摘要
近年来,世界核电领域发生过多起针对数字化系统的网络安全事件,引发了公众的广泛关注。为满足核电建设过程中数字化和信息化的发展要求,加强核电仪控系统的网络安全对核安全具有重要的现实意义。但是,对每一个系统或设备实施相同等级的防护是不经济、不现实的,应对其重要性等级及实际安全需求进行分级和分类,再针对不同等级和重要程度实施分级保护策略。当前国内外已经相继颁布了相关标准,然而其与核电仪控系统的适用性和兼容性仍存在各种问题。本文对国内外核电厂仪控系统的网络安全分级现状进行了调研和对比,对存在的问题进行了分析,最后针对这些问题提出了相应的建议。
In recent years,there have been too many cyber security incidents targeting digital systems in the nuclear power sector in the world,which have aroused widespread public concern.In order to meet the development requirements of digitalization and informatization in the process of nuclear power construction,strengthening the cyber security of nuclear power I&C systems has important practical significance for ensuring nuclear safety.However,it is uneconomical and unrealistic to implement the same grade of protection for each system or device.The importance level and actual safety requirements should be graded,and then the hierarchical protection strategy should be implemented for different grades.At present,relevant standards have been promulgated in China and abroad,but there are still various problems in their applicability and compatibility with nuclear power I&C systems.This paper investigates and compares the current status of cyber security grade approach of I&C systems in nuclear power plants,analyzes the existing problems,and puts forward corresponding suggestions for these problems.
作者
刘景宾
乔宁
董晓璐
陈子溪
Liu Jingbin;Qiao Ning;Dong Xiaolu;Chen Zixi(Nuclear and Radiation Safety Center,MEE,Beijing 100082,China)
出处
《核安全》
2020年第6期121-126,共6页
Nuclear Safety
关键词
核电站
仪控系统
网络安全
nuclear power plant
instrument and control system
cyber security
