Abstract: his paper introduces the information security defense method of industrial control system based on white environment technology in refining industry. White environment technology can solve the security problems caused by traditional virus manslaughter or virus database upgrade difficulty, operating system repair vulnerabilities, and difficulty in upgrading patches. Apply white environment technology to intercept distrusted or illegal devices, software, instructions, and processes outside the industrial control network. Only trusted devices, software, and instructions that can be verified can run in the industrial network to ensure the safe use of the industrial network. The white environment technology application system consists of three parts, namely equipment white environment, network white environment and host white environment. It also introduces the risks and drawbacks of white environment management system, and provides technical application analysis for information security work for industrial control system of refining and chemical enterprises. White environment technology is a lowcost and efficient solution that deserves to be promoted.

Key words: refining and chemical industry, industrial control system, information security, white environment technology, risks and drawbacks

摘要： 介绍了基于白环境技术的炼化行业工业控制系统信息安全防御手段，白环境技术能够解决传统病毒误杀或病毒库升级困难、操作系统修复漏洞、升级补丁困难等带来的安全问题.应用白环境技术，将不可信任或非法的设备、软件、指令、进程拦截在工控网络之外.只有可信任的通过验证的设备、软件、指令能够在工控网络中运行，从而确保工控网络的安全使用.白环境技术应用系统由3部分组成，分别是设备白环境、网络白环境和主机白环境，也介绍了白环境管理系统的风险及弊端，为炼化企业的工业控制系统信息安全工作提供了技术应用分析.白环境技术是一种低成本高效的解决方案，值得大力推广使用.

关键词: 炼化行业, 工业控制系统, 信息安全, 白环境技术, 风险及弊端