摘要
工业生产过程中不断暴露出的信息安全问题使得工控安全成为热点。IEC 62443《工业过程测量、控制和自动化网络与系统信息安全保障等级》系列国际标准和我国GB/T 22239—2019《信息安全技术网络安全等级保护基本要求》均对工控控制系统做出了安全要求。围绕工业控制系统信息安全需求,将IEC 62443-3-3标准中关于系统安全要求与GB/T 22239—2019等级保护标准,从标准应用范围、安全等级以及具体指标3个方面进行分析和对比,结果用以指导工控安全从业人员学习和使用标准。
Information security problems exposed in industrial production process make industrial control security a hot spot.International serial standards IEC 62443 and the baseline for classified protection of China have proposed security requirements for industrial control systems,respectively.Focused on the information security requirements for industrial control systems,the security requirements and classified protection standards in IEC 62443-3-3 and the equivalence part in GB/T 22239—2019 are compared.Analysis and comparison carried out on these standards from application scope,safety level and specific indicators can tutor the practitioners in industrial control security.
作者
王建
王天屹
翟亚红
蒋天伦
WANG Jian;WANG Tianyi;ZHAI Yahong;JIANG Tianlun(Beijing Excellent Network Security Technology Company Limited,Beijing 100190,China;Southern University of Science and Technology,Shenzhen 518055,China;China Cybersecurity Review Technology and Certification Center,Beijing 100020,China;School of Control and Computer Engineering,North China Electric Power University,Beijing 102206,China;School of Electrical and Electronic Engineering,North China Electric Power University,Beijing 102206,China)
出处
《华电技术》
CAS
2021年第2期72-76,共5页
HUADIAN TECHNOLOGY