摘要
在电力系统运行环境中,通信协议的安全性直接关系到电网运行的稳定性和可靠性。针对现有测试方法的不足,提出一种基于包序列变异和反馈引导的通信协议模糊测试方案。首先,介绍了电力通信协议的特点及其安全需求;其次,对电力系统安全防护和模糊测试相关工作进行了调研,说明模糊测试的基本类型和工作原理;最后,设计了较完整的电力通信协议模糊测试方案,主要包括测试系统框架、核心测试组件、测试报文生成算法和插桩反馈引导机制等。本方案通过基于序列包变异和反馈引导的模糊测试数据生成策略,可以按需对包序列进行增包、丢包、乱序和重复等变异操作,能够生成更接近实际应用场景的测试数据,从而更有效地发现电力行业通信协议的潜在缺陷。
In the power system operating environment,the security of communication protocols is directly related to the stability and reliability of power grid operation.Aiming at the shortcomings of existing testing methods,this paper proposes a fuzzy testing scheme for communication protocols based on packet sequence mutation and feedback guidance.Firstly,the characteristics and security requirements of power communication protocols are introduced.Secondly,the work related to power system security protection and fuzzy testing is investigated to explain the basic types and working principles of fuzzy testing.Finally,a fuzzy testing scheme for power communication protocols is designed,including the test system framework,core test components,test message generation algorithm and instrumentation feedback guidance mechanism.Through a fuzzy test data generation strategy based on the sequence packet variation and feedback guidance,it is possible for the scheme to perform operations such as packet addition,loss,reordering,and duplication on the packet sequence as needed.The propose scheme can generate test data closer to actual application scenarios so as to discover the potential defects of the communication protocols more effectively in the power industry.
作者
张翔
王峰
李兴华
查娟娟
叶家敏
ZHANG Xiang;WANG Feng;LI Xinghua;ZHA Juanjuan;YE Jiamin(Electric Power Research Institute,State Grid Ningxia Electric Power Co.,Ltd.,Yinchuan Ningxia 750011,China;Shanghai Trusted Industrial Control Platform Co.,Ltd.,Shanghai 200333,China)
出处
《宁夏电力》
2024年第5期70-75,共6页
Ningxia Electric Power
基金
国网宁夏电力有限公司科技项目(5229DK24000V)
关键词
通信协议
模糊测试
包序列变异
反馈引导
协议漏洞
communication protocol
fuzzy testing
packet sequence mutation
feedback guidance
protocol vulnerability