信息网络安全
信息網絡安全
신식망락안전
NETINFO SECURITY
2013年
10期
57-59
,共3页
陈亚亮%杨海军%姚钦锋%戴沁芸
陳亞亮%楊海軍%姚欽鋒%戴沁蕓
진아량%양해군%요흠봉%대심예
网络安全%工业控制系统%策略框架%安全域划分
網絡安全%工業控製繫統%策略框架%安全域劃分
망락안전%공업공제계통%책략광가%안전역화분
cyber-security%industrial control system%strategic framework%security zones
文章在阐述工业控制系统(ICS)网络概念与特点的基础上,深入分析其安全威胁及脆弱性,提出运用“深度防御”思想,以ICS资产功能及重要性为安全域划分依据,从技术与管理两个维度设计适用于ICS的网络安全防护体系。
文章在闡述工業控製繫統(ICS)網絡概唸與特點的基礎上,深入分析其安全威脅及脆弱性,提齣運用“深度防禦”思想,以ICS資產功能及重要性為安全域劃分依據,從技術與管理兩箇維度設計適用于ICS的網絡安全防護體繫。
문장재천술공업공제계통(ICS)망락개념여특점적기출상,심입분석기안전위협급취약성,제출운용“심도방어”사상,이ICS자산공능급중요성위안전역화분의거,종기술여관리량개유도설계괄용우ICS적망락안전방호체계。
Security threats and vulnerabilities are analyzed in depth in this paper, which is based on the network concept and the characteristic of the industrial control system (ICS). Subsequently, Framework design of industrial control system for cyber-security defenses is proposed by the use of“defense-in-depth”thought, combining with technology and management measures, separating the function and the importance of ICS asset into several security zones.