Research On The Security Analysis Technology Of Industrial Control Network Based On Digital Twin

A digital twin is a ”clone” created in the digital world,modeled after something in the real world.In recent years,as information technology has developed more and more rapidly and covered a wider range of areas,industrial manufacturing has gradually opened its arms to the integration of information technology and the development of integrated technologies such as the digital twin.Through digital twin technology,engineers can boldly ”experiment” with complex,expensive equipment in the digital world without fear of causing damage,thus greatly improving efficiency and saving costs.In fact,this is a pressing issue in industrial control networks today.Compared to traditional networks,industrial control networks in the field equipment is often fragile and expensive,and due to the special nature of industrial production,the cost of industrial equipment downtime due to safety assessment is unaffordable.These characteristics make it difficult to test and implement a new set of network security schemes in existing industrial control networks.Therefore,this thesis investigates the technique of constructing digital twins for various devices such as upper devices and slave devices in industrial control networks,and on this basis,we proposes a set of security analysis techniques based on digital twins in combination with existing security analysis techniques for industrial control networks.The analysis technique proposed can discover the security risks existing in industrial control networks,and also simulate,test and verify the network security strategis.Since this technique does not interfere with real industrial equipment,it has the advantages of low cost and high flexibility compared with traditional analysis methods.The main research of this thesis is divided into four parts:(1)The method of constructing a digital twin for industrial control networks is studied,and a set of methods for constructing a digital twin for industrial control networks based on the ns-3 network simulator is proposed.The twin devices designed by this method are able to simulate the network behaviors of the upper devices,slave devices and network devices in the industrial control network and generate network packets.(2)The forwarding mechanism of packets in the ns-3 network simulator is investigated,and the filtering function of packets is implemented by staking key codes,which in turn enables the simulation of firewall devices(3)A security analysis method based on the digital twin of industrial control networks is proposed.The logs output from the twin devices are used to understand the operation status of the twin devices,and then the improvement scheme is tested and verified by adjusting the network topology and security policy of the twin network.(4)A digital twin-based security analysis system for industrial control networks is designed and implemented,which supports editing twin network topology and security policy through graphical interface,displaying twin network operation status through animation,and outputting twin network operation results through graphical form.By conducting security experiments on the digital twin of industrial control network designed in this thesis,the problems of existing security policies can be quickly identified without affecting the field devices,and then targeted improvement and verification can be carried out,which is of great practical significance for the long-term network security maintenance of industrial control networks.