摘要
工业过程测量、控制与自动化/网络与系统信息安全工作组(IEC/TC65/WG10)与国际自动化协会(ISA99)成立联合工作组,共同制定了关于工业自动化和控制系统(IACS)信息安全系列标准IEC 62443.此系列标准分为4部分:通用、信息安全程序、系统技术和部件技术,共包含12个文档.其中,IEC 62443-3-1介绍了各种网络安全工具、缓解对策,以及对使用这些技术和工具的评估,并对使用这些网络安全技术产品提出初步建议和指导.通过研究3-1部分中所描述的信息安全身份认证技术并进行分析,提出一套信息安全身份认证危害分析和实施策略,为核电厂数字化控制系统(DCS)的信息安全认证方法和策略提供参考.
Working Group on Industrial Process Measurement,Control and Automation/Network and System Information Security(IEC/TC65/WG10)and International Association of Automation(ISA99),established a joint working group,and published a series of standards on information security of Industrial Automation and Control Systems(IACS),IEC 62443.IEC 62443 contains four parts(general,information security procedures,system technology and component technology)and twelve documents in total.Section 3-1 introduces various network security tools,mitigation countermeasures and technology assessment,then it provides preliminary suggestion and guidance for the use of these products.By research of the information security technology and tools described in Section 3-1,we put forward a strategy for hazard analysis and implement about authentication,provide references for the digital control system information security authentication method and strategy of nuclear power plants.
作者
黄鹏
肖鹏
吴志强
公民
HUANG Peng;XIAO Peng;WU Zhiqiang;GONG Min(Science and Technology on Reactor System Design Technology Laboratory,Nuclear Power Institute of China,Chengdu 610213,China)
出处
《上海交通大学学报》
EI
CAS
CSCD
北大核心
2018年第S1期152-155,共4页
Journal of Shanghai Jiaotong University
关键词
核电厂
数字化控制系统(DCS)
认证技术和策略
信息安全
nuclear power plants
digital control system
authentication technologies and strategy
cyber security
