系统缺陷的风险范围所对应的信息安全等级,并最终应用到某国外地铁车载通信系统项目的信息安全风险评估活动中,为后续开展系统优化活动以及采取优化措施后的信息安全风险再定位奠定基础.
This paper proposes a cyber security risk assessment methodology for rolling stock onboard communication systems based on the Common Vulnerability Scoring System(CVSS),introduces the workflow of the method in detail,and carries out defect probability and impact assessment,and also derives the cyber security level corresponding to the risk range of each system defect.Finally,it is applied to cyber security risk assessment activities of an overseas metro onboard communication system project,laying a foundation for the subsequent system optimization activities and cyber security risk repositioning after taking optimization measures.

cyber security threatdefect probability and impact assessmentCommon Vulnerability Scoring System(CVSS)rolling stock onboard communication system

阎士奇

展开 >

中车青岛四方车辆研究所有限公司,山东青岛 266000

信息安全风险 缺陷概率和影响评估 CVSS 列车车载通信系统

中车青岛四方车辆研究所有限公司系统研制项目

2021SRI146

2024

10.3969/j.issn.1673-4440.2024.04.010

铁路通信信号工程技术
北京全路通信信号研究设计院有限公司

铁路通信信号工程技术

影响因子:0.313
ISSN:1673-4440
年,卷(期):2024.21(4)
  • 24