西安理工大学学报2024,Vol.40Issue(2):260-268,9.DOI:10.19322/j.cnki.issn.1006-4710.2024.02.012
基于层次分析法的工控网络态势评估研究
Network situation assessment on industrial control system based on analytic hierarchy process
摘要
Abstract
Existing network security situation assessment methods do not take into account the particularity of industrial control system(ICS)network security requirements,and they cannot achieve accurate assessment.In addition,ICS transmits a large amount of heterogeneous data,which is vulnerable to network attacks,and the existing classification methods cannot effectively deal with multi-class unbalanced data.To address this problem,this paper first analyzes the characteristics of industrial control systems and proposes a quantitative assessment method for in-dustrial control system security posture based on analytic hierarchy process,which can more ac-curately represent the ICS network security status;it proposes an average under-over sampling method for the problem of data imbalance of multiple attack types,which balances the data and does not lead to excessive data volume;finally,based on the extreme gradient boosting(XG-Boost)it is used to construct a classifier for ICS network situational assessment,with experi-ments showing that the classification model designed in this paper can achieve better accuracy than the traditional classification algorithms of support vector machine,K-nearest neighbor and random forest.关键词
工业控制系统/网络安全态势评估/层次分析法/数据采样Key words
ICS/network security situation assessment/analytic hierarchy process/data sam-pling分类
信息技术与安全科学引用本文复制引用
郭琳,易军凯,王浩..基于层次分析法的工控网络态势评估研究[J].西安理工大学学报,2024,40(2):260-268,9.基金项目
国家自然科学基金资助项目(U1636208) (U1636208)
