摘要
随着两化融合的持续推进,信息安全问题不再仅存于信息网络,控制网络因自身的脆弱性问题,其攻击面相比较传统信息网络更大;又因其不可逆的特点,攻击影响范围更广。传统信息安全技术因兼容性、计算资源、容错性等多种问题,表现出极大的不适应性,如何构建行之有效的控制领域信息安全体系,切实保障生产过程的可用性,成为自动化与信息化从业者共同考虑的问题。在这一过程中,部分传统安全技术均需根据控制领域特点进行升级与优化。
With the continuous integration of IT and OT,the information security problems no longer exist only in the IT network.Due to its own vulnerability,the OT network has a larger attack surface and wider scope of impact.Due to various problems such as compatibility,computing resources,and fault tolerance,traditional IT security technology is not fully suitable for OT security.Therefore,how to build effective OT security system and ensure normal production process has become the common issue of both automation and information professionals.In this process,some IT security technologies need to be upgraded and trimmed according to the characteristics of the OT field.
作者
马霄
袁留记
MA Xiao;YUAN Liuji(Beijing Topsec Network Security Technology Co.,Ltd.,Beijing 100193,China)
出处
《信息通信技术与政策》
2022年第10期62-68,共7页
Information and Communications Technology and Policy
关键词
白名单技术
行为分析
抵御越限风险
数据变化率检测
whitelisting techniques
behavioral analysis
protect against the risk of exceeding the limit
data rate change detection
