首页|期刊导航|铁路通信信号工程技术|铁路APT攻击检测和溯源技术方案研究

铁路APT攻击检测和溯源技术方案研究

郝锦晖江明冯凯

铁路通信信号工程技术2024，Vol.21Issue(8)：21-28,8.

铁路通信信号工程技术2024，Vol.21Issue(8)：21-28,8.DOI:10.3969/j.issn.1673-4440.2024.08.004

铁路APT攻击检测和溯源技术方案研究

Research on Technical Solution for Railway Advanced Persistent Threat Detection and Traceability

郝锦晖 ¹江明 ¹冯凯¹

作者信息

1. 北京全路通信信号研究设计院集团有限公司,北京 100070||列车自主运行智能控制铁路行业工程研究中心,北京 100070
折叠

摘要

Abstract

Addressing the limitations of traditional defense technologies,and considering the characteristics of railway systems,this research adopts an integrated security defense strategy and achieves organic integration before,during and after an attack event.On the basis of the layered architecture of the railway network,a distributed and hierarchical defense-in-depth design is proposed,and a technical solution for railway network threat perception and traceability for APT is proposed,which achieves the integration of"distributed monitoring-intelligent identification-cross network traceability".Moreover,the laboratory environment for verification is built,which can effectively improve the prevention capabilities of railway systems against APT attacks.

关键词

网络安全/APT攻击/攻击检测/溯源

Key words

network security/APT attacks/attack detection/traceability

分类

交通工程

引用本文复制引用

郝锦晖,江明,冯凯..铁路APT攻击检测和溯源技术方案研究[J].铁路通信信号工程技术,2024,21(8):21-28,8.

基金项目

国家自然科学基金项目(U2034211) （U2034211）

铁路通信信号工程技术

ISSN：1673-4440

访问量0

下载量0

段落导航