Identification of Critical Attack Step for Process Industrial Systems
Security threats in process industrial systems have become increasingly prominent.The identification of critical attack step based on attack graph can identify system threats and improve the security.However,the current identification methods are unable to measure the security of process industrial systems comprehensively and accurately,because system characteristics,such as hierarchical structure,process execution,and accident hazards,have not been taken account in these methods.We propose an identification method of critical attack step based on hybrid attack graph.The method achieves the identification of critical attack step in process industrial systems by ranking the importance of attack steps in the hybrid attack graph.Firstly,a hybrid attack graph is built to identify all possible attack steps,which has a reduction of high dependence on network reachability in traditional attack graph building methods.Then attack expectant is computed according to system characteristics.Closeness and betweenness centralities are improved to capture attack path in-formation,and the edge expectant centrality is put forward to measure edge importance.Finally,a multi-attribute decision-making method is modified to achieve the evaluation of attack step importance and the identification of critical step.Experimental results show that the proposed method can completely identify all potential threats in process industrial systems,reasonably measure attack step importance,and effectively identify critical attack step.
process industry systemattack graphattack pathcentrality metricscritical attack step
万方数据
维普
