摘要
提出了一种基于漏洞关联网络(Vulnerability Connection Network,VCN)的电力调度管理信息系统安全风险评估模型。首先研究了基于插件和端口扫描的电力DMIS漏洞检测技术;然后针对当前漏洞风险的评估现状,提出了一种基于VCN和markov的漏洞风险评估模型,该模型充分考虑了漏洞间关联性对于安全风险评估的影响,引入了转移风险与总体风险的概念,并给出了具体的量化公式;最后给出一个风险评估实例,通过对比传统风险评估模型的结果,证明了基于VCN的漏洞风险评估模型的先进性。
A VCN based risk assessment model is put forward in this paper for information security of disapatching management information system in power system. Firstly, a vulnerability scanning system based on plug-in is researched, which can find vulnerability of DMIS out, port scanning technologies are also in discussion in this paper. Secondly, a VCN based on risk assessment model concerning network node's connection is proposed in order to quantize vulnerability risk correctly and impersonally. The formulas of calculating transfer risk and total risk are also brought out definitely. Finally, an example of security risk assessment is given out in order to prove the advance of this model by comparing its results with that of other traditional models.
出处
《电气应用》
北大核心
2008年第20期45-48,70,共5页
Electrotechnical Application
关键词
风险评估
调度管理信息系统
信息安全
电力系统
risk assessment dispatching management information system information security power system