摘要
近年来,工业互联网安全问题层出不穷。虽然传统的防护安全机制已经应用到工业互联网各领域,但对于监视控制系统底层的进程及活动的机制研究仍有所欠缺。基于以上现状,提出了一种基于奇异值分解的针对信号采集端的检测技术。从工作原理和检测过程的角度,分析了其所提出的检测技术与传统入侵检测方法的区别;通过分析工业控制系统的数据回放结果,验证了入侵的有效性。底层网络的检测方法与上层网络其他安全设备和安全策略的共同防护机制,能够有效提高工业互联网系统安全防护技术。
In recent years,industrial Internet security problems have emerged.Although traditional protective security mechanisms have been applied to various areas of the industrial Internet,research on mechanisms for monitoring process and activities at the bottom of control systems is still lacking.Based on the above status quo,a detection technique based on singular value decomposition for the signal acquisition side is proposed.The differences between the proposed detection technique and traditional intrusion detection methods are analyzed from the perspective of the working principle and detection process,and the effectiveness of the intrusion is verified by analyzing the data playback results of the industrial control system.The detection method of the underlying network and the common protection mechanism of other security devices and security policies of the upper network can effectively improve the security protection technology of the industrial Internet system.
作者
孙逊
SUN Xun(INESA(Group)Co.,Ltd.,Shanghai 200233,China)
出处
《自动化仪表》
CAS
2022年第10期73-75,80,共4页
Process Automation Instrumentation
关键词
工业互联网
工控系统
入侵检测
网络安全
奇异值分解
等级保护
关键基础设施
安全策略
Industrial internet
Industrial control system
Intrusion detection
Network security
Singular value decomposition
Hierarchical protection
Critical infrastructure
Security policy
