An Adaptive Cybersecurity Vulnerability Assessment Method for Power Systems Using Knowledge Graphs and Fuzzy Logic

Energy Internet drives power systems into highly integrated cyber-physical infrastructures, raising severe cybersecurity challenges. Vulnerability severity assessment is critical for defense, yet widely used CVSS faces three key drawbacks in power scenarios: insufficient modeling of power business impacts, heavy dependence on manual interpretation, and discrete levels failing fine-grained management. This paper proposes an adaptive, finegrained assessment method for power systems. Innovatively, knowledge graph and cascaded fuzzy logic are integrated to achieve three objectives: automatic feature extraction from vulnerability texts, continuous fine-grained severity scores instead of discrete grades, and adaptive matching to dynamic operational scenarios. Validated on CVE industrial control…