工业以太网EtherNet/IP协议安全分析  被引量:4

Security analysis of the industrial ethernet EtherNet/IP protocol

在线阅读下载全文

作  者:田学成 徐英会 Tian Xuecheng;Xu Yinghui(School of Computer and Communication,Lanzhou University of Technology,Lanzhou 730000,China;School of Control and Computer Engineering,North China Electric Power University (Baoding),Baoding 071000,China)

机构地区:[1]兰州理工大学计算机与通信学院,甘肃兰州730000 [2]华北电力大学(保定)控制与计算机工程学院,河北保定071000

出  处:《信息技术与网络安全》2019年第7期6-13,共8页Information Technology and Network Security

摘  要:工业是一个国家的根本的经济命脉,工业控制系统(Industrial Control Systems,ICS)是工业自动化体系结构的重要组成部分。随着工业4.0时代的到来,工业网络的安全性日益重要。工业以太网EtherNet/IP协议使用原有的基于标准的以太网技术,已经被大量使用在工业网络控制系统中,其安全性一直备受关注,国内对工业网络协议安全性的研究很少。使用形式化分析工具Scyther在Delov-Yao模型和强安全模型下对EtherNet/IP协议核心成员通用工业协议(Control and Information Protocol,CIP)所采用的加密认证TLS协议进行形式化分析。对下一代CIP协议嵌入TLS1.3具有实践价值,该方法对其他工业网络协议进行有效的安全分析有理论指导意义。Industry is the fundamental economic lifeline of a country,and industrial control systems is an important part of industrial automation architecture.After the concept of Industry 4.0 have been put forward,the security of industrial networks is becoming increasingly important.Industrial ethernet EtherNet/IP protocol,which uses the original standards-based ethernet technology has been widely used in industrial network control systems.Its security has always been concerned.But there is little research on industrial network protocol security in our country.In this paper,the formal analysis tool Scyther is used to formally analyze the encryption authentication TLS protocol adopted by the core member of EtherNet/IP protocol Control and Information Protocol (CIP) under the Delov-Yao model and strong security model. It is of practical value to embed TLS1.3 into the next-generation CIP protocol.This method has theoretical guiding significance for effective security analysis of other industrial network protocols.

关 键 词:ETHERNET/IP CIP TLS Scyther 形式化分析 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象