面向工业控制系统全生命周期的脆弱性多维协同分析
作者:
作者单位:

华中科技大学

作者简介:

通讯作者:

中图分类号:

TP273

基金项目:

国家重点基础研究发展计划(973计划)


Multi-dimensional Collaborative Analysis of Vulnerability for the Full-lifecycle of Industrial Control Systems
Author:
Affiliation:

Huazhong University of Science and Technology

Fund Project:

The National Basic Research Program of China (973 Program)

  • 摘要
  • |
  • 图/表
  • |
  • 访问统计
  • |
  • 参考文献
  • |
  • 相似文献
  • |
  • 引证文献
  • |
  • 资源附件
  • |
  • 文章评论
    摘要:

    工业互联网背景下, 工业控制系统面临攻击防不住、脆弱性易暴露的安全挑战, 要保障工控系统安全稳定运行, 首先需要深入探究引发工控系统故障的原因, 明确系统脆弱性机理. 针对当前单点或局部脆弱性分析的局限性, 本文面向工控系统全生命周期安全需求及特征, 提出脆弱性多维协同分析框架, 通过模型驱动的系统静态、动态脆弱性分析以及多域融合评估, 剖析和挖掘系统脆弱点及其关联渗透过程, 生成系统脆弱性知识. 本文提出的框架首次明确脆弱性含义, 同时全生命周期需求覆盖以及一体化架构特性有助于实现系统全局脆弱性机理揭示.

    Abstract:

    In the context of industrial internet, industrial control systems are faced with the challenges of attack intrusion and vulnerability exposure. In order to ensure the safe and stable operation of industrial control systems, it is neccessary to explore the cause of system failures and clarify potential vulnerabilities. In this paper, based on the full-lifecycle security requirements and characteristics of industrial control systems, a multi-dimensional collaborative vulnerability analysis framework is proposed. With model-driven system static and dynamic vulnerability analysis, the system vulnerability knowledge is then generated. Meanwhile, the framework proposed firstly clarifies the meaning of vulnerability in industrial control systems, and the full-lifecycle coverage and integrated architectural features are benificial to realize the global vulnerability disclosure of industrial control systems.

    参考文献
    相似文献
    引证文献
引用本文
分享
文章指标
  • 点击次数:
  • 下载次数:
  • HTML阅读次数:
  • 引用次数:
历史
  • 收稿日期:2021-04-12
  • 最后修改日期:2021-07-19
  • 录用日期:2021-07-29
  • 在线发布日期: 2021-09-01
  • 出版日期: