车联网网络安全攻防演练研究与实践

Research and Practice on Attack and Defense Drill of Internet of Vehicles Security

近年来,车联网网络安全风险凸显,网络攻击增多,安全事件频发,安全威胁加剧,已引起国内外高度重视。为检验我国典型企业及系统的车联网安全攻击和防御水平,本文通过分析当下网络安全演练背景及现状,面向车联网安全特点和应用实际,提出了一套车联网安全演练的思路体系,并选取4个车联网企业和1个车路协同示范区开展演练实践,有效检验验证了上述思路体系的落地性和可行性。本文通过分析系列车联网安全演练实践的结果和成效,为我国下一步车联网安全管理带来了启示和意义。

In recent years,the Internet of Vehicles cybersecurity risks have become further prominent.The increase in security attack,the frequent occurrence of security incidents and the intensified security threats have attracted great attention at home and abroad.In order to examine the capability of Internet of Vehicles security attacks and defenses for typical China’s enterprises and systems,this paper proposes a set of cybersecurity drill framework by analyzing the background and current situation,considering the characteristics and application of Internet of Vehicles security.The drill practices have been carried out in four Internet of Vehicles enterprises and one vehicleroad cooperation demonstration area,effectively verifying the practicability of the above-mentioned framework.Through the analysis of the results and effectiveness of the drilling practices,this paper delivers inspirations and implications for China’s next step in the management of Internet of Vehicles security.