考虑舰船关键控制系统直接关联航行、动力等核心功能,此类系统的通信网络漏洞多与控制逻辑相关,难以获取节点内部运行日志,漏洞挖掘难度较大。为此研究新的舰船关键控制系统的网络安全漏洞挖掘方法。剖析舰船关键控制系统的组成结构、CAN网络节点构成及报文格式,明确ID标识字段与数据字段是网络安全漏洞的核心检测信息;提出基于舰船CAN网络报文信息熵的安全漏洞挖掘方法,通过计算网络报文信息熵与相对距离,分析正常与漏洞状态下报文分布的差异,从而识别异常报文来源,实现漏洞的精准挖掘。实验结果表明,该方法可精准挖掘漏洞报文ID,KL距离骤升至0.6以上,与正常网络报文形成明显区分,可准确挖掘舰船关键控制系统的网络安全漏洞。
Considering that the key control systems of ships are directly related to core functions such as navigation and power, the communication network vulnerabilities of such systems are often related to control logic, making it difficult to obtain internal operation logs of nodes and making vulnerability mining challenging. To this end, research new network security vulnerability mining methods for critical control systems of ships. Analyze the composition structure, CAN network node composition, and message format of key control systems on ships, and clarify that the ID identification field and data field are the core detection information for network security vulnerabilities; Propose a security vulnerability mining method based on ship CAN network message information entropy. By calculating the network message information entropy and relative distance, analyze the difference in message distribution between normal and vulnerable states, identify the source of abnormal messages, and achieve accurate vulnerability mining. The experimental results show that this method can accurately mine vulnerability message IDs. The experimental results show that this method can accurately mine the vulnerability message ID, and the KL distance suddenly rises above 0.6, which is obviously different from the normal network message, and can accurately mine the network security vulnerabilities of the ship's key control system.
2025,47(22): 185-189 收稿日期:2025-5-14
DOI:10.3404/j.issn.1672-7649.2025.22.028
分类号:U662.9;TP391
基金项目:2025年江苏省高等教育教改研究课题(2025JGYB160)
作者简介:韩冰(1983 – ),女,硕士,助理研究员,研究方向为信息安全及软件工程等
参考文献:
[1] 徐亮, 王欣安, 刘希, 等. 中大型无人船舶自主控制系统架构设计及实现[J]. 中国舰船研究, 2024, 19(Z1): 1-9.
XU L, WANG X, LIU X, et al. Architecture design and implementation of autonomous control system for medium and large unmanned surface ship[J]. Chinese Journal of Ship Research, 2024, 19(Z1): 1-9.
[2] 刘佳仑, 谢玲利, 李诗杰, 等. 面向船舶智能航行测试的变稳船控制系统设计[J]. 中国舰船研究, 2023, 18(3): 38-47+74.
LIU J L, XIE L L, LI S J, et al. Design of variable stability ship control system for ship intelligent navigation test[J]. Chinese Journal of Ship Research, 2023, 18(3): 38-47+74.
[3] 庄涛, 苏锦川, 李军, 等. 高端客滚船网络安全系统设计[J]. 船海工程, 2023, 52(4): 18-21+28.
ZHUANG T, SU J C, LI J, et al. Design of the network security system for a deluxe ro–ro passenger vessel[J]. Ship & Ocean Engineering, 2023, 52(4): 18-21+28.
[4] 杨家轩, 许洲锦, 来源, 等. 基于概率攻击图的船舶网络安全评估模型[J]. 大连海事大学学报, 2023, 49(1): 26-33.
YANG J X, XU Z J, LAI Y, et al. Ship cyber security assessment model based on probability attack graph[J]. Journal of Dalian Maritime University, 2023, 49(1): 26-33.
[5] 林彬, 许菲, 窦欣宇, 等. 无人船网络信息安全技术综述[J]. 电讯技术, 2022, 62(10): 1537-1544.
LIN B, XU F, DOU X Y, et al. Survey on unmanned ships network information security technology[J]. Telecommunication Engineering, 2022, 62(10): 1537-1544.
[6] 吴中岱, 韩德志, 蒋海豹, 等. 海洋船舶通信网络安全综述[J]. 计算机应用, 2024, 44(7): 2123-2136.
WU Z D, HAN D Z, JIANG H B, et al. Review of marine ship communication cybersecurityc[J]. Journal of Computer Applications, 2024, 44(7): 2123-2136.
