Description
810-370141-001 LAM 半导体工业发展4.0
通信技术的进步使得大规模HMI/SCADA系统在许多行业应用中获得了成功。系统内存在两个级别的通信——信息技术(IT)和现场,这两个级别的通信在安全级别上有显著差异。
HMI/SCADA系统的组件是模块化的,不仅允许简单的故障检修,而且分配计算负荷和消除单点故障。通过基于以太网的内部网络将多个胖、瘦、web和移动运行时客户端连接到主HMI/SCADA服务器中心并不罕见;然而,在某些情况下,系统也可能使用外部租用线路、调制解调器、无线、蜂窝或卫星技术。主HMI/SCADA服务器中心还包括多个网络服务器,用于分配负载、确保正常运行时间和存储大量数据。由于这些组件都以某种方式联网,它们使用标准化的通用协议来传输数据,所有这些数据在很大程度上都是不加密的,需要弱认证或不需要认证。
字段:HMI/SCADA实施通常由许多具有控制或数据收集功能的广泛分散的远程站点组成,所有站点都连接到中央控制和监控点。数据必须通过网络(可以是光纤、电话或无线)在控制室和远程终端单元(RTU)之间传递,并且用于传递该数据的协议经常被开发为强调可靠性和易于实现而不是安全性。
现代计算设施已经使得安全实用的加密几乎不可能抵御坚定的黑客,因此设备之间的通信需要采用多层防御,其主要目的是使对数据的访问变得困难并检测数据是否已经被破坏。
810-370141-001 LAM 半导体工业发展4.0
Advances in communication technology have made large-scale HMI/SCADA systems successful in many industry applications. There are two levels of communication within the system – information technology (IT) and field – which differ significantly in the level of security.
The components of the HMI/SCADA system are modular, not only allowing for simple troubleshooting, but also distributing compute loads and eliminating single points of failure. It is not uncommon to connect multiple fat, thin, web, and mobile runtime clients to a primary HMI/SCADA server hub via an Ethernet-based internal network; However, in some cases, the system may also use external leased line, modem, wireless, cellular, or satellite technology. The primary HMI/SCADA server center also includes multiple network servers for distributing load, ensuring uptime, and storing large amounts of data. Since these components are all networked in some way, they use standardized common protocols to transmit data, all of which are largely unencrypted and require weak or no authentication.
HMI/SCADA implementations typically consist of many widely dispersed remote sites with control or data collection functions, all connected to a central control and monitoring point. Data must be passed between the control room and the remote terminal Unit (RTU) over a network (which can be fiber optic, telephone, or wireless), and the protocols used to deliver this data are often developed to emphasize reliability and ease of implementation over security.
Modern computing facilities have made secure and practical encryption almost impossible to defend against determined hackers, so communication between devices requires multiple layers of defense, the main purpose of which is to make access to data difficult and detect whether the data has been compromised.
- 购买咨询热线/Phone:18859254943
- 邮箱/Email:sales@ygdcs.com
- 地址:成都高新区天益街北巷52号附14号2层