提出一种用于电力信』息系统安全设计的建模语言和定量化评估方法。设计了安全体系设计

迹语言, 统一描述系统结构、系统业务、安全策略、攻击行为和安全措施等: 构造了风险自动分析算

法, 以获得电力信息系统的攻击迹: 基于攻击迹提出相对安全度概念, 用于定量评估安全体系的安

全性: 通过实例验证了所述方法的有效性。该方法可用于定量评估各类安全措施的控制效果, 如增

加新的安全功能、调整系统自身结构和用户业务需求等, 减少了选择安全措施的主观性-Information is proposed for power, " information system security design modeling language and quantitative assessment methods. Design a security system designed to track the language, a unified descr iption of system structure, system operations, security policy, aggressive behavior and safety measures such as: automated risk analysis algorithm is constructed in order to obtain power information system attack trace: trace-based attack proposed the concept of relative safety , security system for the quantitative assessment of security: The example validates the effectiveness of the methods described. This method can be used to quantitatively assess the effects of various types of security control measures, such as adding new security features, adjust the system' s own structure and customers'　business needs, to reduce the subjectivity of the selection of security measures