引用本文
  • 朱培栋,康文杰.关键基础设施人机物协同的安全对抗模型[J].信息安全学报,已采用    [点击复制]
  • Zhu Peidong,Kang Wenjie.Human-Cyber-Physical Collaborative Countermeasure Models for Critical Infrastructure Security[J].Journal of Cyber Security,Accept   [点击复制]
【打印本页】 【下载PDF全文】 查看/发表评论下载PDF阅读器关闭

过刊浏览    高级检索

本文已被:浏览 254次   下载 0  
关键基础设施人机物协同的安全对抗模型
朱培栋1, 康文杰2
0
(1.长沙学院 电子信息与电气工程学院;2.湖南警察学院 信息技术系)
摘要:
智能电网、大型工业系统等国家关键基础设施是大规模人机物融合网络,安全威胁来自信息域、物理域和社会域,系统安全性的实现需要多域综合的智能对抗。本文针对攻击者侦察、入侵和破坏等环节的高级威胁,研究人机物融合的面向可观性与可控性的智能对抗模型和新机制。为应对攻击者侦察阶段的多域目标探测和跨域渗透,引入人机物多域协同的移动目标防御,提出多层协同的动态反渗透博弈对抗模型;为应对多域协同入侵行为的隐蔽性,设计了人机物多通路完整性监测框架,引入人机物多域关联的异常检测方法;为应对多域协同攻击,设计信息物理联动的安全机制和信息安全感知的控制算法,通过对操作员行为不确定性的调控和认知非理性的修正实现人机物多域联动的安全增强。本文提出的模型将有助于丰富网络空间安全基础模型和发展人机物融合的计算范式,增强关键基础设施安全性。
关键词:  关键基础设施  人机物融合  移动目标防御  入侵检测  安全博弈
DOI:
投稿时间:2023-11-03修订日期:2024-01-21
基金项目:国家自然科学基金项目(面上项目,重点项目,重大项目)
Human-Cyber-Physical Collaborative Countermeasure Models for Critical Infrastructure Security
Zhu Peidong1, Kang Wenjie2
(1.School of Electronic Information and Electrical Engineering, Changsha University;2.Information technology (Internet supervision) Department, Hunan Police Academy)
Abstract:
Critical infrastructures such as smart grids and large industrial systems are large-scale human-cyber-physical networks, with security threats coming from the cyber domain, physical domain, and social domain. The implementation of system security requires comprehensive intelligent countermeasures from multiple domains. This paper focuses on advanced threats throughout attacker reconnaissance, invasion, and destruction, and studies an intelligent human-cyber-physical counter-measure model and new mechanisms for observability and controllability. To cope with the multi-domain target exploration and cross-domain penetration during the reconnaissance phase of attackers, a multi-domain collaborative mobile target defense model is introduced, and a multi-layer collaborative dynamic game model against penetration is proposed; To address the stealth of multi-domain collaborative intrusion behavior, a human-cyber-physical multi-pathway framework for integrity monitoring is designed, and an anomaly detection method based on human-cyber-physical multi-domain correlation is introduced; To deal with multi-domain collaborative attacks, security mechanisms for cyber-physical collaboration and security-aware control algorithms are to be designed,and by regulating the uncertainty of operator behavior and correcting cognitive irrationality, the security enhancement of human-cyber-physical coordination is achieved. The models proposed in this article will help enrich the basic models of cyberspace security and develop novel paradigms for human-cyber-physical computation, and boost the security of critical infrastructure.
Key words:  critical infrastructure  human-cyber-physical convergence  mobile target defense  intrusion detection  security game