网络安全与数据治理2025,Vol.44Issue(9):22-28,7.DOI:10.19358/j.issn.2097-1788.2025.09.004
基于零信任架构的工业终端安全防护技术研究
Research on key technologies of industrial terminal security protection based on zero trust
孙国锋 1曾彬 2唐宁1
作者信息
- 1. 中核二七二铀业有限责任公司,湖南 衡阳 421004
- 2. 长沙学院,湖南 长沙 410000
- 折叠
摘要
Abstract
The industrial system involves a wide variety of equipment and products,and the security boundary of industrial infor-mation systems is gradually blurring.External attacks and internal threats are becoming increasingly serious.This paper focuses on solving the security risks existing in the edge management of the industrial Internet,studies the unified identity authentication,continuous trust assessment,and dynamic access control technologies that are suitable for different types of terminals,different ac-cess and interaction methods,and builds a zero-trust security protection architecture for industrial information security.It can a-void security risks such as illegal imitation access,security vulnerability exploitation,and data monitoring and theft,monitor the communication behavior characteristics of industrial devices connected to the network,and achieve the protection goals of trusted access,protocol security,and continuous assessment,thereby improving the active defense capability of the industrial control net-work boundary.关键词
零信任/工控网络/访问控制/安全防护Key words
zero trust/industrial control network/access control/security protection分类
信息技术与安全科学引用本文复制引用
孙国锋,曾彬,唐宁..基于零信任架构的工业终端安全防护技术研究[J].网络安全与数据治理,2025,44(9):22-28,7.
