摘要
随着两化深度融合的快速推进,工业控制系统面临着前所未有的信息安全威胁,对于工控安全产品中作为安全域边界控制的防火墙作用越来越重要。工业防火墙能实时监测工控网络的状态,检测工控网络中入侵行为,也能根据用户定义的防护控制策略,处置工控网络安全事件,及时响应和告警。而对于基于工控协议防火墙的脆弱性分析是在评估功能结构和预期操作时,通过对产品的脆弱性进行标识和误用分析,以及以定性的方式描述功能强度并分析功能强度,对违背安全策略的行为进行分析。
With the rapid development of deep integration of industrialization and industrialization,industrial control systems are facing unprecedented threats to information security. It is becoming more and more important for industrial control security products as firewalls for boundary control of security domains. Industrial firewall can monitor the status of industrial control network in real time,detect intrusion behavior in industrial control network,and dispose of industrial control network security events according to user-defined protection control strategy,timely response and alarm. The vulnerability analysis of the firewall based on industrial control protocol is to analyze the violation of security policy by identifying and misusing the vulnerability of the product,describing the functional strength and analyzing the functional strength in a qualitative way when evaluating the functional structure and expected operation.
引文
[1]徐孝凯,张纪勇.C++面向对象程序设计VC++6.0运行环境[M].天津:天津大学出版社,2009.
[2]郎锐,罗发根.Visual C++网络通信程序开发指南[M].北京:机械工业出版社,2004.
[3]朱桂英,张元亮.Visual C++网络编程开发与实践[M].北京:清华大学出版社,2013.
[4]吴桂华.目前防火墙中的最新技术及发展[J].消费电子,2014(24):210.