工业以太网EtherCAT协议形式化安全评估及改进

冯涛; 王帅帅; 龚翔; 方君丽

doi:10.7544/issn1000-1239.2020.20200399

工业以太网EtherCAT协议形式化安全评估及改进

(兰州理工大学计算机与通信学院兰州 730000) (fengt@lut.cn)

基金项目: 国家自然科学基金项目(61462060,61762060)

详细信息

中图分类号: TP309
计量
- 文章访问数: 870
- HTML全文浏览量: 3
- PDF下载量: 250
出版历程
- 发布日期: 2020-10-31

Formal Security Evaluation and Improvement of Industrial Ethernet EtherCAT Protocol

(Department of Computer and Communication, Lanzhou University of Technology, Lanzhou 730000)

Funds: This work was supported by the National Natural Science Foundation of China (61462060, 61762060).

摘要

摘要: EtherCAT协议由于具有较高的实时性和较强的性能而被广泛应用，但是随着工业以太网协议的快速发展和开放化，使得工业控制系统承受着巨大的网络攻击风险.目前有许多对工业以太网协议安全和改进的研究，但是这些研究缺乏对协议的形式化建模与安全评估，只注重协议本身安全功能的实现，有一定的局限性.为了解决工业以太网受到攻击的现状，将当前应用较多的EtherCAT协议作为研究对象，提出了一种基于有色Petri网理论和Dolev-Yao攻击方法的模型检测方法，对协议进行了安全性评估与改进.首先基于Petri网理论和CPN Tools模型工具对协议的安全机制FSoE进行了一致性验证；然后引入了Dolev-Yao攻击模型对协议的原始模型进行安全性评估，发现协议存在着篡改、重放和欺骗3类中间人攻击漏洞；最后针对协议存在的漏洞提出了一种新方案，对原协议加入了秘钥分发中心和Hash函数，再次利用CPN模型检测工具对新方案进行了安全性验证.通过验证可以发现新方案能够有效防止3类中间人攻击，提高协议的安全性.
- EtherCAT协议 /
- FSoE /
- CPN /
- Dolev-Yao /
- 安全评估 /
- 安全性验证
Abstract: The EtherCAT protocol is widely used due to its high real-time performance and strong performance. However, with the rapid development and openness of the Industrial Ethernet protocol, industrial control systems are subject to huge network attack risks. There are many studies on the security and improvement of industrial Ethernet protocols, but these studies lack formal modeling and security evaluation of the protocol, and only focus on the realization of the security function of the protocol itself, which has certain limitations. In order to solve the current situation of industrial Ethernet being attacked, we take EtherCAT protocol which is widely used at present as the research object, and propose a model checking method based on colored Petri net theory and Dolev-Yao attack method, and evaluate and improve the security of the protocol. First, we verify the security mechanism of the protocol FSoE based on Petri net theory and CPN Tools model tools; then introduce the Dolev-Yao attack model to evaluate the security of the original model of the protocol. It is found that there are 3 types of man-in-the-middle attack vulnerabilities in the protocol, including tampering, replay, and deception. Finally, a new solution is proposed for the vulnerabilities in the protocol. A key distribution center and a Hash function are added to the original protocol. The security verification of the new scheme is carried out again using the CPN model detection tool. Through verification, it can be found that the new scheme can effectively prevent 3 types of man-in-the-middle attacks and improve the security of the protocol.
- EtherCAT /
- FSoE /
- CPN /
- Dolev-Yao /
- security evaluation /
- security verification

HTML全文

参考文献(0)

施引文献(24)

期刊类型引用(8)

1.	胡鑫明，蒋大海，雷妮，巩芫芳，宁少楠，冯武彤. 一种EtherCAT主站存取网络结构设计. 现代电子技术. 2024(03): 91-96 . 百度学术
2.	王永峰，康晋菊，胡啸，张彪，封成玉. 基于EtherCAT总线的Modbus-RTU主站网关设计. 网络安全与数据治理. 2024(06): 42-46+52 . 百度学术
3.	侯欢，李翔龙，谢希杨. 面向EtherCAT总线的伺服系统误差及插补算法误差辨识方法. 机床与液压. 2024(13): 15-21 . 百度学术
4.	孔伟，陈为. 基于ET1100的EtherCAT测控从站设计与实现. 电子设计工程. 2023(05): 184-188 . 百度学术
5.	贺海涛. 面向智慧矿山的设备通信协议设计. 计算机技术与发展. 2023(10): 73-79 . 百度学术
6.	倪雄军，李健俊，李钰靓，文德明，姜学峰，张益南，李威，张晓东. 卷接设备IPC控制系统网络安全监测模型的构建. 烟草科技. 2022(01): 99-106 . 百度学术
7.	尹震宇，许鹏，徐福龙. 基于FPGA SoC的EtherCAT协议栈设计与实现. 小型微型计算机系统. 2022(08): 1751-1755 . 百度学术
8.	龚翔，冯涛，杜谨泽. 基于CPN的安全协议形式化建模及安全分析方法. 通信学报. 2021(09): 240-253 . 百度学术