Research On The Security Detection Thchology Of A Typical Industrial Control System

Industrial control system(ICS)is floorboard of control system in industrial production.With the transformation and upgrading of ICS,more IT technology are used in it.However,the upgrade of ICS indeed motivates the development of industrial production,it also brings out the security concerns.Especially after the 2010 "Stuxnet incident",ICS security event appearance blowout type growth,ICS security problem has become more and more severe.The key to solve ICS security problem is security check and repair before attacking.In nowadays,the research in ICS at home and abroad focus on ICS network,the research on ICS software and firmware are short of.Unfortunately the security problems about them bocome more and do great harm.So this thesis will focus on ICS software and firmware,and we also do some research on relative security check technology,main works list as below:1)Review research at home and abroad,and point out the center concern in this thesis is security check of ICS softeare and firmware.2)Generalize the characteristics of typical ICS,study the correlation characteristic of ICS software and ICS firmware and disadvantages of the traditional technology.In the light of traditional blur check's data change blink pick and low efficiency,we introduce the dynamic taint analysis technology and ICS blur check on it.We propose a security check technology based on characteristic value after the combinition of ICS firmware features.3)Introduce principle of ICS security check technology.We set ICS configuration file as spot source and example file,follow the travel path of running programe with dynamic stain analysis technique.We take specific strategy analysis of the key byte and help to pick out variation data position with blur test so as to reduce useless test examples and improve the efficiency.We also describe the improvement of dynamic stain analysis technique in detail.4)Based on ICS security check technology,the thesis designs and implements the ICS softeware security check system,we use the system to carry on security check on existing experimental environment.Through comparative analysis between traditional system and the new system,we finally prove its efficiency and accuracy.5)We design a ICS firmware security technology.The technology mainly includes firmware recognition and security check.We propse a firmware recognition on the matching of characteristic value based on large analysis of ICS firmware.We design a seciurity check model specifically aimed at ftp server backdoor.Finally we check a foreign firmware use this model and prove it dose has a backdoor information,and analysis the information content and source,prove its validity.