Design And Implementation Of Secure Communicati-on Mechanism For Industrial Cyber-physical System

Industrial Cyber-Physical Systems(ICPS)is a multi-dimensional intelligent system integrating communication,calculation and control.It has the advantages of resource sharing,flexibility,strong scalability and low maintenance costs.It also has shortcomings such as being vulnerable to interference and attacks.These shortcomings seriously threaten the stability and security of ICPS.Therefore,the research of ICPS-oriented security communication mechanism is of great significance.This paper designs three secure communication mechanisms to deal with the problems of illegal access,real-time control data being easily tampered with,and high-security data being easily stolen in the ICPS environment.The main research content and innovation work are as follows:(1)Aiming at the problem of illegal access by attackers in the ICPS environment,a three-factor identity authentication system based on the national secret algorithm is designed.Combining the characteristics of dynamic password(one-time password)and SM3 information digest algorithm,a reliable identity authentication system is designed,and the hardware implementation of this scheme is relatively simple and easy to implement.The system is implemented on FPGA and verified that it is reliable.(2)Aiming at the problem that real-time control data is vulnerable to tampering in the ICPS environment,a tamper-proof fast encryption system based on the national secret algorithm is designed.The system combines the SM4 symmetric encryption algorithm and the SM3 message digest algorithm in the national secret algorithm,and uses the SM4 algorithm to quickly encrypt data;uses the SM3 algorithm to perform tamper-proof detection and integrity detection on the data.It can complete data encryption operations in a relatively short time and ensure the safety of key control information in the ICPS environment,avoiding misjudgments of control information leading to accidents.(3)A dual dynamic key chaotic encryption system is designed to meet the needs of high-secret data transmission in the ICPS environment.Considering the high parallelism of Field Programmable Gate Array(FPGA),this paper proposes a dual dynamic key chaotic encryption system(~2)suitable for ICPS,which uses TDES to encrypt data and has a 192-bit key.Length,and by updating the key and key cycle from time to time to achieve a dual dynamic effect,making the system in a chaotic state.Finally,the proposed~2was implemented on the field programmable gate array platform,and a lot of experiments were performed to evaluate its safety performance.Experimental results show that compared with the currently popular data encryption algorithm(DES),this algorithm has higher security performance and the same encryption efficiency,and can be applied to ICPS.The experimental results verify the feasibility and good performance of the above three systems.The identity authentication system can better defend against illegal access attacks and become the first guarantee of secure communication.The tamper-proof fast encryption system can withstand active attacks.The dual dynamic key chaotic encryption system can provide higher security for highly confidential data.Encryption.The combination of these three mechanisms can defend against most active and passive attacks and ensure the safe and stable operation of the ICPS system.