工业控制系统协议安全综述

工业控制系统是国家基础设施的重要组成部分，广泛应用于能源、制造、交通、军工等行业，是关乎国计民生的重要资源.工控协议是控制系统实现实时数据交换、数据采集、参数配置、状态监控、异常诊断、命令发布和执行等众多功能有机联动的重要纽带，其安全问题与工控系统的可靠稳定运行密切相关.深度剖析工控协议安全是理解工控系统安全威胁的一个重要角度，能够对工控系统的安全防护和保障提供指导.通过整理学术界与工业界对工控协议安全的研究工作，例如研究论文、标准指南、攻击事件等，系统化地分析和总结了工控协议所面临的安全问题.首先对工控网络架构、工控协议作用、协议的分类以及和传统协议的比较等进行详细阐述，然后从协议设计、实现和应用的角度深入分析了工控协议面临的攻击威胁和协议防护方案，最后讨论了未来工控协议安全的研究趋势.

Survey of Protocol Security of Industrial Control System

Industrial control system (ICS) is an important part of national infrastructure, widely used in energy, manufacturing, transportation, military and other industries, and is an important resource related to the national economy and people’s livelihood. Industrial control protocol is a crucial link for the ICS to achieve the organic linkage of many functions such as real-time data exchange, data acquisition, parameter configuration, status monitoring, abnormal behavior diagnosis, command issuance and execution, etc. Its security issues are closely related to the reliable and stable operations of ICS. In-depth security analysis of industrial control protocols is an important angle for understanding the security threats of ICS, and can provide guidance for the security protection of ICS. We investigate the security work of industrial control protocols from the academia and the industry, including research papers, standards and guidelines, attack incidents, etc. It systematically analyzes and summarizes the security problems faced by industrial control protocols. Firstly, we elaborate on the industrial control network architecture, the role and classification of industrial control protocols, and the comparison with traditional protocols. From the perspective of protocol design, implementation, and application, we conduct an in-depth analysis of industrial control protocol attack threats and security defense solutions. Finally, we discuss about the research trends on the security of industrial control protocols.