Industrial network refers to a fully digital, two-way and multi-station communication system installed in the industrial production environment. The generation of network technology has the following advantages for industrial control: convenient installation and wiring; modular; easy diagnosis; self-construction; enterprise management. Industrial network can be roughly divided into dedicated, closed industrial network, open industrial network and standard industrial network. Although industrial control network has these advantages, in fact, the progress of industrial control network is far less than commercial network, mainly because the connection of industrial network of enterprise needs to solve the following problems:
First of all, due to the wide variety of industrial field equipment and different industrial communication protocols, it is difficult to be open and be compatible with each other, making the industrial equipment interconnection become a big problem. With the extension of enterprise research and development and management business to the workshop industrial site, the integration between IT and OT has become a top priority.
Secondly, there are a large number of “dumb facilities, dumb equipment, dumb terminals” in the industrial site, some equipment may even not have the old data collection ability, to promote the deepening application of the industrial Internet, enterprises must transform this equipment to meet the needs of intelligent networking. Third, IT and OT scenarios in network protocol, data acquisition, IT and OT fusion should not only fully consider the IT business scenario and OT production scenario for the difference between network connection and data processing requirements, also consider business on the cloud, cloud and edge of business collaboration and data interaction ability, network reliability, certainty delay ability support is essential.
Finally, after the integration of IT and OT, enterprise resources and production management value data gather into the cloud platform, cloud computing, big data, Internet of Things, mobile office to add more attack surface, the traditional border defense is unsustainable. In order to realize intelligent manufacturing and further deepen the fusion application of 5G, AI, digital twin and other technical scenarios, the network of producing OT scenarios needs to achieve high reliability, deterministic delay and rapid fault repair. Through “industrial equipment network, wireless network access, factory internal network IP and intelligent factory external network”, IT and OT end-to-end flexible networking can be realized, and the industrial Internet network base of all things can be built, to realize the up and down of data.
At the same time, the highly open industrial control network will face more severe security challenges, but also put forward more updated and very specific security protection requirements, mainly manifested in the following aspects:
The boundary protection demand of industrial control network is more prominent. In the construction and application of the intelligent factory, how to do a good job in the network isolation and data exchange between the enterprise design network and the intelligent factory industrial control network, to prevent the illegal intrusion and destruction of the design network to the industrial control network, and to protect the security of the industrial control network is particularly important.
The protection of the core controllers of the smart factory needs to be strengthened. Whether it is the core controller on the production line, or the logistics distribution controller, once attacked or hijacked, will lead to production failure, or even production paralysis. Therefore, the safety protection of the core controller urgently needs to be strengthened.
The security and protection requirements of industrial control hosts and data servers that store core processing data are more prominent, and their anti-attack and anti-illegal access capabilities need to be improved.
“Three construction” to build a three-dimensional industrial control network security defense system. The so-called “three construction” is to strengthen the construction of security protection system; strengthen the construction of security risk discovery, management and dynamic disposal capacity; strengthen the construction of deep defense, security event correlation analysis and security early warning mechanism, form the rapid response and rapid disposal of security events, and then protect the safety of industrial production control network.
In the end:
The fourth industrial Revolution, led by intelligent manufacturing, is an intelligent system integrating a large number of computers, communication and control technologies. Under the background of the highly integrated industry development of various new technologies, the industrial control machine is at a new technology turning point. In the future, the industrial computers will break through the existing technical architecture, its system architecture will be more open, more integrated, more modular function, intelligent machine, will provide important support for the intelligent system construction under the whole “Industry 4.0”.