摘要
采用以太网技术的列车通信网络与外界信息环境的交互越来越多,这使其面临着严峻的网络安全威胁。目前国内外缺少对列车通信网络成体系的脆弱性定性分析,开展这项研究迫在眉睫。首先,从网络协议与网络设备2个角度出发,对列车通信网络的脆弱性进行宏观定性分析;其次,针对列车通信网络可能面临的潜在网络攻击,分析其攻击主体、攻击途径以及攻击行为;最后,设计建立列车通信网络模拟攻击测试平台,模拟测试几类主要攻击,测试结果表明这些攻击所指向的脆弱问题在列车通信网络中实际存在,且易于被利用。
Interactions between the Ethernet-based train communication network(ETCN) and the outside information environment are increasing rapidly, which means that ETCN is facing severe cyber security threats. There is no systematic and macroscopic qualitative analysis of the vulnerability of ETCN at home and abroad, therefore it is urgent to analyze its security vulnerability. Firstly, from the perspective of network protocols and network devices, a macroscopic qualitative analysis of the vulnerabilities of ETCN were carried out.Secondly, potential attacks against ETCN were analyzed through the subjects, routes, and behaviors of attacks. At last, an ETCN attack testbed was built to conduct experiments on several kinds of primary attacks. Experimental results indicate that the vulnerabilities exploited by these attacks exist in ETCN and are easy to be compromised.
作者
岳川
王立德
申萍
朵瑞峰
王登锐
YUE Chuan;WANG Lide;SHEN Ping;DUO Ruifeng;WANG Dengrui(School of Electrical Engineering,Bejing Jiaotong University,Beijing 100044,China)
出处
《机车电传动》
北大核心
2022年第4期45-54,共10页
Electric Drive for Locomotives
基金
中国国家铁路集团有限公司科技研究开发计划重点课题(N2020J007)。
关键词
列车通信网络
工业以太网
网络攻击
安全脆弱性分析
信息物理系统
train communication network
industrial Ethernet
network attack
security vulnerability analysis
cyber-physical system
