摘要: 随着人工智能技术、互联互通等网络化新技术在动车组中的广泛应用，动车组网络控制系统内外部接口大量增加，随之带来内部与外界对系统网络环境的恶意攻击威胁日益增加。作为动车组列车的“大脑”，网络控制系统的信息安全尤为重要。本文针对网络控制系统信息网络的安全隐患及防护现状，提出了集安全保障体系、安全技术体系、安全标准体系的多个维度构成的动车组网络控制系统安全主动防御体系，对防御体系的关键技术展开了深入研究，提出了基于智能对抗的漏洞利用流量数据扩展技术、基于TRDP协议的智能分析与恶意数据识别技术等多个关键技术实现方法，为有效保障动车组列车运行安全提供了体系和技术支撑。

Abstract: With the extensive application of new networking technologies such as artificial intelligence technology and interworking in EMU, the internal and external interfaces of EMU network control system have increased greatly, and the threat of internal and external malicious attacks on the system network environment has increased day by day. As the “brain” of EMU trains, the information security of network control system is particularly important. Aiming at the security risks and protection status of the network control system information network, this paper proposes an EMU network control system security active defense system composed of multiple dimensions including security guarantee system, security technology system and security standard system, and conducts in-depth research on the key technologies of the defense system. Several key technology implementation methods are proposed, such as vulnerability exploitation traffic data extension technology based on intelligent countermeasure, intelligent analysis based on TRDP protocol and malicious data identification technology, which provide system and technical support for effectively guaranteeing the safety of EMU trains.