| 摘要: |
| 随着工业互联网的快速发展,工业控制系统(ICS)中功能安全和信息安全分离的传统防御方案已经无法应对当前的网络威胁。例如, Stuxnet病毒利用信息领域的安全漏洞修改离心机业务运行的相关参数,使其运行于不稳定状态,最终导致系统瘫痪。为了应对日益复杂的高级威胁,针对功能安全和信息安全的融合技术逐渐成为研究热点。该融合技术产生一体化的安全需求,使风险分析和缓解更加全面和有效,同时减少系统性能开销和开发运行成本。然而,需要注意的是,功能安全和信息安全具有不同的目标和要求。功能安全旨在避免系统功能故障造成的不可接受风险,而信息安全旨在保护计算机硬件、软件和数据免受意外和恶意的损害、更改和泄露。此外,工业控制系统的计算、通信和存储资源受限,具有时效性、行业复杂性和设备多样性等特点。因此,融合安全研究面临重大挑战。本文首先从概念术语、安全生命周期、安全级别评估和缓解措施等4个方面分析了功能安全和信息安全领域融合安全研究的可能性和必要性。其次,根据保密性、完整性、可用性和可靠性4个安全目标,总结和分析了学术界和工业界现有的融合安全方法和技术进展,以及现有的功能安全和信息安全融合标准和计划。最后,从不同的角度分析和总结了功能安全和信息安全融合研究中的挑战和机遇,以促进不同学科之间的跨学科研究。 |
| 关键词: 功能安全和信息安全融合 工业控制系统 信息物理融合系统 |
| DOI:10.19363/J.cnki.cn10-1380/tn.2026.01.19 |
| Received:December 11, 2020Revised:March 08, 2021 |
| 基金项目:国家重点研发计划(No.2020YFB2010902); 国家自然科学重点基金(No.U1766215)资助。 |
|
| Survey on the Integration of Safety and Security in Industrial Control Systems |
| LIU Puzhuo,MA Yetong,LV Shichao,FANG Dongliang,ZHU Hongsong,SUN Limin |
| School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China;Beijing Key Laboratory of IOT Information Security Technology, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China |
| Abstract: |
| With the rapid development of the industrial Internet, the traditional defense scheme that separates functional safety and information security in industrial control systems(ICS) can no longer cope with current Internet threats. For example, the Stuxnet virus uses the security vulnerabilities in the information domain to modify relevant parameters of centrifuge business operations to make it run in an unstable state, ultimately leading to system destruction. In order to deal with increasingly complex advanced threats, the fusion technology for functional safety and information security has gradually become a research hotspot. This fusion technology generates integrated requirements, enabling comprehensive and effective risk analysis and mitigation, while reducing system performance overhead and development and operation costs. However, it is important to note that functional safety and information security have different goals and requirements. Functional safety aims to avoid unacceptable risks caused by system functional failures, while information security is designed to protect computer hardware, software, and data from accidental and malicious damage, changes, and leaks. Additionally, industrial control systems have limited computing, communication, and storage resources, and are characterized by time sensitivity, complexity in industry, and diverse equipment. Moreover, due to the limited computing, communication, and storage resources of industrial control systems, as well as their characteristics of time sensitivity, complex industry, and diverse equipment, fusion research is faced with significant challenges. This paper first analyzes the possibility and necessity of converged security research from the four aspects of conceptual terminology, security life cycle, security level assessment and mitigation measures in the field of functional safety and information security. Then, according to the four security objectives of confidentiality, integrity, availability and reliability, the existing fusion security methods and technical progress in academia and industry are summarized and analyzed, and the existing functional security and information security fusion standards and plans. Finally, the challenges and opportunities in the fusion research of functional safety and information security are analyzed and summarized from different perspectives, so as to promote interdisciplinary research between different disciplines. |
| Key words: safety and security integration industrial control system cyber-physical system |
