CN103036886A - Industrial controlling network safety protecting method - Google Patents
Industrial controlling network safety protecting method Download PDFInfo
- Publication number
- CN103036886A CN103036886A CN2012105531968A CN201210553196A CN103036886A CN 103036886 A CN103036886 A CN 103036886A CN 2012105531968 A CN2012105531968 A CN 2012105531968A CN 201210553196 A CN201210553196 A CN 201210553196A CN 103036886 A CN103036886 A CN 103036886A
- Authority
- CN
- China
- Prior art keywords
- industrial
- network
- control
- communication
- layer
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses an industrial controlling network safety protecting method. The industrial controlling network safety protecting method is capable of improving industrial controlling network safety, convenient to communicate, capable of preventing external attack and invasion, and effectively protecting industrial controlling system and safety of industrial equipment. The industrial controlling network safety protecting method comprises the steps as below: processing an information system of an industrial enterprise in hierarchy; adopting safety protecting strategy procedures for data exchanging of the industrial controlling hierarchies; dividing the industrial controlling hierarchies into a plurality of automated unit regions and using a firewall for region separation; blocking potential communication ways of a production executive hierarchy to the industrial controlling hierarchy; adopting an industrial safety management platform module to build the center of configuration, management, analysis, warning and auditing of the industrial controlling hierarchy. The industrial controlling network safety protecting method is applied to the field of industrial controlling network.
Description
Technical field
The present invention relates to industrial control network security protection method.
Background technology
Industrial control system is to gather by various automatic control assemblies and to real time data, the system that the process control modules of monitoring forms, China relies on industrial control system to realize automated job above 80 percent critical infrastructures, industrial control network has been the important component part of National Security Strategy, in case the industrial control network information security starts a leak, to cause major hidden danger to industrial production operation and economic security of the country, therefore, China government agencies at all levels pay much attention to, emphasize that the industrial control system information security moves concerning industrial production, economic security of the country and people life property safety must strengthen the industrial control network information security management conscientiously.
At present in the security protection of universal industrial Control System NetWork, the technical safeguard that adopts is fewer, and the mode that does not form system of systems is carried out protective overall, control integration along with industrial control system, so that industrial control system is connected with conventional I T management system and the Internet, inside has also been adopted common software, common hardware and puppy parc more and more, directly faces all threats that come from the outside, and has increased the potential safety hazard of industrial control network information.Industry Control industry user's awareness of safety is not enough simultaneously, not taking into account system general safety design among system, exist and only pay attention to the function realization, think little of safe phenomenon, and in operation maintenance, safety management is also paid little attention to, increased the possibility that industrial control system is attacked by virus, wooden horse.
Publication number is that the Chinese patent of 102438026A discloses a kind of industrial control network security protection method and system, said method comprising the steps of: attack for external network, the place ahead main frame carries out ground floor data filtering and access control to external network data, the security control main frame comes data cached by common storage area, data are carried out intrusion detection, invalid data is carried out and alarm and notify the both sides main frame, the rear main frame carries out in-depth filtration and access control to data, and legal data enter into internal network; Attack for internal network, the rear main frame carries out ground floor data filtering and access control to inner network data, the security control main frame comes data cached by common storage area, data are carried out intrusion detection, invalid data is carried out and alarm and notify the both sides main frame, the place ahead main frame carries out in-depth filtration and access control to data, and legal data enter into external network.This patent adopts 3 main machine structures and three-layer protection strategy, and cost of investment and management cost are high, and the various watch-dog more complicated that adopt, and can not satisfy the wilderness demand of industrial control network.
At present, production management system and control system are co-located in the production control network, information mutual communication supports one another, there are not logic isolation and information detection method, as shown in Figure 1, described production control network and management network carry out the logic isolation measure by fire compartment wall, and monitoring communication data each other, but this structure exists from the virus of the Internet or other medium or wooden horse take described management network as the base by the information security hidden danger of described fire compartment wall to described production control network offensive attack.
Summary of the invention
Technical problem to be solved by this invention is to overcome the deficiencies in the prior art; provide a kind of and can improve industrial control network safety; and communication is convenient, can also prevent external attack and invasion, effectively the industrial control network security protection method of safeguard industries control system and industrial equipment safety.
The technical solution adopted in the present invention is: the method may further comprise the steps:
(1) according to the specification requirement of industrial control system information security, industrial enterprise's information system is carried out layering to be processed, described industrial enterprise information system is divided into three trouble free service levels, be the Industry Control layer, produce execution level and management layer, the exchanges data of described Industry Control layer is taked the security protection Strategic Measures;
(2) according to functional characteristics and the control range of described industrial control system, described Industry Control layer is divided into a plurality of different automation cells zone and adopts fire compartment wall to carry out zone isolation, realize packet filtering and access control, the industrial communication agreement is checked analysis, realization to the Realtime Alerts of illegal communication, come source acknowledgement, historical record, guarantee the real-time diagnosis of control network;
(3) the Adoption Network isolation module is realized the exchanges data of the safety of the non-network mode between described Industry Control layer and the described production execution level, and guarantee that inside and outside two treatment systems of safe isolation module are not communicated with simultaneously, connect and access control technology in conjunction with anti-penetration TCP, block described production execution level to the potential avenues of communication of described Industry Control layer, thereby realize the unidirectional isolation between described Industry Control layer and the described production execution level;
(4) configuration of adopting industrial safety management platform module to set up described Industry Control layer network, management, analyze, alarm and audit center, fire compartment wall and network isolating device are configured and manage, collection network affair alarm information and storage, retrieval and divided rank are reported to the police, the terminal applies that is defined in the white list scope is allowed communication, to the depth analysis of Industry Control agreement and catch Network anomalous behaviors, analyze potential risk, accurately catch on-the-spot virus, worm and illegal invasion are the investigation of industrial control system network failure, analysis and security audit provide reliable basis.
In described step (1), described Industry Control layer is connected by wired or wireless network mode with two ends communications network system between the described production execution level.
In described step (2), the mode that described inspection is analyzed is that Integrated using state-detection and application layer protocol detect, and message is carried out multistage filtering, forms the protective barrier in comprehensive access control mechanisms and automation cell zone, stops the unauthorized person and uses.
In described step (2), the flow that the packet filtering of communication is based on industrial control network is collected identification, and the described access control that communication is carried out is based on the terminal applies control of white list.
In described step (3), described Network Isolation module adopts safe isolation technology with the reverse control protocol cancellation of data communication, has not oppositely both had data channel also not have control channel, and forward is in blind state fully, realizes the information flow one-way transmission.
The invention has the beneficial effects as follows: because the present invention adopts system layer; minute territory in the layer; the method of unidirectional isolation and security management and control; described system layer effectively reduces the order of severity and the damage envelope of threat; minute territory is to the data zone isolation in the described layer; realization is to the Realtime Alerts of illegal communication; come source acknowledgement; historical record; guarantee the real-time diagnosis of control network; described unidirectional isolation has realized the unidirectional isolation between described Industry Control layer and the described production execution level; described security management and control is the investigation of described industrial control system network failure; analysis and security audit provide reliable basis; it provides a kind of communication convenient for electric power system; use safety; do not subject to the public network communication means attacked; and the host-host protocol of electric power system analyzed and control of authority; also provide safe and reliable transmission channel for the communication of power network schedule automation public network; thereby the prerequisite that realizes using public network communication whenever and wherever possible and ensure information security is carried out data communication; resist the hacker; virus; malicious sabotage and attack that worm etc. initiate industrial control system by various forms; prevent unauthorized user access system or illegal obtaining information and intrusion and great illegal operation and attack and the invasion of initiating by the outside; therefore; the present invention can improve industrial control network safety; and communication is convenient; can also prevent external attack and invasion, effectively safeguard industries control system and industrial equipment safety.
Description of drawings
Fig. 1 is the environment schematic diagram before the present invention uses;
Fig. 2 is the environment schematic diagram after the present invention uses;
Fig. 3 is workflow diagram of the present invention.
Embodiment
As shown in Figures 2 and 3, the technical solution adopted in the present invention is: the method may further comprise the steps:
(1) according to the specification requirement of industrial control system information security, industrial enterprise's information system is carried out layering to be processed, by analyzing the risk analysis of factory, described industrial enterprise information system is divided into three trouble free service levels, be Industry Control layer, production execution level and management layer, safeguard protection emphasis and core that described Industry Control layer is industrial enterprise are taked the security protection Strategic Measures to the exchanges data of described Industry Control layer;
(2) according to functional characteristics and the control range of described industrial control system, described Industry Control layer is divided into a plurality of different automation cells zone and adopts fire compartment wall to carry out zone isolation, realize packet filtering and access control, the industrial communication agreement is checked analysis, realization is to the Realtime Alerts of illegal communication, come source acknowledgement, historical record, guarantee the real-time diagnosis of control network, described industrial control system is normally conformed to the principle of simplicity singly independently, and System Development becomes complex network, efficiently solve the problem that spreads to whole industrial control system network from the problem in a zone without isolating and seldom be designed with safeguard measure, described Industry Control layer being divided into a plurality of different automation cells zone and adopting fire compartment wall to carry out zone isolation between each subsystem in described network;
(3) the Adoption Network isolation module is realized the exchanges data of the safety of the non-network mode between described Industry Control layer and the described production execution level, and guarantee that inside and outside two treatment systems of safe isolation module are not communicated with simultaneously, connect and access control technology in conjunction with anti-penetration TCP, block described production execution level to the potential avenues of communication of described Industry Control layer, thereby realize the unidirectional isolation between described Industry Control layer and the described production execution level;
(4) configuration of adopting industrial safety management platform module to set up described Industry Control layer network, management, analyze, alarm and audit center, fire compartment wall and network isolating device are configured and manage, collection network affair alarm information and storage, retrieval and divided rank are reported to the police, the terminal applies that is defined in the white list scope is allowed communication, to the depth analysis of Industry Control agreement and catch Network anomalous behaviors, analyze potential risk, accurately catch on-the-spot virus, worm and illegal invasion etc. are the investigation of industrial control system network failure, analysis and security audit provide reliable basis.
In described step (1), described Industry Control layer is connected by wired or wireless network mode with two ends communications network system between the described production execution level.
In described step (2), the mode that described inspection is analyzed is that Integrated using state-detection and application layer protocol detect, and message is carried out multistage filtering, forms the protective barrier in comprehensive access control mechanisms and automation cell zone, stops the unauthorized person and uses.
In described step (2), the flow that the packet filtering of communication is based on industrial control network is collected identification, and the described access control that communication is carried out is based on the terminal applies control of white list.
In described step (3), described Network Isolation module adopts safe isolation technology with the reverse control protocol cancellation of data communication, oppositely both there be not data channel not have control channel yet, forward is in blind state fully, realize the information flow one-way transmission, both can guarantee the online data of described production execution level and be transferred in real time described production execution level, can guarantee again that the data of described production execution level can't enter described Industry Control layer.
Described industrial control system refers to by various automatic control assemblies and process control modules that real time data is gathered, monitors, the common operation flow managing and control system of guaranteeing industrial infrastructure automatic operating, process control and monitoring that consists of.Its core component comprises data acquisition and monitoring system (SCADA), dcs (DCS), programmable logic controller (PLC) (PLC), remote terminal (RTU), intelligent electronic device (IED) and communication interface technique etc.
The present invention carries out reasonable layering with described industrial enterprise information system, for described Industry Control layer, described production execution level and described management layer, with solve management, the systems such as execution, Industry Control that produce are in the consolidated network plane and cause invasion hidden danger from management information system.Then the situations such as functional characteristics, control range and application needs according to subsystem are divided into a plurality of control areas in described Industry Control layer, thereby prevent that the information security issue of a control area from spreading to the risk of whole industrial control system network.Between different described control areas, set up fire compartment wall to carry out logic isolation, Industry Control Application layer communication protocol is carried out analysis and filter.Between the network boundary of described Industry Control layer and described production execution level, dispose isolation module and carry out unidirectional isolation, block described production execution level to the potential data communication approach of described Industry Control layer.In the Industry Control layer, set up safety management platform described Industry Control layer network is carried out the data collection and analysis processing, realize " multi-point monitoring, the unified coordination ".
The present invention is applied to the industrial control network field.
It should be noted that, above-mentionedly only describe the present invention with preferred embodiment, can not limit to interest field of the present invention at this point, therefore in the situation that does not break away from inventive concept, the equivalence that the content of all utilizations specification of the present invention and accompanying drawing part is carried out changes, and all reason is with being included in the claim scope of the present invention.
Claims (5)
1. industrial control network security protection method, it is characterized in that: described industrial control network security protection method may further comprise the steps:
(1) according to the specification requirement of industrial control system information security, industrial enterprise's information system is carried out layering to be processed, described industrial enterprise information system is divided into three trouble free service levels, be the Industry Control layer, produce execution level and management layer, the exchanges data of described Industry Control layer is taked the security protection Strategic Measures;
(2) according to functional characteristics and the control range of described industrial control system, described Industry Control layer is divided into a plurality of different automation cells zone and adopts fire compartment wall to carry out zone isolation, realize packet filtering and access control, the industrial communication agreement is checked analysis, realization to the Realtime Alerts of illegal communication, come source acknowledgement, historical record, guarantee the real-time diagnosis of control network;
(3) the Adoption Network isolation module is realized the exchanges data of the safety of the non-network mode between described Industry Control layer and the described production execution level, and guarantee that inside and outside two treatment systems of safe isolation module are not communicated with simultaneously, connect and access control technology in conjunction with anti-penetration TCP, block described production execution level to the potential avenues of communication of described Industry Control layer, thereby realize the unidirectional isolation between described Industry Control layer and the described production execution level;
(4) configuration of adopting industrial safety management platform module to set up described Industry Control layer network, management, analyze, alarm and audit center, fire compartment wall and network isolating device are configured and manage, collection network affair alarm information and storage, retrieval and divided rank are reported to the police, the terminal applies that is defined in the white list scope is allowed communication, to the depth analysis of Industry Control agreement and catch Network anomalous behaviors, analyze potential risk, accurately catch on-the-spot virus, worm and illegal invasion are the investigation of industrial control system network failure, analysis and security audit provide reliable basis.
2. industrial control network security protection method according to claim 1 is characterized in that: in described step (1), described Industry Control layer is connected by wired or wireless network mode with two ends communications network system between the described production execution level.
3. industrial control network security protection method according to claim 1; it is characterized in that: in described step (2); the mode that described inspection is analyzed is that Integrated using state-detection and application layer protocol detect; message is carried out multistage filtering; form the protective barrier in comprehensive access control mechanisms and automation cell zone, stop the unauthorized person and use.
4. according to claim 1 or 3 described industrial control network security protection methods, it is characterized in that: in described step (2), the flow that the packet filtering of communication is based on industrial control network is collected identification, and the access control that communication is carried out is based on the terminal applies control of white list.
5. industrial control network security protection method according to claim 1, it is characterized in that: in described step (3), described Network Isolation module adopts safe isolation technology with the reverse control protocol cancellation of data communication, oppositely both there be not data channel not have control channel yet, forward is in blind state fully, realizes the information flow one-way transmission.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210553196.8A CN103036886B (en) | 2012-12-19 | 2012-12-19 | Industrial control network security protection method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210553196.8A CN103036886B (en) | 2012-12-19 | 2012-12-19 | Industrial control network security protection method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103036886A true CN103036886A (en) | 2013-04-10 |
| CN103036886B CN103036886B (en) | 2016-02-24 |
Family
ID=48023369
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210553196.8A Active CN103036886B (en) | 2012-12-19 | 2012-12-19 | Industrial control network security protection method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103036886B (en) |
Cited By (41)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103491108A (en) * | 2013-10-15 | 2014-01-01 | 浙江中控研究院有限公司 | Method and system for security protection of industrial control network |
| CN104883348A (en) * | 2014-09-28 | 2015-09-02 | 宁波匡恩网络科技有限公司 | Network security regulation automatic deployment method and system |
| CN105208018A (en) * | 2015-09-09 | 2015-12-30 | 上海三零卫士信息安全有限公司 | Industrial control network information security monitoring method based on funnel type white list |
| CN105323255A (en) * | 2015-11-24 | 2016-02-10 | 北京交控科技有限公司 | Rail transit information safety protection system |
| CN105573291A (en) * | 2015-12-24 | 2016-05-11 | 中国信息安全测评中心 | Threat detection method based on key parameter fusion verification and safety device |
| CN105871620A (en) * | 2016-05-05 | 2016-08-17 | 中国科学院信息工程研究所 | Rapid detection and identification method for network space industrial control equipment |
| CN105959144A (en) * | 2016-06-02 | 2016-09-21 | 中国科学院信息工程研究所 | Safety data acquisition and anomaly detection method and system facing industrial control network |
| CN106161330A (en) * | 2015-03-16 | 2016-11-23 | 机械工业仪器仪表综合技术经济研究所 | A kind of security isolation system being applied to PROFINET EPA |
| CN106411818A (en) * | 2015-07-30 | 2017-02-15 | 中国移动通信集团河北有限公司 | Security domain structure inspection method and device |
| CN106411816A (en) * | 2015-07-29 | 2017-02-15 | 研祥智能科技股份有限公司 | Industrial control system, secure interconnection system and processing method thereof |
| CN106559432A (en) * | 2016-12-06 | 2017-04-05 | 山东省电子信息产品检验院 | A kind of industrial control system and its safety device |
| CN106651183A (en) * | 2016-12-26 | 2017-05-10 | 英赛克科技(北京)有限公司 | Communication data security audit method and device for industrial control system |
| CN106789932A (en) * | 2016-11-29 | 2017-05-31 | 中国电子科技集团公司第二十九研究所 | A kind of network system security means of defence and device based on component saltus step |
| CN107360134A (en) * | 2017-06-08 | 2017-11-17 | 杭州谷逸网络科技有限公司 | Safety long-distance controls the implementation method and its security system of terminal |
| CN107703901A (en) * | 2017-11-21 | 2018-02-16 | 丹东华通测控有限公司 | One kind bypass industry control information security industrial control system |
| CN108055261A (en) * | 2017-12-11 | 2018-05-18 | 中车青岛四方机车车辆股份有限公司 | Industrial network security system deployment method and security system |
| CN108170105A (en) * | 2017-11-22 | 2018-06-15 | 东莞理工学院 | A kind of industrial control network guard system and method |
| CN108292133A (en) * | 2015-11-25 | 2018-07-17 | 赛门铁克公司 | System and method for identifying compromised device in industrial control system |
| CN108375946A (en) * | 2018-03-22 | 2018-08-07 | 北京奔驰汽车有限公司 | A kind of information spy device and industrial control system |
| CN108712425A (en) * | 2018-05-21 | 2018-10-26 | 南京南瑞集团公司 | A kind of analysis monitoring and managing method towards industrial control system network security threats event |
| CN108924160A (en) * | 2018-08-06 | 2018-11-30 | 北京捷诺视讯数码科技有限公司 | A kind of industrial data collection analysis process system of high security |
| CN108989265A (en) * | 2017-05-31 | 2018-12-11 | 西门子公司 | access control method, device and system |
| CN109507975A (en) * | 2018-12-28 | 2019-03-22 | 飞马智科信息技术股份有限公司 | A kind of acquisition network system of industry big data |
| CN109739203A (en) * | 2019-02-25 | 2019-05-10 | 南京世界村云数据产业集团有限公司 | A kind of industrial network Border Protection system |
| WO2019100691A1 (en) * | 2017-11-27 | 2019-05-31 | 中国科学院沈阳自动化研究所 | Industrial embedded system-oriented network information security protection unit and protection method |
| CN109858293A (en) * | 2018-11-27 | 2019-06-07 | 浙江创意声光电科技有限公司 | The invasion processing method and processing device of Lighting control machine |
| CN110351277A (en) * | 2019-07-12 | 2019-10-18 | 李然 | Electric power monitoring system security protection alarm method |
| CN110769067A (en) * | 2019-10-30 | 2020-02-07 | 任子行网络技术股份有限公司 | SD-WAN-based industrial internet security supervision system and method |
| CN110825040A (en) * | 2019-10-22 | 2020-02-21 | 中国科学院信息工程研究所 | Process control attack detection method and device for industrial control system |
| CN110995678A (en) * | 2019-11-22 | 2020-04-10 | 北京航空航天大学 | Industrial control network-oriented efficient intrusion detection system |
| CN111052705A (en) * | 2017-08-30 | 2020-04-21 | 西门子股份公司 | Method and automation and/or communication device for checking datagrams transmitted in an industrial automation system |
| CN111147427A (en) * | 2018-11-06 | 2020-05-12 | 上海致为信息技术有限公司 | Management system for computer network security |
| CN111262829A (en) * | 2019-12-31 | 2020-06-09 | 南京联成科技发展股份有限公司 | Virus of industrial control network and propagation model system thereof |
| US10742680B2 (en) | 2017-05-17 | 2020-08-11 | Optimal Process Control Technologies Co., Ltd. | Method of industrial data communication with dedicated physical channel isolation and a system applying the method |
| CN112532612A (en) * | 2020-11-25 | 2021-03-19 | 中国大唐集团科学技术研究院有限公司 | Industrial control network safety protection system |
| CN112751843A (en) * | 2020-12-28 | 2021-05-04 | 中铁第一勘察设计院集团有限公司 | Network safety protection system of railway power supply system |
| CN112749405A (en) * | 2021-01-24 | 2021-05-04 | 武汉卓尔信息科技有限公司 | Network security protection method, system, electronic equipment and storage medium |
| CN112787836A (en) * | 2019-11-07 | 2021-05-11 | 比亚迪股份有限公司 | Information security network topology and method for implementing information security |
| CN112839031A (en) * | 2020-12-24 | 2021-05-25 | 江苏天创科技有限公司 | Industrial control network security protection system and method |
| CN112910921A (en) * | 2021-03-02 | 2021-06-04 | 中核武汉核电运行技术股份有限公司 | Industrial control boundary network safety protection method |
| CN113746852A (en) * | 2021-09-08 | 2021-12-03 | 滨州学院 | Network security risk monitoring system and method of power monitoring system |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US10268170B2 (en) | 2017-01-03 | 2019-04-23 | General Electric Company | Validation of control command in substantially real time for industrial asset control system threat detection |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080295164A1 (en) * | 2007-05-24 | 2008-11-27 | International Business Machines Corporation | Mashup component isolation via server-side analysis and instrumentation |
-
2012
- 2012-12-19 CN CN201210553196.8A patent/CN103036886B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080295164A1 (en) * | 2007-05-24 | 2008-11-27 | International Business Machines Corporation | Mashup component isolation via server-side analysis and instrumentation |
Non-Patent Citations (2)
| Title |
|---|
| 张晔: "信息安全新焦点——工业控制系统安全", 《方案应用》 * |
| 张锦玉: "网络隔离系统通道协议设计与实现", 《中国优秀硕士学位论文全文数据库信息科技辑》 * |
Cited By (60)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103491108B (en) * | 2013-10-15 | 2016-08-24 | 浙江中控研究院有限公司 | A kind of industrial control network security protection method and system |
| CN103491108A (en) * | 2013-10-15 | 2014-01-01 | 浙江中控研究院有限公司 | Method and system for security protection of industrial control network |
| CN104883348A (en) * | 2014-09-28 | 2015-09-02 | 宁波匡恩网络科技有限公司 | Network security regulation automatic deployment method and system |
| CN106161330A (en) * | 2015-03-16 | 2016-11-23 | 机械工业仪器仪表综合技术经济研究所 | A kind of security isolation system being applied to PROFINET EPA |
| CN106411816A (en) * | 2015-07-29 | 2017-02-15 | 研祥智能科技股份有限公司 | Industrial control system, secure interconnection system and processing method thereof |
| CN106411816B (en) * | 2015-07-29 | 2021-02-05 | 研祥智能科技股份有限公司 | Industrial control system, safety interconnection system and processing method thereof |
| CN106411818B (en) * | 2015-07-30 | 2020-07-17 | 中国移动通信集团河北有限公司 | Security domain structure checking method and device |
| CN106411818A (en) * | 2015-07-30 | 2017-02-15 | 中国移动通信集团河北有限公司 | Security domain structure inspection method and device |
| CN105208018A (en) * | 2015-09-09 | 2015-12-30 | 上海三零卫士信息安全有限公司 | Industrial control network information security monitoring method based on funnel type white list |
| CN105208018B (en) * | 2015-09-09 | 2018-08-17 | 上海三零卫士信息安全有限公司 | A kind of industry control network information spy method based on funneling white list |
| CN105323255A (en) * | 2015-11-24 | 2016-02-10 | 北京交控科技有限公司 | Rail transit information safety protection system |
| CN108292133B (en) * | 2015-11-25 | 2021-03-09 | Ca公司 | System and method for identifying compromised devices within an industrial control system |
| CN108292133A (en) * | 2015-11-25 | 2018-07-17 | 赛门铁克公司 | System and method for identifying compromised device in industrial control system |
| CN105573291A (en) * | 2015-12-24 | 2016-05-11 | 中国信息安全测评中心 | Threat detection method based on key parameter fusion verification and safety device |
| CN105573291B (en) * | 2015-12-24 | 2018-05-18 | 中国信息安全测评中心 | A kind of threat detection method and safety device based on key parameter fusion verification |
| CN105871620A (en) * | 2016-05-05 | 2016-08-17 | 中国科学院信息工程研究所 | Rapid detection and identification method for network space industrial control equipment |
| CN105871620B (en) * | 2016-05-05 | 2019-04-16 | 中国科学院信息工程研究所 | A kind of quick detection recognition method of cyberspace industrial control equipment |
| CN105959144B (en) * | 2016-06-02 | 2019-08-06 | 中国科学院信息工程研究所 | Secure data acquisition and method for detecting abnormality and system towards industrial control network |
| CN105959144A (en) * | 2016-06-02 | 2016-09-21 | 中国科学院信息工程研究所 | Safety data acquisition and anomaly detection method and system facing industrial control network |
| CN106789932B (en) * | 2016-11-29 | 2020-04-21 | 中国电子科技集团公司第二十九研究所 | Network system safety protection method and device based on component hopping |
| CN106789932A (en) * | 2016-11-29 | 2017-05-31 | 中国电子科技集团公司第二十九研究所 | A kind of network system security means of defence and device based on component saltus step |
| CN106559432A (en) * | 2016-12-06 | 2017-04-05 | 山东省电子信息产品检验院 | A kind of industrial control system and its safety device |
| CN106651183A (en) * | 2016-12-26 | 2017-05-10 | 英赛克科技(北京)有限公司 | Communication data security audit method and device for industrial control system |
| US10742680B2 (en) | 2017-05-17 | 2020-08-11 | Optimal Process Control Technologies Co., Ltd. | Method of industrial data communication with dedicated physical channel isolation and a system applying the method |
| CN108989265A (en) * | 2017-05-31 | 2018-12-11 | 西门子公司 | access control method, device and system |
| CN107360134B (en) * | 2017-06-08 | 2020-04-17 | 杭州谷逸网络科技有限公司 | Method for realizing safety remote control terminal and safety system thereof |
| CN107360134A (en) * | 2017-06-08 | 2017-11-17 | 杭州谷逸网络科技有限公司 | Safety long-distance controls the implementation method and its security system of terminal |
| CN111052705B (en) * | 2017-08-30 | 2022-04-08 | 西门子股份公司 | Method and automation and/or communication device for checking datagrams transmitted in an industrial automation system |
| CN111052705A (en) * | 2017-08-30 | 2020-04-21 | 西门子股份公司 | Method and automation and/or communication device for checking datagrams transmitted in an industrial automation system |
| CN107703901B (en) * | 2017-11-21 | 2023-12-19 | 丹东华通测控有限公司 | Bypass industrial control information safety industrial control system |
| CN107703901A (en) * | 2017-11-21 | 2018-02-16 | 丹东华通测控有限公司 | One kind bypass industry control information security industrial control system |
| CN108170105A (en) * | 2017-11-22 | 2018-06-15 | 东莞理工学院 | A kind of industrial control network guard system and method |
| WO2019100691A1 (en) * | 2017-11-27 | 2019-05-31 | 中国科学院沈阳自动化研究所 | Industrial embedded system-oriented network information security protection unit and protection method |
| US11134064B2 (en) | 2017-11-27 | 2021-09-28 | Shenyang Institute Of Automation, Chinese Academy Of Sciences | Network guard unit for industrial embedded system and guard method |
| CN108055261B (en) * | 2017-12-11 | 2020-11-06 | 中车青岛四方机车车辆股份有限公司 | Industrial network security system deployment method and security system |
| CN108055261A (en) * | 2017-12-11 | 2018-05-18 | 中车青岛四方机车车辆股份有限公司 | Industrial network security system deployment method and security system |
| CN108375946A (en) * | 2018-03-22 | 2018-08-07 | 北京奔驰汽车有限公司 | A kind of information spy device and industrial control system |
| CN108712425A (en) * | 2018-05-21 | 2018-10-26 | 南京南瑞集团公司 | A kind of analysis monitoring and managing method towards industrial control system network security threats event |
| CN108924160A (en) * | 2018-08-06 | 2018-11-30 | 北京捷诺视讯数码科技有限公司 | A kind of industrial data collection analysis process system of high security |
| CN111147427A (en) * | 2018-11-06 | 2020-05-12 | 上海致为信息技术有限公司 | Management system for computer network security |
| CN109858293A (en) * | 2018-11-27 | 2019-06-07 | 浙江创意声光电科技有限公司 | The invasion processing method and processing device of Lighting control machine |
| CN109858293B (en) * | 2018-11-27 | 2021-01-01 | 浙江创意声光电科技有限公司 | Intrusion processing method and device for lighting control machine |
| CN109507975A (en) * | 2018-12-28 | 2019-03-22 | 飞马智科信息技术股份有限公司 | A kind of acquisition network system of industry big data |
| CN109739203B (en) * | 2019-02-25 | 2021-09-21 | 南京世界村云数据产业集团有限公司 | Industrial network boundary protection system |
| CN109739203A (en) * | 2019-02-25 | 2019-05-10 | 南京世界村云数据产业集团有限公司 | A kind of industrial network Border Protection system |
| CN110351277A (en) * | 2019-07-12 | 2019-10-18 | 李然 | Electric power monitoring system security protection alarm method |
| CN110825040A (en) * | 2019-10-22 | 2020-02-21 | 中国科学院信息工程研究所 | Process control attack detection method and device for industrial control system |
| CN110825040B (en) * | 2019-10-22 | 2021-02-19 | 中国科学院信息工程研究所 | Process control attack detection method and device for industrial control system |
| CN110769067B (en) * | 2019-10-30 | 2020-08-04 | 任子行网络技术股份有限公司 | SD-WAN-based industrial internet security supervision system and method |
| CN110769067A (en) * | 2019-10-30 | 2020-02-07 | 任子行网络技术股份有限公司 | SD-WAN-based industrial internet security supervision system and method |
| CN112787836A (en) * | 2019-11-07 | 2021-05-11 | 比亚迪股份有限公司 | Information security network topology and method for implementing information security |
| CN110995678A (en) * | 2019-11-22 | 2020-04-10 | 北京航空航天大学 | Industrial control network-oriented efficient intrusion detection system |
| CN110995678B (en) * | 2019-11-22 | 2021-07-23 | 北京航空航天大学 | Industrial control network-oriented efficient intrusion detection system |
| CN111262829A (en) * | 2019-12-31 | 2020-06-09 | 南京联成科技发展股份有限公司 | Virus of industrial control network and propagation model system thereof |
| CN112532612A (en) * | 2020-11-25 | 2021-03-19 | 中国大唐集团科学技术研究院有限公司 | Industrial control network safety protection system |
| CN112839031A (en) * | 2020-12-24 | 2021-05-25 | 江苏天创科技有限公司 | Industrial control network security protection system and method |
| CN112751843A (en) * | 2020-12-28 | 2021-05-04 | 中铁第一勘察设计院集团有限公司 | Network safety protection system of railway power supply system |
| CN112749405A (en) * | 2021-01-24 | 2021-05-04 | 武汉卓尔信息科技有限公司 | Network security protection method, system, electronic equipment and storage medium |
| CN112910921A (en) * | 2021-03-02 | 2021-06-04 | 中核武汉核电运行技术股份有限公司 | Industrial control boundary network safety protection method |
| CN113746852A (en) * | 2021-09-08 | 2021-12-03 | 滨州学院 | Network security risk monitoring system and method of power monitoring system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103036886B (en) | 2016-02-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103036886B (en) | Industrial control network security protection method | |
| CN104852927A (en) | Safety comprehensive management system based on multi-source heterogeneous information | |
| CN202975775U (en) | Security management platform | |
| CN102184473A (en) | Comprehensive supervisory system for secondary power system | |
| CN104378365A (en) | Safety management center capable of conducting collaborative analysis | |
| Coppolino et al. | Integration of a System for Critical Infrastructure Protection with the OSSIM SIEM Platform: A dam case study | |
| CN113067843A (en) | Security monitoring and linkage defense system and method for power distribution Internet of things network | |
| CN104378364B (en) | A kind of Cooperative Analysis method at information security management center | |
| CN114553537A (en) | Abnormal flow monitoring method and system for industrial Internet | |
| CN105488396A (en) | Intelligent power grid service security gateway system based on data stream correlation analysis technology | |
| Liang et al. | Information security monitoring and management method based on big data in the internet of things environment | |
| CN106534110B (en) | Trinity transformer substation secondary system safety protection system framework system | |
| CN109308062A (en) | A kind of production equipment monitoring network integrated system | |
| CN113162897A (en) | Industrial control network security filtering system and method | |
| CN112543123A (en) | Safety protection and early warning system of industrial automatic control system | |
| CN112350858A (en) | Cloud intelligent home data security management system | |
| CN103716190B (en) | The method of E-government Intranet service application safety supervision | |
| CN105471857A (en) | Power grid terminal invalid external connection monitoring blocking method | |
| Zou et al. | Research and implementation of intelligent substation information security risk assessment tool | |
| CN210405367U (en) | Information network protection system for gas power station of abandoned mine | |
| CN101917419A (en) | Job network behavior fire wall | |
| CN106774248B (en) | A kind of behavior pattern safety protecting method based on slave computer | |
| Ma et al. | Research on Safety Monitoring Technology of Intelligent Substation Intranet | |
| Zhou et al. | Behavior based anomaly detection model in SCADA system | |
| KR20200054495A (en) | Method for security operation service and apparatus therefor |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20191113 Address after: 519000 605, block a, entrepreneurship building, Tsinghua Science Park, No. 101, University Road, Tangjiawan Town, Zhuhai City, Guangdong Province Patentee after: Zhuhai Hongrui information technology Limited by Share Ltd Address before: 519080 Tsinghua Science Park A605, 101 Tang Cheng Road, Zhuhai, Guangdong Patentee before: Zhuhai Hongrui Software Technology Co., Ltd. |
|
| TR01 | Transfer of patent right |