摘要
[目的/意义]电力行业是我国关键信息基础设施应用广泛的领域,有效地保障电力网络的平稳、有序运行关系到社会和民生的安全.但是,电力行业规模庞大、业务连续性和可靠性要求较高,相关业务系统的安全漏洞较难管理,极大地增加了企业内部的安全风险.另外,由于现有的传统网络安全防御手段大多采用被动威胁特征识别法,一旦出现新型未知威胁,系统的网络安全屏障将会直接失效.[方法/过程]在充分分析了电力行业面临的安全威胁和现有传统网络安全防御手段存在的弊端基础上,利用网络伪装和动态诱捕技术构建了一套面向电力行业的主动防御体系.[结果/结论]这套主动防御体系在大唐国际进行了应用实践,在多次实战演练中,有效地保障了生产业务的正常运转,具有较强的理论和实践指导价值.
[Purpose/Significance]The power industry is the key information infrastructure in China.To ensure the smooth and orderly operation of its network effectively is very important for society and people's livelihood.However,due to the large scale of the power industry and the high requirements for business continuity and reliability,the security vulnerabilities of its related business systems are difficult to manage,which greatly increases the security risks within the enterprise.In addition,most of the existing traditional network security defense methods use the passive threat feature identification method.Once a new unknown threat appears,the network security barrier of the system will directly fail.[Method/Process]In this context,based on the full analysis of the security threats faced by the power industry and the disadvantages of the existing traditional network security defense methods,this paper constructs a set of active defense system for the power industry by using network camouflage and dynamic trapping technology.[Results/Conclusion]The system has been put into practice in Datang International.It has played an important role in the process of safety assurance activities in important periods,and has strong theoretical and practical value.
作者
梁猛
Liang Meng(Datang International Power Generation Co.,Ltd.,Beijing 100033)
出处
《网络空间安全》
2023年第3期78-84,共7页
Cyberspace Security
关键词
电力行业
网络安全
主动防御
虚拟伪装
动态诱捕
power industry
network security
active cyber defense
virtual camouflage
dynamic trapping
作者简介
梁猛(1977-),男,满族,河北唐山人,北京交通大学,本科,大唐国际发电股份有限公司,高级工程师,主要研究方向和关注领域:网络安全、数字化和信息化。
