中圖分類號：TP309文獻標識碼：ADOI:10.19358/j.issn.2097-1788.2025.09.004
引用格式：孫國鋒，曾彬，唐寧. 基于零信任架構的工業終端安全防護技術研究［J］.網絡安全與數據治理，2025，44（9）：22-28.

Research on key technologies of industrial terminal security protection based on zero trust

Abstract： The industrial system involves a wide variety of equipment and products, and the security boundary of industrial information systems is gradually blurring. External attacks and internal threats are becoming increasingly serious. This paper focuses on solving the security risks existing in the edge management of the industrial Internet, studies the unified identity authentication, continuous trust assessment, and dynamic access control technologies that are suitable for different types of terminals, different access and interaction methods, and builds a zero-trust security protection architecture for industrial information security. It can avoid security risks such as illegal imitation access, security vulnerability exploitation, and data monitoring and theft, monitor the communication behavior characteristics of industrial devices connected to the network, and achieve the protection goals of trusted access, protocol security, and continuous assessment, thereby improving the active defense capability of the industrial control network boundary.

Key words : zero trust；industrial control network; access control；security protection