CN111339785A - 一种基于业务建模的语义级安全审计方法 - Google Patents
一种基于业务建模的语义级安全审计方法 Download PDFInfo
- Publication number
- CN111339785A CN111339785A CN202010416553.0A CN202010416553A CN111339785A CN 111339785 A CN111339785 A CN 111339785A CN 202010416553 A CN202010416553 A CN 202010416553A CN 111339785 A CN111339785 A CN 111339785A
- Authority
- CN
- China
- Prior art keywords
- instruction
- controlled variable
- data
- flow
- business
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 40
- 238000012550 audit Methods 0.000 title claims abstract description 28
- 238000004519 manufacturing process Methods 0.000 claims abstract description 15
- 238000004458 analytical method Methods 0.000 claims abstract description 10
- 238000004891 communication Methods 0.000 claims abstract description 8
- 238000012544 monitoring process Methods 0.000 claims abstract description 6
- 230000008859 change Effects 0.000 claims description 43
- 230000008569 process Effects 0.000 claims description 14
- 230000006399 behavior Effects 0.000 claims description 9
- 238000009776 industrial production Methods 0.000 claims description 5
- 230000008672 reprogramming Effects 0.000 claims description 3
- 230000004044 response Effects 0.000 claims description 3
- 238000007619 statistical method Methods 0.000 claims description 3
- 230000002159 abnormal effect Effects 0.000 abstract description 6
- 230000006870 function Effects 0.000 description 15
- 238000011217 control strategy Methods 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 5
- 238000013515 script Methods 0.000 description 4
- 241000700605 Viruses Species 0.000 description 3
- 238000013461 design Methods 0.000 description 3
- 238000006243 chemical reaction Methods 0.000 description 2
- 229910052770 Uranium Inorganic materials 0.000 description 1
- 230000009471 action Effects 0.000 description 1
- 238000004422 calculation algorithm Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000018109 developmental process Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 230000035945 sensitivity Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000009466 transformation Effects 0.000 description 1
- JFALSRSLKYAFGM-UHFFFAOYSA-N uranium(0) Chemical compound [U] JFALSRSLKYAFGM-UHFFFAOYSA-N 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010416553.0A CN111339785B (zh) | 2020-05-18 | 2020-05-18 | 一种基于业务建模的语义级安全审计方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010416553.0A CN111339785B (zh) | 2020-05-18 | 2020-05-18 | 一种基于业务建模的语义级安全审计方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN111339785A true CN111339785A (zh) | 2020-06-26 |
CN111339785B CN111339785B (zh) | 2021-02-05 |
Family
ID=71186533
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202010416553.0A Active CN111339785B (zh) | 2020-05-18 | 2020-05-18 | 一种基于业务建模的语义级安全审计方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN111339785B (zh) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112799358A (zh) * | 2020-12-30 | 2021-05-14 | 上海磐御网络科技有限公司 | 一种工业控制安全防御系统 |
CN113119124A (zh) * | 2021-04-13 | 2021-07-16 | 北京航空航天大学 | 一种机器人控制系统的安全防护系统 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107065838A (zh) * | 2017-06-05 | 2017-08-18 | 广东顺德西安交通大学研究院 | 基于指令感知和模型响应分析的工控系统攻击检测方法 |
CN108063753A (zh) * | 2017-11-10 | 2018-05-22 | 全球能源互联网研究院有限公司 | 一种信息安全监测方法及系统 |
CN109391613A (zh) * | 2018-09-06 | 2019-02-26 | 国网山东省电力公司电力科技研究院 | 一种基于scd解析的智能变电站安全审计方法 |
CN109698831A (zh) * | 2018-12-28 | 2019-04-30 | 中电智能科技有限公司 | 数据防护方法和装置 |
-
2020
- 2020-05-18 CN CN202010416553.0A patent/CN111339785B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107065838A (zh) * | 2017-06-05 | 2017-08-18 | 广东顺德西安交通大学研究院 | 基于指令感知和模型响应分析的工控系统攻击检测方法 |
CN108063753A (zh) * | 2017-11-10 | 2018-05-22 | 全球能源互联网研究院有限公司 | 一种信息安全监测方法及系统 |
CN109391613A (zh) * | 2018-09-06 | 2019-02-26 | 国网山东省电力公司电力科技研究院 | 一种基于scd解析的智能变电站安全审计方法 |
CN109698831A (zh) * | 2018-12-28 | 2019-04-30 | 中电智能科技有限公司 | 数据防护方法和装置 |
Non-Patent Citations (2)
Title |
---|
徐凯宏等: "《安全监测技术》", 31 December 2012 * |
王勇等: "《工业控制系统网络安全防护》", 31 August 2017 * |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112799358A (zh) * | 2020-12-30 | 2021-05-14 | 上海磐御网络科技有限公司 | 一种工业控制安全防御系统 |
CN112799358B (zh) * | 2020-12-30 | 2022-11-25 | 上海磐御网络科技有限公司 | 一种工业控制安全防御系统 |
CN113119124A (zh) * | 2021-04-13 | 2021-07-16 | 北京航空航天大学 | 一种机器人控制系统的安全防护系统 |
Also Published As
Publication number | Publication date |
---|---|
CN111339785B (zh) | 2021-02-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108600193B (zh) | 一种基于机器学习的工控蜜罐识别方法 | |
CN116488939B (zh) | 计算机信息安全监测方法、系统及存储介质 | |
US9197652B2 (en) | Method for detecting anomalies in a control network | |
CN111339785B (zh) | 一种基于业务建模的语义级安全审计方法 | |
CN103259778A (zh) | 安全监视系统以及安全监视方法 | |
CN111510339B (zh) | 一种工业互联网数据监测方法和装置 | |
Lemaire et al. | A SysML extension for security analysis of industrial control systems | |
CN110825040A (zh) | 一种工业控制系统的过程控制攻击检测方法及装置 | |
CN112799358A (zh) | 一种工业控制安全防御系统 | |
CN113315767B (zh) | 一种电力物联网设备安全检测系统及方法 | |
CN114371682B (zh) | Plc控制逻辑攻击检测方法及装置 | |
CN114760103A (zh) | 一种工业控制系统异常检测系统、方法、设备及存储介质 | |
Kim et al. | STRIDE‐based threat modeling and DREAD evaluation for the distributed control system in the oil refinery | |
US11356468B2 (en) | System and method for using inventory rules to identify devices of a computer network | |
CN114666088A (zh) | 工业网络数据行为信息的侦测方法、装置、设备和介质 | |
US11683336B2 (en) | System and method for using weighting factor values of inventory rules to efficiently identify devices of a computer network | |
KR20220121745A (ko) | 스마트팩토리 시스템 | |
US10666671B2 (en) | Data security inspection mechanism for serial networks | |
CN116318783B (zh) | 基于安全指标的网络工控设备安全监测方法及装置 | |
CN114257404B (zh) | 异常外联统计告警方法、装置、计算机设备和存储介质 | |
CN110798425B (zh) | 一种黑客攻击行为的检测方法、系统及相关装置 | |
CN113341870B (zh) | 一种控制代码异常识别的系统和方法 | |
US20220067171A1 (en) | Systems and methods for automated attack planning, analysis, and evaluation | |
CN117195241B (zh) | 固件漏洞的检测方法、设备和介质 | |
CN117081855B (zh) | 蜜罐优化方法、蜜罐防护方法以及蜜罐优化系统 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: 310000 rooms 501-505, building 4, 188 Lianchuang street, Wuchang Street, Yuhang District, Hangzhou City, Zhejiang Province Patentee after: Zhejiang Mulian Internet of things Technology Co.,Ltd. Address before: 310000 rooms 501-505, building 4, 188 Lianchuang street, Wuchang Street, Yuhang District, Hangzhou City, Zhejiang Province Patentee before: Hangzhou wooden chain Internet of things Technology Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A semantic level security audit method based on business modeling Effective date of registration: 20210831 Granted publication date: 20210205 Pledgee: Hangzhou High-tech Financing Guarantee Co.,Ltd. Pledgor: Zhejiang Mulian Internet of things Technology Co.,Ltd. Registration number: Y2021330001315 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20220904 Granted publication date: 20210205 Pledgee: Hangzhou High-tech Financing Guarantee Co.,Ltd. Pledgor: Zhejiang Mulian Internet of things Technology Co.,Ltd. Registration number: Y2021330001315 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: A semantic level security audit method based on business modeling Effective date of registration: 20221021 Granted publication date: 20210205 Pledgee: Hangzhou High-tech Financing Guarantee Co.,Ltd. Pledgor: Zhejiang Mulian Internet of things Technology Co.,Ltd. Registration number: Y2022330002761 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20231016 Granted publication date: 20210205 Pledgee: Hangzhou High-tech Financing Guarantee Co.,Ltd. Pledgor: Zhejiang Mulian Internet of things Technology Co.,Ltd. Registration number: Y2022330002761 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |