摘要
航天测控通信网自建成以来,整体运行较为稳定,但在网络安全方面也暴露出了一些问题,为研究和解决目前航天测控通信网中存在的网络安全问题,在分析TCP/IP(Transmission Control Protocol/Intcrnct Protocol,传输控制协议/互联网协议)分层协议基本原理的基础上,研究了IP网数据链路层、网络层和传输层的协议漏洞及常见攻击方法,详细介绍了当前航天测控通信网的网络安全部署情况,根据网络现状分别对航天测控通信网上数据链路层、网络层和传输层存在的安全问题进行了纵向分析,针对分析出的各类安全问题,进一步给出了有效的防御措施和防护方法。最后,探讨提出了一套航天测控通信网配置维护管理系统的设计方案,通过建立设备配置信息库、检查信息记录库及网络故障库等,实现了对航天测控通信网安全稳定运行的有效管理。
China’s space Tracking,Telemetry and Command(TT&C)communication networks have been in stable operation generally since their estabishment.However,problems did surface now and then in network seeurity.To study and solve current network security problems in the space TT&C communication networks,network layer and transport layer were analyzed,rhe network security deployment of current space TT&C communication networks was introduced following analysis of the basic principle of Transmission Control Protocol/Internet Protocol(TCP/IP)layered protocol,protocol vulnerabilities and common attacl methods of the IP network data link layer.Based on the current situation of networks,the security problems of the data link layer,network layer and transport layer of the space TT&C communication networks were analyzed.With analysis of various typed of security problems,effective defense measures and protection methods were given.Finally,the design scheme of a set of configuration and maintenance management systems for the space TT&C communication networks was discussed.Effective management of the safe and stable operation of the space TT&C communication networks was realized by cstablishment of equipment configuration database,information record database and network fault database.
作者
袁帅
刘鹏
赵恩
YUAN Shuai;LIU Peng;ZHAO En(Xi'an Satellite Control Center,Xi'an 710043)
出处
《飞行器测控学报》
CSCD
2017年第5期358-364,共7页
Journal of Spacecraft TT&C Technology
关键词
传输控制协议/互联网协议(TCP/IP)
网络安全防护
航天测控通信网
漏洞
Transmission Control Protocol/Internet Protocol(TCP/IP)
network security protection
space Tracking,Telemetry and Command(TT&C)communication network
protocol vulnerabilities
