摘要
为了实时监控系统状态转换过程、及时感知异常执行轨迹和越权功能调用等非法行为,从系统行为和权限控制角度出发,提出一种基于访问验证的安全保障方法,通过明确系统状态转换规则,确保系统在工作过程中状态可信,并通过理论证明和攻击实例分析表明该方法的现实可行性.
When industrial control systems with a high security level were in poor working conditions or encounter vicious attacks, safety problems such as behavior tracks abnormity and privilege-exceeding call would come out to affect the safety of production. In order to solve the problem, a safety method based on access verification was proposed from the perspective of system action and privilege control. To ensure the state security during working conditions, system state transition rules were defined and the system state could be monitored in real time. Illegal behaviors such as abnormal execute traces and privilege- exceeding function calls would be detected in time. The feasibility of the method was further illustrated by theoretical identification and analysis of attack instances.
出处
《北京工业大学学报》
CAS
CSCD
北大核心
2013年第12期1861-1867,共7页
Journal of Beijing University of Technology
基金
国家科技重大专项资助项目(2012ZX03002003)
核高基重大专项资助项目(2010ZX01037-001-001)
关键词
工业控制系统安全
访问验证
可信计算
安全模型
security of industry control system
access verification
trusted computing
security model