CN111083118A - Network security protection system, device and method for cloud service of power system - Google Patents

Network security protection system, device and method for cloud service of power system Download PDF

Info

Publication number
CN111083118A
CN111083118A CN201911185599.XA CN201911185599A CN111083118A CN 111083118 A CN111083118 A CN 111083118A CN 201911185599 A CN201911185599 A CN 201911185599A CN 111083118 A CN111083118 A CN 111083118A
Authority
CN
China
Prior art keywords
network
cloud
virus
request
killing
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201911185599.XA
Other languages
Chinese (zh)
Other versions
CN111083118B (en
Inventor
王顺江
王同
孙畅岑
苏安龙
夏玉珏
张武洋
杨朔鹏
卢盛阳
李典阳
于同伟
王洪哲
金宜放
句荣滨
张鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tieling Power Supply Co Of State Grid Liaoning Electric Power Co ltd
State Grid Corp of China SGCC
State Grid Liaoning Electric Power Co Ltd
Original Assignee
Tieling Power Supply Co Of State Grid Liaoning Electric Power Co ltd
State Grid Corp of China SGCC
State Grid Liaoning Electric Power Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tieling Power Supply Co Of State Grid Liaoning Electric Power Co ltd, State Grid Corp of China SGCC, State Grid Liaoning Electric Power Co Ltd filed Critical Tieling Power Supply Co Of State Grid Liaoning Electric Power Co ltd
Priority to CN201911185599.XA priority Critical patent/CN111083118B/en
Publication of CN111083118A publication Critical patent/CN111083118A/en
Application granted granted Critical
Publication of CN111083118B publication Critical patent/CN111083118B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/145Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Virology (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention belongs to the technical field of power system network security, and particularly relates to a power system cloud service network security protection system, device and method. The system comprises an electric power system cloud, a service terminal and a cloud filtering system connected with the electric power system cloud and the service terminal, wherein the cloud filtering system comprises a filtering control center, an identity verification system and a virus early warning system; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the system also comprises a virus searching and killing system connected with the cloud filtering system, and the virus searching and killing system is connected with the filtering control center. The invention is provided with a cloud filtering system, wherein the cloud filtering system comprises a filtering control center, an identity verification system and a virus early warning system; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the cloud power system virus searching and killing system is connected with the cloud filtering system, the virus searching and killing system is connected with the filtering control center, and the cloud power system virus searching and killing system can effectively improve the cloud network safety of the power system by identity recognition, virus early warning and searching and killing.

Description

Network security protection system, device and method for cloud service of power system
Technical Field
The invention belongs to the technical field of power system network security, and particularly relates to a power system cloud service network security protection system, device and method.
Background
The electric power system enables electric energy to be widely applied, changes of all fields of social production are promoted, the electric power era is initiated, and the second technological revolution on modern times appears. Since the 20 th century, the power system has been developed to develop power resources more fully, the industrial layout is more reasonable, and the application of electric energy not only affects each side of social material production deeply, but also penetrates into each layer of human daily life more and more widely. The development degree and the technical level of the power system become one of the marks of economic development level of each country.
The electric power system is an electric energy production and consumption system mainly composed of links of power generation, power transmission, power transformation, power distribution, power utilization and the like. The function of the device is to convert the primary energy of the nature into electric energy through a power generation device, and then supply the electric energy to each user through power transmission, power transformation and power distribution. In order to realize the function, the power system is also provided with corresponding information and control systems at each link and different levels, and the production process of the electric energy is measured, regulated, controlled, protected, communicated and scheduled so as to ensure that users obtain safe, economic and high-quality electric energy.
With the rapid development of the internet, the application of the internet in the power system is more and more extensive, and particularly, the power system cloud serves the power system cloud, unifies the data resources of the power system in the internet, and realizes the calculation, storage, processing and sharing of data; the management and the service of the power system are greatly facilitated; due to the unique characteristics of the internet, the network security is increasingly serious, great risks and hazards are brought to the power system, and the failure of the power system causes immeasurable loss, so that the problem of the network security in the power system cannot be ignored.
Disclosure of Invention
Aiming at the problems in the prior art, the invention provides a network security protection system, a network security protection device and a network security protection method for cloud service of an electric power system. The method aims to solve the network security problem of the cloud service of the power system.
In order to realize the purpose of the invention, the invention is realized by adopting the following technical scheme:
the utility model provides a network safety protection system of electric power system cloud service, includes service terminal and cloud filtration system, electric power system cloud and service terminal are connected to the cloud filtration system, its characterized in that: the cloud filtering system comprises a filtering control center, a network server and a cloud filtering server, wherein the filtering control center is used for receiving and sending network requests and commands; the identity authentication system is used for authenticating the IP address and the access authority of the user requesting to access the power system cloud; the virus early warning system is used for carrying out epidemic network virus characteristic comparison and searching and killing on the network request content; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the system also comprises a virus searching and killing system connected with the cloud filtering system, and the virus searching and killing system is connected with the filtering control center.
The identity authentication system comprises an address authentication system and a permission authentication system; the address verification system verifies whether the IP address of the user is authorized; the authority verification system verifies whether the user obtains the access authority.
The virus early warning system comprises an epidemic network virus characteristic comparison system, the epidemic network virus characteristic comparison system is connected with an epidemic network virus library, and the epidemic network virus library is used for searching and killing network viruses.
The virus early warning system further comprises an isolation commissioning system, the isolation commissioning system is connected with the simulation power system in a cloud mode, and unknown operation risks are determined through the cloud isolation commissioning of the simulation power system.
The cloud filtering system also comprises a request examining system which is connected with the filtering control center; for reviewing network requests of users.
The request examination system comprises a request input system, a request classification system and a request calculation amount evaluation system, wherein the request classification system classifies input network requests according to input permission, operation content and operation depth, and the request calculation amount evaluation system evaluates request calculation amount according to classification results.
The request examination system also comprises a request security evaluation system for carrying out security evaluation on the network request.
The virus checking and killing system comprises a popular network virus checking and killing library and a manual control system, wherein the manual control system is connected with an on-duty control port, when the popular network virus checking and killing library cannot check and kill the current network virus, the manual control system is communicated with the on-duty control port, and a virus solution is determined through the manual control system.
A network security protection method of power system cloud service adopts the network security protection system of power system cloud service, which comprises the following steps:
step 1: receiving the submitted network request, and requesting to access the power system cloud;
step 2: checking whether the network request of the user meets the requirement and evaluating the security of the network request, if so, turning to a step 3, and if not, turning to a step 4;
and step 3: comparing and searching and killing popular network virus characteristics of network request contents, searching and killing network viruses by using a popular network virus library, and determining unknown risks by simulating cloud isolation test operation of a power system;
and 4, step 4: and (6) ending.
A network safety protection device for cloud service of a power system comprises:
a request module: the system comprises a cloud server, a cloud server and a cloud server, wherein the cloud server is used for receiving a network request submitted by a user and sending a command to access the power system cloud;
a verification module: the system comprises a user IP address and an access authority used for verifying the request to access the power system cloud, a next-step examination module if the verification is successful, and a virus checking and killing module if the verification is unsuccessful;
a review module: the system is used for checking whether the network request of the user meets the requirement and evaluating the security of the network request, if the network request meets the requirement, the virus checking and killing module is switched in, and if the network request does not meet the requirement, the operation is finished;
a virus searching and killing module: the method is used for comparing and killing the popular network virus characteristics of the network request content.
In summary, due to the adoption of the technical scheme, the invention has the beneficial effects that:
1. the invention provides a network security protection system, a device and a method for cloud service of an electric power system, wherein the network security protection system is provided with a cloud filtering system, and the cloud filtering system comprises a filtering control center, an identity verification system and a virus early warning system; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the cloud power system virus searching and killing system is connected with the cloud filtering system, the virus searching and killing system is connected with the filtering control center, and the cloud power system virus searching and killing system can effectively improve the cloud network safety of the power system by identity recognition, virus early warning and searching and killing.
2. The virus searching and killing system comprises a popular network virus searching and killing library and an artificial control system, wherein an on-duty control port is connected to the artificial control system, so that the virus searching and killing effect is improved.
3. The request examination system comprises a request entry system, a request classification system and a request calculation amount evaluation system, and improves the cloud service efficiency of the power system.
4. The virus early warning system also comprises an isolation commissioning system, wherein the isolation commissioning system is connected with a simulated power system cloud, unknown risks are determined through simulation commissioning, and the network security of the power system cloud is further improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings of the embodiments of the present invention will be briefly described below. Wherein the drawings are only for purposes of illustrating some embodiments of the invention and are not to be construed as limiting the invention to all embodiments thereof.
FIG. 1 is a schematic block diagram of the system of the present invention;
FIG. 2 is a block diagram of an authentication system in accordance with the present invention;
FIG. 3 is a block diagram of a request review system of the present invention;
FIG. 4 is a block diagram of a virus warning system according to the present invention;
FIG. 5 is a block diagram of a virus searching and killing system according to the present invention.
The labels in the figure are:
an electric power system cloud 1; a cloud filtration system 2; a filtration control center 3; an identity verification system 4; a request review system 5; a virus early warning system 6; a virus searching and killing system 7; a service terminal 8; an address verification system 9; a rights verification system 10; a request entry system 11; a request classification system 12; request calculation amount evaluation system 13; request security evaluation system 14; a epidemic network virus characteristic comparison system 15; a epidemic network virus repository 16; isolating the commissioning system 17; a simulated power system cloud 18; an epidemic network virus searching and killing library 19; a manual management and control system 20; the attendant controls the port 21.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
In the description of the present invention, it should be noted that the terms "center", "upper", "lower", "left", "right", "vertical", "horizontal", "inner", "outer", etc., indicate orientations or positional relationships based on the orientations or positional relationships shown in the drawings, and are only for convenience of description and simplicity of description, but do not indicate or imply that the device or element being referred to must have a particular orientation, be constructed and operated in a particular orientation, and thus, should not be construed as limiting the present invention; the terms "first," "second," and "third" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance; furthermore, unless expressly stated or limited otherwise, the terms "mounted," "connected," and "connected" are to be construed broadly, as they may be fixedly connected, detachably connected, or integrally connected, for example; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meanings of the above terms in the present invention can be understood in specific cases to those skilled in the art.
As shown in fig. 1, fig. 1 is a schematic block diagram of the system of the present invention.
The invention relates to a network security protection system of power system cloud service, which comprises a power system cloud 1, a service terminal 8 and a cloud filtering system 2 connected with the power system cloud 1 and the service terminal 8, wherein the power system cloud is used for unifying power system data resources in the Internet to realize the calculation, storage, processing and sharing of data; the cloud filtering system 2 comprises a filtering control center 3, an identity verification system 4 and a virus early warning system 6; the identity authentication system 4 and the virus early warning system 6 are respectively connected with the filtering control center 3; the system also comprises a virus searching and killing system 7 connected with the cloud filtering system 2, and the virus searching and killing system 7 is connected with the filtering control center 3.
As shown in fig. 5, fig. 5 is a block diagram of the virus killing system of the present invention.
The virus searching and killing system 7 comprises a epidemic network virus searching and killing library 19 and an artificial control system 20, wherein an on-duty control port 21 is connected to the artificial control system 20. When the current network virus cannot be searched and killed in the popular network virus searching and killing library, the manual management and control system works, an operator on duty analyzes the current network virus through the management and control port on duty, expert consultation is performed if necessary, a virus solution is determined, and cloud safety of the power system is ensured.
As shown in fig. 2, fig. 2 is a block diagram of an authentication system in the present invention.
Wherein, the identity authentication system 4 comprises an address authentication system 9 and a right authentication system 10; the address verification system 9 verifies the user IP address, and the authorized IP address can pass the verification; the authority verification system 10 verifies the access authority of the user so as to manage different authorities of the user for accessing the power system cloud, and double verification of the address and the authority greatly improves identity verification safety and further improves network safety of the power system.
As shown in fig. 3, fig. 3 is a block diagram of a request censoring system of the present invention.
The system also comprises a request examination system 5, wherein the request examination system 5 is connected with the filtering control center 3; the request examination system 5 examines the network request of the user, the network request comprises an entrance permission, operation content and operation depth; and the network request is ensured to meet the requirement, and the network safety of the power system is ensured.
The request examination system 5 comprises a request entry system 11, a request classification system 12 and a request calculation amount evaluation system 13, wherein the request classification system 12 classifies according to entry permission, operation content and operation depth, and the request calculation amount evaluation system 13 evaluates calculation amount according to classification results, so that cloud service efficiency of the power system is greatly improved.
Wherein, the request examination system 5 further comprises a request security evaluation system 14, which further improves the network security of the power system.
As shown in fig. 4, fig. 4 is a block diagram of a virus warning system according to the present invention.
The virus early warning system 6 comprises an epidemic network virus characteristic comparison system 15, and an epidemic network virus database 16 is connected to the epidemic network virus characteristic comparison system 15; and the popular network virus library is utilized to effectively check and kill the network viruses, and the network security of the power system is maintained daily.
The virus early warning system 6 further comprises an isolation commissioning system 17, the isolation commissioning system 17 is connected with a simulation power system cloud 18, unknown risks are determined through simulation power system cloud isolation commissioning, and safety of the power system cloud is greatly improved.
The invention also comprises a network security protection method of the cloud service of the electric power system, and the network security protection system adopting the cloud service of the electric power system comprises the following specific steps:
step 1: receiving the submitted network request, and requesting to access the power system cloud;
step 2: verifying the user IP address and the access authority of the request access power system cloud, including address verification and authority verification, wherein the address verification system verifies whether the user IP address is authorized; the authority verification system verifies whether the user obtains the access authority, the step 3 is carried out when the verification is successful, and the step 5 is carried out when the verification is unsuccessful;
and step 3: examining whether the network request of the user meets the requirement and evaluating the security of the network request, wherein the request examination comprises request input, request classification and request calculation amount, the request classification classifies the input network request according to the input permission, the operation content and the operation depth, and the request calculation amount evaluates the request calculation amount according to the classification result; if the requirement is met, switching to a step 4, and if the requirement is not met, switching to a step 5;
and 4, step 4: comparing and killing popular network virus characteristics of the network request content; firstly, an epidemic network virus searching and killing library is adopted to search and kill the current network virus, when the epidemic network virus searching and killing library cannot search and kill the current network virus, an operator on duty analyzes the current network virus through an on-duty control port to determine a virus searching and killing scheme;
and 5: the protection process is ended.
The working principle of the method is as follows:
the invention provides a network security protection system of power system cloud service, which is provided with a cloud filtering system, wherein the cloud filtering system comprises a filtering control center, an identity verification system and a virus early warning system; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the cloud power system virus searching and killing system is connected with the cloud filtering system, the virus searching and killing system is connected with the filtering control center, and the cloud power system virus searching and killing system can effectively improve the cloud network safety of the power system by identity recognition, virus early warning and searching and killing. The virus searching and killing system comprises a popular network virus searching and killing library and an artificial control system, wherein an on-duty control port is connected to the artificial control system, so that the virus searching and killing effect is improved. The request examination system comprises a request entry system, a request classification system and a request calculation amount evaluation system, and improves the cloud service efficiency of the power system. The virus early warning system also comprises an isolation commissioning system, wherein the isolation commissioning system is connected with a simulated power system cloud, unknown risks are determined through simulation commissioning, and the network security of the power system cloud is further improved.
A network safety protection device for cloud service of a power system comprises:
a request module: the system comprises a cloud server, a cloud server and a cloud server, wherein the cloud server is used for providing a network request for accessing a power system cloud by a user;
a verification module: the system comprises a user IP address and an access authority used for verifying the request to access the power system cloud, a next-step examination module if the verification is successful, and a virus checking and killing module if the verification is unsuccessful;
a review module: the system is used for checking whether the network request of the user meets the requirement and evaluating the security of the network request, if the network request meets the requirement, the virus checking and killing module is switched in, and if the network request does not meet the requirement, the operation is finished;
a virus searching and killing module: the method is used for comparing and killing the popular network virus characteristics of the network request content.
Embodiments of the present application may be provided as methods, systems, or computer program products. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Those of ordinary skill in the art will understand that: the discussion of any embodiment above is meant to be exemplary only, and is not intended to intimate that the scope of the disclosure, including the claims, is limited to these examples; within the idea of the invention, also features in the above embodiments or in different embodiments may be combined, steps may be implemented in any order, and there are many other variations of the different aspects of the invention as described above, which are not provided in detail for the sake of brevity.
The embodiments of the invention are intended to embrace all such alternatives, modifications and variances that fall within the broad scope of the appended claims. Therefore, any omissions, modifications, substitutions, improvements and the like that may be made without departing from the spirit and principles of the invention are intended to be included within the scope of the invention.

Claims (10)

1. The utility model provides a network safety protection system of electric power system cloud service, includes service terminal and cloud filtration system, electric power system cloud and service terminal are connected to the cloud filtration system, its characterized in that: the cloud filtering system comprises a filtering control center, a network server and a cloud filtering server, wherein the filtering control center is used for receiving and sending network requests and commands; the identity authentication system is used for authenticating the IP address and the access authority of the user requesting to access the power system cloud; the virus early warning system is used for carrying out epidemic network virus characteristic comparison and searching and killing on the network request content; the identity authentication system and the virus early warning system are respectively connected with the filtering control center; the system also comprises a virus searching and killing system connected with the cloud filtering system, and the virus searching and killing system is connected with the filtering control center.
2. The network security protection system of the power system cloud service is characterized in that the identity verification system comprises an address verification system and an authority verification system; the address verification system verifies whether the IP address of the user is authorized; the authority verification system verifies whether the user obtains the access authority.
3. The system of claim 1, wherein the virus early warning system comprises a popular network virus feature comparison system, the popular network virus feature comparison system is connected with a popular network virus library, and network viruses are killed and checked by the popular network virus library.
4. The network safety protection system of the cloud service of the power system as claimed in claim 3, wherein the virus early warning system further comprises an isolation commissioning system, the isolation commissioning system is connected with the simulated power system cloud, and the unknown operation risk is determined through the isolation commissioning of the simulated power system cloud.
5. The network security protection system of the power system cloud service according to claim 1, wherein the cloud filtering system further comprises a request review system, and the request review system is connected with the filtering control center; for reviewing network requests of users.
6. The network security protection system of the power system cloud service is characterized in that the request examination system comprises a request entry system, a request classification system and a request calculation amount evaluation system, the request classification system classifies the entered network requests according to entry permission, operation content and operation depth, and the request calculation amount evaluation system evaluates the request calculation amount according to classification results.
7. The network security protection system for the power system cloud service of claim 4, wherein the request review system further comprises a request security evaluation system for performing security evaluation on the network request.
8. The network safety protection system of the cloud service of the power system as claimed in claim 1, wherein the virus checking and killing system includes a popular network virus checking and killing library and a manual management and control system, the manual management and control system is connected to the on-duty management and control port, when the popular network virus checking and killing library cannot check and kill the current network virus, the manual management and control system communicates with the on-duty management and control port, and a virus solution is determined through the manual management and control system.
9. A network security protection method for cloud service of an electric power system is characterized in that: network security protection system employing the power system cloud service of claims 1-8, comprising the steps of:
step 1: receiving the submitted network request, and requesting to access the power system cloud;
step 2: checking whether the network request of the user meets the requirement and evaluating the security of the network request, if so, turning to a step 3, and if not, turning to a step 4;
and step 3: comparing and searching and killing popular network virus characteristics of network request contents, searching and killing network viruses by using a popular network virus library, and determining unknown risks by simulating cloud isolation test operation of a power system;
and 4, step 4: and (6) ending.
10. A network safety protection device for cloud service of an electric power system is characterized by comprising:
a request module: the system comprises a cloud server, a cloud server and a cloud server, wherein the cloud server is used for receiving a network request submitted by a user and sending a command to access the power system cloud;
a verification module: the system comprises a user IP address and an access authority used for verifying the request to access the power system cloud, a next-step examination module if the verification is successful, and a virus checking and killing module if the verification is unsuccessful;
a review module: the system is used for checking whether the network request of the user meets the requirement and evaluating the security of the network request, if the network request meets the requirement, the virus checking and killing module is switched in, and if the network request does not meet the requirement, the operation is finished;
a virus searching and killing module: the method is used for comparing and killing the popular network virus characteristics of the network request content.
CN201911185599.XA 2019-11-27 2019-11-27 Network security protection system, device and method for cloud service of power system Active CN111083118B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911185599.XA CN111083118B (en) 2019-11-27 2019-11-27 Network security protection system, device and method for cloud service of power system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911185599.XA CN111083118B (en) 2019-11-27 2019-11-27 Network security protection system, device and method for cloud service of power system

Publications (2)

Publication Number Publication Date
CN111083118A true CN111083118A (en) 2020-04-28
CN111083118B CN111083118B (en) 2022-06-21

Family

ID=70311926

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911185599.XA Active CN111083118B (en) 2019-11-27 2019-11-27 Network security protection system, device and method for cloud service of power system

Country Status (1)

Country Link
CN (1) CN111083118B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112507335A (en) * 2020-11-26 2021-03-16 中国大唐集团科学技术研究院有限公司 Thermal power plant industrial control system virus checking and killing implementation method based on edge cloud coordination

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101127633A (en) * 2006-08-15 2008-02-20 华为技术有限公司 A method and system for secure control of mobile station
CN105337971A (en) * 2015-10-20 2016-02-17 上海电机学院 Electric power information system cloud safety guarantee system and implementation method thereof
CN106209844A (en) * 2016-07-13 2016-12-07 国网河南省电力公司南阳供电公司 The electric power safety means of communication
EP3171568A1 (en) * 2015-11-17 2017-05-24 Zscaler, Inc. Multi-tenant cloud-based firewall systems and methods
CN109284913A (en) * 2018-09-07 2019-01-29 安徽恒科信息技术有限公司 A kind of big data application management platform

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101127633A (en) * 2006-08-15 2008-02-20 华为技术有限公司 A method and system for secure control of mobile station
CN105337971A (en) * 2015-10-20 2016-02-17 上海电机学院 Electric power information system cloud safety guarantee system and implementation method thereof
EP3171568A1 (en) * 2015-11-17 2017-05-24 Zscaler, Inc. Multi-tenant cloud-based firewall systems and methods
CN106209844A (en) * 2016-07-13 2016-12-07 国网河南省电力公司南阳供电公司 The electric power safety means of communication
CN109284913A (en) * 2018-09-07 2019-01-29 安徽恒科信息技术有限公司 A kind of big data application management platform

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
韦建国: ""基于外部防火墙的网络安全终端研究"", 《吉林农业科技学院学报》 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112507335A (en) * 2020-11-26 2021-03-16 中国大唐集团科学技术研究院有限公司 Thermal power plant industrial control system virus checking and killing implementation method based on edge cloud coordination

Also Published As

Publication number Publication date
CN111083118B (en) 2022-06-21

Similar Documents

Publication Publication Date Title
Falco et al. IIoT cybersecurity risk modeling for SCADA systems
CN104811465B (en) The decision-making technique and equipment of a kind of access control
WO2019228004A1 (en) Identity verification method and apparatus
CN104202339B (en) A kind of across cloud authentication service method based on user behavior
CN109583711B (en) Safety risk assessment overall process management system
CN110532168A (en) Full LI(link interface) pressure surveys method, apparatus, computer equipment and storage medium
CN110177079A (en) The calling system and call method of intelligent contract
CN106101054A (en) The single-point logging method of a kind of multisystem and centralized management system
Alghayadh et al. A hybrid intrusion detection system for smart home security
CN111083118B (en) Network security protection system, device and method for cloud service of power system
CN112312341A (en) Intelligent monitoring method and system for communication of Internet of things of electric power based on block chain
CN113268716A (en) Authorization verification system, method and device for application and storage medium
CN116866865B (en) Whole vehicle controller data sharing method and system
Zhang et al. A dynamic security control architecture for industrial cyber-physical system
CN116208364A (en) Authority filtering method, device, equipment and medium based on zero trust gateway
CN105808989B (en) A kind of permission auditing method and device
CN109274681A (en) A kind of information synchronization method, device, storage medium and server
CN107564161A (en) Visitor's method for unlocking and electronic lock, passwords of visitors generation method and server
CN104753902B (en) A kind of operation system verification method and verifying device
CN113726525A (en) Energy industry cloud network data tracing method and device
CN102999713A (en) Multi-user remote data operating method with authority management
CN114745191B (en) Trusted real-time measurement method, device, equipment and medium for energy internet terminal
CN104183046A (en) RFID based universal unlocking system and method applied to transformer substation five-prevention lockout
Zhu et al. A Blockchain-Based Federated Learning for Smart Homes
CN110224485B (en) Intelligent distribution transformer terminal software management system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant