信息安全研究2024,Vol.10Issue(1):20-24,5.DOI:10.12379/j.issn.2096-1057.2024.01.04
基于国密算法的ModbusTCP协议安全防护与研究
Security Protection and Research of ModbusTCP Protocol Based on National Secret Algorithm
祁志荣 1吕世民 2郑乾坤1
作者信息
- 1. 中安联合煤化有限责任公司电仪中心 安徽淮南 232092
- 2. 宁波和利时信息安全研究院有限公司工程服务部 浙江宁波 315048
- 折叠
摘要
Abstract
As a simple and efficient Ethernet industrial control protocol,ModbusTCP is widely used in industrial control systems.However,the traditional ModbusTCP protocol did not consider the problem of security,which leads to many criminals to attack ModbusTCP through its vulnerability.To address the lack of identity authentication and integrity verification in the ModbusTCP protocol,a bidirectional identity authentication and data integrity verification algorithm using SM2 signature verification is proposed.In view of the lack of data confidentiality of ModbusTCP protocol,the SM4 symmetric encryption algorithm is proposed to encrypt the plaintext data.In view of the lack of anti-replay attack mechanism of ModbusTCP,a random number method is proposed to prevent replay attack.Experiments show that the proposed scheme can effectively increase the security of ModbusTCP protocol.关键词
工业控制系统/ModbusTCP/SM2/SM4/双向身份认证Key words
industrial control system/ModbusTCP/SM2/SM4/bidirectional identity authentication分类
信息技术与安全科学引用本文复制引用
祁志荣,吕世民,郑乾坤..基于国密算法的ModbusTCP协议安全防护与研究[J].信息安全研究,2024,10(1):20-24,5.
