CN111414624A - Safety automatic checking system and method for industrial control terminal - Google Patents
Safety automatic checking system and method for industrial control terminal Download PDFInfo
- Publication number
- CN111414624A CN111414624A CN202010232253.7A CN202010232253A CN111414624A CN 111414624 A CN111414624 A CN 111414624A CN 202010232253 A CN202010232253 A CN 202010232253A CN 111414624 A CN111414624 A CN 111414624A
- Authority
- CN
- China
- Prior art keywords
- checking
- management center
- industrial control
- control terminal
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 17
- 238000007689 inspection Methods 0.000 claims abstract description 21
- 230000005540 biological transmission Effects 0.000 claims abstract description 10
- 238000004891 communication Methods 0.000 claims description 9
- 238000009434 installation Methods 0.000 claims description 6
- 238000005516 engineering process Methods 0.000 abstract description 4
- 238000011160 research Methods 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The system and the method investigate the inspection requirements of a plurality of industries on the safety configuration of the industrial control terminal, formulate inspection standard templates suitable for the plurality of industries, deeply research the automatic inspection technology, develop automatic inspection agent software, and ensure the justice and accuracy of the inspection result. The self-developed acquisition agent software mode completely avoids the two points, the SMB and SSH protocol support is not needed, the account password is not needed, the data transmission process is encrypted, and the method has higher safety compared with the existing online checking mode.
Description
Technical Field
The invention relates to the technical field of automatic safety check, in particular to an automatic safety check system and method for an industrial control terminal, and particularly relates to an automatic safety check system and method for the industrial control terminal based on an acquisition agent.
Background
The inspection of the industrial control terminal is a necessary measure for ensuring the normal work of the industrial control terminal, and the existing inspection modes of the industrial control terminal mainly comprise a manual inspection mode and an online inspection mode. The manual checking mode has low checking efficiency, the requirement on the technical level of the checking personnel is high, the checking result is easy to have large errors due to uneven levels of the operating personnel, although some auxiliary tools are gradually introduced in the manual checking mode, the tools are mostly universal safety tools and are not suitable for different requirements of different industries on terminal safety. The online checking mode needs the industrial control terminal to open corresponding service, interface and protocol support at present, and for some important checking items, a system login account and a password need to be provided, the use scene is strictly limited, and the risk of account information leakage exists.
Disclosure of Invention
In order to solve the problems, the invention provides a safety automatic checking system and a safety automatic checking method for an industrial control terminal, which solve the problems of inaccurate result, low speed and safety in the checking process in the existing terminal configuration checking.
In order to overcome the defects in the prior art, the invention provides a solution of a safety automatic checking system and a method of an industrial control terminal, which comprises the following specific steps:
a safety automatic checking system of an industrial control terminal comprises:
a management center end as a server end and an acquisition agent end as a client end.
And the management center terminal is used for issuing a configuration checking strategy, collecting a configuration checking result reported by the industrial control terminal and performing unified multi-dimensional summary analysis display.
The collection agent end is used for analyzing the configuration checking strategy issued by the management center end, executing the corresponding configuration checking task locally, and reporting the checking result to the management center after the checking is finished.
And the administrator accesses the management center through the browser to perform policy management and check result lookup.
The user of the industrial control terminal accesses the webpage of the management center to download and install the acquisition agent software, the acquisition agent software can be normally used after being connected with the management center, and the acquisition agent terminal adopts a starting-up self-starting mode and is dormant in a background when not checked.
The management center terminal and the acquisition agent terminal both adopt an http mode for safe communication, and adopt an asymmetric encryption mode in the data transmission process.
A method for a safety automatic checking system of an industrial control terminal comprises the following steps:
step 1: firstly, deploying a B/S mode WEB system of a management center to a server, performing corresponding configuration, and normally accessing the WEB system through a browser, wherein the deployment is successful;
step 2: using a browser to access a management center on a networked industrial control terminal, downloading acquisition agent software from a webpage for installation, installing and carrying out corresponding information configuration until the acquisition agent terminal displays that the acquisition agent terminal is successfully connected with the management center, wherein the installation configuration is successful;
and step 3: after the WEB system of the management center checks that the industrial control terminal is accessed into the management center, a checking strategy can be configured, and a checking task is issued to acquisition agent software of the industrial control terminal;
and 4, step 4: after receiving the inspection task, the acquisition agent software carries out local automatic inspection and reports the result to the management center;
and 5: and the management center receives the checking results reported by the acquisition agents and stores the checking results in a warehouse, and a summary analysis module of the management center can check the safety configuration checking results of single and multiple industrial control terminals.
The management center end and the acquisition agent end carry out encryption transmission communication through a communication module via a network;
configuring a specific checking strategy in a management center through a front-end interface of the management center, and issuing the checking strategy to a specified single or multiple industrial control terminals;
the acquisition agent software on the industrial control terminal receives the task, analyzes the strategy, converts the task into a locally executed configuration checking task for checking, and reports the checking result to the management center after the checking is finished;
and the management center collects, analyzes and displays the checking results reported by the terminal on a terminal page.
The invention has the beneficial effects that:
the invention adopts a mode of installing the collection agent on the industrial control terminal to automatically check the safety configuration information of the industrial control terminal, thereby achieving the purpose of rapidly knowing the safety states of a plurality of industrial control terminals in the region, and the specific effects are as follows:
1. the method is suitable for an automatic checking technology developed by multi-industry checking standards, the checking result is quick and accurate, the automation degree is high, and manpower is saved.
2. The management center uniformly issues a checking strategy to the acquisition agent software on the industrial control terminal, supports the parallel checking of a plurality of industrial control terminals, and has high checking efficiency.
3. The issuing of the checking strategy and the reporting of the checking result between the management center and the collection agent both adopt encrypted transmission, so that the leakage of terminal information is avoided, and the safety is high.
4. The method is based on the collection agent checking mode, does not depend on SMB, SSH protocol and related services, does not need system account and password, and has wide application range.
Drawings
Fig. 1 is a schematic diagram of an automatic safety check system of an industrial control terminal according to the present invention.
Fig. 2 is a schematic diagram of a method of the automatic safety checking system of the industrial control terminal of the invention.
Detailed Description
In order to solve the problem that in a traditional manual checking mode aiming at an industrial control terminal, due to the technical level of a checker, a checking result cannot be guaranteed to be fair and accurate. The invention researches the inspection requirements of multiple industries on the safety configuration of the industrial control terminal, makes a template adapting to the inspection standards of the multiple industries, deeply researches the automatic inspection technology, develops the automatic inspection agent software, and ensures the fairness and the accuracy of the inspection result.
Secondly, the existing online checking technology depends on protocols such as SMB (system management bus), SSH (secure Shell) and the like, corresponding ports need to be opened, and checking of certain key items can be finished only by a system account and a password. The self-developed acquisition agent software mode completely avoids the two points, the SMB and SSH protocol support is not needed, the account password is not needed, the data transmission process is encrypted, and the method has higher safety compared with the existing online checking mode.
The invention will be further described with reference to the following figures and examples.
As shown in fig. 1-2, the automatic safety checking system of the industrial control terminal includes:
a management center end as a server end and an acquisition agent end as a client end. And the management center terminal is used for issuing a configuration checking strategy, collecting a configuration checking result reported by the industrial control terminal and performing unified multi-dimensional summary analysis display. The collection agent end is used for analyzing the configuration checking strategy issued by the management center end, executing the corresponding configuration checking task locally, and reporting the checking result to the management center after the checking is finished. And the administrator accesses the management center through the browser to perform policy management and check result lookup. The user of the industrial control terminal accesses the webpage of the management center to download and install the acquisition agent software, the acquisition agent software can be normally used after being connected with the management center, the acquisition agent terminal adopts a starting self-starting mode, and the acquisition agent terminal is dormant in a background when not checked, so that the occupied resources are few. The management center terminal and the acquisition agent terminal both adopt an http mode for safe communication, and adopt an asymmetric encryption mode in the data transmission process for encryption transmission, thereby ensuring the encryption safety.
The method for the safety automatic checking system of the industrial control terminal comprises the following steps:
step 1: the management center is a B/S mode WEB system, and an administrator accesses the management center through a browser to perform corresponding operation; the acquisition agent software is client software and is installed on each industrial control terminal which is required to be checked and serves as an acquisition agent terminal. Firstly, deploying a B/S mode WEB system of a management center to a server, performing corresponding configuration, and normally accessing the WEB system through a browser, wherein the deployment is successful;
step 2: using a browser to access a management center on a networked industrial control terminal, downloading acquisition agent software from a webpage for installation, installing and carrying out corresponding information configuration until the acquisition agent terminal displays that the acquisition agent terminal is successfully connected with the management center, wherein the installation configuration is successful;
and step 3: after the WEB system of the management center checks that the industrial control terminal is accessed into the management center, a checking strategy can be configured, and a checking task is issued to acquisition agent software of the industrial control terminal; the checking strategy is as follows:
in terms of administrator account management: for the administrator account, require the default account name to be changed;
in terms of guest account management: for a guest account, a guest account is disabled;
in terms of cryptographic complexity: including at least upper case letters, lower case letters, arabic numerals, and non-alphabetic characters.
And 4, step 4: after receiving the inspection task, the acquisition agent software carries out local automatic inspection and reports the inspection result to the management center; such as:
in terms of administrator account management: for the administrator account, require the default account name to be changed; violation-cause "default account administeror name is not changed. "
In terms of guest account management: for a guest account, a guest account is disabled; no violation occurs.
In terms of cryptographic complexity: at least including capital letters, lowercase letters, Arabic numerals and non-alphabetic characters; violation-cause "" password must meet complexity requirement "" unselected "enabled" ".
And 5: and the management center receives the checking results reported by the acquisition agents and stores the checking results in a warehouse, and a summary analysis module of the management center can check the safety configuration checking results of single and multiple industrial control terminals.
The management center end and the acquisition agent end carry out encryption transmission communication through a communication module via a network;
configuring a specific checking strategy in a management center through a front-end interface of the management center, and issuing the checking strategy to a specified single or multiple industrial control terminals;
the collection agent software on the industrial control terminal analyzes the strategy after receiving the task, converts the task into a locally executed configuration checking task for checking, and reports the checking result to the management center after the checking is finished;
and the management center collects, analyzes and displays the checking results reported by the terminal on a terminal page.
The present invention has been described in an illustrative manner by the embodiments, and it should be understood by those skilled in the art that the present disclosure is not limited to the embodiments described above, but is capable of various changes, modifications and substitutions without departing from the scope of the present invention.
Claims (8)
1. The utility model provides a safe automatic check system of industrial control terminal which characterized in that includes:
a management center end as a server end and an acquisition agent end as a client end.
2. The system according to claim 1, wherein the management center is configured to issue a configuration checking policy, collect configuration checking results reported by the industrial control terminal, and perform unified multidimensional summary analysis and display.
3. The system according to claim 1, wherein the collection agent is configured to analyze the configuration checking policy issued by the management center, locally perform a corresponding configuration checking task, and report a checking result to the management center after the checking is completed.
4. The system for automatically checking the safety of an industrial control terminal according to claim 1, wherein an administrator accesses the management center through a browser to perform policy management and check result lookup.
5. The system according to claim 1, wherein the user of the industrial control terminal accesses a web page of the management center to download and install the collection agent software, and connects the collection agent software to the management center for normal use, and the collection agent terminal is powered on and automatically started, and is dormant in the background when not being checked.
6. The system for automatically checking the safety of the industrial control terminal according to claim 1, wherein the management center terminal and the collection agent terminal both use http (hyper text transport protocol) for safety communication, and use an asymmetric encryption mode in the data transmission process.
7. A method for a safety automatic checking system of an industrial control terminal is characterized by comprising the following steps:
step 1: firstly, deploying a B/S mode WEB system of a management center to a server, performing corresponding configuration, and normally accessing the WEB system through a browser, wherein the deployment is successful;
step 2: using a browser to access a management center on a networked industrial control terminal, downloading acquisition agent software from a webpage for installation, installing and carrying out corresponding information configuration until the acquisition agent terminal displays that the acquisition agent terminal is successfully connected with the management center, wherein the installation configuration is successful;
and step 3: after the WEB system of the management center checks that the industrial control terminal is accessed into the management center, a checking strategy can be configured, and a checking task is issued to acquisition agent software of the industrial control terminal;
and 4, step 4: after receiving the inspection task, the acquisition agent software carries out local automatic inspection and reports the result to the management center;
and 5: and the management center receives the checking results reported by the acquisition agents and stores the checking results in a warehouse, and a summary analysis module of the management center can check the safety configuration checking results of single and multiple industrial control terminals.
8. The method for the automatic safety check system of the industrial control terminal according to claim 7, wherein the management center terminal and the collection agent terminal perform encrypted transmission communication via a network through a communication module;
configuring a specific checking strategy in a management center through a front-end interface of the management center, and issuing the checking strategy to a specified single or multiple industrial control terminals;
the acquisition agent software on the industrial control terminal receives the task, analyzes the strategy, converts the task into a locally executed configuration checking task for checking, and reports the checking result to the management center after the checking is finished;
and the management center collects, analyzes and displays the checking results reported by the terminal on a terminal page.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010232253.7A CN111414624A (en) | 2020-03-27 | 2020-03-27 | Safety automatic checking system and method for industrial control terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010232253.7A CN111414624A (en) | 2020-03-27 | 2020-03-27 | Safety automatic checking system and method for industrial control terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111414624A true CN111414624A (en) | 2020-07-14 |
Family
ID=71493315
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010232253.7A Pending CN111414624A (en) | 2020-03-27 | 2020-03-27 | Safety automatic checking system and method for industrial control terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111414624A (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101582883A (en) * | 2009-06-26 | 2009-11-18 | 西安电子科技大学 | System and method for managing security of general network |
| CN107276830A (en) * | 2017-07-28 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of cascade management system and method for secure network |
| CN109062756A (en) * | 2018-07-09 | 2018-12-21 | 何思阳 | A kind of data center concentrates the method and system of early warning and monitoring |
-
2020
- 2020-03-27 CN CN202010232253.7A patent/CN111414624A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101582883A (en) * | 2009-06-26 | 2009-11-18 | 西安电子科技大学 | System and method for managing security of general network |
| CN107276830A (en) * | 2017-07-28 | 2017-10-20 | 郑州云海信息技术有限公司 | A kind of cascade management system and method for secure network |
| CN109062756A (en) * | 2018-07-09 | 2018-12-21 | 何思阳 | A kind of data center concentrates the method and system of early warning and monitoring |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10140453B1 (en) | Vulnerability management using taxonomy-based normalization | |
| CN102437938B (en) | Large-scale network monitoring oriented virtual deployment system and method | |
| CN104717085B (en) | A kind of daily record analysis method and device | |
| CN109936621B (en) | Information security multi-page message pushing method, device, equipment and storage medium | |
| CN111651784A (en) | Log desensitization method, device, equipment and computer readable storage medium | |
| CN105119757A (en) | Method and system for operation and maintenance automation of enterprise servers | |
| CN104952117A (en) | Attendance management method | |
| CN111130922A (en) | Airborne information safety automatic test method and test platform | |
| WO2021174870A1 (en) | Network security risk inspection method and system, computer device, and storage medium | |
| CN108959029A (en) | Collect the method and system with report server abnormal log | |
| CN112463661A (en) | USB device management system and management method | |
| CN110502538A (en) | Label of drawing a portrait generates method, system, equipment and the storage medium of logical mappings | |
| CN113347060B (en) | Method, device and system for detecting power network fault based on process automation | |
| CN111506641B (en) | Data management method, data acquisition platform, data management system and storage medium | |
| CN111414624A (en) | Safety automatic checking system and method for industrial control terminal | |
| CN110535972B (en) | Centralized control and communication system, equipment and readable storage medium for platform gas detection equipment | |
| CN115333872B (en) | Security gateway analysis function verification method and device, terminal device and storage medium | |
| CN104967667A (en) | Software stability test remote monitoring system based on cloud service | |
| CN116700751A (en) | Upgrading method of server firmware and computing device | |
| CN116032581A (en) | Network equipment security management method and electronic equipment | |
| CN115454673A (en) | Data collection method, device and medium for baseboard management controller | |
| CN111651330B (en) | Data acquisition method, data acquisition device, electronic equipment and computer readable storage medium | |
| CN113127109A (en) | Interface calling method and device, electronic equipment and readable storage medium | |
| CN210693971U (en) | Network security equipment test system | |
| CN102523124A (en) | Method and apparatus for carrying out batch processing on lots of hosts in CDN network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200714 |
|
| RJ01 | Rejection of invention patent application after publication |