CN111984999B - Safety management and control method and system for power failure first-aid repair system - Google Patents
Safety management and control method and system for power failure first-aid repair system Download PDFInfo
- Publication number
- CN111984999B CN111984999B CN202010844440.0A CN202010844440A CN111984999B CN 111984999 B CN111984999 B CN 111984999B CN 202010844440 A CN202010844440 A CN 202010844440A CN 111984999 B CN111984999 B CN 111984999B
- Authority
- CN
- China
- Prior art keywords
- user
- service data
- safety
- authority
- power failure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 230000008439 repair process Effects 0.000 title claims abstract description 108
- 238000000034 method Methods 0.000 title claims abstract description 56
- 238000012550 audit Methods 0.000 claims abstract description 37
- 238000011217 control strategy Methods 0.000 claims abstract description 17
- 238000001914 filtration Methods 0.000 claims abstract description 12
- 238000011156 evaluation Methods 0.000 claims abstract description 11
- 230000006399 behavior Effects 0.000 claims description 63
- 230000015654 memory Effects 0.000 claims description 21
- 238000007726 management method Methods 0.000 claims description 15
- 238000002955 isolation Methods 0.000 claims description 14
- 238000004519 manufacturing process Methods 0.000 claims description 13
- 238000003860 storage Methods 0.000 claims description 11
- 238000004891 communication Methods 0.000 claims description 9
- 238000012545 processing Methods 0.000 claims description 9
- 238000012795 verification Methods 0.000 claims description 9
- 238000005516 engineering process Methods 0.000 claims description 5
- 238000011084 recovery Methods 0.000 claims description 4
- 230000002159 abnormal effect Effects 0.000 claims description 3
- 238000000586 desensitisation Methods 0.000 claims description 3
- 238000009826 distribution Methods 0.000 claims description 3
- 230000008569 process Effects 0.000 description 4
- 230000009471 action Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012502 risk assessment Methods 0.000 description 2
- 239000007787 solid Substances 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 238000004590 computer program Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/06—Electricity, gas or water supply
Abstract
The invention discloses a safety control method and a system for a power failure first-aid repair system, wherein the method comprises the following steps: physically isolating the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, the safety risk evaluation result and the service data flow direction, and judging and filtering the safety level of the service data when data are exchanged; dividing a physical layer of the power failure first-aid repair command platform into different areas according to requirements, and formulating an access control strategy of each area according to user roles and service data flow direction among the areas; acquiring service data of different areas, acquiring various logs from available service data, and generating an audit report; and distributing the access authority according to the user role, the geographic position and the security levels of different areas, and adjusting the access authority of the user according to the user operation log. By implementing the method and the system, the safe operation of the power failure emergency repair command platform and the safety of the service data are guaranteed.
Description
Technical Field
The invention relates to the field of safety control of power line repair operation terminals, in particular to a safety control method and a system of a power failure repair system.
Background
The power failure emergency repair command platform is constructed through the intelligent mobile terminal technology, panoramic multidimensional display of power grid failure information on the intelligent mobile terminal is achieved, limitation in the existing office mode can be effectively overcome, management level and working efficiency are improved, managers and operators at all levels are helped to master power grid operation states at any time and any place, and diversified office work is achieved. As the electrical fault emergency repair command platform is used as an important support platform for electrical fault emergency repair, related service systems are very many, and important enterprise information and data are included, high requirements are provided for safety control of the electrical fault emergency repair command platform. Therefore, how to perform safety control on the electrical fault emergency repair command platform to ensure the safety of the system becomes a problem that must be solved by the electrical fault emergency repair command platform.
Disclosure of Invention
Therefore, the technical problem to be solved by the present invention is to overcome the defect in the prior art that it is difficult to perform security control on the electrical fault emergency repair command platform, so as to provide a security control method and system for an electrical fault emergency repair system.
In order to achieve the purpose, the invention provides the following technical scheme:
in a first aspect, an embodiment of the present invention provides a safety control method for a power failure emergency repair system, including:
the method comprises the steps that the power failure emergency repair command platform is physically isolated according to the application environment of the power failure emergency repair command platform, a safety risk evaluation result and the flow direction of service data, the service data related to the internet are deployed in an information extranet, the service data related to the inside of the platform are deployed in an information intranet, and when the service data deployed in the information extranet and the service data deployed in the information intranet are subjected to data exchange, safety grade judgment and filtering are carried out on the service data;
divide into key protection core district, safety zone and basic safety district with the physical layer of electrical fault rush-repair command platform according to service assurance demand, information security demand and production safety demand to dispose network isolation equipment between key protection core district and safety zone, safety zone and basic safety zone respectively, according to the business data flow direction between user role and each district and formulate the access control strategy in each district, the user role includes: general users, service application managers, system managers and leader users;
acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or warning event according to the audit report when the error or warning event occurs;
according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, the access authority is distributed on the basis of the user role, user account information, user login time, user logout time, an access terminal address, an operation object and an operation mode are recorded, a user operation log is generated, and the access authority of the user is adjusted according to the user operation log.
In an embodiment, the performing security authentication and filtering on the service data includes:
the safety level of the service data is judged, and when the service data are sensitive data, the data exchange between the service data deployed in the information extranet and the service data deployed in the information intranet is forbidden;
and when the service data are insensitive data, performing desensitization processing on the service data and then performing data exchange.
In an embodiment, the formulating an access control policy for each zone according to a user role and a traffic data flow direction between the zones includes:
when the service data flows from the basic security zone to the security zone or from the security zone to the key protection core zone, allowing a system administrator and a leader user to access the service data;
when business data flows from a security zone to a basic security zone or from an important protection core zone to a security zone, all user roles are allowed to access the business data.
In an embodiment, the adjusting the access right of the user according to the user operation log includes:
comparing the user account information with locally stored user account information, and judging that the user account is in initial login when the comparison result is inconsistent;
when the user account is in initial login, obtaining access authority of the user according to the user account information, wherein the access authority comprises: the power failure emergency repair command platform comprises an object level authority and a behavior level authority, wherein the object level authority is used for modifying the behavior level authority, and the behavior level authority is used for acquiring behavior data of a corresponding behavior level from the power failure emergency repair command platform;
when the user account is initially logged in, firstly judging whether the user has the authority at the object level, when the user has the authority at the object level, executing the authority, returning the modified authority at the behavior level to the user, when the user does not have the authority at the object level, judging whether the user has the authority at the behavior level, when the user has the authority at the behavior level, executing the authority, and returning corresponding behavior data acquired by the authority at the behavior level to the user;
when the user account is in initial login, the behavior state of the user when the user execution authority is evaluated according to the user operation log, and when the behavior state is abnormal when the user execution authority is judged, the access authority of the user is adjusted;
and comparing the user account information with locally stored user account information, judging that the user account is not initially logged in when the comparison result is consistent, and accessing the power failure emergency repair command platform according to a set access strategy.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
the method comprises the steps of adopting a double-equipment and double-link mode to be connected and communicated with a power failure first-aid repair command platform, shielding any one line from a service list when the line has a failure, switching the line to a normal line and communicating with communication equipment matched with the normal line, switching the original line and the original communication equipment matched with the original line after the failure recovery is detected, and recording failure information to a system operation log.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
and acquiring the system operation time and the downtime according to the system operation log, acquiring the system availability according to the system operation time and the downtime, and generating prompt information for upgrading the background software and hardware architecture when the system availability is smaller than a preset threshold value.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
acquiring service data in a key protection core area, a security area and a basic security area, encrypting and storing sensitive data in the service data by using a public key infrastructure as a key, and performing backup processing on the service data by using data backup, a mirror image technology and a mirror image server.
In a second aspect, an embodiment of the present invention provides a safety management and control system for an electrical fault emergency repair system, including:
the physical isolation module is used for physically isolating the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, a safety risk evaluation result and a service data flow direction, deploying service data related to the internet in an information extranet, deploying service data related to the inside of the platform in an information intranet, and judging and filtering the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data;
the regional division module is used for dividing the physical layer of the electric power fault rush-repair command platform into a key protection core area, a safety area and a basic safety area according to the service guarantee requirement, the information safety requirement and the production safety requirement, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating the access control strategy of each area according to the user role and the service data flow direction between each area, the user role comprises: general users, service application managers, system managers and leader users;
the safety audit module is used for acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or a warning event according to the audit report when the error or the warning event occurs;
and the authority distribution module is used for distributing the access authority on the basis of the user role according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, recording user account information, user login time, logout time, an access terminal address, an operation object and an operation mode, generating a user operation log, and adjusting the access authority of the user according to the user operation log.
In a third aspect, an embodiment of the present invention provides a computer-readable storage medium, where computer instructions are stored, and the computer instructions are configured to cause the computer to execute the safety control method of the power failure emergency repair system according to the first aspect of the embodiment of the present invention.
In a fourth aspect, an embodiment of the present invention provides a computer device, including: the safety management and control method of the power failure emergency repair system comprises a memory and a processor, wherein the memory and the processor are in communication connection with each other, the memory stores computer instructions, and the processor executes the computer instructions so as to execute the safety management and control method of the power failure emergency repair system according to the first aspect of the embodiment of the invention.
The technical scheme of the invention has the following advantages:
the safety management and control method of the power failure emergency repair system provided by the invention physically isolates the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, the safety risk evaluation result and the service data flow direction, deploys the service data related to the internet in an information extranet, deploys the service data related to the inside of the platform in an information intranet, and judges and filters the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data; dividing a physical layer of the power failure first-aid repair command platform into a key protection core area, a safety area and a basic safety area according to service guarantee requirements, information safety requirements and production safety requirements, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating an access control strategy of each area according to user roles and service data flow direction between the areas; acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or warning event according to the audit report when the error or warning event occurs; according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, the access authority is distributed on the basis of the user role, the user account information, the user login time, the user logout time, the access terminal address, the operation object and the operation mode are recorded, a user operation log is generated, and the access authority of the user is adjusted according to the user operation log. The power failure emergency repair command platform is physically isolated, the service data related to the internet are deployed in an information outer network, and the service data related to the inside of the platform are deployed in an information inner network, so that the safety of the service data is guaranteed. The physical layer of the power failure first-aid repair command platform is divided into a key protection core area, a safety area and a basic safety area, and access control strategies of all areas are formulated according to user roles and the flow direction of service data among all areas, so that the service guarantee requirement, the information safety requirement and the production safety requirement of the platform are met, different access control strategies are provided for users with different roles, and the safety of the service data is guaranteed. The reason of the problem and the responsible person who causes the error or warning event can be accurately positioned through the audit report, the problems existing in the platform are modified and perfected in time, and the safe operation of the power failure first-aid repair command platform is guaranteed. The access authority of the user is adjusted through the user operation log, appropriate authority is provided for users with different roles, and sensitive data leakage is avoided.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and other drawings can be obtained by those skilled in the art without creative efforts.
Fig. 1 is a flowchart of a specific example of a safety control method of a power failure emergency repair system according to an embodiment of the present invention;
fig. 2 is a flowchart of another specific example of a safety control method of a power failure emergency repair system according to an embodiment of the present invention;
fig. 3 is a flowchart of another specific example of a safety control method of a power failure emergency repair system according to an embodiment of the present invention;
fig. 4 is a flowchart of another specific example of a safety control method of a power failure emergency repair system according to an embodiment of the present invention;
fig. 5 is a schematic block diagram of a specific example of a safety management and control system of the electrical fault emergency repair system in the embodiment of the present invention;
fig. 6 is a composition diagram of a specific example of a computer device according to an embodiment of the present invention.
Detailed Description
The technical solutions of the present invention will be described clearly and completely with reference to the accompanying drawings, and it should be understood that the described embodiments are some, but not all embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
In the description of the present invention, it should be noted that, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, e.g., as meaning either a fixed connection, a removable connection, or an integral connection; can be mechanically or electrically connected; the two elements may be directly connected or indirectly connected through an intermediate medium, or may be communicated with each other inside the two elements, or may be wirelessly connected or wired connected. The specific meanings of the above terms in the present invention can be understood in specific cases to those skilled in the art.
In addition, the technical features involved in the different embodiments of the present invention described below may be combined with each other as long as they do not conflict with each other.
The embodiment of the invention provides a safety control method of a power failure emergency repair system, which comprises the following steps as shown in figure 1:
step S1: the method comprises the steps of physically isolating a power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, a safety risk evaluation result and the flow direction of service data, deploying the service data related to the internet in an information extranet, deploying the service data related to the inside of the platform in an information intranet, and judging and filtering the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data.
In a specific embodiment, the application environment of the electrical fault first-aid repair command platform is very complex, a large number of software and hardware platform devices and various internal and external network channels are involved, the internal and external connections are tight, and a large safety risk is faced in the technical and management aspects. Therefore, the electric power fault rush-repair command platform follows the principle of information internal and external network isolation, the electric power fault rush-repair command platform is physically isolated by taking a safety risk assessment result and a service data flow direction as guidance, service data related to the internet are deployed in an information external network, and service data related to the inside of the platform are deployed in an information internal network, so that the safe operation of the electric power fault rush-repair command platform is ensured. Meanwhile, when the data exchange is carried out on the internal and external network service data, the safety level judgment and the filtering are carried out on the service data, and the service data safety of the power failure emergency repair command platform is further ensured. And the safety risk evaluation result is obtained according to the evaluation of the technical level and the management level of the power failure emergency repair command platform.
In a specific embodiment, as shown in fig. 2, when data exchange is performed between service data deployed in an information extranet and service data deployed in an information intranet, the security level judgment and filtering are performed on the service data, which includes the following steps:
step S11: and judging the safety level of the service data, and prohibiting data exchange between the service data deployed in the information extranet and the service data deployed in the information intranet when the service data is sensitive data.
Step S12: and when the service data is insensitive data, performing desensitization processing on the service data and then performing data exchange.
In the embodiment of the invention, the sensitive data can be divided into core sensitive data and basic sensitive data. By judging and filtering the safety level of the service data, the leakage of sensitive data is avoided.
Step S2: divide into key protection core district, safety zone and basic safety district according to the physical layer of service assurance demand, information security demand and production safety demand with the command platform is salvageed to power failure to dispose network isolation equipment between key protection core district and safety zone, safety zone and basic safety district respectively, according to the business data flow direction between user role and each district and formulate the access control strategy in each district, the user role includes: the system comprises general users, a service application manager, a system manager and a leader user, wherein the highest authority level is the leader user, the system manager is the next, the service application manager is the next, and the general users are the last.
In a specific embodiment, the electrical fault emergency repair command platform is used as a bearing platform for the electrical fault emergency repair service of the power grid service, and high requirements are provided for service guarantee requirements, information safety requirements and production safety requirements of the platform, so that a physical layer of the electrical fault emergency repair command platform is divided into a key protection core area, a safety area and a basic safety area. The security level of the key protection core area is higher than that of the security area, the security level of the security area is higher than that of the basic security area, the key protection core area is used for storing core sensitive data, the security area is used for storing basic sensitive data, and the basic security area is used for storing basic data (namely the insensitive data). In order to guarantee the safety of the service data of each area, the electric power fault first-aid repair command platform deploys network isolation equipment between a key protection core area and a safety area and between the safety area and a basic safety area respectively and formulates an access control strategy of each area.
In the embodiment of the present invention, as shown in fig. 3, the step of formulating an access control policy for each zone according to a user role and a traffic data flow direction between each zone includes the following steps:
step S21: when business data flows from a basic security zone to a security zone or from the security zone to an important protection core zone, a system administrator and a leader user are allowed to access the business data.
Step S22: when business data flows from a security zone to a basic security zone or from an important protection core zone to a security zone, all user roles are allowed to access the business data.
Step S3: the method comprises the steps of obtaining service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, obtaining system operation logs, user operation logs, application database logs and operating system logs from the available service data, carrying out safety audit on the system operation logs, the user operation logs, the application database logs and the operating system logs to generate an audit report, and positioning responsible persons causing errors or warning events according to the audit report when errors or warning events occur.
In a specific embodiment, in order to ensure the integrity of the service data of the electrical fault emergency repair command platform, integrity check needs to be performed according to constraint conditions, where the specific constraint conditions include: non-null constraints, missing constraints, check constraints, primary key constraints, unique constraints, and foreign key constraints. In order to better solve the problems when the problems occur and timely avoid possible bugs and risks, in the embodiment of the invention, safety audit is performed on a system operation log, a user operation log, an application database log and an operation system log to generate an audit report, when an error or a warning event occurs, the problem reason can be accurately positioned according to the audit report, a responsible person causing the error or the warning event is positioned, the problem reason is reported and a corresponding responsible person is notified, so that the problems existing in the platform can be modified and perfected timely, and the safe operation of the power failure emergency repair command platform is ensured.
Step S4: according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, the access authority is distributed on the basis of the user role, the user account information, the user login time, the user logout time, the access terminal address, the operation object and the operation mode are recorded, a user operation log is generated, and the access authority of the user is adjusted according to the user operation log.
In a specific embodiment, the power failure emergency repair command platform of the power supply unit belonging to different regions limits the range of the geographic position of the user, for example, when the user in the region a logs in the power failure emergency repair command platform, the user only can access the service data in the region a, and access the service data in different levels in the region a according to the authority level of the user role, the security levels of the key protection core region, the security region and the basic security region, so as to ensure the safety of the background application of the corresponding power supply unit. When the access authority is set improperly, the access authority of the user can be adjusted at any time according to the user operation log.
In the embodiment of the present invention, as shown in fig. 4, adjusting the access right of the user according to the user operation log includes the following steps:
step S41: and comparing the user account information with locally stored user account information, and judging that the user account is the first login when the comparison result is inconsistent.
Specifically, when a different user logs in the electrical fault rush-repair command platform, the difference between the initial login and the second login (i.e., the initial login) exists, and when the user logs in for the first time, whether the right configured for the user by the electrical fault rush-repair command platform is appropriate is not determined, and whether the right configuration is appropriate can be evaluated only by performing actual operation. And the user who logs in again is configured with proper authority according to the previous operation log. Therefore, in order to configure proper authority for the user, it is necessary to determine whether the user account is the first login.
Step S42: when the user account is in initial login, the access authority of the user is acquired according to the user account information, wherein the access authority comprises: the method comprises the following steps of object-level permission and behavior-level permission, wherein the object-level permission is used for modifying the behavior-level permission, and the behavior-level permission is used for acquiring behavior data of a corresponding behavior level from a power failure emergency repair command platform.
Specifically, when a user account is logged in for the first time, different user roles have different access permissions, when the user role is a leader user, the user has object-level permissions and behavior-level permissions, and the leader user modifies the permissions of system administrators, service application administrators and general users according to the object-level permissions; when the user role is a system administrator, the user has the object level authority and the behavior level authority, and the system administrator modifies the business application administrator and the behavior level authority of the general user according to the object level authority; when the user role is a service application manager, the user has the authority at the object level and the authority at the action level, and the service application manager modifies the authority at the action level of a general user according to the authority at the object level; when the user role is a general user, the user has only the authority of the behavior level. And each user with different roles has the authority of the behavior level and is used for acquiring the behavior data of the corresponding behavior level from the power failure emergency repair command platform.
Step S43: when the user account is initially logged in, firstly judging whether the user has the authority at the object level, when the user has the authority at the object level, executing the authority, returning the modified authority at the behavior level to the user, when the user does not have the authority at the object level, judging whether the user has the authority at the behavior level, when the user has the authority at the behavior level, executing the authority, and returning corresponding behavior data acquired by the authority at the behavior level to the user.
Specifically, when the leader user logs in for the first time, it is judged that the user has the authority at the object level, the authority is executed, the authorities at the behavior levels of other roles are modified, the modified authority at the behavior level is returned to the leader user and the modified user, and after the execution of the authority at the object level is finished, the authority at the behavior level of the leader user is executed, and the behavior data corresponding to the authority at the behavior level is acquired. When the user role is a system administrator or a business application administrator, the authority execution process is the same as that of the leader user, and details are not repeated here. When a general user logs in for the first time, firstly, the user is judged to have no authority of the object level, then, the user is judged to have the authority of the behavior level, the authority of the behavior level of the user is executed, and the behavior data corresponding to the authority of the behavior level is obtained.
Step S44: when the user account is in initial login, the behavior state of the user when the user executes the authority is evaluated according to the user operation log, and when the behavior state when the user executes the authority is judged to be abnormal, the access authority of the user is adjusted.
Specifically, whether the authority of the user who logs in for the first time is proper or not is judged according to the user operation log (namely the authority executing process). For example, when the user role is a service application manager, if the service data that can only be obtained by the system manager role can be obtained according to the permission of the user, it indicates that the permission configuration of the service application manager is not appropriate at this time, and the permission of the service application manager needs to be adjusted to the permission that the service application manager role has.
Step S45: and comparing the user account information with locally stored user account information, judging whether the user account is the first login when the comparison result is consistent, and accessing the power failure first-aid repair command platform according to a set access strategy.
Specifically, when the user does not log in for the first time, the user configures proper authority according to the previous operation log, the behavior state when the user executes the authority does not need to be evaluated again, and the power failure emergency repair command platform is accessed according to the established access strategy, so that the workload of the power failure emergency repair command platform is reduced.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
the method comprises the steps of adopting a double-equipment and double-link mode to be connected and communicated with a power failure first-aid repair command platform, shielding any one line from a service list when the line has a failure, switching the line to a normal line and communicating with communication equipment matched with the normal line, switching the original line and the original communication equipment matched with the original line after the failure recovery is detected, and recording failure information to a system operation log.
In a specific embodiment, in order to ensure the safe operation of the electrical fault emergency repair command platform, a redundancy design is generally adopted, for example, a dual-device and dual-link mode is adopted to connect and communicate with the electrical fault emergency repair command platform, so that when a line fails, the communication is terminated, and the electrical fault emergency repair command platform cannot operate.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
and acquiring the platform operation time and the downtime according to the system operation log, acquiring the platform availability according to the platform operation time and the downtime, and generating prompt information for upgrading the background software and hardware architecture when the platform availability is smaller than a preset threshold value.
In a specific embodiment, the preset threshold is 99.9%, and when the availability of the system is less than 99.9%, it indicates that the capability of the platform to provide continuous service cannot meet the demand of power failure emergency repair command, and software and hardware architecture upgrading needs to be performed in the background.
In an embodiment, the safety control method of the electrical fault emergency repair system further includes:
the method comprises the steps of obtaining service data in a key protection core area, a security area and a basic security area, carrying out encryption storage on sensitive data in the service data by using a public key infrastructure as a secret key, and carrying out backup processing on the service data by using data backup, a mirror image technology and a mirror image server.
In a specific embodiment, sensitive data in service data must be encrypted and stored to ensure data security of the sensitive data, and in the embodiment of the present invention, a public key infrastructure is used as a key to perform encryption/decryption. Meanwhile, the data backup and mirror image technology and the mirror image server measure are adopted to carry out backup processing on the service data, so that the manageability, high safety, integrity and easy recovery of the service data are improved.
The safety management and control method of the power failure emergency repair system provided by the invention physically isolates the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, the safety risk evaluation result and the service data flow direction, deploys the service data related to the internet in an information extranet, deploys the service data related to the inside of the platform in an information intranet, and judges and filters the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data; dividing a physical layer of the power failure first-aid repair command platform into a key protection core area, a safety area and a basic safety area according to service guarantee requirements, information safety requirements and production safety requirements, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating an access control strategy of each area according to user roles and service data flow direction between the areas; acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or warning event according to the audit report when the error or warning event occurs; according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, the access authority is distributed on the basis of the user role, the user account information, the user login time, the user logout time, the access terminal address, the operation object and the operation mode are recorded, a user operation log is generated, and the access authority of the user is adjusted according to the user operation log. The power failure emergency repair command platform is physically isolated, the service data related to the internet are deployed in an information outer network, and the service data related to the inside of the platform are deployed in an information inner network, so that the safety of the service data is guaranteed. The physical layer of the power failure first-aid repair command platform is divided into a key protection core area, a safety area and a basic safety area, and access control strategies of all areas are formulated according to user roles and the flow direction of service data among all areas, so that the service guarantee requirement, the information safety requirement and the production safety requirement of the platform are met, different access control strategies are provided for users with different roles, and the safety of the service data is guaranteed. The reason of the problem and the responsible person who causes the error or warning event can be accurately positioned through the audit report, the problems existing in the platform are modified and perfected in time, and the safe operation of the power failure first-aid repair command platform is guaranteed. The access authority of the user is adjusted through the user operation log, appropriate authority is provided for users with different roles, and sensitive data leakage is avoided.
An embodiment of the present invention further provides a safety management and control system for an electrical fault emergency repair system, as shown in fig. 5, including:
the physical isolation module 1 is used for physically isolating the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, a safety risk assessment result and a service data flow direction, deploying service data related to the internet in an information extranet, deploying service data related to the inside of the platform in an information intranet, and judging and filtering the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data. For details, refer to the related description of step S1 in the above method embodiment, and are not described herein again.
The area division module 2 is used for dividing the physical layer of the power failure emergency repair command platform into a key protection core area, a safety area and a basic safety area according to the service guarantee requirement, the information safety requirement and the production safety requirement, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating the access control strategy of each area according to the user role and the service data flow direction between each area, wherein the user role comprises: general users, business application administrators, system administrators, and leader users. For details, refer to the related description of step S2 in the above method embodiment, and are not described herein again.
And the safety audit module 3 is used for acquiring service data in the key protection core area, the safety area and the basic safety area, performing integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, performing safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning responsible persons causing errors or warning events according to the audit report when errors or warning events occur. For details, refer to the related description of step S3 in the above method embodiment, and are not described herein again.
And the authority distribution module 4 is used for distributing the access authority based on the user role according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, recording the user account information, the user login time, the logout time, the access terminal address, the operation object and the operation mode, generating a user operation log, and adjusting the access authority of the user according to the user operation log. For details, refer to the related description of step S4 in the above method embodiment, and are not described herein again.
The safety management and control system of the power failure emergency repair system provided by the invention physically isolates the power failure emergency repair command platform by applying the safety management and control method of the power failure emergency repair system according to the application environment of the power failure emergency repair command platform, the safety risk evaluation result and the service data flow direction, deploys the service data related to the internet in the information extranet, deploys the service data related to the inside of the platform in the information intranet, and judges and filters the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data; dividing a physical layer of the power failure first-aid repair command platform into a key protection core area, a safety area and a basic safety area according to service guarantee requirements, information safety requirements and production safety requirements, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating an access control strategy of each area according to user roles and service data flow direction between the areas; acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or warning event according to the audit report when the error or warning event occurs; according to the user role, the geographic position and the security level of the key protection core area, the security area and the basic security area, the access authority is distributed on the basis of the user role, the user account information, the user login time, the user logout time, the access terminal address, the operation object and the operation mode are recorded, a user operation log is generated, and the access authority of the user is adjusted according to the user operation log. The power failure emergency repair command platform is physically isolated, the service data related to the internet are deployed in an information outer network, and the service data related to the inside of the platform are deployed in an information inner network, so that the safety of the service data is guaranteed. The physical layer of the power failure first-aid repair command platform is divided into a key protection core area, a safety area and a basic safety area, and access control strategies of all areas are formulated according to user roles and the flow direction of service data among all areas, so that the service guarantee requirement, the information safety requirement and the production safety requirement of the platform are met, different access control strategies are provided for users with different roles, and the safety of the service data is guaranteed. The reason of the problem and the responsible person who causes the error or warning event can be accurately positioned through the audit report, the problems existing in the platform are modified and perfected in time, and the safe operation of the power failure first-aid repair command platform is guaranteed. The access authority of the user is adjusted through the user operation log, appropriate authority is provided for users with different roles, and sensitive data leakage is avoided.
An embodiment of the present invention provides a computer device, as shown in fig. 6, the device may include a processor 61 and a memory 62, where the processor 61 and the memory 62 may be connected by a bus or in another manner, and fig. 6 takes the connection by the bus as an example.
The processor 61 may be a Central Processing Unit (CPU). The Processor 61 may also be other general purpose processors, Digital Signal Processors (DSPs), Application Specific Integrated Circuits (ASICs), Field Programmable Gate Arrays (FPGAs) or other Programmable logic devices, discrete Gate or transistor logic devices, discrete hardware components, or combinations thereof.
The memory 62, which is a non-transitory computer readable storage medium, may be used to store non-transitory software programs, non-transitory computer executable programs, and modules, such as the corresponding program instructions/modules in embodiments of the present invention. The processor 61 executes various functional applications and data processing of the processor by running the non-transitory software programs, instructions and modules stored in the memory 62, that is, implements the safety control method of the power failure emergency repair system in the above method embodiment.
The memory 62 may include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required for at least one function; the storage data area may store data created by the processor 61, and the like. Further, the memory 62 may include high speed random access memory, and may also include non-transitory memory, such as at least one magnetic disk storage device, flash memory device, or other non-transitory solid state storage device. In some embodiments, the memory 62 may optionally include memory located remotely from the processor 61, and these remote memories may be connected to the processor 61 via a network. Examples of such networks include, but are not limited to, the internet, intranets, mobile communication networks, and combinations thereof.
One or more modules are stored in memory 62 and, when executed by processor 61, perform a method of safety management of a power fail-over system as in the embodiment shown in fig. 1-4.
The details of the computer device can be understood by referring to the corresponding descriptions and effects in the embodiments shown in fig. 1-4, and are not described herein again.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program that can be stored in a computer-readable storage medium and that when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic Disk, an optical Disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a Flash Memory (Flash Memory), a Hard Disk (Hard Disk Drive, abbreviated as HDD) or a Solid State Drive (SSD), etc.; the storage medium may also comprise a combination of memories of the kind described above.
It should be understood that the above examples are only for clarity of illustration and are not intended to limit the embodiments. Other variations and modifications will be apparent to persons skilled in the art in light of the above description. And are neither required nor exhaustive of all embodiments. And obvious variations or modifications of the invention may be made without departing from the spirit or scope of the invention.
Claims (10)
1. A safety control method of a power failure emergency repair system is characterized by comprising the following steps:
the method comprises the steps that the power failure emergency repair command platform is physically isolated according to the application environment of the power failure emergency repair command platform, a safety risk evaluation result and the flow direction of service data, the service data related to the internet are deployed in an information extranet, the service data related to the inside of the platform are deployed in an information intranet, and when the service data deployed in the information extranet and the service data deployed in the information intranet are subjected to data exchange, safety grade judgment and filtering are carried out on the service data;
divide into key protection core district, safety zone and basic safety district with the physical layer of electrical fault rush-repair command platform according to service assurance demand, information security demand and production safety demand to dispose network isolation equipment between key protection core district and safety zone, safety zone and basic safety zone respectively, according to the business data flow direction between user role and each district and formulate the access control strategy in each district, the user role includes: general users, service application managers, system managers and leader users;
acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or warning event according to the audit report when the error or warning event occurs;
according to the user role, the geographic position and the security levels of the key protection core area, the security area and the basic security area, allocating access authority on the basis of the user role, recording user account information, user login time, logout time, an access terminal address, an operation object and an operation mode, generating a user operation log, and adjusting the access authority of the user according to the user operation log;
the adjusting the access authority of the user according to the user operation log comprises the following steps:
comparing the user account information with locally stored user account information, and judging that the user account is in initial login when the comparison result is inconsistent;
when the user account is in initial login, obtaining access authority of the user according to the user account information, wherein the access authority comprises: the power failure emergency repair command platform comprises an object level authority and a behavior level authority, wherein the object level authority is used for modifying the behavior level authority, and the behavior level authority is used for acquiring behavior data of a corresponding behavior level from the power failure emergency repair command platform;
when the user account is initially logged in, firstly judging whether the user has the authority at the object level, when the user has the authority at the object level, executing the authority, returning the modified authority at the behavior level to the user, when the user does not have the authority at the object level, judging whether the user has the authority at the behavior level, when the user has the authority at the behavior level, executing the authority, and returning corresponding behavior data acquired by the authority at the behavior level to the user.
2. The safety control method for the electrical fault emergency repair system according to claim 1, wherein the performing safety certification and filtering on the service data includes:
the safety level of the service data is judged, and when the service data are sensitive data, the data exchange between the service data deployed in the information extranet and the service data deployed in the information intranet is forbidden;
and when the service data are insensitive data, performing desensitization processing on the service data and then performing data exchange.
3. The method for safety management and control of a power failure emergency repair system according to claim 1, wherein the step of formulating an access control policy for each zone according to a user role and a traffic data flow direction between each zone comprises:
when the service data flows from the basic security zone to the security zone or from the security zone to the key protection core zone, allowing a system administrator and a leader user to access the service data;
when business data flows from a security zone to a basic security zone or from an important protection core zone to a security zone, all user roles are allowed to access the business data.
4. The method for safety control of an electrical fault emergency repair system according to claim 1, wherein the adjusting of the access right of the user according to the user operation log further comprises:
when the user account is in initial login, the behavior state of the user when the user execution authority is evaluated according to the user operation log, and when the behavior state is abnormal when the user execution authority is judged, the access authority of the user is adjusted;
and comparing the user account information with locally stored user account information, judging that the user account is not the first login when the comparison result is consistent, and accessing the power failure first-aid repair command platform according to a set access strategy.
5. The method for safety control of a power fail-over system according to claim 1, further comprising:
the method comprises the steps of adopting a double-equipment and double-link mode to be connected and communicated with a power failure first-aid repair command platform, shielding any one line from a service list when the line has a failure, switching the line to a normal line and communicating with communication equipment matched with the normal line, switching the original line and the original communication equipment matched with the original line after the failure recovery is detected, and recording failure information to a system operation log.
6. The method for safety control of a power fail-over system according to claim 1, further comprising:
and acquiring the system operation time and the downtime according to the system operation log, acquiring the system availability according to the system operation time and the downtime, and generating prompt information for upgrading the background software and hardware architecture when the system availability is smaller than a preset threshold value.
7. The method for safety control of a power fail-over system according to claim 1, further comprising:
acquiring service data in a key protection core area, a security area and a basic security area, encrypting and storing sensitive data in the service data by using a public key infrastructure as a key, and performing backup processing on the service data by using data backup, a mirror image technology and a mirror image server.
8. The utility model provides a safety control system of electrical fault rush-repair system which characterized in that includes:
the physical isolation module is used for physically isolating the power failure emergency repair command platform according to the application environment of the power failure emergency repair command platform, a safety risk evaluation result and a service data flow direction, deploying service data related to the internet in an information extranet, deploying service data related to the inside of the platform in an information intranet, and judging and filtering the safety grade of the service data when the service data deployed in the information extranet and the service data deployed in the information intranet exchange data;
the regional division module is used for dividing the physical layer of the electric power fault rush-repair command platform into a key protection core area, a safety area and a basic safety area according to the service guarantee requirement, the information safety requirement and the production safety requirement, deploying network isolation equipment between the key protection core area and the safety area and between the safety area and the basic safety area respectively, and formulating the access control strategy of each area according to the user role and the service data flow direction between each area, the user role comprises: general users, service application managers, system managers and leader users;
the safety audit module is used for acquiring service data in a key protection core area, a safety area and a basic safety area, carrying out integrity verification according to service data constraint conditions to obtain available service data, acquiring a system operation log, a user operation log, an application database log and an operating system log from the available service data, carrying out safety audit on the system operation log, the user operation log, the application database log and the operating system log to generate an audit report, and positioning a responsible person causing an error or a warning event according to the audit report when the error or the warning event occurs;
the access authority distribution module is used for distributing access authority on the basis of user roles according to user roles, geographic positions and security levels of a key protection core area, a security area and a basic security area, recording user account information, user login time, logout time, an access terminal address, an operation object and an operation mode, generating a user operation log, and adjusting the access authority of a user according to the user operation log;
the adjusting the access authority of the user according to the user operation log comprises the following steps:
comparing the user account information with locally stored user account information, and judging that the user account is in initial login when the comparison result is inconsistent;
when the user account is in initial login, obtaining access authority of the user according to the user account information, wherein the access authority comprises: the power failure emergency repair command platform comprises an object level authority and a behavior level authority, wherein the object level authority is used for modifying the behavior level authority, and the behavior level authority is used for acquiring behavior data of a corresponding behavior level from the power failure emergency repair command platform;
when the user account is initially logged in, firstly judging whether the user has the authority at the object level, when the user has the authority at the object level, executing the authority, returning the modified authority at the behavior level to the user, when the user does not have the authority at the object level, judging whether the user has the authority at the behavior level, when the user has the authority at the behavior level, executing the authority, and returning corresponding behavior data acquired by the authority at the behavior level to the user.
9. A computer-readable storage medium storing computer instructions for causing a computer to execute the safety control method of a power failure emergency repair system according to any one of claims 1 to 7.
10. A computer device, comprising: a memory and a processor, the memory and the processor are connected with each other in communication, the memory stores computer instructions, and the processor executes the computer instructions to execute the safety control method of the power failure emergency repair system according to any one of claims 1 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010844440.0A CN111984999B (en) | 2020-08-20 | 2020-08-20 | Safety management and control method and system for power failure first-aid repair system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010844440.0A CN111984999B (en) | 2020-08-20 | 2020-08-20 | Safety management and control method and system for power failure first-aid repair system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111984999A CN111984999A (en) | 2020-11-24 |
| CN111984999B true CN111984999B (en) | 2021-11-30 |
Family
ID=73442437
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010844440.0A Active CN111984999B (en) | 2020-08-20 | 2020-08-20 | Safety management and control method and system for power failure first-aid repair system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111984999B (en) |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103036881B (en) * | 2012-12-11 | 2016-06-08 | 广东电网公司电力调度控制中心 | A kind of methods, devices and systems to the unified configuration of disrupter |
| CN103227797A (en) * | 2013-05-08 | 2013-07-31 | 上海电机学院 | Distributive management system of information network security for power enterprises |
| CN104184735B (en) * | 2014-08-26 | 2018-03-09 | 国网浙江省电力有限公司 | Power marketing mobile application security guard system |
| CN105847021B (en) * | 2015-01-13 | 2019-06-14 | 国家电网公司 | A kind of smart grid Dispatching Control System concentration O&M safety auditing system |
| CN106790121A (en) * | 2016-12-27 | 2017-05-31 | 逯帅 | Power system service network |
| CN107231371A (en) * | 2017-06-23 | 2017-10-03 | 国家电网公司 | The safety protecting method of Electricity Information Network, device and system |
-
2020
- 2020-08-20 CN CN202010844440.0A patent/CN111984999B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN111984999A (en) | 2020-11-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102271978B1 (en) | Network security apparatus for vehicle and design method thereof | |
| US8595831B2 (en) | Method and system for cyber security management of industrial control systems | |
| DE102018104637A1 (en) | FAILSAFE RESPONSE USING A KNOWN GOOD CONDITION OF A DECENTRALIZED ACCOUNT BOOK | |
| US8539548B1 (en) | Tiered network policy configuration with policy customization control | |
| CN104380301B (en) | Manage distributed operating system physical resource | |
| CN102891840B (en) | Based on the Information Security Management System of separation of the three powers and the management method of information security | |
| CN106603488A (en) | Safety system based on power grid statistical data searching method | |
| CN104243195A (en) | Remote disaster recovery processing method and device | |
| WO2014086149A1 (en) | Server account number and password management method and system, and server | |
| CN112818335A (en) | Method for managing and controlling safe operation and maintenance of privileged account | |
| CN110768963B (en) | Trusted security management platform with distributed architecture | |
| CN115102840B (en) | Cloud service operation and maintenance management method and system | |
| WO2019047071A1 (en) | Method and terminal for responding to database fault | |
| CN110990124B (en) | Cloud host recovery method and device | |
| CN106845271A (en) | database security control system and method | |
| CN113711571A (en) | Vehicle accident management using peer-to-peer networks and systems | |
| CN114553571A (en) | Server management method and device, electronic equipment and storage medium | |
| CN111984999B (en) | Safety management and control method and system for power failure first-aid repair system | |
| CN114625074A (en) | Safety protection system and method for DCS (distributed control System) of thermal power generating unit | |
| CN114629677A (en) | Safety protection system and method for thermal power generating unit electric quantity charging system | |
| EP2887703B1 (en) | Application protection in a mobile telecommunication device | |
| CN113794578A (en) | Communication network monitoring architecture system based on cloud platform | |
| CN111124591A (en) | Mirror image transmission method and device, electronic equipment and storage medium | |
| CN115987675B (en) | Illegal external connection detection method and device, mobile terminal and storage medium | |
| KR101428769B1 (en) | Black box apparatus and method for supporting reconfiguration of smart grid system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20201119 Address after: Sixteenth No. 32, 1601 and 1602, power dispatching communication building, No. 570100, Fu Lu, Haikou, Hainan Applicant after: INFORMATION COMMUNICATION BRANCH OF HAINAN POWER GRID Co.,Ltd. Address before: No. 32, Haifu Road, Meilan District, Haikou, Hainan Applicant before: HAINAN POWER GRID Co.,Ltd. |
|
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20231228 Address after: Room 1601 and 1602, 16th Floor, Power Dispatch Communication Building, No. 32 Haifu Road, Haikou City, Hainan Province, 571100 Patentee after: INFORMATION COMMUNICATION BRANCH OF HAINAN POWER GRID CO.,LTD. Patentee after: Hainan Electric Power Industry Development Co.,Ltd. Address before: 570100 rooms 1601 and 1602, 16th floor, power dispatching and communication building, No.32 Haifu Road, Haikou City, Hainan Province Patentee before: INFORMATION COMMUNICATION BRANCH OF HAINAN POWER GRID CO.,LTD. |