软件基因角度下工业互联网安全分析

Industrial Internet Security Analysis from the Perspective of Software Gene

本文首先对工控安全方面发生的大事件进行了梳理,并在此基础上简要分析了工控安全威胁的特点与趋势,并对于其中典型的事例进行了基于软件基因与工控安全的跨界融合分析与探讨。一方面,随着工业控制系统的通用化、网络化、智能化发展,工业控制系统信息安全形势日渐严峻,传统的互联网信息安全威胁正在向工业控制系统蔓延;另一方面,针对关键基础设施及其控制系统,以窃取敏感信息和破坏关键基础设施运行为主要目的的攻击愈演愈烈。在我国制造业与互联网融合步伐不断加快的背景下,为工控安全可能存在核心技术薄弱、安全保障有待加强、体制机制亟需完善等问题提供一种新的思路与分析手段。

This paper mainly reviews the major events in the aspect of industrial safety,and on this basis,it briefly analyzes the characteristics and trends of industrial security threats,and analyzes the typical cases based on cross-border integration of software genes and industrial security.On the one hand,with the generalization,networking and intelligent development of industrial control systems,the information security situation of industrial control systems is becoming more and more serious.The traditional Internet information security threats are spreading to industrial control systems.On the other hand,for critical infrastructure and Its control system is increasingly attacked with the primary purpose of stealing sensitive information and disrupting the operation of critical infrastructure.Under the background of the accelerating pace of China’s manufacturing industry and Internet convergence,it may provide a new way of thinking and analysis for the problems of industrial security,such as weak core technology,security guarantees,and urgent improvement of institutional mechanisms.