Power Internet Assets Security Threat Assessment based on the Cost of Security Protection

Abstract

In recent years, with the extensive access to many devices and users in the power Internet environment, network exposure has increased, bringing serious challenges to the protection system characterized by boundary isolation. To address the problem that existing threat assessment methods do not consider the cost of security protection measures on the operation of existing systems, this paper proposes a threat assessment method based on the cost of security protection based on a multi-factor combination weight analysis model. The method introduces threat protection economic factors and threat protection efficiency factors to implement comprehensive threat assessment. Starting from the three dimensions of single asset (device), layer (network) and scenario (application), the threat scope factor, threat frequency factor, threat protection economic factor and threat protection efficiency factor are taken as evaluation factors, and the combined weight calculation model is used to conduct comprehensive threat assessment and further calculate the eigenvalues of the risk distribution and derive the risk distribution results. The method quantitatively evaluates the benefits and drawbacks of security protection measures in terms of both the economic impact of cyber-attacks on the electricity business and the impact of the implementation of protection measures on the efficiency of business operations. Compared to existing threat assessments, it considers not only the degree of harm caused by the attack, but also the economic cost of security protection, thus effectively avoiding the problem of over-investment.