3 research outputs found
Industrial control equipment safety protection system and method based on active immune mechanism
No full text本发明涉及基于主动免疫机理的工业控制设备安全防护架构和方法,具体方法为在通过基于主动免疫可信计算架构下,将信息系统安全防护体系划分为可信节点计算环境、可信区域边界和可信通信网络三个组成部分,基于主动免疫的可信计算理论,从相关安全技术和管理手段两个层面来进行总体设计,结合现场工业控制系统设备建立适配工业通信网络场景的主动免疫防护体系框架。本发明中的主动免疫工控安全防护架构通过采用安全高效的密码算法、可信控制芯片、可信软件与可信网络连接,集成主动安全策略管控体系,形成一套适用于工控现场的主动免疫信息安全防护方案,从而为工业控制系统网络中关键设备提供了可信安全的运行环境
Industrial control equipment safety protection system and method based on active immune mechanism
No full text本发明涉及基于主动免疫机理的工业控制设备安全防护架构和方法,具体方法为在通过基于主动免疫可信计算架构下,将信息系统安全防护体系划分为可信节点计算环境、可信区域边界和可信通信网络三个组成部分,基于主动免疫的可信计算理论,从相关安全技术和管理手段两个层面来进行总体设计,结合现场工业控制系统设备建立适配工业通信网络场景的主动免疫防护体系框架。本发明中的主动免疫工控安全防护架构通过采用安全高效的密码算法、可信控制芯片、可信软件与可信网络连接,集成主动安全策略管控体系,形成一套适用于工控现场的主动免疫信息安全防护方案,从而为工业控制系统网络中关键设备提供了可信安全的运行环境
基于双密值和混沌加密的可信测控网络认证方法
No full textThe present invention relates to a trusted measurement and control network authentication method based on double cryptographic values and chaotic encryption. The specific method comprises realizing identity authentication and key negotiation processes through double cryptographic values and chaotic public key ciphers and realizing secure transmission and verification of user identity credentials on the basis of building a trust chain through trusted computation for realizing a secure and trusted operating environment, thereby building a secure and trusted data transmission channel. The identity authentication method in the present invention comprises multiple links such as secure generation of user identity identifiers, read protection encapsulation, secure transmission and key negotiation. Each link adopts a unique and confidential cryptographic function for secure data generation, thereby ensuring the security of the authentication device access in an industrial measurement and control network
