Design And Implementation Of Attack Test Simulation System For Industrial Control System

Industrial control systems are often used to manage and maintain critical infrastructure that is related to livelihood issues such as natural gas and distribution systems.In recent years,the closure and proprietary nature of industrial control equipment has been broken,and industrial control systems have become potential targets for hackers.The research on the safety of industrial control systems is mainly divided into vulnerability analysis and simulation verification.Previous researchers usually only studied one of them.Based on two problems,this paper combines penetration testing technology to design and implement an industrial control system attack test simulation system based on white box test and black box test.The system fully demonstrates the test simulation process and provides assistance for both analysis and final application.The main work of this paper is as follows:(1)Aiming at the problem that the traditional attack path generation algorithm less considers the attack expectation,this paper proposes an attack path generation algorithm based on the attack expectation.The algorithm determines the test path by calculating the full path attack expectation for the critical component.The implementation of the algorithm is based on the solution of the attack expectation.Therefore,this paper proposes a solution method for industrial control vulnerability attack based on grey correlation analysis.The method uses 10 indicators such as encryption and authentication to solve the global utilization of the vulnerability,and uses the physical loss and information loss to calculate the global harm of the vulnerability.The experimental results show that the algorithm is suitable for discovering the attack path of industrial control system for key components.(2)In view of the low detection efficiency of industrial control equipment by traditional network reconnaissance method,this paper proposes a method for industrial control system equipment identification based on industrial control protocol.This method combines the characteristics of industrial Ethernet based on signature code for request response communication to collect device information.After testing,the experimental results show that the system detection rate based on this method is higher than that of the traditional detection tools.(3)Combining the penetration testing technology,based on the traditional network attack test simulation,design and implement the industrial control system attack test simulation system.The system consists of two functions.The first function is to implement a white-box test-based vulnerability attack test simulation;the second function is to implement a black-box test-based vulnerability attack test simulation.The white box test simulates the attack of key components from the overall security of the system.The black box test is only for a single key component,regardless of the overall security of the system.The system contains three major advantages: providing industrial control system attack test simulation from different aspects;no need to model and analyze the attack;the system operation is simple.