CN109862028A - Data safety access system - Google Patents
Data safety access system Download PDFInfo
- Publication number
- CN109862028A CN109862028A CN201910159179.8A CN201910159179A CN109862028A CN 109862028 A CN109862028 A CN 109862028A CN 201910159179 A CN201910159179 A CN 201910159179A CN 109862028 A CN109862028 A CN 109862028A
- Authority
- CN
- China
- Prior art keywords
- real time
- time data
- variety
- data
- secure access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Alarm Systems (AREA)
- Computer And Data Communications (AREA)
Abstract
The present invention provides a kind of data safety access system, including multiple monitoring devices, intelligent electronic device and secure access server;Each monitored equipment is connect with multiple monitoring devices, and monitoring device from monitored device for obtaining a variety of real time datas;The real time data for meeting preset safety regulation is packaged, obtain and uploads a variety of real time data messages to intelligent electronic device;Intelligent electronic device is connect with multiple monitoring devices, for receiving a variety of real time data messages, uploads a variety of real time data messages to secure access server;Secure access server is connect with intelligent electronic device, for receiving a variety of real time data messages;According to a variety of preset model files corresponding with a variety of real time data messages, unpacking processing is carried out to a variety of real time data messages, obtains a variety of real time datas;When one of real time data not within a preset range when, output data abnormal alarm data, can note abnormalities data in time, solve system vulnerability.
Description
Technical field
The present invention relates to data security arts, and in particular, to a kind of data safety access system.
Background technique
Currently, the existing access way of data are as follows: the data that the monitoring device of producer obtains are uploaded by protocol converter
To the background server of producer, the background server of each producer is again by above-mentioned data-pushing to Upper system.Due to producer
Background server later maintenance not in time, cause system vulnerability frequently to occur, can not note abnormalities data in time, give system peace
Row for the national games brings certain security risk.
Summary of the invention
The main purpose of the embodiment of the present invention is to provide a kind of data safety access system, with the number that notes abnormalities in time
According to solution system vulnerability.
To achieve the goals above, the embodiment of the present invention provides a kind of data safety access system, sets with multiple be monitored
Standby connection, data safety access system includes: multiple monitoring devices, intelligent electronic device and secure access server;Wherein, often
A monitored equipment is connect with the monitoring device of multiple and different types;
Monitoring device is used for:
A variety of real time datas are obtained from monitored equipment;Judge whether every kind of real time data meets preset safety rule
Then;When real time data meets preset safety regulation, real time data is packaged, obtains a variety of real time data messages;On
A variety of real time data messages are passed to intelligent electronic device;
Intelligent electronic device is connect with multiple monitoring devices, is used for: being received a variety of real time data messages, is uploaded a variety of real-time
Data message is to the secure access server;
Secure access server is connect with intelligent electronic device, is used for: receiving a variety of real time data messages;According to it is a variety of
The corresponding a variety of preset model files of real time data message carry out unpacking processing to a variety of real time data messages, obtain a variety of
Real time data;Judge every kind of real time data whether in corresponding preset range;When one of real time data is not default
When in range, output data abnormal alarm data.
In a kind of wherein embodiment, secure access server is also used to:
Judged whether to lack real time data message according to model file;When lacking real time data message, output data is lacked
Lose alert data.
In a kind of wherein embodiment, secure access server is also used to:
When not lacking real time data message, and every kind of real time data within a preset range when, store every kind of real time data.
In a kind of wherein embodiment, data safety access system further include: the main website being connect with secure access server
Server;
Secure access server is also used to: real time data is uploaded to main website server;
Main website server is used for: whether verification real time data is qualified;When real time data qualification, real time data is stored.
In a kind of wherein embodiment, model file is intelligent electronic device performance descriptive model file.
In a kind of wherein embodiment, monitoring device is specifically used for:
A variety of real time datas are packaged according to IEC61850 communication protocol, obtain a variety of real time data messages.
The data safety access system of the embodiment of the present invention includes: multiple monitoring devices, and intelligent electronic device and safety connect
Enter server;Each monitored equipment is connect with the monitoring device of multiple and different types;Monitoring device is used for from monitored dress
Set middle acquisition real time data;When real time data meets preset safety regulation, real time data is packaged, obtains number in real time
According to message;Intelligent electronic device is connect with multiple monitoring devices, for receiving a variety of real time data messages, uploads a variety of real-time numbers
According to message to secure access server;Secure access server is connect with intelligent electronic device, for basis and real time data report
A variety of real time data messages are carried out unpacking processing, obtain a variety of real time datas by the corresponding preset model file of text;Judgement is every
Whether kind real time data is in corresponding preset range;When one of real time data not within a preset range when, export number
According to abnormal alarm data, can note abnormalities data in time, provide exception information to operation maintenance personnel, solve system vulnerability.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, embodiment will be described below
Needed in attached drawing be briefly described, it should be apparent that, the accompanying drawings in the following description is only of the invention some
Embodiment for those of ordinary skill in the art without creative efforts, can also be attached according to these
Figure obtains other attached drawings.
Fig. 1 is the structural schematic diagram of data safety access system in one embodiment of the invention;
Fig. 2 is the structural schematic diagram of data safety access system in another embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on
Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall within the protection scope of the present invention.
It can not note abnormalities data and system vulnerability in view of the existing access way of current data, be transported safely to system in time
Row brings certain security risk, and the embodiment of the present invention provides a kind of data safety access system, with the number that notes abnormalities in time
According to solution system vulnerability.Below in conjunction with attached drawing, the present invention is described in detail.
Fig. 1 is the structural schematic diagram of data safety access system in one embodiment of the invention.As shown in Figure 1, data safety
Access system is connect with multiple monitored equipments, comprising: multiple monitoring devices, intelligent electronic device and secure access server;
Wherein, each monitored equipment connect (not shown in figure 1) with the monitoring device of multiple and different types;
Monitoring device is used for:
A variety of real time datas are obtained from monitored equipment;Judge whether every kind of real time data meets preset safety rule
Then;When real time data meets preset safety regulation, real time data is packaged, obtains a variety of real time data messages;On
A variety of real time data messages are passed to intelligent electronic device;
Intelligent electronic device is connect with multiple monitoring devices, is used for: being received a variety of real time data messages, is uploaded a variety of real-time
Data message is to the secure access server;
Secure access server is connect with intelligent electronic device, is used for: receiving a variety of real time data messages;According to it is a variety of
The corresponding a variety of preset model files of real time data message carry out unpacking processing to a variety of real time data messages, obtain a variety of
Real time data;Judge every kind of real time data whether in corresponding preset range;When one of real time data is not default
When in range, output data abnormal alarm data.
In one embodiment, secure access server is also used to:
Judged whether to lack real time data message according to model file;When lacking real time data message, output data is lacked
Lose alert data.Wherein it is possible to which output data missing alert data is carried out into the display connecting with secure access server
It shows.
When it is implemented, because the type of model file is corresponding with the type of real time data message, according to model text
Part can determine whether real time data message lacks, and lacks alert data according to the message output data of missing and extremely connect with safety
The display for entering server connection is shown, and staff is facilitated to be set according to shortage of data alert data to corresponding be monitored
Standby or monitoring device repairs.
In one embodiment, secure access server is also used to:
When not lacking real time data message, and every kind of real time data within a preset range when, store every kind of real time data.
Display can call above-mentioned real time data to check for staff.
Wherein, above-mentioned real time data is stored in an IP address, the corresponding SQL Server data of username and password
In library.In the prior art, the server of each producer corresponds to an IP address, and monitoring data upload is caused to have multiple station ends
Server occupies multiple IP address, is unfavorable for operation and maintenance of the later period to system.Only one secure accessing service of the application
Device, corresponding IP address, a username and password, and useless port is forbidden, and maintenance of the later period to server is facilitated, and is reduced
Maintenance cost saves maintenance fund.
Fig. 2 is the structural schematic diagram of data safety access system in another embodiment of the present invention.As shown in Fig. 2, data are pacified
Full access system further include: the main website server being connect with secure access server;
Secure access server is also used to: real time data is uploaded to main website server.Wherein, above-mentioned real-time data memory
In SQL Server database.
Main website server is used for: whether verification real time data is qualified;When real time data qualification, real time data is stored, it is no
Then refusal receives real time data.
In one embodiment, model file is that intelligent electronic device performance describes (ICD, IED Capability
Description) model file.
In one embodiment, monitoring device is specifically used for:
A variety of real time datas are packaged according to IEC61850 communication protocol, obtain a variety of real time data messages.
In one embodiment, intelligent electronic device can connect secure access server, safety by network (such as optical fiber)
Access server can connect main website server by electric system internal network.
The detailed process of the embodiment of the present invention is as follows:
1, monitoring device obtains a variety of real time datas from monitored equipment, and it is default to judge whether every kind of real time data meets
Safety regulation.
2, when real time data meets preset safety regulation, monitoring device is according to IEC61850 communication protocol to a variety of realities
When data be packaged, obtain a variety of real time data messages, and upload a variety of real time data messages to intelligent electronic device.
3, intelligent electronic device receives a variety of real time data messages, uploads a variety of real time data messages to secure accessing service
Device.
4, secure access server receives a variety of real time data messages, and according to corresponding more with a variety of real time data messages
The preset intelligent electronic device performance descriptive model file of kind carries out unpacking processing to a variety of real time data messages, obtains a variety of
Real time data.
5, secure access server judges whether to lack real time data message according to model file;When lacking real time data report
Wen Shi, output data missing alert data to the display connecting with secure access server are shown.
6, whether secure access server judges every kind of real time data in corresponding preset range;When one of real
When data not within a preset range when, output data abnormal alarm data to connect with secure access server display progress
It shows.
7, when not lacking real time data message, and every kind of real time data within a preset range when, secure access server
By every kind of real-time data memory into SQL Server database, and above-mentioned real time data is uploaded to main website server.
8, whether main website server verification real time data is qualified;When real time data qualification, real time data is stored.
To sum up, the data safety access system of the embodiment of the present invention includes: multiple monitoring devices, intelligent electronic device and peace
Full access server;Each monitored equipment is connect with the monitoring device of multiple and different types;Monitoring device is used for from being supervised
It surveys in device and obtains real time data;When real time data meets preset safety regulation, real time data is packaged, is obtained real
When data message;Intelligent electronic device is connect with multiple monitoring devices, for receiving a variety of real time data messages, uploads a variety of realities
When data message to secure access server;Secure access server is connect with intelligent electronic device, for counting according to real-time
According to the corresponding preset model file of message, unpacking processing is carried out to a variety of real time data messages, obtains a variety of real time datas;Sentence
Whether every kind of real time data of breaking is in corresponding preset range;When one of real time data not within a preset range when, it is defeated
Data exception alert data out, can note abnormalities data in time, provide exception information to operation maintenance personnel, solve system vulnerability.
Particular embodiments described above has carried out further in detail the purpose of the present invention, technical scheme and beneficial effects
Describe in detail it is bright, it should be understood that the above is only a specific embodiment of the present invention, the guarantor being not intended to limit the present invention
Range is protected, all within the spirits and principles of the present invention, any modification, equivalent substitution, improvement and etc. done should be included in this
Within the protection scope of invention.
Claims (6)
1. a kind of data safety access system, connect with multiple monitored equipments, which is characterized in that data safety access system
System includes: multiple monitoring devices, intelligent electronic device and secure access server;Wherein, each monitored equipment with it is multiple
Different types of monitoring device connection;
The monitoring device is used for:
A variety of real time datas are obtained from monitored equipment;Judge whether every kind of real time data meets preset safety regulation;When
When the real time data meets preset safety regulation, the real time data is packaged, obtains a variety of real time data messages;
A variety of real time data messages are uploaded to the intelligent electronic device;
The intelligent electronic device is connect with the multiple monitoring device, is used for: being received a variety of real time data messages, is uploaded a variety of
Real time data message is to the secure access server;
The secure access server is connect with the intelligent electronic device, is used for: receiving a variety of real time data messages;According to
A variety of real time data messages are carried out unpacking processing by the corresponding a variety of preset model files of a variety of real time data messages,
Obtain a variety of real time datas;Judge every kind of real time data whether in corresponding preset range;When one of real time data
When not within a preset range, output data abnormal alarm data.
2. data safety access system according to claim 1, which is characterized in that the secure access server is also used
In:
Judged whether to lack the real time data message according to the model file;It is defeated when lacking the real time data message
Shortage of data alert data out.
3. data safety access system according to claim 2, which is characterized in that the secure access server is also used
In:
When not lacking the real time data message, and every kind of real time data within a preset range when, store every kind of real time data.
4. data safety access system according to claim 1, which is characterized in that the data safety access system is also wrapped
It includes: the main website server being connect with the secure access server;
The secure access server is also used to: the real time data is uploaded to the main website server;
The main website server is used for: whether qualified verifying the real time data;When the real time data qualification, described in storage
Real time data.
5. data safety access system according to claim 1, which is characterized in that the model file sets for smart electronics
Standby performance descriptive model file.
6. data safety access system according to claim 1, which is characterized in that the monitoring device is specifically used for:
A variety of real time datas are packaged according to IEC61850 communication protocol, obtain a variety of real time data messages.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910159179.8A CN109862028B (en) | 2019-03-04 | 2019-03-04 | Data security access system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910159179.8A CN109862028B (en) | 2019-03-04 | 2019-03-04 | Data security access system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN109862028A true CN109862028A (en) | 2019-06-07 |
CN109862028B CN109862028B (en) | 2021-03-12 |
Family
ID=66899771
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910159179.8A Active CN109862028B (en) | 2019-03-04 | 2019-03-04 | Data security access system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109862028B (en) |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104182818A (en) * | 2014-07-21 | 2014-12-03 | 国网山东省电力公司青岛供电公司 | Method and system for collecting substation information automatically and intelligently |
CN105207354A (en) * | 2015-06-30 | 2015-12-30 | 许继集团有限公司 | Data transmission method for gateway and smart substation monitoring system data center |
CN105515180A (en) * | 2015-07-14 | 2016-04-20 | 国家电网公司 | Intelligent substation communication network dynamic monitoring system and monitoring method thereof |
CN105956410A (en) * | 2016-07-01 | 2016-09-21 | 中国南方电网有限责任公司 | Rapid universal detection method for IEC61850 full model |
CN106204326A (en) * | 2016-07-11 | 2016-12-07 | 国网浙江省电力公司杭州供电公司 | A kind of distribution terminal IED equipment detection method for distribution system |
CN106982235A (en) * | 2017-06-08 | 2017-07-25 | 江苏省电力试验研究院有限公司 | A kind of power industry control network inbreak detection method and system based on IEC 61850 |
CN108063492A (en) * | 2017-12-07 | 2018-05-22 | 全球能源互联网研究院有限公司 | A kind of integrated system and application process of anti-work of combating typhoon of power grid |
-
2019
- 2019-03-04 CN CN201910159179.8A patent/CN109862028B/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104182818A (en) * | 2014-07-21 | 2014-12-03 | 国网山东省电力公司青岛供电公司 | Method and system for collecting substation information automatically and intelligently |
CN105207354A (en) * | 2015-06-30 | 2015-12-30 | 许继集团有限公司 | Data transmission method for gateway and smart substation monitoring system data center |
CN105515180A (en) * | 2015-07-14 | 2016-04-20 | 国家电网公司 | Intelligent substation communication network dynamic monitoring system and monitoring method thereof |
CN105956410A (en) * | 2016-07-01 | 2016-09-21 | 中国南方电网有限责任公司 | Rapid universal detection method for IEC61850 full model |
CN106204326A (en) * | 2016-07-11 | 2016-12-07 | 国网浙江省电力公司杭州供电公司 | A kind of distribution terminal IED equipment detection method for distribution system |
CN106982235A (en) * | 2017-06-08 | 2017-07-25 | 江苏省电力试验研究院有限公司 | A kind of power industry control network inbreak detection method and system based on IEC 61850 |
CN108063492A (en) * | 2017-12-07 | 2018-05-22 | 全球能源互联网研究院有限公司 | A kind of integrated system and application process of anti-work of combating typhoon of power grid |
Also Published As
Publication number | Publication date |
---|---|
CN109862028B (en) | 2021-03-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
RU2583703C2 (en) | Malicious attack detection and analysis | |
CN106773933B (en) | Intelligent electric meter and its control method, device, system | |
CN108961455A (en) | Overhead line structures method for inspecting, system and terminal device | |
CN105490387A (en) | Online verification apparatus and method for safety measures for intelligent substation relay protection equipment | |
CN107390628B (en) | Distribution status monitoring and method for early warning and system | |
CN107689954A (en) | Power information system monitoring method and device | |
CN111159548A (en) | Network information science and technology popularization service system | |
CN107800783A (en) | The method and device of remote monitoring server | |
CN108289119A (en) | Become platform data monitoring system and method on a kind of integrated column based on embedded Web | |
CN109473945A (en) | A kind of verification of relay protection model data and method of automatic configuration | |
CN109754170A (en) | A kind of the equipment fault maintenance personnel distribution method and system of intelligence workshop | |
CN109409536A (en) | A kind of method and system that acquisition system main website handles the assets information of communication unit | |
CN107809348A (en) | Towards the SOT state of termination monitoring method of power network big data distributed system | |
CN109933450A (en) | A kind of method of calibration and device of intelligent substation secondary void loop configuration file | |
CN109064051A (en) | Transmission of electricity tower bar on-line monitoring method and device | |
CN107576845A (en) | A kind of taiwan area acquisition terminal and unit-area management system | |
CN107769993A (en) | Towards the data traffic monitoring method of power network big data distributed system | |
CN109862028A (en) | Data safety access system | |
CN107896002A (en) | 10kV feeder loads monitor active alarm system | |
CN111770100B (en) | Method and system for verifying safe access of external equipment to Internet of things terminal | |
CN109561077B (en) | Acquisition terminal communication safety evaluation method and device | |
Liu et al. | Security Protection Technology Based on Power Communication Terminal Intelligent Equipment. | |
CN207601174U (en) | A kind of taiwan area acquisition terminal and unit-area management system | |
CN111146863A (en) | Power safety detection method for transformer substation | |
CN105811580B (en) | A kind of stealing prosecution system and method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |