DOI QR코드

DOI QR Code

A Efficient Network Security Management Model in Industrial Control System Environments

산업제어시스템 환경에서 효과적인 네트워크 보안 관리 모델

  • Kim, Il-Yong (Department of IT Policy Management, Soongsil University) ;
  • Lim, Hee-Teag (Department of IT Policy Management, Soongsil University) ;
  • Ji, Dae-Bum (Department of IT Policy Management, Soongsil University) ;
  • Park, Jae-Pyo (Graduate School of Information Science, Soongsil University)
  • 김일용 (숭실대학교 대학원 IT정책경영학과) ;
  • 임희택 (숭실대학교 대학원 IT정책경영학과) ;
  • 지대범 (숭실대학교 대학원 IT정책경영학과) ;
  • 박재표 (숭실대학교 정보과학대학원)
  • Received : 2018.01.24
  • Accepted : 2018.04.06
  • Published : 2018.04.30

Abstract

The industrial control system (ICS) has operated as a closed network in the past, but it has recently been linked to information and communications services and has been causing damage due to cyber attacks. As a countermeasure, the Information Communication Infrastructure Protection Act was enacted, but it cannot be applied to various real control environments because there is only a one-way policy-from a control network to a business network. In addition, IEC62443 defines an industrial control system reference model as an international standard, and suggests an area security model using a firewall. However, there is a limit to linking an industrial control network, operating as a closed network, to an external network only through a firewall. In this paper, we analyze the security model and research trends of the industrial control system at home and abroad, and propose an industrial control system security model that can be applied to the actual interworking environments of various domestic industrial control networks. Also, we analyze the security of firewalls, industrial firewalls, network connection equipment, and one-way transmission systems. Through a domestic case and policy comparison, it is confirmed that security is improved. In the era of the fourth industrial revolution, the proposed security model can be applied to security management measures for various industrial control fields, such as smart factories, smart cars, and smart plants.

산업제어시스템(ICS, Industrial Control System)은 과거에는 폐쇄 네트워크로 운영되었으나 최근에는 정보통신 서비스와 연결되어 운영되면서 사이버 공격으로 인한 피해로 이어지고 있다. 이에 대한 대책으로 정보통신기반보호법이 제정되고 보안가이드라인이 배포되고 있지만 제어망에서 업무망으로의 일방향 정책만 있어 다양한 실제 제어 환경에 대한 보안가이드가 필요하며 국제 표준으로 IEC 62443의 경우 산업제어시스템 참조 모델을 정의하고 침입 차단 시스템을 이용한 영역 보안 모델을 제시하고 있으나 폐쇄 네트워크로 운영되는 산업제어망을 침입 차단 시스템만으로 외부 네트워크와과 연계하기에는 부담이 있다. 본 논문에서는 국내외 산업제어시스템 보안 모델 및 연구 동향을 분석하고 다양한 국내 산업제어망의 실제 연동 환경에 적용할 수 있는 산업제어시스템 보안 모델을 제안한다. 또한 현재 상용 경계 보안 제품들인 침입 차단 시스템, 산업용 침입 차단 시스템, 망 연계 장비, 일방향 전송 시스템 등의 보안성을 분석하였다. 이를 통하여 국내 구축 사례와 정책에 대한 비교를 통해 보안성이 향상되는 것을 확인하였다. 4차 산업혁명 시대를 맞이하여 스마트 팩토리, 스마트 자동차, 스마트 플랜트 등 다양한 산업제어 분야에 대한 보안 관리 방안에 적용할 수 있을 것이다.

Keywords

References

  1. National Intelligence Service, Ministry of Science, ICT and Future Planning, Korea Communications Commission, Ministry of the Interior and Safety, Financial Service Commission, 2017 National information Security White Paper, 04. 2017.
  2. Ministry of Science, ICT and Future Planning Announcement 2013-37, Baseline for Vulnerability Analysis and Evaluation in the Critical Information Communication Infrastructure, 08. 2013.
  3. National Security Research Institute, Requirements for Industrial Control System, 2017. 11.
  4. IEC TS 62443-1-1:2009, Industrial communication networks - Network and system security - Part 1-1: Terminology, concepts and models, Jul. 2009.
  5. ISA-62443-1-1, Security for Industrial Automation and Control System, Mar. 2017.
  6. NIST SP 800-82, Guide to Industrial Control System Security, May. 2015.
  7. Jun-Hyeong Oh, Young-In You, Kyung-Ho Lee, "Computer Emergency in Infrastructure and ICS Standards Trends," Review of KIISC, vol. 27, no. 2, pp. 5-11. 04. 2017.
  8. David Kuipers, Mark Fabro, Control Systems Cyber Security : Defense in Depth Strategies, INL/EXT-06-11478, May 2006.
  9. ISA-95.00.01-CDV3, Enterprise-Control System Integration, Part 1: Models and Terminology, 2008.
  10. Belden Inc., Tofino Security Appliance. https://www.tofinosecurity.com
  11. Moxa Inc., https://www.moxa.com/
  12. Crystal Group Inc., https://www.crystalrugged.com/
  13. Tofino Security White paper. Using ANSI/ISA-99 Standards to Improve Control System Security, May. 2012.
  14. NNSP Co. Ltd., http://nnsp.co.kr
  15. Waterfall Security Solutions Ltd., https://waterfall-security.com/
  16. Owl Cyber Defence Solution, https://www.owlcyberdefense.com/
  17. IT Security Certification Center, Requirements for Government IT Security Products, 2014.
  18. Hanssak Co. Ltd., http://www.hanssak.co.kr
  19. SQLsoft Co. Ltd., http://www.sqisoft.com
  20. Hunesion Co. Lted., http://www.hunesion.com/