检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:熊琦[1] 彭勇[1] 伊胜伟[1] 戴忠华[1] 王婷[1]
出 处:《小型微型计算机系统》2015年第3期497-502,共6页Journal of Chinese Computer Systems
基 金:国家自然科学基金项目(90818021;61472448)资助
摘 要:随着信息化和工业化的深度融合,控制系统在工业生产过程中得到了越来越广泛的应用,很多研究者开始针对工控系统,特别是具有控制功能的工控网络协议的安全性展开研究,漏洞分析则是其中较为活跃的领域之一.由于工控网络协议具有专用性和面向控制的特点,通常在封闭环境下运行,无法直接应用传统Fuzzing测试技术进行网络协议的漏洞挖掘.本文阐述了工控网络协议的特点以及Fuzzing测试的困难,讨论并比较了现有各种Fuzzing测试技术应用于工控网络协议的优缺点,提出工控网络协议的专用Fuzzing测试工具的设计准则,最后展望了工控网络协议Fuzzing测试技术的未来研究方向.with the deep integration of informatization and industrialization, the Industrial Control system (ICS ) becomes more and more popular in the industrial production, a great amount of researchers start to focus their research interest on the security of industrial network protocols and vulnerability detecting becomes one of the hot points in this field. Due to the specific features of ICS, like process control oriented and proprietary, traditional Fuzzing technology cannot be directly applied to vulnerability detecting for industri- al network protocols, which runs in the closed envimment. This paper described the features of industrial network protocols first, then investigated the features of industrial control protocols and the difficulties of Fuzzing test on them, discussed the current research a- chievements presented in this field,introduced the design guidelines of general Fuzzing tools for industrial control protocols. Finally, the further research direction of this field is discussed in detail.
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.222