摘要
为提高城市轨道交通列车运行控制系统对复杂信息安全攻击的防御能力,建立列控系统攻防量化方法,设计基于博弈论的主动防御框架。首先根据列控系统网络架构和应用特点分析列控系统接入、设备、通信3方面的隐患,获得列控系统信息安全攻击的基本类型和基本方法;其次结合攻击方法和被攻击列控系统对象的固有属性,构建列控系统攻防量化方法;然后根据复杂信息安全攻击的阶段性特点,使用多阶段博弈建立列控系统信息安全攻防博弈模型;最后利用简化的攻防行为库验证该模型。结果表明:提出的列控系统攻防量化方法和多阶段博弈模型能够计算理性条件下的攻防策略。
Forthe purpose of improving the information security protection capacity of communicationbased train control system while facing sophisticated information attacks,a quantitative method for attack and defense of train control system wasestablished anda proactive defense mechanism was designedbased on game theory.Firstly,the information security risks of train control system were analyzed from three aspects including access,equipment and communicationaccording to network architecture and application characteristics of train control system,so as to reveal the basic types andmethod of attacks.Then the attackdefense quantization method was established with the consideration of attributes of both attack means and targets.And themulti-stage attack-defense game model was built on the basis of stage characteristics ofattacks.Finally,the proposed model was verified by simplified attack-defense behavior database.The results show that the model proposed can outputattack-defense strategies under rational conditions.
作者
李祥
步兵
朱力
LI Xiang;BU Bing;ZHU Li(State Key Lab of Rail Traffic Control&Safety,Beijing Jiaotong University,Beijing 100044,China)
出处
《中国安全科学学报》
CAS
CSCD
北大核心
2019年第S02期62-68,共7页
China Safety Science Journal
基金
北京交控创新基金资助(9907006507)
横向科研项目(I19L00090)
北京交通大学研究生创新基金资助(I18JB00110)
城市轨道交通北京实验室项目.
关键词
列控系统
信息安全
主动防御
博弈论
攻防量化
train control system
information security
proactive defense
game theory
attack-defensequantification
