摘要
针对既有线TDCS 2.0系统仍然采用杀毒软件的方式进行主机病毒防护,依赖病毒库更新,防护方式较为被动等问题,提出了既有线TDCS 2.0系统的网络安全防护技术方案。首先,对既有线TDCS 2.0系统网络进行安全风险分析;其次,根据"一个中心,三重防护"的架构,从安全计算环境、安全区域边界、安全通信网络和安全管理中心4个方面,对TDCS 2.0系统进行防护;最后,对关键安全策略进行详细介绍。同时,结合实际工程施工情况,提出了TDCS2.0系统的网络安全管控和应急处置方法,具有更高的安全防护能力,实现了对既有线TDCS2.0系统的全面防护。
To deal with the problems that only passive security protection means,such as antivirus software and virus database update,are used to protect the host of the TDCS 2.0 for existing lines,a technical scheme of network security protection for the TDCS 2.0 is put forward.Firstly,the network security risks of the TDCS 2.0 for existing lines are analyzed.Then,the protections with the architecture of one center and three protections are established for the TDCS2.0 in terms of security computing environment,security area boundary,security communication network,and security management center.Finally,the key security policies are introduced in detail.Besides,the network security control and emergency disposal methods for the TDCS 2.0 are proposed in combination with practical application,thus realizing an overall protection on the TDCS 2.0 for the existing lines.
作者
王日升
李景斌
Wang Risheng;Li Jingbin
出处
《铁道通信信号》
2020年第11期46-50,共5页
Railway Signalling & Communication
关键词
列车调度指挥系统
网络安全防护
访问控制
风险分析
安全策略
Train dispatching and command system
Network security protection
Access control
Risk analysis
Security policy
