Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS
This study addresses threat scenario identification and quantitative evaluation in the context of the information security risk assessment process for airborne networks. A method integrating an improved system-theoretic process analysis (STPA) and the technique for order preference by similarity to...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2025-05-01
|
| Series: | Aerospace |
| Subjects: | |
| Online Access: | https://www.mdpi.com/2226-4310/12/5/442 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1850254953401024512 |
|---|---|
| author | Kenian Wang Mingluan Zhang Yuan Hong Jie Bai Lizhe Zhang |
| author_facet | Kenian Wang Mingluan Zhang Yuan Hong Jie Bai Lizhe Zhang |
| author_sort | Kenian Wang |
| collection | DOAJ |
| description | This study addresses threat scenario identification and quantitative evaluation in the context of the information security risk assessment process for airborne networks. A method integrating an improved system-theoretic process analysis (STPA) and the technique for order preference by similarity to an ideal solution (TOPSIS) is proposed. A safety control interaction structure is first established based on the system-level loss definition to identify unsafe control actions and derive STPA-Sec threat conditions. Then, the opinion aggregation method based on the weakest t-norm is introduced to address the uncertainty from insufficient expert consensus and opinion deviation. To address the intrinsic correlations among evaluation indicators, the criteria importance through intercriteria correlation (CRITIC) method is applied to determine indicator weights. These weights are subsequently incorporated into the TOPSIS framework to assess the identified threat scenarios. Comparative analysis confirms the effectiveness of the proposed approach. The results show that the improved STPA-TOPSIS method enables the reliable identification of security threats in airborne networks and supports the prioritization of threat scenarios by severity, facilitating the implementation of targeted mitigation strategies. |
| format | Article |
| id | doaj-art-402702e6398d410e90ddabe97ff213aa |
| institution | OA Journals |
| issn | 2226-4310 |
| language | English |
| publishDate | 2025-05-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Aerospace |
| spelling | doaj-art-402702e6398d410e90ddabe97ff213aa2025-08-20T01:57:00ZengMDPI AGAerospace2226-43102025-05-0112544210.3390/aerospace12050442Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSISKenian Wang0Mingluan Zhang1Yuan Hong2Jie Bai3Lizhe Zhang4Institute of Scientific Innovation, Civil Aviation University of China, Tianjin 300300, ChinaSchool of Safety Science and Engineering, Civil Aviation University of China, Tianjin 300300, ChinaSchool of Electronic Information and Automation, Civil Aviation University of China, Tianjin 300300, ChinaKey Laboratory of Civil Aviation Aircraft Airworthiness Certification Technology, Civil Aviation University of China, Tianjin 300300, ChinaSchool of Safety Science and Engineering, Civil Aviation University of China, Tianjin 300300, ChinaThis study addresses threat scenario identification and quantitative evaluation in the context of the information security risk assessment process for airborne networks. A method integrating an improved system-theoretic process analysis (STPA) and the technique for order preference by similarity to an ideal solution (TOPSIS) is proposed. A safety control interaction structure is first established based on the system-level loss definition to identify unsafe control actions and derive STPA-Sec threat conditions. Then, the opinion aggregation method based on the weakest t-norm is introduced to address the uncertainty from insufficient expert consensus and opinion deviation. To address the intrinsic correlations among evaluation indicators, the criteria importance through intercriteria correlation (CRITIC) method is applied to determine indicator weights. These weights are subsequently incorporated into the TOPSIS framework to assess the identified threat scenarios. Comparative analysis confirms the effectiveness of the proposed approach. The results show that the improved STPA-TOPSIS method enables the reliable identification of security threats in airborne networks and supports the prioritization of threat scenarios by severity, facilitating the implementation of targeted mitigation strategies.https://www.mdpi.com/2226-4310/12/5/442airborne networkinformation security risk assessmentthreat scenario identificationsystem-theoretic process analysis (STPA)technique for order preference by similarity to an ideal solution (TOPSIS) |
| spellingShingle | Kenian Wang Mingluan Zhang Yuan Hong Jie Bai Lizhe Zhang Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS Aerospace airborne network information security risk assessment threat scenario identification system-theoretic process analysis (STPA) technique for order preference by similarity to an ideal solution (TOPSIS) |
| title | Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS |
| title_full | Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS |
| title_fullStr | Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS |
| title_full_unstemmed | Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS |
| title_short | Airborne Network Information Security Risk Assessment Method Based on Improved STPA-TOPSIS |
| title_sort | airborne network information security risk assessment method based on improved stpa topsis |
| topic | airborne network information security risk assessment threat scenario identification system-theoretic process analysis (STPA) technique for order preference by similarity to an ideal solution (TOPSIS) |
| url | https://www.mdpi.com/2226-4310/12/5/442 |
| work_keys_str_mv | AT kenianwang airbornenetworkinformationsecurityriskassessmentmethodbasedonimprovedstpatopsis AT mingluanzhang airbornenetworkinformationsecurityriskassessmentmethodbasedonimprovedstpatopsis AT yuanhong airbornenetworkinformationsecurityriskassessmentmethodbasedonimprovedstpatopsis AT jiebai airbornenetworkinformationsecurityriskassessmentmethodbasedonimprovedstpatopsis AT lizhezhang airbornenetworkinformationsecurityriskassessmentmethodbasedonimprovedstpatopsis |