核电DCS网络安全管理方法及其应用研究

Research on Cyber Security Management Methods and Applications for Nuclear Power DCS Systems

DCS作为核电厂重要的工业控制系统,承担着核电厂物理工艺系统状态的监视与控制等功能,是国家关键信息基础设施之一,其安全稳定运行与核安全和网络安全关系密切。为了保障核电厂安全稳定运行,需对DCS在全生命周期开展网络安全管理方法研究。本研究对国内外主要网络安全相关法规标准开展了分析,并基于核电厂仪表与控制系统网络安全防范控制标准对网络安全管理措施的要求,将核电DCS开发流程与企业安全质量管理体系进行融合,提出了一套适用于核电DCS网络安全全生命周期的安全管理方法。经过DCS企业实践表明,该方法将DCS网络安全管理纳入核电安全管理体系,增强了核电DCS企业的网络安全管理能力,为核电厂网络安全防护水平提升提供了支撑。

As an important industrial control system of nuclear power plants,the Distributed Control System(DCS)is responsible for monitoring and controlling the status of the physical process system of nuclear power plants.It is one of the nation’s key information infrastructures.The safe and stable operation of nuclear DCS is closely related to nuclear safety and cyber security.To ensure the safe and stable operation of nuclear power plants,it is necessary to study cyber security management methods for DCS throughout its entire life cycle.This study analyzes the main cyber security related regulations and standards both domestically and internationally.Based on the requirements of cyber security prevention control standards for nuclear power plant instrument and control systems on cyber security management measures,we integrate the nuclear power plant DCS development process with the enterprise safe quality management system and proposes a set of safe management methods suitable for the whole life-cycle of nuclear power plant DCS cyber security.The practice of DCS enterprises shows that this method incorporates DCS cyber security management into the nuclear power safety management system,enhances the cyber security management capabilities of nuclear power DCS enterprises,and provides support for improving the cyber security protection level of nuclear power plants.