Quantitative Model of Attacks on Distribution Automation Systems Based on CVSS and Attack Trees

Erxia Li; Chaoqun Kang; Deyu Huang; Modi Hu; Fangyuan Chang; Lianjie He; Xiaoyong Li

doi:10.3390/info10080251

Information (Jul 2019)

Quantitative Model of Attacks on Distribution Automation Systems Based on CVSS and Attack Trees

Erxia Li,
Chaoqun Kang,
Deyu Huang,
Modi Hu,
Fangyuan Chang,
Lianjie He,
Xiaoyong Li

Affiliations

Erxia Li: China Electric Power Research Institute, Haidian District, Beijing 100192, China
Chaoqun Kang: China Electric Power Research Institute, Haidian District, Beijing 100192, China
Deyu Huang: Key Laboratory of Trustworthy Distributed Computing and Service (Beijing University of Posts and Telecommunications), Ministry of Education, Haidian District, Beijing 100876, China
Modi Hu: Key Laboratory of Trustworthy Distributed Computing and Service (Beijing University of Posts and Telecommunications), Ministry of Education, Haidian District, Beijing 100876, China
Fangyuan Chang: China Electric Power Research Institute, Haidian District, Beijing 100192, China
Lianjie He: China Electric Power Research Institute, Haidian District, Beijing 100192, China
Xiaoyong Li: Key Laboratory of Trustworthy Distributed Computing and Service (Beijing University of Posts and Telecommunications), Ministry of Education, Haidian District, Beijing 100876, China

DOI: https://doi.org/10.3390/info10080251
Journal volume & issue: Vol. 10, no. 8
p. 251

Abstract

Read online

This study focuses on the problem of attack quantification in distribution automation systems (DASs) and proposes a quantitative model of attacks based on the common vulnerability scoring system (CVSS) and attack trees (ATs) to conduct a quantitative and systematic evaluation of attacks on a DAS. In the DAS security architecture, AT nodes are traversed and used to represent the attack path. The CVSS is used to quantify the attack sequence, which is the leaf node in an AT. This paper proposes a method to calculate each attack path probability and find the maximum attack path probability in DASs based on attacker behavior. The AT model is suitable for DAS hierarchical features in architecture. The experimental results show that the proposed model can reduce the influence of subjective factors on attack quantification, improve the probability of predicting attacks on the DASs, generate attack paths, better identify attack characteristics, and determine the attack path and quantification probability. The quantitative results of the model’s evaluation can find the most vulnerable component of a DAS and provide an important reference for developing targeted defensive measures in DASs.

Published in Information

ISSN: 2078-2489 (Online)
Publisher: MDPI AG
Country of publisher: Switzerland
LCC subjects: Technology: Technology (General): Industrial engineering. Management engineering: Information technology
Website: http://www.mdpi.com/journal/information/

About the journal

Abstract

Keywords