CN106209819A - A kind of distributed appraisal procedure of Internet of Things security risk - Google Patents
A kind of distributed appraisal procedure of Internet of Things security risk Download PDFInfo
- Publication number
- CN106209819A CN106209819A CN201610526252.7A CN201610526252A CN106209819A CN 106209819 A CN106209819 A CN 106209819A CN 201610526252 A CN201610526252 A CN 201610526252A CN 106209819 A CN106209819 A CN 106209819A
- Authority
- CN
- China
- Prior art keywords
- module
- internet
- signal
- safety
- things
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a kind of distributed appraisal procedure of Internet of Things security risk, use network interface circuit each ingredient in object is networked to send test signal, receive and analyze feedback signal;Network interface circuit receives/intercepts and captures and analyze the signal of dealing in system;The former destination of signal or other new target will be sent to after signal assemble received by network interface circuit;Upper computer software supports safety detection conclusion and report output, accordingly it is proposed that the improvements in security of goal systems is advised.The present invention is linked in object networked system in a wired or wireless fashion, after accessing goal systems, by the upper computer software program run in its main frame, it is achieved all safety detection functions.The present invention has the good effect achieving communication and the safety of data interaction in dynamic, real-time, distributed protection networking, improving communication and the safety of data interaction in Internet of Things, prevent equipment logic in use from losing.
Description
Technical field
The present invention relates to a kind of appraisal procedure, specifically a kind of distributed appraisal procedure of Internet of Things security risk.
Background technology
Internet of Things is referred to as the New Wave of information industry, and it is by simulating the render real world in information world, with reality
Now perception, control and the intelligent processing method to real world;If involved by the Internet being text message, and Internet of Things will
Relate to operation in kind;Therefore, human being's production, life will be produced more extensive than the Internet, direct and deep by Internet of Things
The impact carved.But the premise that technology of Internet of things is used widely it is possible to provide the most perfect safety precautions, only
Having when privacy is protected, it just can obtain the accreditation of users.The functional realiey of Internet of Things relate to sensor technology,
The integrated application of the multi-field technology such as remote control technology, radio network technique, cloud computing technology, data mining technology, so
One huge system, when sensing control network and application platform are integrated, owing to the integrated horizontal of technical staff is different, its safety is anti-
Model level there is also difference, causes the existence of various potential safety hazard unavoidably.Specifically, Internet of Things potential safety hazard is present in transmission
The data of layer process and differentiate with private with network transmission, the perception control of sensing control layer, wireless network user identity integrated, application layer
The links such as people's information transmission, such as, in Internet of Things sensing control layer, there may be information when information is transmitted in the wireless network
Be trapped, the wind such as sensing control node is tampered/invades, the network attack of cross-heterogeneous-network, impersonation attack, man-in-the-middle attack
Danger;Data in sensing control layer transmit with in processing procedure, owing to sensing control terminal has isomery characteristic and large number of, may
The equipment that also exists from network logic lose, smart machine fault cause work efficiency drop, be difficult to disaster control and from
Disaster is recovered equivalent risk.Additionally, along with the popularization of IPV6, will face new network risks, IPV6 uses IPsec agreement, though
So this agreement has carried out the safe handling of high intensity to packet, it is provided that data source address checking, connectionless data integrity, number
According to security services such as confidentiality, anti-replay and gate service stream encryptions, but IPV6 brings ddos attack and IPv6 association equally
The attack caused by defect of view mechanism itself.The existence of above-mentioned many hidden danger is once used by people, and its loss caused is often
Very large.
Summary of the invention
It is an object of the invention to provide a kind of distributed appraisal procedure of Internet of Things security risk, to solve above-mentioned background skill
The problem proposed in art.
For achieving the above object, the present invention provides following technical scheme:
A kind of distributed appraisal procedure of Internet of Things security risk, uses each in object is networked of network interface circuit
Ingredient sends test signal, receives and analyzes feedback signal;Network interface circuit receives/intercepts and captures and analyze dealing in system
Signal;The former destination of signal or other new target will be sent to after signal assemble received by network interface circuit;Upper
Machine software support safety detection conclusion and report output, accordingly it is proposed that the improvements in security of goal systems is advised;And host computer
Software is by connecting Back-up expert system, and online acquisition is from the support of backstage expert;The work journey of described upper computer software
Sequence includes: adds and electrically activates, and carries out logic access after system initialization, and system mastery routine starts afterwards, the mesh that detection is accessed
Every safety index of mark Internet of things system, if Testing index has the parameter in the prediction scheme not meeting setting, then can be to this
Item problem carries out safe early warning, reminds user side to carry out security risk assessment and manual safety protection, can generate in the process
Safety detection is reported, for user side reference;If safe early warning has the counter-measure of setting in emergency preplan, system can be automatically
Start safety detection countermeasure, without corresponding countermeasure, user side can be submitted to check and start Corresponding Countermeasures or start
Line obtains the support from backstage expert;After completing safety detection function, system mastery routine is closed, and final system is closed;Wherein
Internet of things system includes that the big data of secure data memory module, high in the clouds process and analyze module, high in the clouds task scheduling modules, building
Structure simulation submodel module, multi-sensor data disparity compensation module, encryption data module, perception unit module, collection
Sensing data module, filtration duplicate message module, the Big Dipper lead to locating module.
As the present invention further scheme: also include the relevant ginseng using perception unit module collection facility structure
Number, then carries out the filtration of information these data messages and then uploads to high in the clouds by after secure private gateway encryption data,
And lead to module location current geographic position by the Big Dipper, upload to secure data storage mould by 3G, 4G or WIFI together
Block.
Compared with prior art, the invention has the beneficial effects as follows: the present invention is linked into object in a wired or wireless fashion
In networked system, after accessing goal systems, by the upper computer software program run in its main frame, it is achieved all safety detection merits
Energy.The present invention have achieve communication and the safety of data interaction in dynamic, real-time, distributed protection networking,
The good effect improve communication and the safety of data interaction in Internet of Things, preventing equipment logic in use from losing.
Detailed description of the invention
Below the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment
It is only a part of embodiment of the present invention rather than whole embodiments.Based on the embodiment in the present invention, the common skill in this area
The every other embodiment that art personnel are obtained under not making creative work premise, broadly falls into the model of present invention protection
Enclose.
In the embodiment of the present invention, a kind of distributed appraisal procedure of Internet of Things security risk, use network interface circuit to mesh
Each ingredient in mark Internet of Things sends test signal, receives and analyzes feedback signal;Network interface circuit receives/intercepts and captures
And analyze the signal of dealing in system;By be sent to after the signal assemble received by network interface circuit the former destination of signal or its
The target that it is new;Upper computer software supports safety detection conclusion and report output, accordingly it is proposed that the improvements in security of goal systems
Suggestion;And upper computer software is by connecting Back-up expert system, and online acquisition is from the support of backstage expert;Described is upper
The working procedure of machine software includes: adds and electrically activates, and carries out logic access after system initialization, and system mastery routine starts afterwards,
Every safety index of the object networked system that detection is accessed, if had in Testing index in the prediction scheme not meeting setting
Parameter, then can carry out safe early warning to this problem, reminds user side to carry out security risk assessment and manual safety protection, at this
During can generate safety detection report, for user side reference;If the reply that safe early warning has setting in emergency preplan is arranged
Executing, system can start safety detection countermeasure automatically, without corresponding countermeasure, user side can be submitted to check and start and tackle mutually
Plan or startup obtain the support from backstage expert online;After completing safety detection function, system mastery routine is closed, finally
System is closed;Wherein Internet of things system includes that the big data of secure data memory module, high in the clouds process and analyze module, high in the clouds task
Scheduler module, simulation of architectural structure submodel module, multi-sensor data disparity compensation module, encryption data module, perception
Unit module, collection sensing data module, filtration duplicate message module, the Big Dipper lead to locating module;Also include using perception list
The relevant parameter of element module collection facility structure, then carries out the filtration of information these data messages and then passes through secure private
Upload to high in the clouds after gateway encryption data, and lead to module location current geographic position by the Big Dipper, together by 3G, 4G or
WIFI uploads to secure data memory module.
The operation principle of the present invention is: the present invention uses network interface circuit each ingredient in object is networked
Send test signal, receive and analyze feedback signal;Network interface circuit receives/intercepts and captures and analyze the signal of dealing in system;
The former destination of signal or other new target will be sent to after signal assemble received by network interface circuit;Upper computer software props up
Hold safety detection conclusion and report output, accordingly it is proposed that the improvements in security of goal systems is advised;And upper computer software passes through
Connecting Back-up expert system, online acquisition is from the support of backstage expert;The working procedure of described upper computer software includes: add
Electrically activating, carry out logic access after system initialization, system mastery routine starts afterwards, and the object networking that detection is accessed is
Every safety index of system, if there being the parameter in the prediction scheme not meeting setting in Testing index, then can be carried out this problem
Safe early warning, reminds user side to carry out security risk assessment and manual safety protection, can generate safety detection report in the process
Accuse, for user side reference;If safe early warning has the counter-measure of setting in emergency preplan, system can start safe inspection automatically
Survey countermeasure, without corresponding countermeasure, can submit to user side check and start Corresponding Countermeasures or start online obtain from
The support of backstage expert;After completing safety detection function, system mastery routine is closed, and final system is closed;Wherein Internet of things system
Process and analyze module, high in the clouds task scheduling modules, simulation of architectural structure including secure data memory module, the big data in high in the clouds auxiliary
Help model module, multi-sensor data disparity compensation module, encryption data module, perception unit module, collect sensing data mould
Block, filtration duplicate message module, the Big Dipper lead to locating module;Also include using the relevant of perception unit module collection facility structure
Parameter, then carries out the filtration of information these data messages and then uploads to cloud by after secure private gateway encryption data
End, and lead to module location current geographic position by the Big Dipper, upload to secure data by 3G, 4G or WIFI together and store
Module.Described Internet of Things distributed dynamic safety detecting system is linked in object networked system by network interface, and
Run upper computer software, every safety index of the Internet of things system that detection is accessed, set if Testing index does not meets
The fixed parameter in prediction scheme, then can carry out safe early warning to this problem, reminds user side to carry out security risk assessment and manually
Security protection, can generate safety detection report, in the process for user side reference;If safe early warning has in emergency preplan
The counter-measure set, the safe safety detecting system of Internet of Things distributed dynamic can start safety detection countermeasure automatically, if do not had
There is the countermeasure of correspondence, user side can be submitted to check and start Corresponding Countermeasures or start online acquisition propping up from backstage expert
Hold.Carrying out practically process is as follows: is first that physics accesses, then adds and electrically activate, carry out logic access after system initialization, it
Rear system mastery routine starts, and after completing safety detection function, system mastery routine is closed, and final system is closed.
It is obvious to a person skilled in the art that the invention is not restricted to the details of above-mentioned one exemplary embodiment, Er Qie
In the case of the spirit or essential attributes of the present invention, it is possible to realize the present invention in other specific forms.Therefore, no matter
From the point of view of which point, all should regard embodiment as exemplary, and be nonrestrictive, the scope of the present invention is by appended power
Profit requires rather than described above limits, it is intended that all by fall in the implication of equivalency and scope of claim
Change is included in the present invention.
Although moreover, it will be appreciated that this specification is been described by according to embodiment, but the most each embodiment only wraps
Containing an independent technical scheme, this narrating mode of description is only that for clarity sake those skilled in the art should
Description can also be formed those skilled in the art through appropriately combined as an entirety, the technical scheme in each embodiment
May be appreciated other embodiments.
Claims (2)
1. the distributed appraisal procedure of Internet of Things security risk, it is characterised in that use network interface circuit to target Internet of Things
Each ingredient in net sends test signal, receives and analyzes feedback signal;Network interface circuit receives/intercepts and captures and analyzes
The signal of dealing in system;The former destination of signal will be sent to or other is new after signal assemble received by network interface circuit
Target;Upper computer software supports safety detection conclusion and report output, accordingly it is proposed that the improvements in security of goal systems is advised;And
And upper computer software is by connecting Back-up expert system, online acquisition is from the support of backstage expert;Described upper computer software
Working procedure include: adding and electrically activate, carry out logic access after system initialization, system mastery routine starts afterwards, detects institute
Every safety index of the object networked system accessed, if Testing index has the parameter in the prediction scheme not meeting setting,
Then this problem can be carried out safe early warning, remind user side to carry out security risk assessment and manual safety protection, in this process
In can generate safety detection report, for user side reference;If safe early warning has the counter-measure of setting in emergency preplan, it is
System can start safety detection countermeasure automatically, without corresponding countermeasure, can submit to user side check and start Corresponding Countermeasures or
Person starts the online acquisition support from backstage expert;After completing safety detection function, system mastery routine is closed, final system
Close;Wherein Internet of things system includes that the big data of secure data memory module, high in the clouds process and analyze module, high in the clouds task scheduling
Module, simulation of architectural structure submodel module, multi-sensor data disparity compensation module, encryption data module, perception unit
Module, collection sensing data module, filtration duplicate message module, the Big Dipper lead to locating module.
The distributed appraisal procedure of Internet of Things security risk the most according to claim 1, it is characterised in that also include using sense
Know the relevant parameter of unit module collection facility structure, then these data messages are carried out the filtration of information and then pass through safety
Upload to high in the clouds after dedicated gateway encryption data, and lead to module location current geographic position by the Big Dipper, together by 3G,
4G or WIFI uploads to secure data memory module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610526252.7A CN106209819A (en) | 2016-06-25 | 2016-06-25 | A kind of distributed appraisal procedure of Internet of Things security risk |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610526252.7A CN106209819A (en) | 2016-06-25 | 2016-06-25 | A kind of distributed appraisal procedure of Internet of Things security risk |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106209819A true CN106209819A (en) | 2016-12-07 |
Family
ID=57464902
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610526252.7A Pending CN106209819A (en) | 2016-06-25 | 2016-06-25 | A kind of distributed appraisal procedure of Internet of Things security risk |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106209819A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107733877A (en) * | 2017-09-27 | 2018-02-23 | 中科鼎慧(天津)物联网技术有限公司 | A kind of management method and system of Internet of Things wireless telecommunications framework |
| CN110569178A (en) * | 2019-09-12 | 2019-12-13 | 成都中科大旗软件股份有限公司 | interface early warning method and system based on big data platform |
| CN116366375A (en) * | 2023-06-02 | 2023-06-30 | 北京华科海讯科技股份有限公司 | Safety operation method and system based on artificial intelligence |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104023080A (en) * | 2014-06-19 | 2014-09-03 | 江苏威盾网络科技有限公司 | Facility structure detection evaluating system and method based on Internet of Things technology |
| CN104065533A (en) * | 2014-06-27 | 2014-09-24 | 活点信息技术有限公司 | Internet of things distributed dynamic security detection system |
-
2016
- 2016-06-25 CN CN201610526252.7A patent/CN106209819A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104023080A (en) * | 2014-06-19 | 2014-09-03 | 江苏威盾网络科技有限公司 | Facility structure detection evaluating system and method based on Internet of Things technology |
| CN104065533A (en) * | 2014-06-27 | 2014-09-24 | 活点信息技术有限公司 | Internet of things distributed dynamic security detection system |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107733877A (en) * | 2017-09-27 | 2018-02-23 | 中科鼎慧(天津)物联网技术有限公司 | A kind of management method and system of Internet of Things wireless telecommunications framework |
| CN107733877B (en) * | 2017-09-27 | 2020-06-16 | 中科鼎慧(天津)物联网技术有限公司 | Management method and system for wireless communication architecture of Internet of things |
| CN110569178A (en) * | 2019-09-12 | 2019-12-13 | 成都中科大旗软件股份有限公司 | interface early warning method and system based on big data platform |
| CN110569178B (en) * | 2019-09-12 | 2022-12-27 | 成都中科大旗软件股份有限公司 | Interface early warning method and system based on big data platform |
| CN116366375A (en) * | 2023-06-02 | 2023-06-30 | 北京华科海讯科技股份有限公司 | Safety operation method and system based on artificial intelligence |
| CN116366375B (en) * | 2023-06-02 | 2023-08-15 | 北京华科海讯科技股份有限公司 | Safety operation method and system based on artificial intelligence |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108646722B (en) | Information security simulation model and terminal of industrial control system | |
| CN106209870B (en) | A kind of Network Intrusion Detection System for distributed industrial control system | |
| CN104811433B (en) | The distributed Internet of things system and implementation method of a kind of C/S frameworks | |
| CN106911529A (en) | Power network industry control safety detecting system based on protocol analysis | |
| CN107493300A (en) | Network security protection system | |
| CN103378991A (en) | Online service abnormity monitoring method and monitoring system thereof | |
| Choi et al. | Blockchain-based man-in-the-middle (MITM) attack detection for photovoltaic systems | |
| CN106790034A (en) | A kind of internet of things equipment certification and the method for secure accessing | |
| CN106209819A (en) | A kind of distributed appraisal procedure of Internet of Things security risk | |
| CN104601553A (en) | Internet-of-things tampering invasion detection method in combination with abnormal monitoring | |
| CN107276983A (en) | A kind of the traffic security control method and system synchronous with cloud based on DPI | |
| CN110022293A (en) | A kind of electric network information physics emerging system methods of risk assessment | |
| Pinto et al. | Attack detection in cyber-physical production systems using the deterministic dendritic cell algorithm | |
| CN107124715B (en) | Safety protection performance evaluation method suitable for electric power wireless private network terminal | |
| Tao et al. | Experience and lessons in building an ics security testbed | |
| Dong et al. | Research on information security system of smart city based on information security requirements | |
| Yousiff et al. | Designing a blockchain approach to secure firefighting stations based Internet of things | |
| Xu et al. | MSICST: Multiple-Scenario Industrial Control System Testbed for Security Research. | |
| CN105867347A (en) | Trans-space cascade fault detection method based on machine learning technology | |
| CN205644873U (en) | Fire control safety control system of colleges and universities based on internet of things | |
| CN104065533A (en) | Internet of things distributed dynamic security detection system | |
| CN108900328A (en) | A kind of electricity grid network data safety test macro and method | |
| Zhao et al. | An analysis of internet of things computer network security and remote control technology | |
| CN111191230A (en) | Fast network attack backtracking mining method based on convolutional neural network and application | |
| CN114124436B (en) | APN access trusted computing management system based on electric power Internet of things universal terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20161207 |