信息安全研究2024,Vol.10Issue(6):498-505,8.DOI:10.12379/j.issn.2096-1057.2024.06.02
基于知识图谱推理的工控漏洞利用关系预测方法
Prediction of Industrial Control System Vulnerability Exploitation Relationships Based on Knowledge Graphreasoning
摘要
Abstract
With the rapid growth in the number of vulnerabilities in Industrial Control Systems,the time and economic costs required for manual analysis of vulnerability exploitation are constantly increasing,and current reasoning methods have many deficiencies such as insufficient utilization of information and poor interpretability.To address these problems,a prediction method for exploitation relationships of ICS vulnerabilities is proposed,which is based on knowledge graph reasoning.First,a path filtering algorithm is utilized to minimize the vulnerability exploitation paths.Then,path information is obtained by aggregating key relation paths,and neighbor information is acquired by integrating neighbor relation information.Finally,the exploitation relationships of vulnerabilities are predicted.An experiment on predicting exploit relationships was conducted using a knowledge graph for ICS security,which was built based on security knowledge data and ICS scenario data,and consisted of 57 333 entities.The results indicate that the proposed method can assist in predicting the exploitability of ICS vulnerabilities with an accuracy rate of 99.0%.关键词
工业控制系统/漏洞利用/关系预测/知识图谱推理/路径筛选Key words
industrial control systems(ICS)/vulnerability exploitation/relationship prediction/knowledge graph reasoning/path filtering分类
信息技术与安全科学引用本文复制引用
梁超,王子博,张耀方,姜文瀚,刘红日,王佰玲..基于知识图谱推理的工控漏洞利用关系预测方法[J].信息安全研究,2024,10(6):498-505,8.基金项目
国家重点研发计划项目(2021YFB2012400) (2021YFB2012400)
