基于SHA1的SCADA系统PLC固件完整性验证方法  被引量:4

PLC firmware integrity verification method of SCADA system based on SHA1

在线阅读下载全文

作  者:黄信兵[1,2] 刘桂雄[2] 

机构地区:[1]广东交通职业技术学院,广东广州510800 [2]华南理工大学机械与汽车工程学院,广东广州510640

出  处:《中国测试》2017年第6期114-117,共4页China Measurement & Test

基  金:2016年度省科技发展专项资金(2016B010113001)

摘  要:针对SCADA系统面临的数据窃取、篡改等信息安全问题,基于固件、可信根完整性度量,研究SCADA系统PLC固件完整的必要性;采用安全性高的SHA1算法,提出一种PLC固件完整性验证方法。在SCADA系统外的验证计算机上开发完整性验证软件,通过网络侦听、协议分析实现固件二进制数据提取、待下载固件SHA1值匹配验证、下载固件SHA1值匹配验证等功能,完成PLC固件传输过程中的完整性验证。试验结果表明:该方法可有效验证PLC固件完整性,提高PLC运行可信度。For data theft, data tampering and other information security issues of SCADA system and based on integrity measurement of the firmware and the trusted root, this paper aimed to research the necessity of integrity of PLC firmware for SCADA system, and proposed a PLC firmware integrity verification method by using SHA1 algorithm with high security. It developed an integrity authentication software on an authentication computer which was independent from SCADA system. Through the network listening and protocol analysis , the functions of the extraction of the firmware binary data, matched verification of SHA1 value of un-download firmware, and matched verification of SHA1 value of download firmware were realized, and completed the integrity test during PLC firmware transmission. The test results show that the method can effectively verify the integrity of PLC firmware, and improve the operation credibility of the PLC.

关 键 词:安全哈希算法 数据采集与监视控制系统 可编程逻辑控制器 固件 完整性 

分 类 号:TP391.9[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象