Abstract:
Through security analysis on Ethernet for Plant Automation(EPA) application service, aiming at the leaks of access control, deceit and denial of service, this paper proposes leak detection method and security method for denial of service attack and spoofing network simulation attack. By detecting the leaks in an EPA network test environment, the existence of the leak is proved by security test method designed. And the defense policies for EPA application service are provided.
Key words:
application service,
Ethernet for Plant Automation(EPA) communication protocol,
leak
摘要: 通过对EPA应用服务进行安全性分析,针对EPA服务的访问控制、欺骗、拒绝服务3种漏洞,提出服务响应报文与EPA访问控制漏洞特征相匹配的漏洞检测方式以及拒绝服务攻击、欺骗网络模拟攻击的安全测试方法。在搭建的EPA网络测试环境中,通过设计的安全测试方法验证漏洞的存在,并提出EPA服务防御策略。
关键词:
应用服务,
EPA通信协议,
漏洞
CLC Number:
WANG Hao; WANG Hang; WANG Ping. Security Research on EPA Protocol Application Service[J]. Computer Engineering, 2010, 36(8): 155-157.
王 浩;王 航;王 平. EPA协议应用服务的安全性研究[J]. 计算机工程, 2010, 36(8): 155-157.