Dynamic Risk Assessment Of Industrial Control Network Security

With the development of the Internet and Industry 4.0,industrial control networks are more closely integrated with the Internet and the Internet of Things,and the informatization of industrial control networks has developed rapidly.Due to the inclusiveness and openness of the Internet,industrial control networks have gradually become open from closed and independent,so the security problems of industrial control networks have become increasingly serious.Industrial control networks are widely used in fields such as public facilities and industrial production,and their safety is related to the national economy and people’s livelihood.Therefore,industrial control network security issues have received widespread attention from the society.Risk assessment is an indispensable and important step to protect the safety of industrial control network.It can help staff to formulate key safety strategies and measures in a targeted manner.Therefore,this paper studies the safety risk assessment of industrial control network.From the perspective of network modeling,this paper proposes an AHM-NC risk assessment model for the special security problems of industrial control networks.Starting from the vulnerability of the industrial control network,the attack graph is generated by analyzing the existing vulnerabilities and host information,combined with the Hidden Markov Model(HMM)to convert the network attack problem into the system state transition problem,effectively judging the most likely attack behavior.Using Network Node Correlation(NNC),by analyzing the relationship between network nodes and the importance of host assets,the security analysis of industrial control networks can be realized from many aspects,and the accuracy and effectiveness of industrial control network security assessments can be improved.This paper further proposes an industrial control network risk assessment method that combines cloud center of gravity theory and information entropy.First,the cloud center of gravity theory combines the hierarchical analysis of the network security analysis and research,calculates the weight value and risk value of each risk element of each layer,determines the risk of each threat event,and can more clearly identify the potential of the system risk.Secondly,information entropy is used to calculate the risk value of each threat element around assets,threats,and vulnerabilities,and accurately verify the consistency of the assessment results.Finally,the risk assessment of the system network constructed in this paper can make more targeted protection strategies.