摘要
工业控制系统的信息安全关系到国家能源和基础设施行业的安全及稳定运行,成为企业及国家安全面临的严峻挑战。设计了面向工业控制系统的主动无损式安全漏洞检测器,在采集控制器、工程师站、操作员站、实时数据库服务器的操作系统、软件、用户、进程及应用配置等信息的基础之上,进行逻辑判断识别系统中存在的安全漏洞。提出的漏洞检测器不需要开发攻击代码,对控制系统的稳定运行无影响,能够满足工业控制系统的高稳定性要求。实验结果证明,提出的漏洞检测器ICS-VS可有效发现工业控制系统的安全漏洞,有助于加强工业控制系统的安全防御能力。
Information security of industrial control systems has a bearing on stability and safety of national energy and critical infra- structure industries, and thus becomes a severe security challenge faced by some enterprises and the state. This paper proposes an ac- tive and non-destructive vulnerability scanner for industrial control systems. This scanner firstly aquires information about system soft- ware, users, processes and application configuration, then makes the conclusion of system vulnerabilities hidden in an industry net- work through logical judgement on collected system information. The prominent advantage of this proposed scanner is that there is no need to develop exploit codes so as to evaluate system security.This scanner has higher scanning precision and speed than MBSA devel- oped by Microsoft, and could well meet the requirements of high stability and high real time for industrial control systems, and thus is suitable for network administrators to assess security of the whole industrial control system, and helpful in enhancing the security and defence capability of industrial control systems.
出处
《信息安全与通信保密》
2016年第9期77-81,共5页
Information Security and Communications Privacy
关键词
工业控制系统
信息安全
漏洞检测
系统配置
逻辑判断
industrial control system
information security
vulnerability scanning
system configuration
logical judgement
