工业物联网蜜罐、蜜网:一种重要的IIoT安全手段
摘 要
工业物联网定义为利用工业通信技术将物联网技术应用到自动化领域。IIoT环境已经深入我们的城市、交通、制造业、基础设施等各个领域,同时IIoT也逐渐成为当今黑客发起攻击的热门目标。事实证明,蜜罐和蜜网对于了解和抵御对IIoT的攻击至关重要,它们可以吸引攻击者并欺骗其认为自己已获得了对真实系统的访问。蜜罐和蜜网可以与其他主流安全解决方案(防火墙、入侵检测系统IDS)形成互补,很好地对恶意行为进行防御。本文对面向IIoT的蜜罐和蜜网的研究进行介绍。
1、工业物联网及相似定义
2、工业物联网蜜罐、蜜网
图1 基础蜜网架构
图2 适用IIoT的蜜罐、蜜网分类
图3 IIoT蜜罐、蜜网的发展
(本文部分内容翻译修改自A Survey of Honeypots and Honeynets for Internet of Things, Industrial Internet of Things, and Cyber-Physical Systems (J. Franco et al. 2021))
参考文献
[1] E. Sisinni, A. Saifullah, S. Han, U. Jennehag, M. Gidlund[C]. Industrial Internet of Things: Challenges, opportunities, and directions. IEEE Trans. Ind. Informat.. 2018(4), vol. 14, no. 11, pp. 4724-4734.
[2] B. Bordel, R. Alcarria, T. Robles, D. Martín[C]. Cyber–physical systems: Extending pervasive sensing from control theory to the Internet of Things. Pervasive Mobile Comput. 2017, vol. 40, pp. 156-184.
[3] A. Humayed, J. Lin, F. Li, B. Luo[C]. Cyber-physical systems security—A survey. IEEE Internet Things J. 2017, vol. 4, no. 6, pp. 1802-1831.
[4] C. Greer, M. Burns, D. Wollman, E. Griffor[DB/OL]. Cyberphysical systems and Internet of Things. NIST, Gaithersburg, MD, USA. 2019, Rep. 1900-202.
[5] GB/T 26790, 工业无线网络WIA规范[S].
[6] L. Spitzner[DB/OL]. The Value of Honeypots, Part One:Definitions and Values of Honeypots. http://www.symantec.com/connect/articles/value-honeypotspart-onedefinitions-and-values-honeypots/, Apr. 14, 2020.
[7] P. Kumar, R. Verma[J]. A review on recent advances & future trends of security in honeypot. Int. J. Adv. Res. Comput. Sci.. 2017, vol. 8, no. 3, pp. 1108-1113.
[8] J. Franco, A. Aris, B. Canberk, A. S. Uluagac[C]. A Survey of Honeypots and Honeynets for Internet of Things, Industrial Internet of Things, and Cyber-Physical Systems. IEEE Communications Surveys & Tutorials. 2021, vol. 23, no. 4, pp. 2351-2383.
中国保密协会
科学技术分会
长按扫码关注我们
作者:熊思齐 中国科学院沈阳自动化研究所
责编:向灵孜
2022年精彩文章回顾
近期精彩文章回复