Òªº¦»ù´¡ÉèÊ©Óë²Ù×÷ÊÖÒÕ (OT) ÁìÓòÆäËû×ʲúÒ»Ñù£¬ÍùÍùÃæÁÙ¶ñÒâÈí¼þ¹¥»÷µÈ IT Ç徲Σº¦¡£Stuxnet Èä³æ²¡¶¾¶ÔÖж«Ä³ÖصãºËÏîÄ¿µÄ SCADA ºÍ PLC ϵͳµÄ¹¥»÷ÊÂÎñÅú×¢£¬ÈκÎ×°±¸¶¼ÓпÉÄÜÔâÓöÍøÂç¹¥»÷¶ø̱»¾¡£ÏÖʵÉÏ£¬Ò»µ©Éæ¼°Òªº¦»ù´¡ÉèÊ©£¬ÍøÂçÇå¾²¾Í»áÉÏÉýÖÁ¹ú¼ÒÇå¾²²ãÃæ¡£Òò´Ë£¬±ØÐ轫 OT ÍøÂçÇå¾²ºÍ²Ù×÷Çå¾²ÖÃÓÚÊ×룬±£»¤Òªº¦»ù´¡ÉèÊ©ÃâÔâÐÂÐÍ»òÉý¼¶µÄÍøÂçÍþв¡£
½üÄêÀ´£¬²»µ«¶ñÒâÈí¼þ¹¥»÷µÈÍøÂçÇå¾²ÊÂÎñ±¬·¢ÆµÂÊÔöÌí£¬ÍøÂçÍþвҲ²¨¼°¸ü¶à¹¤Òµ²¿·Ö£¨°üÀ¨Òªº¦»ù´¡ÉèÊ©£©ÒÔ¼°ÄÜÔ´¡¢Ë®Àû¡¢Ò½ÁƵÈÐÐÒµ¡£±ðµÄ£¬ÁîÈ˵£ÐĵÄÊÇ£¬Í¬ÀàÐÍÍøÂç¹¥»÷Õý·ºÆðÓÚ²î±ðÐÐÒµ¡£Òò´Ë£¬µ±½ñµÄ OT ÍøÂçÇå¾²½â¾ö¼Æ»®±ØÐèÆÕ±éÊÊÓ㬲¢ÄÜÖª×ã²î±ðÐÐÒµµÄÍøÂçÇå¾²ÐèÇó¡£
ΪʲôÀíÏëµÄ OT ÍøÂçÇ徲ƽ̨ÐèÒªÎÞаÐÔ
Ëæ×ÅÍøÂçÇå¾²ÍþвÈÕÒæÔö¶à£¬IT ÍøÂçÇ徲רҵְԱÆÈÇÐ×·ÇóÀíÏëµÄÍøÂçÇå¾²½â¾ö¼Æ»®£¬Á¦ÕùÖª×ã OT ÁìÓòµÄÌØÊâÐèÇ󡣸߶ȶ¨ÖÆ»¯µÄÍøÂçÇ徲ƽ̨²Å»ªÇÐʵ±£»¤ SCADA µÈÒªº¦ OT ϵͳ¡£¶¨ÖÆ»¯Æ½Ì¨Ðè³ä·Ö˼Á¿¹¤ÒµÐÒé¡¢Ó¦ÓÃÓÐÓÃÔغɡ¢ÍøÂçÏÂÁîºÍÍøÂçÊý¾ÝµÈÒòËØ¡£ÕâÒ»µã¶ÔÄÜÔ´¡¢½»Í¨µÈ±ÊÖ±Êг¡Ó¦ÓöøÑÔÓÈΪÖ÷Òª¡£
ÓÉÓÚÌض¨ÐÐÒµµÄ OT ϵͳҪÇó¶Ô²î±ð¿ØÖƵãºÍ×°±¸¾ÙÐÐÖØ´óÇҸ߶ȶ¨ÖƵÄÉèÖã¬ÈËΪʧÎóʱÓб¬·¢£¬¿ÉÄÜÔì³ÉÒ×±»ºöÊÓµÄÇå¾²Îó²î¡£Îª½â¾öÕâÒ»ÎÊÌ⣬¿ÉÒÔ½¨ÉèÖÐÑëÍøÂçÖÎÀíƽ̨£¬Èð²ÅŸü±ã½Ý¡¢ÊÚȨ¸üÎÞа¡£ÎªÌض¨ÇøÓò»ò½ÇÉ«·ÖÅɲî±ðÖÎÀíȨÏÞ£¬¾¡¿ÉÄÜïÔÌÈËΪʧÎó¡£ÖÐÑë¿ØÖÆƽ̨»¹Ê¹ÍøÂçÁ÷Á¿Êý¾Ý»á¼ûºÍÆÊÎöÔ½·¢±ã½Ý¡£
Ϊʲô IPS ÍøÂçÇ徲ƽ̨¶Ô OT ÍøÂçÕûÌåÇå¾²½â¾ö¼Æ»®²»¿É»òȱ
OT רҵְԱһÖÂÒÔΪʹÓÃÇå¾²²¹¶¡ºÜÊÇÖ÷Òª¡£È»¶ø£¬Ðí¶à¾É°æÈí¼þºÍ³Â¸¯×°±¸²»Ö§³ÖеIJ¹¶¡£¬ÕâºÜ¿ÉÄܳÉΪ OT Ó¦ÓÃÖеÄÍøÂçÇå¾²Òþ»¼¡£µ«¸üй¤Òµ×°±¸È··ÇÒ×Ê¡£¹¤ÒµÈëÇÖ·ÀÓùϵͳ (IPS) Êǽâ¾öÇå¾²Îó²îµÄÓÐÁ¦ÊֶΡ£IPS ¿ÉÒÔʹÓÃÐéÄâ²¹¶¡±£»¤Ò×Êܹ¥»÷µÄ×ʲú£¬¼à¿ØÍøÂçÇéÐΣ¬±£»¤ OT ×°±¸£¬²¢ÔÚ²»ÖÐÖ¹ÔËÐеÄÇéÐÎÏÂʵʱװÖÃÇå¾²²¹¶¡¡£
IPS »¹ÄÜ×Ô¶¯Ê¶±ðÍøÂçÁ÷Á¿ÖеĿÉÒÉÔ˶¯ºÍÒÑÖª¹¥»÷ģʽ¡£Ò»µ©¼ì²âµ½¶ñÒâÔ˶¯£¬IPS »áÂíÉÏÑïÆúÊý¾Ý°ü²¢×èÖ¹À´×Ô¹¥»÷Õß IP µØµãµÄÁ÷Á¿£¬Í¬Ê±°ü¹ÜÕýµ±Á÷Á¿Õý³£Í¨¹ý¡£ÊµÊ±¼ì²âÄÜʵʱ×èµ²Íⲿ¹¥»÷£¬±£»¤ SCADA¡¢PLC µÈÒ×Êܹ¥»÷µÄϵͳ¡£IPS ÍøÂçÇ徲ƽ̨רΪ OT ÌØÊâÐèÇó¶øÉè¼Æ£¬Îȹ̿ɿ¿£¬¹¦Ð§Ç¿Ê¢£¬ÈÃÆóÒµÔÚ°²ÅźÍά»¤Ó¦¶ÔÍøÂçÍþвµÄÕûÌå·ÀÓù½çÏßʱɨ³ý²»È·¶¨ÒòËØ£¬½â¾öºó¹ËÖ®ÓÇ¡£
IPS ÔõÑùÖúÄú±£»¤ OT ÍøÂ磿
ÊÊÅäÄúÓ¦ÓõÄoptimum¼Æ»®
Moxa ¹¤Òµ¼¶ EDR-G9010 ϵÁм¯·À»ðǽ/NAT/VPN/½»Á÷»ú/·ÓÉÆ÷ÓÚÒ»Ì壬ͨ¹ý IPS¡¢ÔöÇ¿µÄÇå¾²¹¦Ð§¼°¸ßËÙÅþÁ¬comprehensiveÌáÉýÍøÂçÇ徲ˮƽ¡£
Moxa MXsecurity ÖÎÀíÈí¼þ¼¯Öмà¿Ø EDR-G9010 ϵÁÐ×°±¸£¬½øÒ»²½¼ò»¯ÍøÂçÇå¾²°²ÅÅ£¬ÈÃÖÎÀíÔ½·¢±ã½Ý¡£