摘要
随着工业控制系统向"互联网化"不断推进,其从孤立封闭的系统发展为开放交互的标准系统,致使工控系统信息安全风险日益增加。通过阅读大量相关文献,查询工业控制安全技术相关网站和论坛,搜集工控系统面临的安全威胁及其新趋势,就工控系统的主要安全威胁进行总结归纳,对工控系统面临的新型攻击手段进行原理、流程等方面的介绍,并给出工业控制系统遭受攻击者入侵的实例。最后,根据工业控制系统的特点,给出可行的安全防护意见。
With its progress towards "Internetization", industrial control system develops from the isolated closed-system to the open and interactive standard system, thus making the infosec risk of industrial control system grow day by day. By referring to large number of relevant literatures and industrial control safety-related technology sites and forums, security threats and new trends encountered with by the industrial control system are collected, the principal security threats summed up, and the principle and process of the new attacks faced by the industrial control system described, and then some examples of intrusions on industrial control system are also given. Finally, based on the feature of industrial control system, the author proposes some feasible protection advices.
作者
殷天野
YIN Tian-ye(School of Information Security Engineering, Shanghai Jiaotong University Shanghai 200240, Chin)
出处
《通信技术》
2017年第1期1-6,共6页
Communications Technology
关键词
工业控制系统
攻击发展趋势
安全威胁
入侵流程
工控防护
industrial control system
development of attack
security threat
intrusion process
ICS protection
