上傳時間:2020-05-15| 作者:芯杰英電子
隨(sui)著計算機技術網絡技術的(de)發(fa)展,特別是(shi)互(hu)聯網及社會(hui)公(gong)共網絡平臺的(de)快(kuai)速發(fa)展,在“兩化(hua)”融合的(de)行業(ye)發(fa)展需求下,為(wei)了(le)提(ti)高(gao)生產(chan)高(gao)效運行、生產(chan)管理效率(lv),國內眾多行業(ye)大力推進工控(kong)(kong)(kong)核(he)芯板工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)自(zi)身的(de)集成化(hua),集中化(hua)管理。系統(tong)(tong)(tong)(tong)的(de)互(hu)聯互(hu)通(tong)(tong)(tong)性逐步加強,與(yu)辦公(gong)網、互(hu)聯網也存在千絲(si)萬縷的(de)聯系。但是(shi)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)建設(she)(she)時(shi)更多的(de)是(shi)考(kao)慮各自(zi)系統(tong)(tong)(tong)(tong)的(de)可用性,并沒有考(kao)慮系統(tong)(tong)(tong)(tong)之間互(hu)聯互(hu)通(tong)(tong)(tong)的(de)安(an)全(quan)(quan)風險和防護建設(she)(she)。使得國際國內針(zhen)對(dui)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)的(de)攻(gong)(gong)擊(ji)事件(jian)(jian)(jian)層出(chu)不窮,“震網”病毒事件(jian)(jian)(jian)為(wei)全(quan)(quan)球(qiu)(qiu)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)安(an)全(quan)(quan)問題(ti)敲響(xiang)了(le)警鐘,促(cu)使國家和社會(hui)逐漸重視工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)的(de)信(xin)息安(an)全(quan)(quan)問題(ti)。據權威(wei)工業(ye)安(an)全(quan)(quan)事件(jian)(jian)(jian)信(xin)息庫RISI統(tong)(tong)(tong)(tong)計,截(jie)至2013年(nian)10月,全(quan)(quan)球(qiu)(qiu)已發(fa)生300余起針(zhen)對(dui)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)的(de)攻(gong)(gong)擊(ji)事件(jian)(jian)(jian)。2001年(nian)后(hou),隨(sui)著通(tong)(tong)(tong)用開發(fa)標(biao)準(zhun)與(yu)互(hu)聯網技術的(de)廣泛使用,針(zhen)對(dui)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)(ICS)的(de)病毒、木馬等攻(gong)(gong)擊(ji)行為(wei)大幅度增長,直接導致(zhi)工業(ye)控(kong)(kong)(kong)制系統(tong)(tong)(tong)(tong)的(de)故障次數明顯增多,對(dui)人員、設(she)(she)備(bei)和環境造成嚴重后(hou)果。
國(guo)家(jia)非常重視工(gong)(gong)(gong)控核芯板工(gong)(gong)(gong)業(ye)控制(zhi)系(xi)(xi)(xi)統(tong)信(xin)息(xi)安(an)全(quan)問(wen)題。工(gong)(gong)(gong)業(ye)和信(xin)息(xi)化部2011年9月(yue)發布《關于加強工(gong)(gong)(gong)業(ye)控制(zhi)系(xi)(xi)(xi)統(tong)信(xin)息(xi)安(an)全(quan)管(guan)理的通(tong)知》(〔2011〕451號),通(tong)知明(ming)確了(le)工(gong)(gong)(gong)業(ye)控制(zhi)系(xi)(xi)(xi)統(tong)信(xin)息(xi)安(an)全(quan)管(guan)理的組織領(ling)導、技(ji)術(shu)保障、規章制(zhi)度等(deng)方(fang)面的要(yao)(yao)求,并(bing)在工(gong)(gong)(gong)業(ye)控制(zhi)系(xi)(xi)(xi)統(tong)的連接、組網、配置(zhi)、設備選(xuan)擇與升級(ji)、數據、應急管(guan)理等(deng)六個方(fang)面提出了(le)明(ming)確的具體要(yao)(yao)求。
2012年,國務(wu)院頒(ban)布《關于(yu)大力(li)推(tui)進信(xin)息化發展和切實保障信(xin)息安(an)全(quan)的(de)(de)若干意見(jian)(國發〔2012〕23號》,其(qi)中(zhong)明確(que)要求(qiu)保障工業(ye)控制(zhi)系統(tong)安(an)全(quan),重(zhong)點(dian)保障對可能(neng)危及生(sheng)命和公(gong)共(gong)財產安(an)全(quan)的(de)(de)工業(ye)控制(zhi)系統(tong)的(de)(de)安(an)全(quan)。
國(guo)家發改委從2011年開(kai)始開(kai)展工控(kong)核(he)芯板(ban)工業(ye)控(kong)制(zhi)系(xi)統信(xin)息安全(quan)專項,涉及(ji)面向(xiang)現(xian)場設(she)備環境的邊界安全(quan)專用(yong)網關產(chan)(chan)品、面向(xiang)集散控(kong)制(zhi)系(xi)統(DCS)的異常(chang)監測產(chan)(chan)品、安全(quan)采集遠程終端單元(RTU)產(chan)(chan)品、工業(ye)應用(yong)軟件漏洞(dong)掃(sao)描產(chan)(chan)品等(deng)產(chan)(chan)業(ye)化項目(mu)。在電力電網、石(shi)(shi)油石(shi)(shi)化、先進制(zhi)造、軌道交(jiao)通等(deng)領域,支持大(da)型(xing)重點(dian)骨(gu)干企(qi)業(ye),按照信(xin)息安全(quan)等(deng)級保護相關要求,開(kai)展工業(ye)控(kong)制(zhi)系(xi)統信(xin)息安全(quan)建設(she)的試點(dian)示(shi)范(fan)。
當前,工(gong)控(kong)核芯板工(gong)業信(xin)息系統正從(cong)單機走向互聯,從(cong)封閉走向開放,安全漏(lou)(lou)洞和風險不斷涌現。2017年第一季(ji)度,國家信(xin)息安全漏(lou)(lou)洞共享平臺爆(bao)出我國新增工(gong)控(kong)系統行業漏(lou)(lou)洞30個,其中半數以上是(shi)高危漏(lou)(lou)洞。2017年6月,在(zai)工(gong)信(xin)部的(de)指導下(xia),國家工(gong)業信(xin)息安全產業發展聯盟正式成立。
微信二維碼
手機網站