Kulo nyaka siqale iphrojekthi enkulu yokwakha inkundla yokuqeqesha i-cyber - inkundla yokuzivocavoca kwe-cyber yezinkampani ezimbonini ezihlukahlukene. Ukuze wenze lokhu, kuyadingeka ukudala ingqalasizinda ebonakalayo "efana neyemvelo" - ukuze iphindaphinde isakhiwo sangaphakathi sebhange, inkampani yamandla, njll., hhayi kuphela ngokwengxenye yenkampani yenethiwekhi. . Kamuva sizokhuluma ngamabhange kanye nezinye izingqalasizinda ze-cyber range, futhi namuhla sizokhuluma ngokuthi siyixazulule kanjani le nkinga maqondana nengxenye yezobuchwepheshe yebhizinisi lezimboni.
Vele, isihloko sokuzivocavoca kwe-cyber kanye nezizathu zokuqeqeshwa kwe-cyber asizange sivele izolo. Emazweni aseNtshonalanga, umbuthano weziphakamiso ezincintisanayo, izindlela ezihlukene zokuzivivinya ku-inthanethi, kanye nezinqubo ezingcono kakhulu kudala zakhiwe. βIfomu elihleβ lensizakalo yokuvikela ulwazi ukuzijwayeza ukulungela kwayo ukuxosha ukuhlaselwa ku-inthanethi ngokwenza. E-Russia, lokhu kuseyisihloko esisha: yebo, kukhona ukunikezwa okuncane, futhi kwavela eminyakeni eminingana edlule, kodwa isidingo, ikakhulukazi emikhakheni yezimboni, sesiqale ukwakha kancane kancane manje. Sikholelwa ukuthi kunezizathu ezintathu ezibalulekile zalokhu - nazo ziyizinkinga esezivele zaba sobala kakhulu.
Umhlaba ushintsha ngokushesha kakhulu
Eminyakeni engu-10 nje edlule, abaduni bahlasela ikakhulukazi lezo zinhlangano ababekwazi ukukhipha imali kuzo ngokushesha. Embonini, lokhu kusongela bekungafaneleki kangako. Manje siyabona ukuthi ingqalasizinda yezinhlangano zikahulumeni, amandla kanye namabhizinisi ezimboni nawo aphenduka isihloko abawathandayo. Lapha sivame ukubhekana nemizamo yobunhloli, ukwebiwa kwedatha ngezinhloso ezehlukene (ubuhlakani bokuncintisana, i-blackmail), kanye nokuthola amaphuzu okuba khona kwingqalasizinda ukuze sidayiselwe amaqabane anentshisekelo. Hhayi-ke, ngisho nababhali be-banal abanjengo-WannaCry babambe izinto ezimbalwa ezifanayo emhlabeni jikelele. Ngakho-ke, amaqiniso esimanje adinga ochwepheshe bezokuphepha kolwazi ukuthi bacabangele lezi zingozi futhi badale izinqubo ezintsha zokuphepha kolwazi. Ikakhulukazi, thuthukisa iziqu zakho njalo futhi uzijwayeze namakhono asebenzayo. Abasebenzi kuwo wonke amazinga okulawula ukuthunyelwa kwezinsiza zezimboni kumele babe nokuqonda okucacile kokuthi yiziphi izinyathelo okufanele bazithathe uma kwenzeka kuba nokuhlasela ku-inthanethi. Kodwa ukwenza izivivinyo ze-cyber kungqalasizinda yakho - uxolo, ubungozi budlula izinzuzo ezingaba khona.
Ukuntula ukuqonda kwamakhono wangempela abahlaseli ukugenca izinhlelo zokulawula inqubo kanye nezinhlelo ze-IIoT
Le nkinga ikhona kuwo wonke amazinga ezinhlangano: akubona bonke ochwepheshe abaqondi ukuthi yini engenzeka ohlelweni lwabo, yiziphi izihlungi zokuhlasela ezitholakalayo ngokumelene nalo. Singathini ngobuholi?
Ochwepheshe bezokuphepha bavame ukunxusa "igebe lomoya", okuthiwa ngeke livumele umhlaseli ukuba aqhubekele phambili kunenethiwekhi yezinkampani, kodwa umkhuba ubonisa ukuthi ku-90% yezinhlangano kukhona ukuxhumana phakathi kwezingxenye zezinkampani nezobuchwepheshe. Ngaso leso sikhathi, zona kanye izakhi zokwakha nokuphatha amanethiwekhi ezobuchwepheshe nazo zivame ukuba sengozini, thina, ikakhulukazi, esazibona lapho sihlola imishini. ΠΈ .
Kunzima ukwakha imodeli eyanele yokusongela
Eminyakeni yamuva nje, kube nenqubo eqhubekayo yokwandisa inkimbinkimbi yolwazi nezinhlelo ezizenzakalelayo, kanye nokushintshela ezinhlelweni ze-cyber-physical ezibandakanya ukuhlanganiswa kwezinsiza zekhompiyutha kanye nemishini ebonakalayo. Izinhlelo ziba yinkimbinkimbi kangangokuthi akunakwenzeka nje ukubikezela yonke imiphumela yokuhlaselwa ku-inthanethi usebenzisa izindlela zokuhlaziya. Asikhulumi nje ngokulimala kwezomnotho enhlanganweni, kodwa futhi nokuhlola imiphumela eqondakalayo kuchwepheshe wezobuchwepheshe kanye nembonini - ukunikezwa kancane kukagesi, isibonelo, noma olunye uhlobo lomkhiqizo, uma sikhuluma ngamafutha negesi. noma amakhemikhali e-petrochemicals. Futhi kanjani ukubeka izinto eziza kuqala esimweni esinjalo?
Eqinisweni, konke lokhu, ngokombono wethu, kwaba yizimfuneko zokuvela komqondo wokuzivocavoca kwe-cyber kanye nezizathu zokuqeqeshwa kwe-cyber eRussia.
Isebenza kanjani ingxenye yezobuchwepheshe yohlu lwe-inthanethi
Indawo yokuhlola i-inthanethi iyinkimbinkimbi yengqalasizinda ebonakalayo ephindaphinda ingqalasizinda evamile yamabhizinisi ezimbonini ezihlukahlukene. Ikuvumela ukuthi "ujwayelane namakati" - ukuzijwayeza amakhono asebenzayo ochwepheshe ngaphandle kwengozi yokuthi okuthile ngeke kuhambe ngohlelo, futhi ukuzivocavoca kwe-cyber kuzolimaza imisebenzi yebhizinisi langempela. Izinkampani ezinkulu ze-cybersecurity seziqala ukuthuthukisa le ndawo, futhi ungabuka izivivinyo ezifanayo ze-cyber ngefomethi yegeyimu, isibonelo, ku-Positive Hack Days.
Umdwebo ojwayelekile wengqalasizinda yenethiwekhi yebhizinisi elikhulu noma inkampani iyisethi efanelekile yamaseva, amakhompyutha omsebenzi kanye namadivayisi enethiwekhi ahlukahlukene anesethi evamile yesofthiwe yebhizinisi kanye nezinhlelo zokuphepha zolwazi. Indawo yokuhlola i-inthanethi yemboni iyafana, kanye nemininingwane ebucayi exaka kakhulu imodeli ebonakalayo.
Silethe kanjani ibanga le-inthanethi eduze neqiniso
Ngokomqondo, ukubukeka kwengxenye yezimboni yesayithi lokuhlola i-cyber kuncike endleleni ekhethiwe yokumodela uhlelo oluyinkimbinkimbi lwe-cyber-physical. Kunezindlela ezintathu eziyinhloko zokumodela:
Ngayinye yalezi zindlela inezinzuzo zayo kanye nokubi. Ezimweni ezehlukene, kuye ngomgomo wokugcina kanye nemikhawulo ekhona, zontathu lezi zindlela zokumodela ezingenhla zingasetshenziswa. Ukuze wenze ukukhetha kwalezi zindlela kube semthethweni, sihlanganise i-algorithm elandelayo:
Ubuhle nobubi bezindlela ezihlukene zokumodela zingamelwa ngendlela yomdwebo, lapho i-axis ka-y ihlanganisa izindawo zokufunda (okungukuthi, ukuguquguquka kwethuluzi lokumodela elihlongozwayo), kanye ne-x-eksisi iwukunemba. sekulingisa (izinga lokuxhumana nohlelo lwangempela). Kucishe kube isikwele se-Gartner:
Ngakho, ibhalansi efanele phakathi kokunemba nokuguquguquka kokumodela yilokho okubizwa ngokuthi i-semi-natural modeling (hardware-in-the-loop, HIL). Ngale ndlela, uhlelo lwe-cyber-physical ngokwengxenye lumodelwe kusetshenziswa amathuluzi angempela, futhi ngokwengxenye kusetshenziswa amamodeli ezibalo. Isibonelo, indawo encane kagesi ingamelwa ngamadivayisi we-microprocessor wangempela (amatheminali okuvikela i-relay), amaseva wezinhlelo zokulawula ezizenzakalelayo nezinye izinto zokusebenza zesibili, kanye nezinqubo ezibonakalayo ngokwazo ezenzeka kunethiwekhi kagesi zisetshenziswa kusetshenziswa imodeli yekhompyutha. Kulungile, sinqume indlela yokumodela. Ngemuva kwalokhu, bekudingeka ukuthuthukisa ukwakheka kobubanzi be-cyber. Ukuze izivivinyo ze-inthanethi zibe usizo ngempela, konke ukuxhumana kohlelo lwe-cyber-physical lwangempela oluyinkimbinkimbi kufanele ludalwe kabusha ngokunembe ngangokunokwenzeka endaweni yokuhlola. Ngakho-ke, ezweni lakithi, njengasempilweni yangempela, ingxenye yezobuchwepheshe yohlu lwe-inthanethi iqukethe amazinga amaningana okusebenzisana. Ake ngikukhumbuze ukuthi ingqalasizinda yenethiwekhi yezimboni ejwayelekile ihlanganisa izinga eliphansi kakhulu, elihlanganisa lokho okubizwa ngokuthi "imishini eyinhloko" - lena i-fiber optical, inethiwekhi kagesi, noma enye into, kuye ngemboni. Ishintshanisa idatha futhi ilawulwa abalawuli bezimboni ezikhethekile, nalabo, ngokulandelayo, ngamasistimu e-SCADA.
Saqala ukwakha ingxenye yezimboni yesizindalwazi se-inthanethi sisuka engxenyeni yamandla, osekuyiyona nto ehamba phambili yethu manje (izimboni zikawoyela negesi kanye namakhemikhali zisezinhlelweni zethu).
Kusobala ukuthi izinga lemishini eyisisekelo alikwazi ukutholakala ngokumodela okuphelele kusetshenziswa izinto zangempela. Ngakho-ke, esigabeni sokuqala, sakha imodeli yezibalo yesikhungo samandla kanye nesigaba esiseduze sesistimu yamandla. Le modeli ihlanganisa zonke izinto zokusebenza zamandla eziteshi ezingaphansi - izintambo zikagesi, ama-transformer, njll., futhi isetshenziswa kuphakheji yesofthiwe ye-RSCAD ekhethekile. Imodeli eyenziwe ngale ndlela ingacutshungulwa yinkimbinkimbi ye-computing yesikhathi sangempela - isici sayo esiyinhloko ukuthi isikhathi senqubo ohlelweni lwangempela kanye nesikhathi senqubo kumodeli sifana ngokuphelele - okungukuthi, uma isifunda esifushane endaweni yangempela. inethiwekhi ihlala imizuzwana emibili, izolingiswa isikhathi esilingana ncamashi ne-RSCAD). Sithola ingxenye "ebukhoma" yesistimu yamandla kagesi, esebenza ngokuvumelana nayo yonke imithetho ye-physics ngisho nokusabela kumathonya angaphandle (isibonelo, ukwenza kusebenze ukuvikelwa kwe-relay kanye namatheminali e-automation, ukukhubeka kwamaswishi, njll.). Ukusebenzelana namadivayisi angaphandle kwafinyelelwa kusetshenziswa izixhumi ezibonakalayo ezikhethekile zokuxhumana ezenziwe ngokwezifiso, okuvumela imodeli yezibalo ukuthi ihlanganyele nezinga lezilawuli kanye nezinga lezinhlelo ezizenzakalelayo.
Kodwa amazinga ezilawuli kanye nezinhlelo zokulawula ezizenzakalelayo zesikhungo samandla angadalwa kusetshenziswa okokusebenza kwemboni yangempela (nakuba, uma kunesidingo, singasebenzisa namamodeli abonakalayo). Kulawa mazinga amabili kukhona, ngokulandelana, abalawuli kanye nemishini yokuzenzakalela (ukuvikelwa kwe-relay, i-PMU, i-USPD, amamitha) kanye nezinhlelo zokulawula ezizenzakalelayo (SCADA, OIK, AIISKUE). Ukumodela okugcwele kungakhuphula kakhulu ukuba ngokoqobo kwemodeli futhi, ngokufanelekile, i-inthanethi izivocavoca ngokwawo, njengoba amaqembu azosebenzisana nemishini yangempela yezimboni, enezici zayo, izimbungulu kanye nokuba sengozini.
Esigabeni sesithathu, sisebenzise ukusebenzisana kwezingxenye zezibalo nezomzimba zemodeli sisebenzisa ihadiwe ekhethekile nezixhumanisi zesoftware kanye nezikhulisi zesignali.
Ngenxa yalokho, ingqalasizinda ibukeka kanje:
Zonke izinto zokusebenza zesayithi lokuhlola zisebenzisana zodwa ngendlela efanayo nanjengesistimu yangempela ye-cyber-physical. Ikakhulukazi, lapho sakha le modeli sasebenzisa imishini elandelayo namathuluzi ekhompyutha:
- Ukusebenzisa i-RTDS eyinkimbinkimbi yokwenza izibalo "ngesikhathi sangempela";
- I-Automated workstation (AWS) yesisebenzisi esinesofthiwe efakiwe yokwenza imodeli yenqubo yobuchwepheshe nezinto eziyinhloko zeziteshi zikagesi;
- AmaKhabhinethi anezinto zokuxhumana, ukuvikela i-relay kanye namatheminali ezishintshayo, kanye nemishini yokulawula inqubo ezenzakalelayo;
- Amakhabethe okukhulisa umsindo adizayinelwe ukukhulisa amasiginali e-analog asuka ebhodini lesiguquli sedijithali-kuya-ku-analogi lesifanisi se-RTDS. Ikhabethe ngalinye le-amplifier liqukethe isethi ehlukile yamabhulokhi okukhulisa izwi asetshenziselwa ukukhiqiza amasiginali wokufaka wamanje kanye ne-voltage kumatheminali okuvikela edluliselwe ngaphansi kocwaningo. Amasignali okokufaka akhuliswa aze afike ezingeni elidingekayo ekusebenzeni okuvamile kwamatheminali okuvikela i-relay.
Lesi akusona ukuphela kwesixazululo esingaba khona, kodwa, ngokubona kwethu, ilungile ekwenzeni izivivinyo ze-cyber, ngoba ikhombisa ukwakheka kwangempela kweningi leziteshi ezingaphansi zesimanje, futhi ngasikhathi sinye ingenziwa ngokwezifiso ukuze idale kabusha ngokunembe ngangokunokwenzeka ezinye izici zento ethile.
Ekuphethweni
Uhla lwe-inthanethi luyiphrojekthi enkulu, futhi usemkhulu umsebenzi osaseza. Ngakolunye uhlangothi, sifunda isipiliyoni sabalingani bethu baseNtshonalanga, ngakolunye uhlangothi, kufanele senze okuningi ngokusekelwe ekuhlangenwe nakho kwethu kokusebenza ngokuqondile namabhizinisi ezimboni zaseRussia, ngoba hhayi kuphela izimboni ezihlukene, kodwa futhi amazwe ahlukene anemininingwane ethile. Lokhu kokubili kuyisihloko esiyinkimbinkimbi nesithakazelisayo.
Noma kunjalo, siyaqiniseka ukuthi thina e-Russia sifinyelele kulokho okuvame ukubizwa ngokuthi "izinga lokuvuthwa" lapho imboni nayo iqonda isidingo sokuzivocavoca ku-inthanethi. Lokhu kusho ukuthi maduze imboni izoba nemikhuba yayo ehamba phambili, futhi ngethemba lokuthi sizoqinisa izinga lethu lokuvikeleka.
Ababhali
U-Oleg Arkhangelsky, umhlaziyi oholayo kanye ne-methodologist yephrojekthi ye-Industrial Cyber ββββTest Site.
UDmitry Syutov, unjiniyela omkhulu wephrojekthi ye-Industrial Cyber ββββTest Site;
U-Andrey Kuznetsov, inhloko yephrojekthi "ye-Industrial Cyber ββββTest Site", iphini lenhloko yeCyber ββββSecurity Laboratory ye-Automated Process Control Systems for Production.
Source: www.habr.com