摘要
安全仪表系统(SIS)是工业生产过程中至关重要的安全保护层,其信息安全一旦遭受攻击或破坏极易产生严重的事故后果。当前有不少安全仪表系统安全设计考虑不足,安全技术融合应用深度不够,为解决SIS设计实施和运行维护全寿命期信息安全工作难点问题,分析SIS信息安全面临的主要挑战,阐述SIS全寿命期信息安全的理念,研究信息安全风险评估的流程和主要内容,提出信息安全定级模型和信息安全规格书编制要求;分别针对SIS设计实施和运行维护阶段,构建相应的信息安全工作策略和方法。研究结果可为SIS信息安全全寿命的工作提供有力的技术指导和参考,进一步增强SIS的信息安全风险防控能力。
The safety instrumented system(SIS)is a crucial safety protection layer in industrial production process,once its cyber-security is attacked or destroyed,it will easily lead to serious accident consequence.At present,the cyber-security design of many SIS are insufficiently considered,and the integration and application of security technology in SIS is not enough.In order to solve the difficult problems of cyber-security work in the all-life-cycle of SIS including design,implementation,operation and maintenance,the main challenges of SIS cyber-security were analyzed,and the idea of SIS all-life-cycle cyber-security was expounded.The process and main contents of cyber-security risk assessment were studied,and the requirements of cyber-security grading model and cyber-security specification formulation were put forward.For the SIS design and implementation,operation and maintenance stages,the corresponding cyber-security work strategies and methods were constructed.The research results can provide strong technical guidance and reference for the SIS cyber-security all-life-cycle work,and further enhance the SIS cyber-security risk prevention and control capabilities.
作者
方来华
时训先
刘硕
于哲
FANG Laihua;SHI Xunxian;LIU Shuo;YU Zhe(China Academy of Safety Science&Technology,Beijing 100012,China)
出处
《中国安全生产科学技术》
CAS
CSCD
北大核心
2023年第S02期33-40,共8页
Journal of Safety Science and Technology
基金
国家重点研发计划项目(2023YFC3010605)
中国长江三峡集团有限公司企业科研项目(202103551)
