摘要
为了减少产品费用和提高生产效率,更多的专用网络被连入IT网络,或更多的IT技术被应用到工业控制网络系统中,网络安全成为一个重要的问题。工业控制网络系统作为国家基础设施的重要组成,一旦受到攻击和破坏,其影响将是灾难性的。因此,保护工业控制网络系统的安全、防御各种攻击和破坏是关系到国家安全的重要内容。本论文结合中国第一个工业以太网标准《用于测量与控制系统的EPA通信标准》,建立了一般的工业控制网络体系结构,研究分析了它的安全威胁,提出工业控制网络的安全要求,构建了基于区域安全的DMZ模型,最后用UML描述了该模型。
In order to reduce production cost and improve productivity, more proprietary networks is interconnected to IT networks,or more IT technologies are applied to industrial automation systems; .network security beco.mecurity become a significant cant problem. Industrial control networks become important component of national infrastructure, when it is attacked or broken, its impact is calamity. Therefore, protecting the security of industrial control networks and defending kinds of attacks and threats is the key contents of nation security. Combining the first Chinese industrial Ethemet standard, Standard for Digital Data Communication for EPA-based Industrial Control Systems, This paper builds general industrial control networks architecture, researches and analyzes threats to it, advances security requirements and proposes DMZ model based security zone, finally depict the model with UML.
出处
《计算机科学》
CSCD
北大核心
2007年第5期96-98,共3页
Computer Science
基金
国家863项目:用于工业测量与控制系统的EPA标准(项目编号:2003AA412030)
关键词
工业控制网络
威胁
安全要求
DMZ模型
Industrial control networks', Security threats, Security requirements, DMZ model
