| 卷接设备IPC控制系统网络安全监测模型的构建 |
| |
| 引用本文: | 倪雄军,李健俊,李钰靓,文德明,姜学峰,张益南,李威,张晓东.卷接设备IPC控制系统网络安全监测模型的构建[J].烟草科技,2022,55(1):99-106. |
| |
| 作者姓名: | 倪雄军 李健俊 李钰靓 文德明 姜学峰 张益南 李威 张晓东 |
| |
| 作者单位: | 1.浙江中烟工业有限责任公司生产管理部,杭州市中山南路77号 3100082.浙江中烟工业有限责任公司信息中心,杭州市中山南路77号 3100083.浙江中烟工业有限责任公司杭州卷烟厂,杭州市科海路118号 3100084.常德烟草机械有限责任公司,湖南省常德市武陵区长庚路999号 4150005.杭州优稳自动化系统有限公司,杭州市余杭区临港路6号 311107 |
| |
| 基金项目: | 浙江中烟工业有限责任公司科技项目“卷接设备电控系统深度安全技术研究与应用”(ZJZY2020E002)。 |
| |
| 摘 要: | 为解决卷接设备IPC控制系统因内部缺失防护措施而存在安全隐患等问题,通过分析IPC(Industrial Personal Computer)控制系统的安全漏洞和攻击路径,采用构建控制系统典型攻击链模型的方法,设计了系统网伪控制指令安全监测、IPC控制器非侵入式安全监测、控制网异常控制行为安全监测3个安全监测模块,结合...
|
| 关 键 词: | 卷接设备 IPC控制系统 安全漏洞 攻击路径 A3MA安全监测模型 |
| 收稿时间: | 2021-06-18 |
Configuration of network security monitoring model for IPC control system of filtered cigarette maker |
| |
| NI Xiongjun,LI Jianjun,LI Yuliang,WEN Deming,JIANG Xuefeng,ZHANG Yinan,LI Wei,ZHANG Xiaodong.Configuration of network security monitoring model for IPC control system of filtered cigarette maker[J].Tobacco Science & Technology,2022,55(1):99-106. |
| |
| Authors: | NI Xiongjun LI Jianjun LI Yuliang WEN Deming JIANG Xuefeng ZHANG Yinan LI Wei ZHANG Xiaodong |
| |
| Affiliation: | 1.Production Management Department, China Tobacco Zhejiang Industrial Co., Ltd., Hangzhou 310008, China2.Information Center, China Tobacco Zhejiang Industrial Co., Ltd., Hangzhou 310008, China3.Hangzhou Cigarette Factory, China Tobacco Zhejiang Industrial Co., Ltd., Hangzhou 310008, China4.Changde Tobacco Machinery Co., Ltd., Changde 415000, Hunan, China5.Hangzhou UWNTEK Automation System Co., Ltd., Hangzhou 311107, China |
| |
| Abstract: | In order to overcome the hidden security troubles in the IPC control system of filtered cigarette maker in the absence of internal protection measures, the security holes and attacked routes of the IPC control system were analyzed and three security monitoring modules were designed by means of developing a typical attack chain model for the control system. The first module was designed for the security monitoring of pseudo instruction of the system network. The second module was designed for the non-intrusive security monitoring of the IPC controller, and the third module was designed for monitoring the abnormal control behavior of the control network. Thereby, an A3MA (Acquisition-Monitoring-Monitoring-Monitoring-Alarm) security monitoring model, which covered the IPC core controller and core communication network of the cigarette maker was configured by integrating with disturbance-free data acquisition and security risk early-warning. The security monitoring model was tested on an IPC control system in a ZJ17E cigarette maker, the results showed that the A3MA security monitoring model could rapidly discern the behaviors of pseudo-control instructions in the system network, rapidly locate the unauthorized tampering behaviors targeting IPC controller and rapidly identify the abnormal control behaviors of EtherCAT control network. This model provides a technical support for the multi-layer security monitoring of IPC control system in filtered cigarette maker. |
| |
| Keywords: | Filtered cigarette maker IPC control system Security hole Attacking route A3MA security monitoring model |
| 本文献已被 维普 等数据库收录! |
| 点击此处可从《烟草科技》浏览原始摘要信息 |
|
点击此处可从《烟草科技》下载全文 |
|
