高级逃逸技术综述: SCADA系统Cyber安全的挑战
Survey on Advanced Evasion Techniques: Cybersecurity Challenges for SCADA Systems
当前监控与数据采集SCADA系统,由于采用通用的网络技术并与互联网相连接,SCADA系统正面临高度针对性的网络攻击威胁,这类网络攻击中包括高级逃逸技术。高级逃逸技术能够绕过基于网络的入侵检测系统NIDS,隐秘地将漏洞利用代码或其他形式的恶意软件传递到一个脆弱的网络或系统,而通常情况下NIDS的检测原本应该能够发现并阻止这种威胁。本文综述了高级逃逸技术。首先给出了高级逃逸技术的基本原则,之后总结了当前一些代表性原子逃逸技术,并分析了逃逸组合技术,最后总结与高级逃逸技术相关的工具和一些有前景的研究方向。
ue to standardization and connectivity to the Internet, Supervisory Control and Data Acquisition (SCADA) systems now face the threat of highly targeted cyberattacks that include advanced evasion techniques(AET). Advanced Evasion Techniques(AET) can bypass a Network-based Intrusion Detection System(NIDS) in order to deliver an exploit, attack, or other form of malware to a vulnerable network or system, without detection that would normally stop the threat. This paper provides a comprehensive survey on Advanced Evasion Techniques (AETs). The basic principles of Advanced Evasion Techniques are firstly presented, then some atomic evasions in recent years are concluded and an analysis of the combined evasion techniques is given, and finally several tools related to AET are identified and some promising research directions are suggested.
贾静平、张莹、陈立民、王竹晓、石瑾、郭晶、夏宏、何慧
计算技术、计算机技术自动化技术、自动化技术设备安全科学
SCADA入侵防御高级逃逸技术多协议逃逸入侵检测/防御系统
SCADA Intrusion PreventionAdvanced Evasion TechniquesMulti-protocol EvasionsIntrusion Detection/Prevention Systems
贾静平,张莹,陈立民,王竹晓,石瑾,郭晶,夏宏,何慧.高级逃逸技术综述: SCADA系统Cyber安全的挑战[EB/OL].(2014-04-29)[2025-08-24].http://www.paper.edu.cn/releasepaper/content/201404-421.点此复制
评论