计算机应用与软件2024,Vol.41Issue(6):329-335,7.DOI:10.3969/j.issn.1000-386x.2024.06.047
基于不完全信息静态博弈的工控系统风险评估方法
RISK ASSESSMENT METHOD OF INDUSTRIAL CONTROL SYSTEM BASED ON INCOMPLETE INFORMATION STATIC GAME
摘要
Abstract
At present,most industrial control system risk assessment methods do not consider the defender strategy and the confrontation between attack and defense.Therefore,this paper proposes a risk assessment method based on game model.The attack defense graph was used to calculate attack gain and defense gain.The static Bayesian attack and defense game model was established to calculate the mixed strategy Bayesian Nash equilibrium,and the optimal probability distribution of attack and defense strategies was obtained.According to the calculation method of information security risk assessment,the risk assessment analysis method was calculated based on the probability distribution of the defender's benefit and the attacker's optimal strategy selection.An example was used to illustrate the feasibility and usefulness of the proposed method.关键词
工业控制系统/风险评估/静态贝叶斯博弈/贝叶斯博弈均衡Key words
Industrial control system/Risk assessment/Static Bayesian game/Bayesian game equilibrium分类
信息技术与安全科学引用本文复制引用
宋宇,张春杰,程超..基于不完全信息静态博弈的工控系统风险评估方法[J].计算机应用与软件,2024,41(6):329-335,7.基金项目
国家自然科学基金项目(61903047) (61903047)
吉林省发展改革委项目(2019C040-3) (2019C040-3)
吉林省科技厅项目(20200401127GX). (20200401127GX)
