上傳時(shi)間:2020-05-15| 作者(zhe):芯杰英電子
隨著計(ji)算機(ji)技(ji)術網(wang)絡技(ji)術的(de)(de)(de)(de)發(fa)(fa)(fa)展,特別是(shi)(shi)互(hu)(hu)聯(lian)(lian)網(wang)及社會公共網(wang)絡平臺的(de)(de)(de)(de)快速發(fa)(fa)(fa)展,在(zai)“兩化(hua)”融合的(de)(de)(de)(de)行業(ye)(ye)發(fa)(fa)(fa)展需求下(xia),為了提高(gao)生(sheng)產高(gao)效運行、生(sheng)產管理效率(lv),國(guo)內眾多行業(ye)(ye)大(da)力推進工(gong)(gong)控(kong)(kong)核芯板(ban)工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)自(zi)(zi)身(shen)的(de)(de)(de)(de)集成(cheng)化(hua),集中化(hua)管理。系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)互(hu)(hu)聯(lian)(lian)互(hu)(hu)通(tong)性逐步加強,與(yu)辦公網(wang)、互(hu)(hu)聯(lian)(lian)網(wang)也存在(zai)千絲萬縷的(de)(de)(de)(de)聯(lian)(lian)系(xi)(xi)(xi)(xi)(xi)。但是(shi)(shi)工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)建(jian)設時(shi)更多的(de)(de)(de)(de)是(shi)(shi)考慮各自(zi)(zi)系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)可用性,并(bing)沒有考慮系(xi)(xi)(xi)(xi)(xi)統(tong)之間互(hu)(hu)聯(lian)(lian)互(hu)(hu)通(tong)的(de)(de)(de)(de)安(an)(an)全(quan)風險和(he)(he)防護建(jian)設。使得國(guo)際國(guo)內針(zhen)對(dui)工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)攻(gong)擊(ji)事(shi)件(jian)層出不窮(qiong),“震網(wang)”病毒(du)(du)事(shi)件(jian)為全(quan)球工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)安(an)(an)全(quan)問(wen)題敲響了警鐘,促(cu)使國(guo)家和(he)(he)社會逐漸重視工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)信息(xi)安(an)(an)全(quan)問(wen)題。據權威工(gong)(gong)業(ye)(ye)安(an)(an)全(quan)事(shi)件(jian)信息(xi)庫RISI統(tong)計(ji),截至2013年10月(yue),全(quan)球已發(fa)(fa)(fa)生(sheng)300余起針(zhen)對(dui)工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)攻(gong)擊(ji)事(shi)件(jian)。2001年后,隨著通(tong)用開發(fa)(fa)(fa)標準與(yu)互(hu)(hu)聯(lian)(lian)網(wang)技(ji)術的(de)(de)(de)(de)廣泛使用,針(zhen)對(dui)工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)(ICS)的(de)(de)(de)(de)病毒(du)(du)、木馬等攻(gong)擊(ji)行為大(da)幅度(du)增(zeng)長,直接導(dao)致工(gong)(gong)業(ye)(ye)控(kong)(kong)制(zhi)系(xi)(xi)(xi)(xi)(xi)統(tong)的(de)(de)(de)(de)故障次數明顯增(zeng)多,對(dui)人(ren)員、設備和(he)(he)環境造成(cheng)嚴重后果。
國家非常重視工(gong)控(kong)(kong)核芯板工(gong)業控(kong)(kong)制(zhi)系統信息(xi)安全問題(ti)。工(gong)業和信息(xi)化部2011年9月(yue)發布《關(guan)于加強工(gong)業控(kong)(kong)制(zhi)系統信息(xi)安全管理(li)的(de)通知》(〔2011〕451號),通知明確了工(gong)業控(kong)(kong)制(zhi)系統信息(xi)安全管理(li)的(de)組(zu)織領導、技術保(bao)障、規(gui)章制(zhi)度等方面的(de)要求,并在(zai)工(gong)業控(kong)(kong)制(zhi)系統的(de)連接、組(zu)網、配置、設備選擇與升級、數據、應急管理(li)等六個方面提出了明確的(de)具體(ti)要求。
2012年,國務院頒布《關(guan)于大力(li)推進信(xin)息化發展和切實(shi)保障(zhang)(zhang)信(xin)息安(an)全的若干意見(國發〔2012〕23號》,其(qi)中明確要求保障(zhang)(zhang)工業控制(zhi)系統安(an)全,重(zhong)點保障(zhang)(zhang)對可能危(wei)及生命和公共財(cai)產安(an)全的工業控制(zhi)系統的安(an)全。
國家發改(gai)委從(cong)2011年開(kai)(kai)始開(kai)(kai)展工控(kong)(kong)核芯(xin)板(ban)工業(ye)控(kong)(kong)制系統信息安(an)全專(zhuan)項,涉及面向(xiang)現場設(she)備環(huan)境的邊界(jie)安(an)全專(zhuan)用網關產(chan)品(pin)(pin)、面向(xiang)集(ji)散控(kong)(kong)制系統(DCS)的異常監(jian)測產(chan)品(pin)(pin)、安(an)全采集(ji)遠(yuan)程終(zhong)端單元(RTU)產(chan)品(pin)(pin)、工業(ye)應用軟件(jian)漏洞掃描產(chan)品(pin)(pin)等產(chan)業(ye)化項目。在電(dian)力電(dian)網、石油石化、先進制造、軌道交通(tong)等領(ling)域,支持(chi)大(da)型重點(dian)骨(gu)干(gan)企業(ye),按照信息安(an)全等級(ji)保護(hu)相關要(yao)求(qiu),開(kai)(kai)展工業(ye)控(kong)(kong)制系統信息安(an)全建設(she)的試點(dian)示范。
當前(qian),工(gong)控核芯板工(gong)業(ye)信(xin)(xin)息(xi)(xi)系統正從(cong)單機走向互聯(lian),從(cong)封閉走向開放,安全(quan)漏(lou)洞(dong)和風險不斷涌現。2017年第一季度,國家(jia)信(xin)(xin)息(xi)(xi)安全(quan)漏(lou)洞(dong)共享平(ping)臺爆(bao)出我國新增工(gong)控系統行業(ye)漏(lou)洞(dong)30個,其中半數以上是高危(wei)漏(lou)洞(dong)。2017年6月,在工(gong)信(xin)(xin)部(bu)的指導下,國家(jia)工(gong)業(ye)信(xin)(xin)息(xi)(xi)安全(quan)產業(ye)發展聯(lian)盟(meng)正式成立。
微信二維碼
手機網站
