摘要
针对工控系统面临的主要安全问题进行较为深入的分析,结合自主可控技术、可信计算技术、冗余容错技术,设计自主可信工控计算机、三模冗余可信执行装置,提出一种可信联锁互锁方法,探索一种实现工控系统安全的途径。实验结果表明,该系统能够完成对操作站关键安全属性的可信度量,能够确保执行装置每一步动作的安全,系统开销可控制在接受范围内。
The main security problems of the industrial control system were analyzed. Combined with the self-controlled technology, trusted computing technology, redundancy and fault tolerance technology, self-controlled and trusted industrial control computer and triple modular redundancy trusted execution device, a trusted interlock method was proposed and a way to achieve the industrial control system security was explored. Experimental results show that the system can complete the trusting measurement of critical attributes of the operating station, and ensure the safety of every step of the execution device, and the system overhead is controlled within an acceptable range.
出处
《计算机工程与设计》
北大核心
2017年第1期47-52,共6页
Computer Engineering and Design
基金
北京市自然科学基金项目(4132025)
北京市青年英才计划基金项目(YETP1448)
国家自然科学基金青年基金项目(61402022)
北京市哲学社科规划基金项目(14JGB033)
关键词
工控系统
可信计算
三模冗余
可信密码模块
自主可控
industrial control system
trusted computing
triple modular redundancy
trust cryptography module
self-controllable
