Vulnerability Finding and Firmware Association in Power Grid

被引：1

作者：

Sun, Yuyan ^{[1
]}

Sun, Limin ^{[1
]}

Shi, Zhiqiang ^{[1
]}

Yu, Wenhao ^{[2
]}

Ying, Huan ^{[2
]}

机构：

[1] Chinese Acad Sci, Inst Informat Engn, Beijing, Peoples R China

[2] China Elect Power Res Inst, Inst Informat Commun, Beijing, Peoples R China

来源：

PROCEEDINGS OF THE 2019 FIFTH INTERNATIONAL CONFERENCE ON MOBILE AND SECURE SERVICES (MOBISECSERV) | 2019年

关键词：

vulnerability association; firmware preprocessing; features extraction;

D O I：

10.1109/mobisecserv.2019.8686515

中图分类号：

TM [电工技术]; TN [电子技术、通信技术];

学科分类号：

0808 ; 0809 ;

摘要：

The intelligent power grid is composed of a large number of industrial control equipment, and most of the industrial control equipment has security holes, which are vulnerable to malicious attacks and affect the normal operation of the power grid. By analyzing the security vulnerability of the firmware of industrial control equipment, the vulnerability can be detected in advance and the power grid's ability to resist attack can be improved. In this paper, a vulnerability finding and firmware association technology for industrial control device firmware was proposed. Through firmware analysis technology, code preprocessing, vulnerability scanning analysis and vulnerability matching are performed for grid device firmware. At the same time, firmware vulnerability association relationship is established based on the similarity of device firmware. Vulnerabilities are discovered more quickly in the security detection of industrial device.

引用

页数：5

共 50 条

[41] Electrical Centrality Measures for Electric Power Grid Vulnerability Analysis
Wang, Zhifang
Scaglione, Anna
Thomas, Robert J.
49TH IEEE CONFERENCE ON DECISION AND CONTROL (CDC), 2010, : 5792 - 5797
[42] Power Grid Vulnerability Identifying Based on Complex Network Theory
Guo, Yifei
Duan, Rong
Cao, Jin
Li, Sheng
PROCEEDINGS OF THE 2012 SECOND INTERNATIONAL CONFERENCE ON INSTRUMENTATION & MEASUREMENT, COMPUTER, COMMUNICATION AND CONTROL (IMCCC 2012), 2012, : 474 - 477
[43] Topological vulnerability of the European power grid under errors and attacks
Rosas-Casals, Marti
Valverde, Sergi
Sole, Ricard V.
INTERNATIONAL JOURNAL OF BIFURCATION AND CHAOS, 2007, 17 (07): : 2465 - 2475
[44] Analysis on Power Grid Vulnerability Considering Cascading Failure of Branch
Huang, Xuncheng
Qi, Huan
Zhang, Xiaopan
Lu, Lifang
Hu, Yangyu
ADVANCES IN MECHATRONICS AND CONTROL ENGINEERING II, PTS 1-3, 2013, 433-435 : 1254 - +
[45] Finding Vulnerabilities in Internal-binary of Firmware with Clues
Liu, Puzhuo
Fang, Dongliang
Chuan Qin
Kai Cheng
Lv, Shichao
Zhu, Hongsong
Sun, Limin
IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC 2022), 2022, : 5397 - 5402
[46] Power grid vulnerability assessment based on electrical dissection information of the electric power network
Shao, Ying
Yu, Ji-Lai
Zhongguo Dianji Gongcheng Xuebao/Proceedings of the Chinese Society of Electrical Engineering, 2009, 29 (31): : 34 - 39
[47] Staged Method of Code Similarity Analysis for Firmware Vulnerability Detection
Wang, Yisen
Shen, Jianjing
Lin, Jian
Lou, Rui
IEEE ACCESS, 2019, 7 : 14171 - 14185
[48] An Experimental Study of Four Methods for Homology Analysis of Firmware Vulnerability
Ran, Linjun
Lu, Liping
Lin, Hong
Han, Mushuai
Zhao, Dongdong
Xiang, Jianwen
Yu, Haiguo
Ma, Xian
2017 FOURTH INTERNATIONAL CONFERENCE ON DEPENDABLE SYSTEMS AND THEIR APPLICATIONS (DSA 2017), 2017, : 42 - 50
[49] Universal Framework for Vulnerability Assessment of Power Grid Based on Complex Networks
Sun, Yunhe
Yang, Dongsheng
Meng, Lei
Gao, Xiaoting
Hu, Bo
PROCEEDINGS OF THE 30TH CHINESE CONTROL AND DECISION CONFERENCE (2018 CCDC), 2018, : 136 - 141
[50] Impacts of Wind Power Uncertainty on Grid Vulnerability to Cascading Overload Failures
Athari, Mir Hadi
Wang, Zhifang
IEEE TRANSACTIONS ON SUSTAINABLE ENERGY, 2018, 9 (01) : 128 - 137

← 1 2 3 4 5 →