Abstract: The current power industrial control system generally presents the characteristics of a wide range of threats and destruction, fast transmission speed, and more concealed attack methods, the security protection of the system is getting more and more difficult. To effectively solve the above problems, this paper is based on the idea of “credible hardware, system immunity, unified framework, and controllable software”, breakthrough the key technologies for secure operating systems, trusted computing, edge computing frameworks, and terminal detection and response, and build an endogenous safety and attack monitoring system which is based on hardware, operating systems, as well as the integration between the industrial control software functional safety and information safety. Through the study of this paper, the protection level of key infrastructures of the power system will be enhanced significantly, and the independence and control of national basic software will be promoted.

Key words: electric power industrial control system, endogenous safety, attack monitoring, trusted computing, operating system

摘要： 电力工控系统内生安全防护与攻击监测解决方案，针对当前电力工控系统总体呈现出的威胁破坏范围广、传播速度快、攻击手段更加隐蔽等特点，按照“硬件可信、系统免疫、框架统一、软件可控”思路，突破安全操作系统、可信计算、边缘计算框架和终端检测与响应等关键技术，构建从硬件到操作系统，再到工控软件功能安全和信息安全融合的内生安全与攻击监测体系，提高电力系统关键基础设施防护水平，推进国家基础软件自主可控.

关键词: 电力工控系统, 内生安全, 攻击监测, 可信计算, 操作系统