信息安全研究2024,Vol.10Issue(4):325-334,10.DOI:10.12379/j.issn.2096-1057.2024.04.06
基于仿真的工控蜜罐研究进展与挑战
Research Progress and Challenge of Industrial Control Systems Honeypot Based on Simulation
摘要
Abstract
With the rapid development of the industrial Internet,attacks against industrial control systems have emerged one after another,causing serious consequences such as industrial infrastructure paralysis,production interruptions,economic losses,and personal injury.Honeypot for industrial control system is one kind of deceptive tools which can lure attackers and masquerade as genuine systems to provide access privileges,thus deceiving attackers into conducting subsequent attacks and safeguarding the actual industrial control systems.This paper conducts an in-depth analysis of the current research status of industrial honeypots,providing definitions and characteristics of industrial honeypots.It particularly focuses on various types of simulation-based industrial honeypots,including protocol-based simulation honeypots,structure-based simulation honeypots,simulation-tool-based honeypots,vulnerability-based simulation honeypots,and hybrid simulation honeypots,comprehensively analyzing the research progress in simulation-based industrial honeypots.Finally,the challenges and future development directions in the simulation and emulation progress of industrial honeypots are discussed and analyzed.关键词
工控安全/蜜罐/工控协议/可编程逻辑控制器/工控仿真Key words
ICS security/honeypot/ICS protocol/programmable logic controller/ICS simulation分类
信息技术与安全科学引用本文复制引用
颜欣晔,李昕,张博,付安民..基于仿真的工控蜜罐研究进展与挑战[J].信息安全研究,2024,10(4):325-334,10.基金项目
国家自然科学基金项目(62072239,62372236) (62072239,62372236)
未来网络科研基金项目(FNSRFP-2021-ZD-05) (FNSRFP-2021-ZD-05)
