CN111786832A - Method and device for interconnecting attack and defense platform and various industrial control scenes - Google Patents
Method and device for interconnecting attack and defense platform and various industrial control scenes Download PDFInfo
- Publication number
- CN111786832A CN111786832A CN202010618524.2A CN202010618524A CN111786832A CN 111786832 A CN111786832 A CN 111786832A CN 202010618524 A CN202010618524 A CN 202010618524A CN 111786832 A CN111786832 A CN 111786832A
- Authority
- CN
- China
- Prior art keywords
- industrial control
- attack
- module
- platform
- defense
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/02—Standardisation; Integration
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to a method and a device for interconnecting an attack and defense platform and various industrial control scenes. The device and the method for interconnecting the attack and defense platform and various industrial control scenes can realize the interconnection of the attack and defense platform and various industrial control scenes at a scene level only by issuing the configuration file, can ensure the high efficiency, quickness and safety of connection, and meet the interconnection requirement. The interconnection device is programmable, and a user can perform secondary development according to a given function interface and the user-defined requirement. The application range comprises security companies and scientific research institutions needing to interconnect the defense and attack platform and the industrial control scene, and the defense and attack platform and the scientific research institutions are used for network interconnection at any time and any place. Has wide application prospect.
Description
Technical Field
The invention relates to a method and a device for interconnecting an attack and defense platform and various industrial control scenes, and belongs to the technical field of computer security.
Background
With the continuous development of network shooting ranges and the continuous maturation of industrial control system technical systems, a network attack and defense platform is connected with various actual or simulated scenes, so that a complete internet shooting range is formed, and the problem to be solved urgently is solved. In addition, the interconnection of the attack and defense platform and diversified scenes is also beneficial to the research on deeper and wider network security problems.
The existing interconnection methods mainly include Virtual Private Networks (VPNs), virtual extensible local area networks (VXLANs) and network private lines. The VPN adopts advanced encryption and identification protocols to protect data from snooping, can realize efficient and safe interconnection, has strong expandability and can provide larger capacity and application without adding extra infrastructure. But VPN configuration is complex, requires a high level of understanding of network and security issues, requires careful planning and configuration, requires point-to-point implementation, configuration and management, and any solution using advanced encryption techniques may be compromised. VXLAN can support more network virtual devices, realizes decoupling of physical network and virtual network, and improves device performance. However, the management is difficult, the authority is difficult to centralize, and because of using the tunnel technology, a tunnel header needs to be encapsulated and de-encapsulated for each message, thereby reducing the forwarding efficiency of the message. The network private line connection is high-speed and stable, a user can access the network for 24 hours and acquire information at any time, and the network private line connection does not have large network fluctuation, has high relative transmission quality and small time delay; but the deployment cost is too high and the price is expensive.
Through retrieval, the chinese patent document CN110290045A discloses a method for constructing a network target field software-hardware combination model under a cloud architecture, which constructs a VXLAN subnet based on an OpenStack cloud platform, and isolates a virtual device network from a physical device network. By establishing the central network node, the physical equipment and the virtual equipment pass through the central network node and rely on the software defined network technology to carry out information interaction, so that the software and hardware combination is realized, the network shooting range can carry out data communication with external physical equipment efficiently, and the practicability of the network shooting range is improved. The method realizes the expansion of a two-layer network in a three-layer network by depending on VXLAN technology, constructs a subnet based on VXLAN, and effectively isolates the data flooding between an external network and an internal network, thereby reducing the network flow flooding and improving the network transmission efficiency and the safety of a network target range.
Chinese patent document CN109743293A discloses an access method for network shooting range, a network shooting range system, and a computer storage medium, which includes: receiving a virtual machine access request, wherein the virtual machine access request is sent by a browser client, and a network target range running based on an SPICE protocol is established on the virtual machine; requesting a voiceHTML 5 client through an SPICE AGENT component, the voiceHTML 5 client being used for converting between the HTTP protocol and the SPICE protocol; connecting the voiceHTML 5 client through a websocket library; requesting a token for the virtual machine from an SPICE AGENT component; and accessing the virtual machine based on the token, and completing the interaction of the virtual machine and the browser client through the voiceHTML 5 client. The user can realize the interaction with the virtual machine on the browser, so that the simulated industrial control equipment in the network shooting range is operated or attacked, the operation can be realized directly through the browser page without pre-installing various environments in the operation terminal of the industrial control equipment for adaptation, and the convenience of operation is improved.
However, in the prior art, most of the attack and defense platforms aim at a network shooting range with interconnected industrial control scenes, simulation of attack and defense exercises and the like are performed through the attack and defense platforms and a single industrial control scene, and the connection of the attack and defense platforms and diversified scenes is not found yet, so that the interconnection and intercommunication inside the network shooting range are realized.
Disclosure of Invention
Aiming at the defects of the prior art, the invention provides a method and a device for interconnecting an attack and defense platform and various industrial control scenes. The interconnection device can realize equipment deployment under various industrial control scenes in the form of the following configuration files.
The technical scheme of the invention is as follows:
a method for interconnecting an attack and defense platform and various industrial control scenes comprises the following steps:
(1) a user issues scene configuration information to an interconnection device, wherein the configuration information comprises an IP address and a port number of an entrance of an attack and defense platform and an IP address and a port number of an industrial control scene;
(2) the configuration module sends the configuration information to the storage module for storage and submits the configuration information to the management module; under various industrial control scenes, a user needs to lead configuration information of each industrial control scene into an interconnection device at the side of an attack and defense platform, and the configuration information of the attack and defense platform needs to be configured in advance in the interconnection device of each industrial control scene;
(3) the management module in each interconnection device sends the configuration information to each module;
(4) each interconnection device configures a communication module and a gateway module according to the configuration information to complete communication connection between the interconnection device and the attack and defense platform and the industrial control scene;
(5) the object component modules of the attack and defense platform interconnection device collect key information of each industrial control scene, each industrial control scene object component module collects key information of an attack and defense platform object, data is subjected to standardized processing by adopting a uniform format, construction of the attack and defense platform object and the industrial control scene object is completed, and object data is stored in a database;
(6) mapping is established between the attack and defense platform and the industrial control scene through the communication module and the gateway module, logical connection between the attack and defense platform and the industrial control scene is realized, and mapping information is stored after the connection is successful;
(7) and the management module coordinates each module and executes each instruction.
Preferably, the data during the operation of the steps (1) to (7) is recorded by a logging module, and the log information is stored in a data storage module.
Preferably, in the step (1), the user sends the configuration file to the interconnection device by an instruction.
Preferably, in the step (2), the configuration module submits to the management module for parameter setting according to the configuration information.
Preferably, in the step (4), an HTTP protocol is used as an application layer protocol between the interconnection device and the attack and defense platform, and a TCP/IP protocol is used as a transport layer protocol for communication; and an HTTP protocol is adopted as an application layer protocol between the interconnection device and the industrial control scene, and a TCP/IP protocol is adopted as a transmission layer protocol for communication.
Preferably, in the step (5), in order to realize efficient data interaction between the defense and attack platform and the industrial control scene, a language defined by a uniform format object is adopted to perform standardized description on the scene object in the modeling process, wherein the standardized description includes definitions of various sub-objects and key information of the scene.
A device for interconnecting an attack and defense platform and various industrial control scenes comprises a platform body and a platform body, wherein the platform body is provided with a plurality of working positions;
the configuration module is used for acquiring configuration information issued by a user, sending the configuration information to the management module and storing the configuration information in the data storage module;
the management module is used for uniformly scheduling and managing other modules and uniformly distributing and managing all physical and virtual resources in the interconnection of the attack and defense platform and the industrial control scene;
the communication module is used for transmitting data between the interconnection device and the attack and defense platform and between the interconnection device and the industrial control scene;
the gateway module is used for data conversion between the attack and defense platform and the industrial control scene, and translation conversion is carried out on data according to different protocols;
the data storage module is used for storing various data, storing the data into a database and carrying out persistence operation;
the object component module is used for constructing each industrial control scene object;
the log recording module is used for recording various data during the operation of the interconnection device;
and the program controller is responsible for changing the operation control signals into instructions to be put into the memory, and can read the instructions to form control signals to be distributed to each module for execution when the interconnection device runs.
Preferably, the data storage module is connected with other modules through a uniform interface, and the data storage module comprises a plurality of different databases.
A server, comprising:
one or more processors;
a storage device having one or more programs stored thereon,
when the one or more programs are executed by the one or more processors, the one or more processors implement the method for interconnecting the defense and attack platform and various industrial control scenes.
A computer readable medium, on which a computer program is stored, wherein the computer program, when executed by a processor, implements the method for interconnecting the defense and attack platform and the industrial control scenarios.
The invention has the beneficial effects that:
1. the device and the method for interconnecting the attack and defense platform and various industrial control scenes can realize the interconnection of the attack and defense platform and various industrial control scenes at a scene level only by issuing the configuration file, can ensure the high efficiency, quickness and safety of connection, and meet the interconnection requirement. The interconnection device is programmable, and a user can perform secondary development according to a given function interface and the user-defined requirement.
2. The device and the method for interconnecting the attack and defense platform and various industrial control scenes provided by the invention have the application range including security companies and scientific research institutions needing to interconnect the attack and defense platform and the industrial control scenes, and can be used for network interconnection at any time and any place. Has wide application prospect.
Drawings
FIG. 1 is a schematic diagram of the connection relationship between the attack and defense platform and various industrial control scenes;
FIG. 2 is a block diagram of a device for interconnecting an attack and defense platform and various industrial control scenes according to the present invention;
FIG. 3 is a flow chart of a method for interconnecting an attack and defense platform with various industrial control scenes according to the present invention;
Detailed Description
The present invention will be further described by way of examples, but not limited thereto, with reference to the accompanying drawings.
Example 1:
as shown in fig. 3, the present embodiment provides a method for interconnecting an attack and defense platform and a plurality of industrial control scenes, including the following steps:
(1) a user issues scene configuration information to the interconnection device through an instruction of the process controller, wherein the configuration information comprises an IP address and a port number of an entrance of the attack and defense platform and an IP address and a port number of an industrial control scene;
(2) the configuration module sends the configuration information to the storage module for storage, submits the configuration information to the management module and sets parameters of the management module; under various industrial control scenes, a user needs to lead configuration information of each industrial control scene into an interconnection device at the side of an attack and defense platform, and the configuration information of the attack and defense platform needs to be configured in advance in the interconnection device of each industrial control scene;
(3) the management module in each interconnection device sends the configuration information to each module;
(4) configuring a communication module and a gateway module according to the configuration information, and completing communication connection between the interconnection device and the attack and defense platform and the industrial control scene;
an HTTP protocol is adopted as an application layer protocol between the interconnection device and the attack and defense platform, and a TCP/IP protocol is adopted as a transmission layer protocol for communication; and an HTTP protocol is adopted as an application layer protocol between the interconnection device and the industrial control scene, and a TCP/IP protocol is adopted as a transmission layer protocol for communication.
(5) The object component modules of the attack and defense platform interconnection device collect key information of each industrial control scene, each industrial control scene object component module collects key information of an attack and defense platform object, data is subjected to standardized processing by adopting a uniform format, construction of the attack and defense platform object and the industrial control scene object is completed, and object data is stored in a database;
in order to realize efficient data interaction between the defense platform and the industrial control scene, standardized description is carried out on scene objects by adopting a language defined by uniform format objects in the modeling process, wherein the standardized description comprises the definitions of various sub-objects and the key information of the scene.
(6) Mapping is established between the attack and defense platform and the industrial control scene through the communication module and the gateway module, logical connection between the attack and defense platform and the industrial control scene is realized, and mapping information is stored after the connection is successful;
(7) and the management module coordinates each module and executes each instruction.
Recording data during the operation of the steps (1) to (7) through a logging module, and storing the log information into a data storage module.
The working principle of the invention is that the attack and defense platform is interconnected with various industrial control scenes:
the attack and defense platform and various industrial control scenes are interconnected as shown in figure 1. When the attack and defense platform is interconnected with various industrial control scenes, an interconnection device a needs to be deployed at the edge position of the attack and defense platform, interconnection devices B1 and B2 (taking two scenes as examples) are deployed at the edge position of each industrial control scene, and the like. Firstly, a user configures the IP address and port number information of each scene on the interconnection device A, and configures the IP address and port number information of the attack and defense platforms on the interconnection devices B1 and B2. After all the devices are communicated, the interconnection device A acquires key information such as the number of equipment, the name of the equipment, the serial number, the type of the equipment, the version and the like in each scene object, and constructs the scene object. And the interconnection devices B1, B2 and the like acquire key information in the attack and defense platform, such as IP addresses, port numbers and the like to construct attack and defense platform objects, and the interconnection of the attack and defense platform and various industrial control scenes is completed. If the connection request still fails after being sent out for a certain number of times, the log module records the connection failure information.
Example 2:
as shown in fig. 2, the present embodiment provides a device for interconnecting an attack and defense platform and a plurality of industrial control scenes, which includes a device connected by a bus structure;
the configuration module is used for acquiring configuration information issued by a user, sending the configuration information to the management module and storing the configuration information in the data storage module;
the management module is used for uniformly scheduling and managing other modules and uniformly distributing and managing all physical and virtual resources in the interconnection of the attack and defense platform and the industrial control scene;
the communication module is used for transmitting data between the interconnection device and the attack and defense platform and between the interconnection device and the industrial control scene;
the gateway module is used for data conversion between the attack and defense platform and the industrial control scene, and translation conversion is carried out on data according to different protocols;
each industrial control scene is interconnected with the interconnection device of the attack and defense platform through the interconnection device of the industrial control scene, because the industrial control scenes are various, the adopted communication protocols are different, the gateway module of the attack and defense platform can carry out conversion among different protocols, and the gateway module of the industrial control scene can receive the data information of the attack and defense platform and convert the data information into the protocol type adopted by the industrial control scene;
the data storage module is used for storing various data, storing the data into a database and carrying out persistence operation;
the object component module is used for constructing each industrial control scene object;
the log recording module is used for recording various data during the operation of the interconnection device;
and the program controller is responsible for changing the operation control signals into instructions to be put into the memory, and can read the instructions to form control signals to be distributed to each module for execution when the interconnection device runs.
In order to realize efficient data interaction between the defense platform and the industrial control scene, standardized description is carried out on scene objects by adopting a language defined by uniform format objects in the modeling process, wherein the standardized description comprises the definitions of various sub-objects and the key information of the scene.
The data storage module is connected with other modules through a uniform interface and comprises a plurality of different databases. The hardware system of the device is composed of a Central Processing Unit (CPU), a memory and a network communication module. The CPU is used as the operation and control core of the device and is the final execution unit for information processing and program operation; a processor such as Broadcom BCM4709A can be used for a specific model. The Memory includes a Random Access Memory (RAM), a Read-Only Memory (ROM), and a Flash Memory (Flash Memory), and stores a support extension; the specific specification RAM adopts 512MB, DDR 3; 1G is adopted for ROM; the flash memory uses 256 MB.
The network communication module comprises a plurality of network interfaces to other devices, wherein the network interfaces comprise a network cable interface, Bluetooth, Universal Serial Bus (USB) and a wireless interface. The specific type USB interface is USB2.0 and USB3.0, and the wireless transmission rate is 1000 Mbps.
The interconnection device also comprises a software system which comprises the software modules: the system comprises a configuration module, a management module, an object component module, a communication module, a gateway module, a data storage module and a log recording module. These modules are software modules, which are logical, with their code stored in memory.
In order to realize the intercommunication and operation between the platform and various scenes, a uniform message format, a uniform data format and scene objects are defined. The message is used for transmitting various control information between the platform and the scene; the data is used to represent large-scale data flow between the network platform and the industrial control scene, such as various states of various devices and video information. The object component module implements the construction of scene objects. The scene object is used for realizing modeling of each scene, and in order to realize efficient data interaction between a platform and the scene, standardized description is carried out on the scene object by adopting a language defined by a uniform format object in the modeling process, wherein the standardized description comprises definitions of various sub-objects and key information of the scene.
Example 3:
the present embodiment provides a server, including:
one or more processors;
a storage device having one or more programs stored thereon,
when the one or more programs are executed by the one or more processors, the one or more processors implement the method for interconnecting the defense and attack platform and the various industrial control scenarios in embodiment 1.
Example 4:
the present embodiment provides a computer readable medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the method for interconnecting the defense and attack platform and the multiple industrial control scenarios in embodiment 1.
Claims (10)
1. A method for interconnecting an attack and defense platform and a plurality of industrial control scenes is characterized by comprising the following steps:
(1) a user issues scene configuration information to an interconnection device, wherein the configuration information comprises an IP address and a port number of an entrance of an attack and defense platform and an IP address and a port number of an industrial control scene;
(2) the configuration module sends the configuration information to the storage module for storage and submits the configuration information to the management module; under various industrial control scenes, a user needs to lead configuration information of each industrial control scene into an interconnection device at the side of an attack and defense platform, and the configuration information of the attack and defense platform needs to be configured in advance in the interconnection device of each industrial control scene;
(3) the management module in each interconnection device sends the configuration information to each module;
(4) each interconnection device configures a communication module and a gateway module according to the configuration information to complete communication connection between the interconnection device and the attack and defense platform and the industrial control scene;
(5) the object component modules of the attack and defense platform interconnection device collect key information of each industrial control scene, each industrial control scene object component module collects key information of an attack and defense platform object, data is subjected to standardized processing by adopting a uniform format, construction of the attack and defense platform object and the industrial control scene object is completed, and object data is stored in a database;
(6) mapping is established between the attack and defense platform and the industrial control scene through the communication module and the gateway module, logical connection between the attack and defense platform and the industrial control scene is realized, and mapping information is stored after the connection is successful;
(7) and the management module coordinates each module and executes each instruction.
2. The method for interconnecting the attack and defense platform and a plurality of industrial control scenes according to claim 1, wherein the data during the operation of the steps (1) to (7) is recorded by a log recording module, and log information is stored in a data storage module.
3. The method for interconnecting the attack and defense platform and the plurality of industrial control scenes according to claim 1, wherein in the step (1), the user sends the configuration file to the interconnecting device through an instruction.
4. The method for interconnecting the attack and defense platform and the plurality of industrial control scenes according to claim 1, wherein in the step (2), the configuration module submits the configuration information to the management module for parameter setting.
5. The method for interconnecting an attack and defense platform and a plurality of industrial control scenes according to claim 1, wherein in the step (4), an HTTP protocol is adopted as an application layer protocol between the interconnection device and the attack and defense platform, and a TCP/IP protocol is adopted as a transmission layer protocol for communication; and an HTTP protocol is adopted as an application layer protocol between the interconnection device and the industrial control scene, and a TCP/IP protocol is adopted as a transmission layer protocol for communication.
6. The method for interconnecting an attack and defense platform and a plurality of industrial control scenes according to claim 1, wherein in the step (5), in order to realize efficient data interaction between the attack and defense platform and the industrial control scenes, a language defined by a uniform format object is adopted to perform standardized description on the scene object in the modeling process, wherein the language comprises definitions of a plurality of sub-objects and key information of the scene.
7. A device for interconnecting an attack and defense platform and various industrial control scenes is characterized by comprising a platform body and a platform body, wherein the platform body is provided with a plurality of industrial control scenes;
the configuration module is used for acquiring configuration information issued by a user, sending the configuration information to the management module and storing the configuration information in the data storage module;
the management module is used for uniformly scheduling and managing other modules and uniformly distributing and managing all physical and virtual resources in the interconnection of the attack and defense platform and the industrial control scene;
the communication module is used for transmitting data between the interconnection device and the attack and defense platform and between the interconnection device and the industrial control scene;
the gateway module is used for data conversion between the attack and defense platform and the industrial control scene, and translation conversion is carried out on data according to different protocols;
the data storage module is used for storing various data, storing the data into a database and carrying out persistence operation;
the object component module is used for constructing each industrial control scene object;
the log recording module is used for recording various data during the operation of the interconnection device;
and the program controller is responsible for changing the operation control signals into instructions to be put into the memory, and can read the instructions to form control signals to be distributed to each module for execution when the interconnection device runs.
8. The device for interconnecting an attack and defense platform and a plurality of industrial control scenes according to claim 7, wherein the data storage module is connected with other modules through a uniform interface and comprises a plurality of different databases.
9. A server, comprising:
one or more processors;
a storage device having one or more programs stored thereon,
when executed by the one or more processors, cause the one or more processors to implement the method of interconnecting the defense and attack platform of any of claims 1-6 with a plurality of industrial control scenarios.
10. A computer readable medium, on which a computer program is stored, wherein the computer program, when executed by a processor, implements the method for interconnecting the defense platform of any one of claims 1 to 6 with a plurality of industrial control scenarios.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010618524.2A CN111786832B (en) | 2020-07-01 | 2020-07-01 | Method and device for interconnecting attack and defense platform and various industrial control scenes |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010618524.2A CN111786832B (en) | 2020-07-01 | 2020-07-01 | Method and device for interconnecting attack and defense platform and various industrial control scenes |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111786832A true CN111786832A (en) | 2020-10-16 |
| CN111786832B CN111786832B (en) | 2022-06-07 |
Family
ID=72759962
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010618524.2A Active CN111786832B (en) | 2020-07-01 | 2020-07-01 | Method and device for interconnecting attack and defense platform and various industrial control scenes |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111786832B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112367239A (en) * | 2021-01-11 | 2021-02-12 | 南京赛宁信息技术有限公司 | Network target range rapid interconnection system and method |
| CN114050942A (en) * | 2022-01-11 | 2022-02-15 | 浙江国利网安科技有限公司 | Security policy configuration method, device, network equipment and medium |
| CN116132221A (en) * | 2023-04-04 | 2023-05-16 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1805385A (en) * | 2006-01-11 | 2006-07-19 | 西安电子科技大学 | Network security emulation system and its emulation method |
| CN105024990A (en) * | 2015-03-30 | 2015-11-04 | 清华大学 | Deployment method and device for network security attack and defense exercise environment |
| US20180324077A1 (en) * | 2017-05-05 | 2018-11-08 | Dell Products L.P. | Method and system for providing a platform for testing of processes over server communications protocols |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN110351271A (en) * | 2019-07-09 | 2019-10-18 | 广东工业大学 | Network-combination yarn experimental system building method, system, device and storage medium |
-
2020
- 2020-07-01 CN CN202010618524.2A patent/CN111786832B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1805385A (en) * | 2006-01-11 | 2006-07-19 | 西安电子科技大学 | Network security emulation system and its emulation method |
| CN105024990A (en) * | 2015-03-30 | 2015-11-04 | 清华大学 | Deployment method and device for network security attack and defense exercise environment |
| US20180324077A1 (en) * | 2017-05-05 | 2018-11-08 | Dell Products L.P. | Method and system for providing a platform for testing of processes over server communications protocols |
| CN109802852A (en) * | 2018-12-13 | 2019-05-24 | 烽台科技(北京)有限公司 | The construction method and system of network simulation topology applied to network target range |
| CN110351271A (en) * | 2019-07-09 | 2019-10-18 | 广东工业大学 | Network-combination yarn experimental system building method, system, device and storage medium |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112367239A (en) * | 2021-01-11 | 2021-02-12 | 南京赛宁信息技术有限公司 | Network target range rapid interconnection system and method |
| CN112367239B (en) * | 2021-01-11 | 2021-04-06 | 南京赛宁信息技术有限公司 | Network target range rapid interconnection system and method |
| CN114050942A (en) * | 2022-01-11 | 2022-02-15 | 浙江国利网安科技有限公司 | Security policy configuration method, device, network equipment and medium |
| CN114050942B (en) * | 2022-01-11 | 2022-04-26 | 浙江国利网安科技有限公司 | Security policy configuration method, device, network equipment and medium |
| CN116132221A (en) * | 2023-04-04 | 2023-05-16 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
| CN116132221B (en) * | 2023-04-04 | 2023-08-25 | 鹏城实验室 | Virtual-real interconnection method, device, equipment and storage medium of network target range platform |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111786832B (en) | 2022-06-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111786832B (en) | Method and device for interconnecting attack and defense platform and various industrial control scenes | |
| CN108632343A (en) | The registration of storing networking repository is utilized via network interface device driver | |
| CN107613020A (en) | A kind of device management method and device | |
| CN111490893B (en) | Method, device and system for establishing network forwarding model | |
| CN111726421B (en) | Method and device for realizing interconnection of network target range and industrial control equipment | |
| CN104639497B (en) | Remotely access configuration method, remote access method, device and system | |
| CN104639596A (en) | System and method for multiple sender support in low latency fifo messaging using rdma | |
| CN114422010B (en) | Protocol testing method of satellite communication simulation platform based on network virtualization | |
| CN104243198B (en) | A kind of network management and system based on network configuration protocol | |
| CN106550058A (en) | Network address translation penetration method and system using same | |
| CN113900810A (en) | Distributed graph processing method, system and storage medium | |
| CN111585786A (en) | Realization of secret-free building method of big data cluster | |
| CN112688817B (en) | Network service issuing method, system and device based on government affair cloud and storage medium | |
| CN101242412A (en) | A transmission method, device and system for multi-dimension data instance | |
| CN103618661A (en) | Data separation method and system | |
| CN109358820B (en) | Data access method and device, electronic equipment and computer readable storage medium | |
| CN107181701B (en) | The collection method and device of common gateway interface data | |
| CN109687985B (en) | Automatic configuration method and system for process level network of transformer substation | |
| JP6539497B2 (en) | Communication relay system, device accommodation terminal, server side computer, program, and communication relay method | |
| Urunov et al. | Lightweight constrained management for the underwater—network management system | |
| CN109347851A (en) | A kind of request responding method and device | |
| CN112804376B (en) | Batch command execution method and device in NAT environment and storage medium | |
| CN108833469A (en) | The resource transmission method, device and terminal device of a kind of terminal to terminal | |
| CN115514514A (en) | Honeypot flow traction device and method, computer equipment and storage medium | |
| CN115391326A (en) | Data processing system and method based on block chain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB03 | Change of inventor or designer information | ||
| CB03 | Change of inventor or designer information |
Inventor after: Liu Hongri Inventor after: Sun Yunxiao Inventor after: Wang Bailing Inventor after: He Qinggang Inventor after: Xin Guodong Inventor after: Yang Xu Inventor before: Yang Xu Inventor before: Sun Yunxiao Inventor before: Wang Bailing Inventor before: He Qinggang Inventor before: Liu Hongri Inventor before: Xin Guodong |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |