列控系统网络安全防护体系构建与运营管理模式研究

Research on the Construction and Operation Management Mode of Network Security Protection System for Train Control System

针对当前列控系统网络安全防护薄弱,不满足信息安全等级保护四级要求的问题,对列控系统网络安全防护体系的构建与运维管理展开研究。首先,引入等级保护“一个中心,三重防护”的理念,阐述列控系统中网络安全设备的结构与组成,主要包括安全通信网络、安全区域边界、安全计算环境和安全管理中心;其次,从现场调研、仿真测试、施工方案编制、硬件设备安装、软件部署、边界隔离设备配置、安全策略制定、竣工收尾等关键环节,论述列控系统网络安全体系的建设过程;最后,通过强调安全策略配置与特征库更新的动态管理,以及巡检故障处理和等级保护测评工作的重要性,探讨网络安全体系的运营管理模式。验证结果表明:该列控系统网络安全防护体系和运营管理模式在实际场景中行之有效。

In view of the problem that the current train control system's network security protection is weak and does not meet the requirements of the four-level information security protection,the construction and operation and maintenance management of the train control system's network security protection system is studied.Firstly,the concept of“one center,triple protections”of graded protection is introduced,and the structure and composition of network security equipment in the train control system are explained,mainly including secure communication networks,secure area boundaries,secure computing environments and security management centers.Secondly,the construction process of the train control system's network security system is discussed from key links such as on-site investigation,simulation testing,construction plan preparation,hardware equipment installation,software deployment,boundary isolation equipment configuration,security policy formulation,and completion and closing.Finally,by emphasizing the importance of dynamic management of security policy configuration and feature library updates,as well as inspection fault handling and graded protection evaluation work,the operation and management of the network security system are discussed.The verification results show that the network security protection system and operation management mode of the train control system are feasible and effective in actual scenarios.