计算机与现代化

• 信息安全 • 上一篇    下一篇

基于GQM模型的工业控制系统风险评估方法

  

  1. (1.无锡职业技术学院控制技术学院,江苏无锡  214121;2.江苏省信息安全测评中心,江苏无锡  214073;
      3.无锡环境科学与工程研究中心,江苏无锡  214153)
  • 收稿日期:2019-02-15 出版日期:2019-08-15 发布日期:2019-08-16
  • 作者简介:叶茜(1980-),女,安徽宿松人,讲师,博士,研究方向:工业控制系统信息安全,传感器网络,E-mail: yeqian_80@163.com; 王玉斐(1982-),男,河南洛阳人, 研究员级高级工程师,博士,研究方向:信息安全测评技术,E-mail: wyf_1999@163.com; 傅毅(1981-),女,副教授,博士后,研究方向:轻工控制,智能算法,E-mail: 359680801@qq.com; 唐玉兰 (1981-),女,副教授,博士,研究方向:工业控制,E-mail: tangyl@wxit.edu.cn。
  • 基金资助:
    国家自然科学基金资助项目(61502203);江苏省自然科学基金资助项目(BK20150122); 江苏省高等学校自然科学研究面上项目(17KJB520039); 江苏省“333工程”科研项目(BRA2018317)

GQM-based Risk Assessment Method for Industrial Control Systems

  1. (1. College of Control Technology, Wuxi Institute of Technology, Wuxi 214121, China;
      2. Jiangsu Information Technology Security Evaluation Center, Wuxi 214073, China;
      3. Wuxi Research Center for Environmental Science & Engineering, Wuxi 214153, China)
  • Received:2019-02-15 Online:2019-08-15 Published:2019-08-16

摘要: 风险评估是保证工业控制系统安全的重要机制,当前,信息安全和功能安全的耦合越来越紧密,考虑到不同组织的业务目标和运营环境多样化程度高,工控系统信息安全风险评估应紧密结合业务目标。基于目标-问题-度量(GQM)模型,从目标确定、问题描述、度量指标定义工控系统风险评估流程,以工控系统所承载的业务目标为指引,基于风险场景模型提出问题,围绕提出的问题收集信息,根据收集的信息和数据对度量指标进行关联分析和评价。最后,以PLC风险评估为实例,具体说明和验证了基于GQM模型的工业控制系统风险评估方法的有效性。

关键词: 信息安全, 功能安全; 风险评估; 威胁建模

Abstract: Risk assessment is an essential component of safety and security assurance infrastructure mechanisms for industrial control systems. And safety and security attributes are tightly coupled. Information security assessment of industrial control systems should be coupled with the business goals. Based on Goal-Question-Metric (GQM) model, the industrial control systems risk assessment process is defined as identifying business goals, describing questions, and specification of metrics. The proposed risk assessment method is guided by the business goals, which are supported by the industrial control systems. The questions are raised on account of the scenario-based risk model. Information and data are collected concentrating on these questions. Then metrics are measured or evaluated using association analysis. Finally, a risk assessment instance of programmable logic controller (PLC) is described to specify the effectiveness of the proposed GQM-based risk assessment method for industrial control systems.

Key words: information security, function safety, risk assessment, threat modeling

中图分类号: