CN110474949A - The method and apparatus for protecting system communication with nuclear power station security level under Windows environment - Google Patents
The method and apparatus for protecting system communication with nuclear power station security level under Windows environment Download PDFInfo
- Publication number
- CN110474949A CN110474949A CN201910558935.4A CN201910558935A CN110474949A CN 110474949 A CN110474949 A CN 110474949A CN 201910558935 A CN201910558935 A CN 201910558935A CN 110474949 A CN110474949 A CN 110474949A
- Authority
- CN
- China
- Prior art keywords
- data
- module
- operating system
- power station
- nuclear power
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 35
- 238000004891 communication Methods 0.000 title claims abstract description 26
- 238000006243 chemical reaction Methods 0.000 claims abstract description 26
- 238000009432 framing Methods 0.000 claims abstract description 21
- 238000001914 filtration Methods 0.000 claims abstract description 17
- 238000012545 processing Methods 0.000 claims description 18
- 230000005540 biological transmission Effects 0.000 claims description 15
- 238000013481 data capture Methods 0.000 claims description 6
- 238000012546 transfer Methods 0.000 claims description 2
- 230000003993 interaction Effects 0.000 description 5
- 230000009286 beneficial effect Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000009434 installation Methods 0.000 description 2
- 238000003672 processing method Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0604—Management of faults, events, alarms or notifications using filtering, e.g. reduction of information by using priority, element types, position or time
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/10—Mapping addresses of different types
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/50—Network services
- H04L67/56—Provisioning of proxy services
- H04L67/568—Storing data temporarily at an intermediate stage, e.g. caching
Abstract
The invention belongs to the technical fields of nuclear plant safety control; in order to solve in nuclear power station security level protection system in the prior art the technical issues of known safety level Data Transport Protocol wouldn't directly can be communicated with Windows operating system, the present invention provides the method and apparatus under a kind of environment based on Windows with nuclear power station security level protection system communication;The described method includes: S1, actively grabbing the data packet of network interface card in nuclear power station security level protection system, the MAC Address in the data packet, the data of filtering useless are compared;Then filtered data framing is stored;The data that S2, parsing framing store, take out and apply data accordingly, parse corresponding point value according to the type and offset address of point;S3, the data after parsing are subjected to data conversion according to the format for writing database, and database module is written into the result after conversion;S4, data are taken out from the database module, sets up event packet according to event format and is sent to event manager module.
Description
Technical field
The present invention relates to nuclear plant safety control technical field more particularly to a kind of Windows environment under with nuclear power station
The method and apparatus of safety level protection system communication.
Background technique
Nuclear plant safety control technical field in, in nuclear power station security level protection system usually using SN4_PLUS this
Plant safety level Data Transport Protocol, the network communication inside Lai Shixian safety level reactor protection system;Wherein, SN4_PLUS is
Based on communication physical layer and the customized Ethernet protocol of link layer, the period with transmission is short, data volume is big, a bag data is more
The characteristics of frame, is only able to achieve is communicated inside safety level at present;It temporarily can not achieve ring corresponding with Windows operating system
Border carries out data interaction.
But Windows operating system is used as one of most common operating system of computer at present, daily office with
It is very common in industrial computer, even if accordingly even when being provided with installation Windows operating system in security level protection system
Computer, it is also necessary to additional installation man-machine interactive system corresponding with this safety level Data Transport Protocol of SN4_PLUS;Separately
On the one hand, Windows operating system allows as the good a set of operating system of a kind of pair of user interface experience if can develop
Windows operating system is carried out with the nuclear power station security level protection system with this safety level Data Transport Protocol of SN4_PLUS
Communication can allow the user's operation of operation nuclear power station security level protection system more convenient, and can operate in conjunction with Windows
Data software mature carries out subsequent processing to the data in nuclear power station security level protection system in system.
Therefore, the highly desirable one kind of developing of those skilled in the art can be realized under a windows environment, with nuclear power station
The technical solution of safety level protection system communication.
It should be noted that the description of above content, only to facilitate those skilled in the art easier to understand
The technical solution of invention, above content are also the present invention during realization, a part of content made the creative labor, not
Belonging to is entirely explanation to the prior art.
Summary of the invention
In order to solve in nuclear power station security level protection system in the prior art, known safety level Data Transport Protocol wouldn't
The technical issues of capable of directly communicating with Windows operating system, the present invention provide a kind of be based under Windows environment and nuclear power station
The method and apparatus of safety level protection system communication.
To achieve the goals above, technical solution provided by the invention includes:
One aspect of the present invention provides the side under a kind of environment based on Windows with nuclear power station security level protection system communication
Method characterized by comprising
S1, Windows operating system is installed by corresponding data port, actively grabs nuclear power station security level protection in real time
The data packet of network interface card in system compares the MAC Address in the data packet, the data of filtering useless;Then by filtered number
It is stored according to framing;
The data that S2, the thread cycle parsing module being equipped in Windows operating system parsing framing store, take out phase
The application data answered parse corresponding point value according to the type and offset address of point;
S3, the thread cycle being equipped in Windows operating system write database module, by the data after parsing according to writing
The format of database carries out data conversion, and database module is written in the result after conversion;
S4, the thread cycle sending module being equipped in Windows operating system take out number from the database module
According to, according to event format set up event packet be sent to event manager module.
The embodiment of the present invention preferably, the thread in thread cycle parsing module and the step S4 in the step S3
Period sending module is arranged to parallel processing.
Preferably, the method also includes the applications being equipped with where Windows operating system for the embodiment of the present invention
Layer receives the event manager module treated data.
The embodiment of the present invention preferably, the method also includes: it is described be equipped with Windows operating system parse it is described
Event manager module treated data, additionally it is possible to according to safety level Data Transport Protocol in nuclear power station security level protection system
Format, Xiang Suoshu network interface card send data.
The embodiment of the present invention preferably, in the step S1 parses corresponding in filtered data and/or the S2
Result after point value and/or S3 conversion is respectively stored in buffer memory, and according to demand, respectively from the buffer memory
It is transferred in device.
Another aspect of the present invention also provide under a kind of environment based on Windows with nuclear power station security level protection system communication
Device characterized by comprising
Data capture unit is arranged to be based on being equipped with Windows operating system by corresponding data port, in real time actively
The data packet for grabbing network interface card in nuclear power station security level protection system, compares the MAC Address in the data packet, the number of filtering useless
According to;Then filtered data framing is stored;
Data processing unit is arranged to based on the thread cycle parsing module parsing being equipped in Windows operating system
The data of framing storage, take out and apply data accordingly, parse corresponding point value according to the type and offset address of point;
Data write unit is arranged to write database module based on the thread cycle being equipped in Windows operating system,
Data after parsing are subjected to data conversion according to the format for writing database, and database module is written into the result after conversion;
Data transmission unit is arranged to based on the thread cycle sending module being equipped in Windows operating system from institute
It states and takes out data in database module, set up event packet according to event format and be sent to event manager module.
The embodiment of the present invention preferably, send out by the thread cycle parsing module and the data that the data write unit calls
The thread cycle sending module of cell call is sent to be arranged to parallel processing.
Preferably, described device further includes data receipt unit to the embodiment of the present invention, is arranged to be based on being equipped with Windows
Application layer where operating system receives the event manager module treated data.
Preferably, the Windows operating system that is equipped with parses at the event manager module embodiment of the present invention
Data after reason, additionally it is possible to according to the format of safety level Data Transport Protocol in nuclear power station security level protection system, to the net
Card sends data.
The embodiment of the present invention preferably, filtered data and/or the data processing list in the data capture unit
Result after parsing corresponding point value and/or data write unit conversion in member is respectively stored in buffer memory,
And other modules are according to demand, transfer from the buffer memory respectively.
Using above-mentioned technical proposal provided by the present application, one of following beneficial effect can be obtained:
1, provide allowed in a kind of nuclear power station security level protection system known safety level Data Transport Protocol can directly with
The solution of Windows operating system communication;Convenient for combining data software mature in Windows operating system to core
Data in power plant safety grade protection system are monitored and/or follow-up data working process.
2, Level2 layers therein long-range packet capturing realized to Level1 layers, multithreading, framing are controlled in nuclear plant safety
The processing method of storage and parsing, realizes and the quick data interaction of safety level.
3, preferably, will acquire, parse, convert be divided into multithreading carry out parallel processing, allow to more quickly it is complete
The quick interaction of mass data in safety level Data Transport Protocol known in pairs.
4, preferably, the data after each link processing are stored in buffer memory, in this way chasing after convenient for data
Track, even and if can guarantee that data will not lose in the case that data volume is big in safety level Data Transport Protocol.
The other feature and advantage of invention will illustrate in the following description, also, partly become aobvious from specification
And it is clear to, or understood by implementing technical solution of the present invention.The objectives and other advantages of the invention can be by illustrating
Specifically noted structure and/or process are achieved and obtained in book, claims and attached drawing.
Detailed description of the invention
Fig. 1 is the structural block diagram that a kind of nuclear power station security level provided in an embodiment of the present invention protects system.
Fig. 2 is that one kind that one embodiment of the invention provides is based on protecting system with nuclear power station security level under Windows environment
The flow chart of the means of communication.
Fig. 3 is that one kind that further embodiment of this invention provides is based on protecting system with nuclear power station security level under Windows environment
The flow chart of the means of communication for uplink of uniting.
Fig. 4 is that one kind that further embodiment of this invention provides is based on protecting system with nuclear power station security level under Windows environment
The flow chart of the means of communication for downlink of uniting.
Fig. 5 is provided in an embodiment of the present invention a kind of based on logical with nuclear power station security level protection system under Windows environment
Interrogate the structural block diagram of device.
Specific embodiment
Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings and examples, how to apply to the present invention whereby
Technological means solves technical problem, and the realization process for reaching technical effect can fully understand and implement.It needs to illustrate
, these specific descriptions only allow those of ordinary skill in the art to be more easier, clearly understand the present invention, rather than to this hair
Bright limited explanation;And if conflict is not constituted, each spy in each embodiment and each embodiment in the present invention
Sign can be combined with each other, and it is within the scope of the present invention to be formed by technical solution.
In addition, step shown in the flowchart of the accompanying drawings can be in the control system of a such as group controller executable instruction
Middle execution, although also, logical order is shown in flow charts, and it in some cases, can be to be different from herein
Sequence executes shown or described step.
Below by the drawings and specific embodiments, technical solution of the present invention is described in detail:
Embodiment
As shown in Figure 1, a kind of nuclear power station security level protection system provided in this embodiment includes Level1 layers and Level2
Layer.Wherein Level2 layers include: control system, in the control system include Windows (including but not limited to WindowsXP,
Windows8.0, Windows10.0 etc.) operating system, can also be arranged certainly other operating systems (such as kylin system or
Person's linux system etc.) and one or more engineer station, one or more operator station, service implementation device, history
File server, gateway server, connection control system, engineer station, operator station, various servers management network.
Level1 layers include: protection system, control station cabinet, security control display device (SCID), wherein protection system and/or control
Network board (abbreviation network interface card) is provided in system station cabinet and/or SCID;Level1 layers further include this safety level of SN4_PLUS
The network transmission module of Data Transport Protocol, the network transmission module is for realizing the network between Level1 layers and Level2 layers
Communication.
Wherein, the transport protocol SN4_PLUS of safety level is a kind of on the basis of ethernet physical layer and data link layer
Custom protocol, the protocol data packet cannot directly reach application layer, and the period of safety level protection system transmission is short, data
Amount is big, a bag data includes multiframe data (number of frames is between 1~24), data volume of every frame data size in 1K.
As described in Figure 2, the present embodiment provides one is Windows system is based on, it is with based on embedded protection to realize
The scheme of the data communication of customized Ethernet protocol under system, it is this to be based on protecting under Windows environment with nuclear power station security level
Protecting system communication method include:
S1, Windows operating system is installed by corresponding data port, actively grabs nuclear power station security level protection in real time
The data packet of network interface card in system, the MAC Address in correlation data packet, the data of filtering useless;Then by filtered data point
Frame storage.Specifically, in the control system for being equipped with Windows operating system in Level2 layers, system is operated by Windows
The network packet capturing carried in system instructs (or software), or the network packet catcher based on Windows operating system exploitation, example
Such as, Winpcap kit is used, by gateway server and SN4_4PLUS network module, grabs network interface card in Level2 layers
In data packet, the mode of crawl is that main kinetic energy enough obtains, and can be each scheduled duration and goes crawl successively data packet, can also be with
It is just actively to be obtained when monitoring has data transmission in SN4_4PLUS network;After obtaining data packet, in correlation data packet
MAC Address, it can by compare find the data of specified MAC Address or only to the data that MAC Address is obtained by filtration;
Then other useless data filterings are fallen (can define the data for meeting pre-provisioning request with regard to directly filtering, Huo Zheti in advance
Preceding definition only needs specified data, and remaining data just filter out);As it was noted above, a bag data includes multiframe data (frame
Quantity is between 1~24), data volume of every frame data size in 1K;After filtering, useful data framing is stored.
The data that S2, the thread cycle parsing module being equipped in Windows operating system parsing framing store, take out phase
The application data answered parse corresponding point value according to the type and offset address of point;For example, according to SN4_4PLUS agreement lattice
Formula parses the data of framing storage;It takes out and applies data accordingly, and parse according to the type of point and offset address corresponding
Point value.Specifically, the thread referred in the present embodiment is the process of a Dynamic Execution, i.e. data parsing is repeated cyclically
Movement, until meeting scheduled condition, can just stop;It is solved using being equipped in the control system where Windows operating system
The data for analysing module parsing framing storage, successively take out every frame data, since the data of SN4_4PLUS format have been met
Scheduled format, after step S1 filtering, remaining data also meet scheduled data format, then by these predetermined formats
Data parse corresponding point value according to the type and offset address of point.
S3, the thread cycle being equipped in Windows operating system write database module, by the data after parsing according to writing
The format of database carries out data conversion, and database module is written in the result after conversion.As described above, thread cycle writes number
It is also the process of a Dynamic Execution according to the thread in library module, i.e. data parsing is the movement being repeated cyclically, until meeting
Scheduled condition can just stop;I.e. by, by after Format adjusting, can again be carried out the data after conversion again in step S2
Combination or scheduled format conversion, for it is subsequent can application layer communication be prepared directly in Windows operating system.
S4, the thread cycle sending module being equipped in Windows operating system take out data from database module, press
Event packet, which is set up, according to event format is sent to event manager module.As described above, thread cycle is write in database module
Thread is also the process of a Dynamic Execution, i.e. data parsing is the movement being repeated cyclically, until meeting scheduled condition,
It can stop;I.e. by step S2 by after Format adjusting, can be again by the data after conversion according to scheduled format, according to thing
Part format sets up event packet and is sent to event manager module.
The present embodiment preferably, the thread cycle sending module in thread cycle parsing module and step S4 in step S3
It is arranged to parallel processing.
The present embodiment preferably, the above method further include: be equipped with the application layer where Windows operating system and receive thing
Part management module treated data.Further example preferably, this method further include: be equipped with Windows operating system parsing
Outgoing event management module treated data, additionally it is possible to according to safety level Data Transport Protocol in nuclear power station security level protection system
Format, to network interface card send data.
The present embodiment preferably, parses corresponding point value and/or S3 turns in filtered data and/or S2 in step S1
Result after changing is respectively stored in buffer memory, and according to demand, is transferred from buffer memory respectively.
As shown in figure 3, being based on protecting system uplink with nuclear power station security level under Windows environment the present embodiment provides one kind
The means of communication (i.e. from network interface card obtain data after send data to Windows application layer), this method comprises:
S101, network card data transmission, i.e. network are based on SN4_4PLUS format transmission data;
S103, actively to network data packet capturing, compare MAC;Receive the SN4_PLUS that data thread grabs network interface card in real time
Data packet compares the useless packet of mac address filter;
S105, setting network state, i.e., after packet capturing, it is also necessary to continue to monitor network interface card data variation;
It S107, is 8 multiple according to every packet Bale No. data packet is carried out framing deposit caching 1;
S109, data are taken out from caching 1;
S111, parsing data, i.e., parsing framing storage data, successively take out every frame data, according to point type and partially
It moves address resolution and goes out corresponding point value;
S113, SCID data are judged whether there is, if it does, simultaneously storing data to 2 (S115) of caching and caching 3
(S117) in;Wherein, parsing thread cycle successively takes out every frame data from caching 1, according to the type and offset address solution of point
Corresponding point value is precipitated, and is stored in caching 2, wherein case point Value Data deposit caching 3.Wherein, send the event thread period from
Data are taken out in caching 3, event packet is set up according to event format and is sent to event manager module.
S119, it fetches evidence from caching 3, then configuration file group event (S121), then by the corresponding number of file group event
According to sending (S123), and it is back to S119.
S125, evidence of fetching from caching 2, then carry out Data Format Transform (S127), then write data into database
(S129), and it is back to S129.Wherein, database thread period off-take point Value Data from caching 2 is write, according to writing data Coorg
Formula conversion, and database module is written;And S119 to S123 is parallel processing with two treatment processes of S125 to S129.
As shown in figure 4, provided in this embodiment a kind of based under Windows environment and under nuclear power station security level protection system
The capable means of communication (being transmitted to safety level protection system from Windows application layer to network card data), this method comprises:
S201, OPS operate SCID instruction, i.e. operator station or the operational order of engineer station's transmission SCID;
S203, request data, deposit caching 4 are received;
S205, judge whether there are data in caching 4, if any evidence of fetching from caching 4;
S207, transmission data are analyzed the instruction, sends thread cycle from caching 4 and take out data, parses data;
S209, network interface card is sent data to, is sent to network interface card according to SN4_PLUS data packet format;It is then return to S205.
As shown in figure 5, being based on protecting system communication with nuclear power station security level under Windows environment the present embodiment provides one kind
Device, which includes:
Data capture unit 110 is arranged to be based on being equipped with Windows operating system by corresponding data port, in real time
Actively grab the data packet of network interface card in nuclear power station security level protection system, the MAC Address in correlation data packet, the number of filtering useless
According to;Then filtered data framing is stored;Specifically, the control of Windows operating system is installed in Level2 layers
In system, (or software) is instructed by the network packet capturing carried in Windows operating system, or based on Windows operation system
The network packet catcher developed of uniting is grabbed in Level2 layers in network interface card by gateway server and SN4_4PLUS network module
Data packet, the mode of crawl are that main kinetic energy enough obtains, and can be each scheduled duration and go crawl successively data packet, are also possible to work as
It monitors when having data transmission in SN4_4PLUS network, just actively obtains;After obtaining data packet, the MAC in correlation data packet
Address, it can find the data of specified MAC Address or only to the data that MAC Address is obtained by filtration by comparing;Then
Other useless data filterings are fallen (it is fixed with regard to directly filtering, or in advance can to define the data for meeting pre-provisioning request in advance
Justice only needs specified data, and remaining data just filter out);As it was noted above, a bag data includes multiframe data (number of frames
Between 1~24), data volume of every frame data size in 1K;After filtering, useful data framing is stored.
Data processing unit 120 is arranged to based on the thread cycle parsing module solution being equipped in Windows operating system
The data of framing storage are analysed, takes out and applies data accordingly, parse corresponding point value according to the type and offset address of point;Body
Ground, the thread referred in the present embodiment are the process of a Dynamic Execution, i.e. data parsing is the movement being repeated cyclically, until
Meet scheduled condition, can just stop;It is parsed using parsing module in the control system where Windows operating system is equipped with
The data of framing storage, successively take out every frame data, since the data of SN4_4PLUS format have been to meet scheduled lattice
Formula, after step S1 filtering, remaining data also meet scheduled data format, then by the data of these predetermined formats according to
The type and offset address of point parse corresponding point value.
Data write unit 130 is arranged to write database mould based on the thread cycle being equipped in Windows operating system
Data after parsing are carried out data conversion according to the format for writing database, and database mould are written in the result after conversion by block
Block;As described above, thread cycle writes the process that the thread in database module is also a Dynamic Execution, i.e. data parsing is week
The duplicate movement of phase property can just stop until meeting scheduled condition;I.e. by step S2 by after Format adjusting, can be with
The data after conversion are reconfigured or scheduled format conversion again, are for subsequent can directly be operated in Windows
Application layer communication is prepared in system.
Data transmission unit 140, be arranged to based on the thread cycle sending module being equipped in Windows operating system from
Data are taken out in database module, are set up event packet according to event format and are sent to event manager module;As described above, line
The journey period writes the process that the thread in database module is also a Dynamic Execution, i.e., data parsing be repeated cyclically it is dynamic
Make, until meeting scheduled condition, can just stop;I.e. by step S2 by after Format adjusting, can again will be after conversion
Data set up event packet according to event format and are sent to event manager module according to scheduled format.
The present embodiment preferably, data write unit call thread cycle parsing module and data transmission unit call
Thread cycle sending module is arranged to parallel processing.
Preferably, device further includes data receipt unit to the present embodiment, is arranged to be based on being equipped with Windows operating system
The application layer at place receives event manager module treated data.
The present embodiment preferably, is equipped with Windows operating system and parses event manager module treated data, also
Data can be sent to network interface card according to the format of safety level Data Transport Protocol in nuclear power station security level protection system.
The present embodiment preferably, in data capture unit parses in filtered data and/or data processing unit pair
Answer point value and/or data write unit conversion after result be respectively stored in buffer memory, and other modules according to
Demand is transferred from buffer memory respectively.
Using above-mentioned technical proposal provided by the present application, one of following beneficial effect can be obtained:
1, provide allowed in a kind of nuclear power station security level protection system known safety level Data Transport Protocol can directly with
The solution of Windows operating system communication;Convenient for combining data software mature in Windows operating system to core
Data in power plant safety grade protection system are monitored and/or follow-up data working process.
2, Level2 layers therein long-range packet capturing realized to Level1 layers, multithreading, framing are controlled in nuclear plant safety
The processing method of storage and parsing, realizes and the quick data interaction of safety level.
3, preferably, will acquire, parse, convert be divided into multithreading carry out parallel processing, allow to more quickly it is complete
The quick interaction of mass data in safety level Data Transport Protocol known in pairs.
4, preferably, the data after each link processing are stored in buffer memory, in this way chasing after convenient for data
Track, even and if can guarantee that data will not lose in the case that data volume is big in safety level Data Transport Protocol.
Those of ordinary skill in the art will appreciate that: realize that all or part of the steps of above-mentioned each method embodiment can lead to
The relevant hardware of program instruction is crossed to complete.Program above-mentioned can be stored in a computer readable storage medium.The journey
When being executed, execution includes the steps that above-mentioned each method embodiment to sequence;And storage medium above-mentioned include: ROM, RAM, magnetic disk or
The various media that can store program code such as person's CD.
Finally, it should be noted that above description is only highly preferred embodiment of the present invention, not the present invention is appointed
What formal limitation.Anyone skilled in the art, it is without departing from the scope of the present invention, all available
The way and technology contents of the disclosure above make many possible variations and simple replacement etc. to technical solution of the present invention, these
Belong to the range of technical solution of the present invention protection.
Claims (10)
1. a kind of method for protecting system communication with nuclear power station security level under environment based on Windows characterized by comprising
S1, Windows operating system is installed by corresponding data port, actively grabs nuclear power station security level protection system in real time
The data packet of middle network interface card compares the MAC Address in the data packet, the data of filtering useless;Then by filtered data point
Frame storage;
The data that S2, the thread cycle parsing module being equipped in Windows operating system parsing framing store, take out corresponding
Using data, corresponding point value is parsed according to the type and offset address of point;
S3, the thread cycle being equipped in Windows operating system write database module, by the data after parsing according to writing data
The format in library carries out data conversion, and database module is written in the result after conversion;
S4, the thread cycle sending module being equipped in Windows operating system take out data from the database module, press
Event packet, which is set up, according to event format is sent to event manager module.
2. the method according to claim 1, wherein thread cycle parsing module in the step S3 and described
Thread cycle sending module in step S4 is arranged to parallel processing.
3. the method according to claim 1, wherein the method also includes: it is described be equipped with Windows operation
Application layer where system receives the event manager module treated data.
4. according to the method described in claim 3, it is characterized in that, the method also includes: it is described be equipped with Windows operation
System analysis goes out the event manager module treated data, additionally it is possible to according to safety level in nuclear power station security level protection system
The format of Data Transport Protocol, Xiang Suoshu network interface card send data.
5. the method according to claim 1, wherein filtered data and/or the S2 in the step S1
In parse the result after corresponding point value and/or S3 conversion and be respectively stored in buffer memory, and according to demand, respectively
It is transferred from the buffer memory.
6. the device of system communication is protected under a kind of environment based on Windows with nuclear power station security level characterized by comprising
Data capture unit is arranged to actively grab in real time based on Windows operating system is equipped with by corresponding data port
The data packet of network interface card in nuclear power station security level protection system, compares the MAC Address in the data packet, the data of filtering useless;
Then filtered data framing is stored;
Data processing unit is arranged to parse framing based on the thread cycle parsing module being equipped in Windows operating system
The data of storage are taken out and apply data accordingly, parse corresponding point value according to the type and offset address of point;
Data write unit is arranged to write database module based on the thread cycle being equipped in Windows operating system, will solve
Data after analysis carry out data conversion according to the format for writing database, and database module is written in the result after conversion;
Data transmission unit is arranged to based on the thread cycle sending module being equipped in Windows operating system from the number
According to data are taken out in library module, event packet is set up according to event format and is sent to event manager module.
7. device according to claim 6, which is characterized in that the thread cycle that the data write unit calls parses mould
The thread cycle sending module that block and the data transmission unit are called is arranged to parallel processing.
8. device according to claim 6, which is characterized in that described device further includes data receipt unit, is arranged to base
Application layer where being equipped with Windows operating system receives the event manager module treated data.
9. device according to claim 9, which is characterized in that it is described be equipped with Windows operating system parse it is described
Event manager module treated data, additionally it is possible to according to safety level Data Transport Protocol in nuclear power station security level protection system
Format, Xiang Suoshu network interface card send data.
10. device according to claim 6, which is characterized in that in the data capture unit filtered data and/or
Result after parsing corresponding point value and/or data write unit conversion in the data processing unit is respectively stored in
In buffer memory, and other modules are according to demand, transfer from the buffer memory respectively.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910558935.4A CN110474949B (en) | 2019-06-26 | 2019-06-26 | Method and device for communicating with nuclear power station security level protection system in Windows environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910558935.4A CN110474949B (en) | 2019-06-26 | 2019-06-26 | Method and device for communicating with nuclear power station security level protection system in Windows environment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110474949A true CN110474949A (en) | 2019-11-19 |
| CN110474949B CN110474949B (en) | 2023-12-15 |
Family
ID=68506957
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910558935.4A Active CN110474949B (en) | 2019-06-26 | 2019-06-26 | Method and device for communicating with nuclear power station security level protection system in Windows environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110474949B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115484130A (en) * | 2022-08-31 | 2022-12-16 | 江苏奥立信数字科技有限公司 | Internet of things gateway and air compression online storage system for same |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040015579A1 (en) * | 2001-06-14 | 2004-01-22 | Geoffrey Cooper | Method and apparatus for enterprise management |
| US6829654B1 (en) * | 2000-06-23 | 2004-12-07 | Cloudshield Technologies, Inc. | Apparatus and method for virtual edge placement of web sites |
| CN103927489A (en) * | 2014-04-22 | 2014-07-16 | 陈幼雷 | System and method for trusted storage of data |
| US8887239B1 (en) * | 2012-08-08 | 2014-11-11 | Google Inc. | Access to network content |
| CN106547260A (en) * | 2016-10-26 | 2017-03-29 | 北京广利核系统工程有限公司 | Communication means, I&C system communicator and I&C system in I&C system |
| US20170163498A1 (en) * | 2015-12-04 | 2017-06-08 | Oracle International Corporation | Integrating external network incidents into an incident process |
| FR3055720A1 (en) * | 2016-09-06 | 2018-03-09 | Olivier Binet | SECURE STORAGE METHOD OF DIGITAL SOURCE FILE. |
| CN108922641A (en) * | 2018-05-31 | 2018-11-30 | 北京广利核系统工程有限公司 | The routine test device and method of high temperature reactor of nuclear power plant protection system |
-
2019
- 2019-06-26 CN CN201910558935.4A patent/CN110474949B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6829654B1 (en) * | 2000-06-23 | 2004-12-07 | Cloudshield Technologies, Inc. | Apparatus and method for virtual edge placement of web sites |
| US20040015579A1 (en) * | 2001-06-14 | 2004-01-22 | Geoffrey Cooper | Method and apparatus for enterprise management |
| US8887239B1 (en) * | 2012-08-08 | 2014-11-11 | Google Inc. | Access to network content |
| CN103927489A (en) * | 2014-04-22 | 2014-07-16 | 陈幼雷 | System and method for trusted storage of data |
| US20170163498A1 (en) * | 2015-12-04 | 2017-06-08 | Oracle International Corporation | Integrating external network incidents into an incident process |
| FR3055720A1 (en) * | 2016-09-06 | 2018-03-09 | Olivier Binet | SECURE STORAGE METHOD OF DIGITAL SOURCE FILE. |
| CN106547260A (en) * | 2016-10-26 | 2017-03-29 | 北京广利核系统工程有限公司 | Communication means, I&C system communicator and I&C system in I&C system |
| CN108922641A (en) * | 2018-05-31 | 2018-11-30 | 北京广利核系统工程有限公司 | The routine test device and method of high temperature reactor of nuclear power plant protection system |
Non-Patent Citations (4)
| Title |
|---|
| 王毅璇;刘伟;: "核控领域工控机网关通信软件的设计与实现", 电子元器件应用, no. 07 * |
| 石桂连;王纪坤;韩宾;谢逸钦;李刚;: "ACPR1000堆型核电厂多样化驱动系统产品方案设计", 核安全, no. 01 * |
| 郭令;: "电池组信息采集分析系统上位机软件设计", 电源技术, no. 09 * |
| 黎知行: "核电站安全级DCS虚拟系统的设计与开发", 《制造业自动化》 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115484130A (en) * | 2022-08-31 | 2022-12-16 | 江苏奥立信数字科技有限公司 | Internet of things gateway and air compression online storage system for same |
| CN115484130B (en) * | 2022-08-31 | 2023-11-03 | 江苏奥立信数字科技有限公司 | Internet of things gateway and air compression online storage system for same |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110474949B (en) | 2023-12-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105959144B (en) | Secure data acquisition and method for detecting abnormality and system towards industrial control network | |
| CN109412833A (en) | A kind of management system and method for shared device | |
| CN105577670B (en) | A kind of warning system hitting library attack | |
| CN106254379B (en) | The processing system and processing method of network security policy | |
| CN110730245A (en) | Neural network based edge computing system and method | |
| DE112016005462T5 (en) | Direct memory access for endpoint devices | |
| CN104346451A (en) | Situation awareness system based on user feedback, as well as operating method and application thereof | |
| CN106338976B (en) | A kind of long-distance intelligent industrial control system and its control method | |
| CN110474949A (en) | The method and apparatus for protecting system communication with nuclear power station security level under Windows environment | |
| CN102710513A (en) | Message mirror image method and equipment | |
| CN107976691B (en) | Communication method and system between vehicle-mounted terminal, monitoring platform and supervision platform | |
| CN101217408B (en) | A processing system on all-round failure pertinence treatment system and the corresponding processing method | |
| CN109658065A (en) | A kind of Human Resource Management System | |
| CN109102245A (en) | A kind of processing method of approval process, system and device | |
| CN101252487B (en) | Method for processing safety warning and safety policy equipment | |
| CN102118361A (en) | Method and device for controlling data transmission based on network protocol | |
| CN101621404A (en) | Method and system for layering processing of failure | |
| CN108762068A (en) | A kind of multiple agent consistency control method with model uncertainty | |
| CN104506596A (en) | Internet of things operation system based on event driving mechanism | |
| CN109787871A (en) | Isomery video access analysis system and method based on FPGA | |
| CN101197714A (en) | Method for centrally capturing mobile data service condition | |
| CN107395768A (en) | Two-shipper adaptive load balancing method for file security transmission | |
| CN117221085A (en) | Network fault early warning method and device, electronic equipment and storage medium | |
| CN103546484B (en) | Message analysis device and message analysis method | |
| CN106547260B (en) | Communication means, I&C system communication device and I&C system in I&C system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |