摘要： 随着工业物联网的发展，水务工业控制系统面临着工控现场设备不能碰、工控网络环境不能改动、工控系统安全隐患分析不充分等痛点问题。迫切需要搭建面向特定行业的工控安全仿真验证环境，实现工控安全问题充分暴露，安全隐患充分验证等目标。文章利用数字孪生新兴技术，实现了水务制水工艺流程和工业机理的仿真建模。通过搭建水务系统数字孪生仿真验证试验床，提出了面向水务工控系统功能安全和信息安全联动的攻防验证技术，为保障工业互联网场景下水务行业工业控制系统安全提供技术参考。

中图分类号： TP319
文献标识码： A
DOI： 10.19358/j.issn.2096-5133.2021.09.002
引用格式： 陈升，宗志锋，倪华，等. 基于数字孪生的水务工业控制系统攻防验证技术[J].信息技术与网络安全，2021，40(9)：9-13.

Digital twins based attack and defense verification technology for water industrial control systems

Abstract： Along with the development of the Industrial Internet of Things, water industry is faced with the situations including that industrial control field device control systems cannot be touched, cannot be changed with network environments, and the security risks cannot be analyzed fully. It is necessary to establish security simulation environment for industrial control systems in special applications for possible hazard analysis. This work applies the emerging digital twin technology to achieve the modeling of the industrial process and the mechanism of water industrial control systems. By building a digital twin simulation verification testbed for water utilities system, the attack and defense verification technology oriented to the functional security and information security linkage of water industry control system is proposed, which provides technical reference for ensuring the security of water industry industrial control system under the industrial Internet scenario.

Key words : digital twins；Industrial Internet of Things；attack and defense verification；information security