工控协议安全研究综述

Survey on industrial control protocol security research

工控协议安全是保障ICS稳定运行的关键,大量工控协议在设计阶段忽视了对安全性的考量,导致目前大部分主流工控协议普遍存在脆弱性问题。结合ICS架构和工控协议的发展特征,深入解析目前工控协议普遍面临的脆弱性问题和攻击威胁。同时,针对工控协议的潜在漏洞,深入分析基于静态符号执行、代码审计和模糊测试等工控协议漏洞挖掘技术,并从工控协议的规范设计、通信机制以及第三方中间件3个方面全面剖析协议设计的安全防护技术。另外,从沙箱研制、安全防护及漏洞挖掘等方面,对工控协议安全的未来发展趋势进行展望。

The security of industrial control protocol is the cornerstone to ensure ICS’s stable operation,a large number of industrial control protocols in the design phase ignore the consideration of security,resulting in most of the mainstream industrial control protocols generally having vulnerabilities.Considering the ICS architecture and the developmental characteristics of industrial control protocols,the various vulnerabilities and attack threats commonly faced by industrial control protocols were systematically summarized.At the same time,for the unknown potential vulnerabilities of industrial control protocols,the vulnerability mining techniques of industrial control protocols were analyzed in-depth,including the static symbolic execution-based,code audit-based,and fuzzing-based.The protocol design security protection technology was comprehensively dissected from the three directions of industrial control protocol specification design,communication mechanism,and third-party middleware.In addition,the future development trend of industrial control protocol security was further prospected from the aspects of sandbox development,security protection,and vulnerability mining.