Increasing automation and external connectivity in industrial control systems (ICS) demand a greater emphasis on software-level communication security. In this article, we propose a secure-by-design development method for building ICS applications, where requirements from security standards like ISA/IEC 62443 are fulfilled by design-time abstractions called secure links. Proposed as an extension to the IEC 61499 development standard, secure links incorporate both light-weight and traditional security mechanisms into applications with negligible effort. Applications containing secure links can be automatically compiled into fully IEC 61499-compliant software. Experimental results show secure links significantly reduce design and code complexity and improve application maintainability and requirements traceability.
翻译:工业控制系统的自动化和外部连通程度不断提高,要求更加强调软件一级的通信安全,在本条中,我们提议为建立综合控制系统应用程序采用一种按设计设计的安全开发方法,即采用称为安全链接的设计-时间抽取方法满足ISA/IEC 62443等安全标准的要求,作为IEC 61499发展标准的延伸,安全连接将轻量级和传统安全机制纳入应用程序,但努力微不足道,包含安全链接的应用可自动编集成完全符合IEC 61499的软件,实验结果显示安全连接大大减少了设计和代码的复杂性,提高了应用的可维持性和可追踪性。
相关内容
- Today (iOS and OS X): widgets for the Today view of Notification Center
- Share (iOS and OS X): post content to web services or share content with others
- Actions (iOS and OS X): app extensions to view or manipulate inside another app
- Photo Editing (iOS): edit a photo or video in Apple's Photos app with extensions from a third-party apps
- Finder Sync (OS X): remote file storage in the Finder with support for Finder content annotation
- Storage Provider (iOS): an interface between files inside an app and other apps on a user's device
- Custom Keyboard (iOS): system-wide alternative keyboards
Source: iOS 8 Extensions: Apple’s Plan for a Powerful App Ecosystem
微信扫码咨询专知VIP会员