CN112511606B - Intelligent online industrial data acquisition method and system - Google Patents

Intelligent online industrial data acquisition method and system Download PDF

Info

Publication number
CN112511606B
CN112511606B CN202011286844.9A CN202011286844A CN112511606B CN 112511606 B CN112511606 B CN 112511606B CN 202011286844 A CN202011286844 A CN 202011286844A CN 112511606 B CN112511606 B CN 112511606B
Authority
CN
China
Prior art keywords
data
real
time
standard
local storage
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011286844.9A
Other languages
Chinese (zh)
Other versions
CN112511606A (en
Inventor
金震
王兆君
李明
康进港
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing SunwayWorld Science and Technology Co Ltd
Original Assignee
Beijing SunwayWorld Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing SunwayWorld Science and Technology Co Ltd filed Critical Beijing SunwayWorld Science and Technology Co Ltd
Priority to CN202011286844.9A priority Critical patent/CN112511606B/en
Publication of CN112511606A publication Critical patent/CN112511606A/en
Application granted granted Critical
Publication of CN112511606B publication Critical patent/CN112511606B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/21Design, administration or maintenance of databases
    • G06F16/219Managing data history or versioning
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/27Replication, distribution or synchronisation of data between databases or within a distributed database system; Distributed database system architectures therefor
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F7/00Methods or arrangements for processing data by operating upon the order or content of the data handled
    • G06F7/58Random or pseudo-random number generators
    • G06F7/588Random number generators, i.e. based on natural stochastic processes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K17/00Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
    • G06K17/0022Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisious for transferring data to distant stations, e.g. from a sensing device
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Abstract

The invention provides an intelligent online industrial data acquisition method and system. The method comprises the following steps: transmitting a data request sent by the database in real time to a data acquisition end module, and writing data sent by the data acquisition end module into the database; the method comprises the steps of acquiring and obtaining real-time data from lower-layer real-time equipment according to requirements, sending the real-time data and historical data to a server, and storing the acquired real-time data locally in a data acquisition end module. The system of the invention comprises modules corresponding to the steps of the method.

Description

Intelligent online industrial data acquisition method and system
Technical Field
The invention provides an intelligent online industrial data acquisition method and system, and belongs to the technical field of data acquisition.
Background
The data acquisition system applied to the industrial field can acquire real-time data of industrial equipment in real time at present, then displays the data in a graphical mode, and most of the data acquisition systems are configuration software such as SCADA (supervisory control and data acquisition). At present, the above mode has the following problems:
1. risks cannot be well controlled for the safety of an industrial control system.
2. For some old equipment without an upper computer system, information is difficult to collect.
Disclosure of Invention
The invention provides an intelligent online industrial data acquisition method and system, which are used for solving the problems of low risk control capability of an industrial control system and difficulty in data acquisition of old equipment, and adopt the following technical scheme:
an intelligent online industrial data collection method, the method comprising:
transmitting a data request sent by the database in real time to a data acquisition end module, and writing data sent by the data acquisition end module into the database;
the method comprises the steps of acquiring and obtaining real-time data from lower-layer real-time equipment according to requirements, sending the real-time data and historical data to a server, and storing the acquired real-time data locally in a data acquisition end module.
Further, the method further comprises:
the TCP/IP, NETBIOS and RS232 protocols are supported, and data transmission is carried out by the TCP/IP, NETBIOS and RS232 protocols;
the method supports the application program operation and data interaction of ODBC standard, ActiveX standard, DDE and NETDDE standard and Web Service standard;
and scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
Further, the application program operation and data interaction supporting the ODBC standard, the ActiveX standard, the DDE and NETDDE standard, and the Web Service standard includes:
communication between OPC standard application programs is supported;
support mutual data access with any standard ODBC application system;
providing various ActiveX plug-ins, providing a Web server function of real-time data, and viewing the real-time data in an Internet/Intranet mode;
providing a DDEServer function, and displaying real-time data and historical data in an application program supporting DDE;
and the Web Service standard is supported.
Further, the acquiring of real-time data from the lower layer real-time device according to the requirement, the sending of the real-time data and the historical data to the server, and the local saving of the acquired real-time data in the data acquisition end module include:
collecting real-time data generated in the running process of each lower layer real-time device, and sending the real-time data to a server;
storing the real-time data into a local storage area of a data acquisition end module to form historical data of data acquisition, wherein the storage time of the historical data is 48 hours;
and when the real-time database initiates to call the historical data, sending the historical data to a server.
Further, when the real-time database initiates to retrieve the historical data, sending the historical data to a server, including:
acquiring a time point when the real-time data is stored in a local storage area, and generating a basic identification code for the real-time data packet through the following formula;
Figure BDA0002782663760000021
wherein, α represents a basic identification code, and n represents the storage times of data storage in the current local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiThe time length used for storing the real-time data in the ith time in the local storage area is represented; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
acquiring the data volume of the real-time data stored in a local storage area, and generating a safety identification code for the real-time data packet by the following formula;
Figure BDA0002782663760000022
wherein, beta tableIndicating a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
associating the basic identification code with the safety identification code;
encrypting the safety identification code to obtain a corresponding ciphertext, and sending the corresponding ciphertext to a server;
when the server calls the historical data from the local storage, sending the corresponding ciphertext to the local storage area;
and the local storage area decrypts the corresponding ciphertext to obtain a safety identification code, determines historical data required to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sends the historical data to the server.
An intelligent online industrial data acquisition system, the system comprising:
the server is used for transmitting the data request sent by the database in real time to the data acquisition end module and writing the data sent by the data acquisition end module into the database;
and the data acquisition end module is used for acquiring real-time data from the lower-layer real-time equipment according to requirements, sending the real-time data and the historical data to the server, and storing the acquired real-time data locally in the data acquisition end module.
Further, the system further comprises:
the multi-protocol support module is used for supporting TCP/IP, NETBIOS and RS232 protocols and carrying out data transmission by the TCP/IP, NETBIOS and RS232 protocols;
the multi-standard support module is used for supporting the application program operation and data interaction of the ODBC standard, the ActiveX standard, the DDE and NETDDE standard and the Web Service standard;
and the code scanning module is used for scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
Further, the multi-standard support module includes:
the OPC standard supporting module is used for supporting communication between OPC standard application programs;
the ODBC standard supporting module is used for supporting the mutual data access with any standard ODBC application system;
the ActiveX standard support module is used for providing various ActiveX plug-ins and providing a Web server function of real-time data, and the real-time data is checked in an Internet/Intranet mode;
the DDE and NETDDE standard support module is used for providing a DDEServer function and displaying real-time data and historical data in an application program supporting the DDE;
and the Web Service standard supporting module is used for supporting the Web Service standard.
Further, the data acquisition end module comprises:
the acquisition module is used for acquiring real-time data generated in the running process of each lower layer of real-time equipment and sending the real-time data to the server;
the local storage module is used for storing the real-time data into a local storage area of the data acquisition end module to form historical data of data acquisition, and the storage time of the historical data is 48 hours;
and the sending module is used for sending the historical data to a server when the real-time database initiates to call the historical data.
Further, the sending module includes:
the basic identification generation module is used for acquiring the time point when the real-time data is stored in the local storage area and generating a basic identification code for the real-time data packet through the following formula;
Figure BDA0002782663760000041
wherein, α represents a basic identification code, and n represents the storage times of data storage in the current local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiThe time length used for storing the real-time data in the ith time in the local storage area is represented; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
the safety identification generation module is used for acquiring the data volume of the real-time data stored in the local storage area and generating a safety identification code aiming at the real-time data packet by the following formula;
Figure BDA0002782663760000042
wherein β represents a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
the association module is used for associating the basic identification code with the safety identification code;
the encryption module is used for encrypting the safety identification code to obtain a corresponding ciphertext and sending the corresponding ciphertext to a server;
the ciphertext sending module is used for sending the corresponding ciphertext to the local storage area when the server calls the historical data from the local storage;
and the decryption module is used for decrypting the corresponding ciphertext by the local storage area to obtain a safety identification code, determining historical data needing to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sending the historical data to the server.
The invention has the beneficial effects that:
the intelligent online industrial data acquisition method and the intelligent online industrial data acquisition system only acquire data and do not control equipment, and the separation of management software and industrial control software is realized through a firewall, so that the mode effectively controls the security risk. Meanwhile, the data acquisition method and the data acquisition system provided by the invention can directly acquire the instruction information of the equipment through analyzing the PLC point table and can acquire the data of the equipment without an upper computer.
Drawings
FIG. 1 is a flow chart of the method of the present invention;
FIG. 2 is a flow chart of the system of the present invention;
FIG. 3 is a schematic diagram of the method and system of the present invention.
Detailed Description
The preferred embodiments of the present invention will be described in conjunction with the accompanying drawings, and it will be understood that they are described herein for the purpose of illustration and explanation and not limitation.
The embodiment of the invention provides an intelligent online industrial data acquisition method, which comprises the following steps of:
s1, transmitting the data request sent by the database in real time to the data acquisition end module, and writing the data sent by the data acquisition end module into the database;
and S2, acquiring real-time data from the lower-layer real-time equipment according to the requirement, sending the real-time data and the historical data to a server, and locally storing the acquired real-time data in a data acquisition end module.
The working principle of the technical scheme is as follows: the industrial intelligent online data acquisition system (SW-CIMIO) mainly has the function of carrying out data acquisition and exchange with a DCS/PLC/SCADA/RFID/bar code/two-dimensional code and database system. The SW-CIMIO is a standard equipment data interface with multiple functions, multiple layers and multiple service objects, can acquire various DCS/PLC/SCADA/RFID/bar code/two-dimensional code data downwards, can exchange data with various real-time databases (such as Infoplus.21, PI, PHD and the like) upwards, and can also exchange data with a relational database (Oracle, Sysbase, MS SQL Server) and a Web Server and the like in a bidirectional mode.
The SW-CIMIO is divided into a Server side (SW-CIMIO Server) and a data acquisition side (SW-CIMIO Client). The SW-CIMIO Server has the main functions of transmitting the data request of the real-time database to the SW-CIMIO Client and writing the data sent by the SW-CIMIO Client into the database. The main functions of the SW-CIMIO Client are to obtain real-time data from the lower-layer real-time equipment according to requirements, send the real-time data and historical data to the SW-CIMIO Server and locally store the historical data for forty-eight hours at the collection station.
The effect of the above technical scheme is as follows: only data acquisition is carried out, equipment is not controlled, and management software and industrial control software are separated through a firewall, so that the mode effectively controls safety risks. Meanwhile, the data acquisition method and the data acquisition system provided by the invention can directly acquire the instruction information of the equipment through analyzing the PLC point table and can acquire the data of the equipment without an upper computer.
In one embodiment of the present invention, the method further comprises:
step 1, supporting TCP/IP, NETBIOS and RS232 protocols, and carrying out data transmission by using the TCP/IP, NETBIOS and RS232 protocols;
step 2, supporting the application program operation and data interaction of ODBC standard, ActiveX standard, DDE and NETDDE standard and Web Service standard;
and 3, scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
The application program operation and data interaction supporting the ODBC standard, the ActiveX standard, the DDE and NETDDE standard and the Web Service standard comprises the following steps:
step 201, supporting communication between OPC standard application programs;
step 202, supporting mutual data access with any standard ODBC application system;
step 203, providing a plurality of ActiveX plug-ins, providing a Web server function of real-time data, and checking the real-time data in an Internet/Intranet mode;
step 204, providing a DDEServer function, and displaying real-time data and historical data in an application program (such as EXCEL and WORD) supporting DDE;
and step 205, supporting the Web Service standard.
The working principle of the technical scheme is as follows: SW-CIMIO supports industrial standard interface OPC open standard and the like; supporting SQL and other related standards; programming interface and development kit based on API, OPC, Web Service. Support for multiprotocol multistandard:
and the protocols such as TCP/IP, NETBIOS, RS232 and the like are supported: it is contemplated that different communication protocols may be used, such as: TCP/IP, NETBIOS, RS232C, etc., where TCP/IP is the most basic protocol supported. The support of the RS232C is to make the superlnfo have stronger adaptability, and can be applied to an application environment of a stand-alone control system or a small real-time system without a network.
Support of the OPC standard: OPC (OLE for Process control) is a communication standard using OLE/COM mechanism as an application program. The OLE/COM is a client/server mode and has the advantages of language independence, code reusability, easiness in integration and the like. OPC specifies interface functions that are accessed by the client in a uniform manner regardless of the form in which the field device exists, thereby ensuring transparency of the software to the client and enabling the user to be completely isolated from low-level development. And the SuperInfo is easy to exchange data with third-party software and equipment by adopting an OPC technology.
Supporting the ODBC standard: ensuring that data can be accessed with any standard ODBC application. The SuperInfo can be easily accessed interactively with third party software such as various real-time databases (Infoplus and PI), relational databases (Oracle, SQL Server), etc.
Supporting the ActiveX standard: various ActiveX controls are provided that a user can conveniently insert real-time data into self-developed programs or hypertext. The system provides a Web server function of real-time data, and realizes the viewing of the real-time data by Internet/Intranet.
Support for DDE and NETDDE standards: providing DDEServer functionality. Real-time data and historical data may be displayed in applications that support DDE (e.g., EXCEL, WORD). The user can use the function to conveniently organize the production process data into various reports.
Supporting the Web Service standard: supporting the currently popular Web Service standard.
Support for RFID/barcode/two-dimensional code: and analyzing the data format by scanning the codes, and transmitting the related data to a background.
The common device interface scheme in the industrial field is shown in table 1.
TABLE 1
Figure BDA0002782663760000071
The effect of the above technical scheme is as follows: through the setting of the standards and the protocols, the data transmission and interaction efficiency is improved to a great extent. And simultaneously, the compatibility and the functional diversity of the method and the corresponding system are improved. The addition of each application program and the data interaction compatibility are conveniently carried out in the system according to the actual application condition, and the problems of low data interaction efficiency or interaction failure and the like caused by the incompatibility of an application program interface protocol or a standard are prevented.
According to one embodiment of the present invention, the acquiring real-time data from a lower layer real-time device according to a requirement, sending the real-time data and historical data to a server, and storing the acquired real-time data locally in a data acquisition end module includes:
s201, collecting real-time data generated in the running process of each lower layer real-time device, and sending the real-time data to a server;
s202, storing the real-time data into a local storage area of a data acquisition end module to form historical data of data acquisition, wherein the storage time of the historical data is 48 hours;
s203, when the real-time database initiates to call the historical data, sending the historical data to a server.
The working principle of the technical scheme is as follows: firstly, collecting real-time data generated in the running process of each lower layer real-time device, and sending the real-time data to a server; then, storing the real-time data into a local storage area of a data acquisition end module to form historical data of data acquisition, wherein the storage time of the historical data is 48 hours; and finally, when the real-time database initiates to call the historical data, sending the historical data to a server.
The effect of the above technical scheme is as follows: only data acquisition is carried out, equipment is not controlled, and management software and industrial control software are separated through a firewall, so that the mode effectively controls safety risks. Meanwhile, a temporary storage process can be carried out on the real-time data through 48-hour storage of the real-time data, so that subsequent data calling of the database is facilitated, and meanwhile, the subsequent calling time allowance of the database can be met by deleting the real-time data after 48 hours, and the occupation of a local storage space can be effectively reduced.
In an embodiment of the present invention, when the real-time database initiates to retrieve the historical data, sending the historical data to a server, includes:
s2031, acquiring a time point when the real-time data is stored in a local storage area, and generating a basic identification code for the real-time data packet by the following formula;
Figure BDA0002782663760000081
wherein, α represents a basic identification code, and n represents the storage times of data storage in the current local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiRepresenting the localityThe time length used for storing the real-time data in the ith time in the storage area; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
s2032, acquiring the data volume of the real-time data stored in the local storage area, and generating a security identification code for the real-time data packet by the following formula;
Figure BDA0002782663760000082
wherein β represents a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
s2033, associating the basic identification code with the safety identification code;
s2034, encrypting the security identification code to obtain a corresponding ciphertext, and sending the corresponding ciphertext to a server;
s2035, when the server calls the historical data from the local storage, sending the corresponding ciphertext to the local storage area;
s2036, the local storage area decrypts the corresponding ciphertext to obtain a security identification code, determines historical data needing to be called by the server according to the connection relation between the security identification code and a basic identification code, and sends the historical data to the server.
The working principle of the technical scheme is as follows: firstly, acquiring a time point when the real-time data is stored in a local storage area, acquiring the data volume when the real-time data is stored in the local storage area, and generating a safety identification code aiming at the real-time data packet; then, the basic identification code is associated with the safety identification code; encrypting the safety identification code to obtain a corresponding ciphertext, and sending the corresponding ciphertext to a server; finally, when the server calls the historical data from the local storage, the corresponding ciphertext is sent to the local storage area; and the local storage area decrypts the corresponding ciphertext to obtain a safety identification code, determines historical data required to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sends the historical data to the server.
The effect of the above technical scheme is as follows: through the mode of generating the basic identification code and the safety identification code, the stored data are uniquely identified, the accuracy of data calling is improved, and the condition of data calling errors is effectively avoided. Meanwhile, data is called by transmitting the encrypted security identification code instead of the traditional data calling and sending data condition, so that the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the data transmission history of each equipment node in the system through a data transmission request, the malicious third party cannot acquire the data type, data keywords and other information of data transmission from the data sending request and the data acquisition server, the malicious third party is prevented from locking a data stealing target, and the data security protection performance is further improved. Meanwhile, the basic identification code and the safety identification code acquired by the formula can effectively improve the uniqueness and randomness of the identification code, effectively prevent malicious third parties from cracking the identification code generation rule, and greatly improve the data safety performance.
The embodiment of the invention provides an intelligent online industrial data acquisition system, as shown in fig. 2, the system comprises:
the Server (SW-CIMIO Server) is used for transmitting the data request sent by the database in real time to the data acquisition end module and writing the data sent by the data acquisition end module into the database;
and the data acquisition terminal module (SW-CIMIO Client) is used for acquiring real-time data from the lower-layer real-time equipment according to requirements, sending the real-time data and the historical data to the server, and locally storing the acquired real-time data in the data acquisition terminal module.
The working principle of the technical scheme is as follows: transmitting a data request sent by the database in real time to a data acquisition end module through a Server (SW-CIMIO Server), and writing data sent by the data acquisition end module into the database; and acquiring real-time data from lower-layer real-time equipment according to requirements by using a data acquisition terminal module (SW-CIMIO Client), transmitting the real-time data and historical data to a server, and locally storing the acquired real-time data in the data acquisition terminal module.
The effect of the above technical scheme is as follows: only data acquisition is carried out, equipment is not controlled, and management software and industrial control software are separated through a firewall, so that the mode effectively controls safety risks. Meanwhile, the data acquisition method and the data acquisition system provided by the invention can directly acquire the instruction information of the equipment through analyzing the PLC point table and can acquire the data of the equipment without an upper computer.
In one embodiment of the present invention, the system further comprises:
the multi-protocol support module is used for supporting TCP/IP, NETBIOS and RS232 protocols and carrying out data transmission by the TCP/IP, NETBIOS and RS232 protocols;
the multi-standard support module is used for supporting the application program operation and data interaction of the ODBC standard, the ActiveX standard, the DDE and NETDDE standard and the Web Service standard;
and the code scanning module is used for scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
Wherein the multi-standard support module comprises:
the OPC standard supporting module is used for supporting communication between OPC standard application programs;
the ODBC standard supporting module is used for supporting the mutual data access with any standard ODBC application system;
the ActiveX standard support module is used for providing various ActiveX plug-ins and providing a Web server function of real-time data, and the real-time data is checked in an Internet/Intranet mode;
the DDE and NETDDE standard support module is used for providing a DDEServer function and displaying real-time data and historical data in an application program (such as EXCEL and WORD) supporting the DDE;
and the Web Service standard supporting module is used for supporting the Web Service standard.
The working principle of the technical scheme is as follows:
the multi-protocol support module supports TCP/IP, NETBIOS and RS232 protocols, and data transmission is carried out by the TCP/IP, the NETBIOS and the RS232 protocols;
the multi-standard support module supports the application program operation and data interaction of ODBC standard, ActiveX standard, DDE and NETDDE standard and Web Service standard;
the RFID, the bar code and the two-dimensional code are scanned by the code scanning module, data are obtained by scanning the RFID, the bar code and the two-dimensional code, data format analysis is carried out, and the data are uploaded to a system background.
The multi-standard support module supports communication between OPC standard application programs through the OPC standard support module; the ODBC standard support module is used for supporting mutual data access with any standard ODBC application system; an ActiveX standard support module is adopted to provide various ActiveX plug-ins and a Web server function of real-time data, and the real-time data is checked in an Internet/Intranet mode; providing a DDEServer function by using DDE and NETDDE standard support modules, and displaying real-time data and historical data in an application program (such as EXCEL and WORD) supporting the DDE; and finally, supporting the Web Service standard through a Web Service standard supporting module.
The effect of the above technical scheme is as follows: through the setting of the standards and the protocols, the data transmission and interaction efficiency is improved to a great extent. And simultaneously, the compatibility and the functional diversity of the method and the corresponding system are improved. The addition of each application program and the data interaction compatibility are conveniently carried out in the system according to the actual application condition, and the problems of low data interaction efficiency or interaction failure and the like caused by the incompatibility of an application program interface protocol or a standard are prevented.
In an embodiment of the present invention, the data acquisition end module includes:
the acquisition module is used for acquiring real-time data generated in the running process of each lower layer of real-time equipment and sending the real-time data to the server;
the local storage module is used for storing the real-time data into a local storage area of the data acquisition end module to form historical data of data acquisition, and the storage time of the historical data is 48 hours;
and the sending module is used for sending the historical data to a server when the real-time database initiates to call the historical data.
The working principle of the technical scheme is as follows: firstly, acquiring real-time data generated in the running process of each lower layer real-time device through an acquisition module, and sending the real-time data to a server; then, a local storage module is adopted to store the real-time data into a local storage area of a data acquisition end module to form historical data of data acquisition, wherein the storage time of the historical data is 48 hours; and finally, sending the historical data to a server by using a sending module when the real-time database initiates to call the historical data.
The effect of the above technical scheme is as follows: only data acquisition is carried out, equipment is not controlled, and management software and industrial control software are separated through a firewall, so that the mode effectively controls safety risks. Meanwhile, a temporary storage process can be carried out on the real-time data through 48-hour storage of the real-time data, so that subsequent data calling of the database is facilitated, and meanwhile, the subsequent calling time allowance of the database can be met by deleting the real-time data after 48 hours, and the occupation of a local storage space can be effectively reduced.
In an embodiment of the present invention, the sending module includes:
the basic identification generation module is used for acquiring the time point when the real-time data is stored in the local storage area and generating a basic identification code for the real-time data packet through the following formula;
Figure BDA0002782663760000111
wherein, α represents a basic identification code, and n represents the storage times of data storage in the current local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiThe time length used for storing the real-time data in the ith time in the local storage area is represented; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
the safety identification generation module is used for acquiring the data volume of the real-time data stored in the local storage area and generating a safety identification code aiming at the real-time data packet by the following formula;
Figure BDA0002782663760000112
wherein β represents a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
the association module is used for associating the basic identification code with the safety identification code;
the encryption module is used for encrypting the safety identification code to obtain a corresponding ciphertext and sending the corresponding ciphertext to a server;
the ciphertext sending module is used for sending the corresponding ciphertext to the local storage area when the server calls the historical data from the local storage;
and the decryption module is used for decrypting the corresponding ciphertext by the local storage area to obtain a safety identification code, determining historical data needing to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sending the historical data to the server.
The working principle of the technical scheme is as follows: firstly, acquiring a time point when the real-time data is stored in a local storage area through a basic identification generation module, acquiring the data volume of the real-time data stored in the local storage area through a safety identification generation module, and generating a safety identification code aiming at the real-time data packet; then, the basic identification code is associated with the safety identification code by using an association module; encrypting the safety identification code through an encryption module to obtain a corresponding ciphertext, and sending the corresponding ciphertext to a server; finally, a ciphertext sending module is adopted to send the corresponding ciphertext to a local storage area when the server calls the historical data from the local storage; and controlling the local storage area to decrypt the corresponding ciphertext through a decryption module to obtain a security identification code, determining historical data required to be called by the server through the connection relation between the security identification code and a basic identification code, and sending the historical data to the server.
The effect of the above technical scheme is as follows: through the mode of generating the basic identification code and the safety identification code, the stored data are uniquely identified, the accuracy of data calling is improved, and the condition of data calling errors is effectively avoided. Meanwhile, data is called by transmitting the encrypted security identification code instead of the traditional data calling and sending data condition, so that the secrecy of data transmission can be effectively improved, a third party is prevented from acquiring the data transmission history of each equipment node in the system through a data transmission request, the malicious third party cannot acquire the data type, data keywords and other information of data transmission from the data sending request and the data acquisition server, the malicious third party is prevented from locking a data stealing target, and the data security protection performance is further improved. Meanwhile, the basic identification code and the safety identification code acquired by the formula can effectively improve the uniqueness and randomness of the identification code, effectively prevent malicious third parties from cracking the identification code generation rule, and greatly improve the data safety performance.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (6)

1. An intelligent online industrial data acquisition method, characterized in that the method comprises:
transmitting a data request sent by the database in real time to a data acquisition end module, and writing data sent by the data acquisition end module into the database;
the real-time data is acquired from the lower-layer real-time equipment according to the requirement, the real-time data and the historical data are sent to the server, and meanwhile, the acquired real-time data are locally stored in the data acquisition end module, and the method comprises the following steps:
collecting real-time data generated in the running process of each lower layer real-time device, and sending the real-time data to a server;
storing the real-time data into a local storage area of a data acquisition end module to form historical data of data acquisition, wherein the storage time of the historical data is 48 hours;
when the real-time database initiates to call the historical data, the historical data is sent to a server, and the method comprises the following steps:
acquiring a time point when the real-time data is stored in a local storage area, and generating a basic identification code for the real-time data packet through the following formula;
Figure FDA0003066686390000011
wherein α represents a basic identification code, and n represents the current oneThe storage times of data storage in the local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiThe time length used for storing the real-time data in the ith time in the local storage area is represented; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
acquiring the data volume of the real-time data stored in a local storage area, and generating a safety identification code for the real-time data packet by the following formula;
Figure FDA0003066686390000012
wherein β represents a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
associating the basic identification code with the safety identification code;
encrypting the safety identification code to obtain a corresponding ciphertext, and sending the corresponding ciphertext to a server;
when the server calls the historical data from the local storage, sending the corresponding ciphertext to the local storage area;
and the local storage area decrypts the corresponding ciphertext to obtain a safety identification code, determines historical data required to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sends the historical data to the server.
2. The method of claim 1, further comprising:
the TCP/IP, NETBIOS and RS232 protocols are supported, and data transmission is carried out by the TCP/IP, NETBIOS and RS232 protocols;
the method supports the application program operation and data interaction of ODBC standard, ActiveX standard, DDE and NETDDE standard and Web Service standard;
and scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
3. The method according to claim 2, wherein the application running and data interaction supporting ODBC standard, ActiveX standard, DDE and NETDDE standard, and Web Service standard comprises:
communication between OPC standard application programs is supported;
support mutual data access with any standard ODBC application system;
providing various ActiveX plug-ins, providing a Web server function of real-time data, and viewing the real-time data in an Internet/Intranet mode;
providing a DDEServer function, and displaying real-time data and historical data in an application program supporting DDE;
and the Web Service standard is supported.
4. An intelligent online industrial data acquisition system, the system comprising:
the server is used for transmitting the data request sent by the database in real time to the data acquisition end module and writing the data sent by the data acquisition end module into the database;
the data acquisition end module is used for acquiring real-time data from lower-layer real-time equipment according to requirements, sending the real-time data and historical data to the server, and storing the acquired real-time data locally in the data acquisition end module; the data acquisition end module comprises:
the acquisition module is used for acquiring real-time data generated in the running process of each lower layer of real-time equipment and sending the real-time data to the server;
the local storage module is used for storing the real-time data into a local storage area of the data acquisition end module to form historical data of data acquisition, and the storage time of the historical data is 48 hours;
the sending module is used for sending the historical data to a server when the real-time database initiates to call the historical data; the sending module comprises:
the basic identification generation module is used for acquiring the time point when the real-time data is stored in the local storage area and generating a basic identification code for the real-time data packet through the following formula;
Figure FDA0003066686390000031
wherein, α represents a basic identification code, and n represents the storage times of data storage in the current local storage area; t is1Representing a storage starting time point when real-time data is input into the local storage area for storage; t is2Indicating a storage completion time point at which the local storage area completes data storage; t isiThe time length used for storing the real-time data in the ith time in the local storage area is represented; hαRepresenting a first random number comprising three digits, the first digit being a randomly generated number in the range of 1-9, the second digit and the third digit being randomly generated numbers in the range of 0-9;
the safety identification generation module is used for acquiring the data volume of the real-time data stored in the local storage area and generating a safety identification code aiming at the real-time data packet by the following formula;
Figure FDA0003066686390000032
wherein β represents a security identification code; giThe real-time data storage capacity of the local storage area during the ith data storage is shown; g represents the data volume of real-time data stored in the local storage area at the current time; hβRepresenting a second random number comprising two digits, the first digit being a randomly generated digit in the range of 1-9 and the second digit being a randomly generated digit in the range of 0-9;
the association module is used for associating the basic identification code with the safety identification code;
the encryption module is used for encrypting the safety identification code to obtain a corresponding ciphertext and sending the corresponding ciphertext to a server;
the ciphertext sending module is used for sending the corresponding ciphertext to the local storage area when the server calls the historical data from the local storage;
and the decryption module is used for decrypting the corresponding ciphertext by the local storage area to obtain a safety identification code, determining historical data needing to be called by the server according to the connection relation between the safety identification code and the basic identification code, and sending the historical data to the server.
5. The system of claim 4, further comprising:
the multi-protocol support module is used for supporting TCP/IP, NETBIOS and RS232 protocols and carrying out data transmission by the TCP/IP, NETBIOS and RS232 protocols;
the multi-standard support module is used for supporting the application program operation and data interaction of the ODBC standard, the ActiveX standard, the DDE and NETDDE standard and the Web Service standard;
and the code scanning module is used for scanning the RFID, the bar code and the two-dimensional code, acquiring data by scanning the RFID, the bar code and the two-dimensional code, analyzing a data format and uploading the data to a system background.
6. The system of claim 5, wherein the multi-standard support module comprises:
the OPC standard supporting module is used for supporting communication between OPC standard application programs;
the ODBC standard supporting module is used for supporting the mutual data access with any standard ODBC application system;
the ActiveX standard support module is used for providing various ActiveX plug-ins and providing a Web server function of real-time data, and the real-time data is checked in an Internet/Intranet mode;
the DDE and NETDDE standard support module is used for providing a DDEServer function and displaying real-time data and historical data in an application program supporting the DDE;
and the Web Service standard supporting module is used for supporting the Web Service standard.
CN202011286844.9A 2020-11-17 2020-11-17 Intelligent online industrial data acquisition method and system Active CN112511606B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011286844.9A CN112511606B (en) 2020-11-17 2020-11-17 Intelligent online industrial data acquisition method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011286844.9A CN112511606B (en) 2020-11-17 2020-11-17 Intelligent online industrial data acquisition method and system

Publications (2)

Publication Number Publication Date
CN112511606A CN112511606A (en) 2021-03-16
CN112511606B true CN112511606B (en) 2021-07-20

Family

ID=74956588

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011286844.9A Active CN112511606B (en) 2020-11-17 2020-11-17 Intelligent online industrial data acquisition method and system

Country Status (1)

Country Link
CN (1) CN112511606B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113297218B (en) * 2021-05-20 2022-01-07 广州光点信息科技有限公司 Multi-system data interaction method, device and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102455698A (en) * 2011-04-20 2012-05-16 靳其兵 Automatic control rate and stable rate monitoring system and monitoring method based on tree structure
CN106934030A (en) * 2016-12-08 2017-07-07 戴林 The ciphertext index method and Ku Nei encryption systems of a kind of data base-oriented encryption
CN109656210A (en) * 2018-12-20 2019-04-19 树根互联技术有限公司 Industrial data acquisition method, system and main system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040039468A1 (en) * 2002-08-23 2004-02-26 Vladimir Zahorack Method, system and apparatus for an industrial framework based on integrated applications via adapters
US10134207B2 (en) * 2017-04-20 2018-11-20 Saudi Arabian Oil Company Securing SCADA network access from a remote terminal unit
CN108388223B (en) * 2018-04-03 2022-01-28 深圳市同富信息技术有限公司 Equipment control system based on data closed loop for intelligent factory
CN111077870A (en) * 2020-01-06 2020-04-28 浙江中烟工业有限责任公司 Intelligent OPC data real-time acquisition and monitoring system and method based on stream calculation

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102455698A (en) * 2011-04-20 2012-05-16 靳其兵 Automatic control rate and stable rate monitoring system and monitoring method based on tree structure
CN106934030A (en) * 2016-12-08 2017-07-07 戴林 The ciphertext index method and Ku Nei encryption systems of a kind of data base-oriented encryption
CN109656210A (en) * 2018-12-20 2019-04-19 树根互联技术有限公司 Industrial data acquisition method, system and main system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
兰州石化公司西区生产信息管理系统;王小慧;《中国优秀博硕士学位论文全文数据库 (硕士)》;20050315;第3.1、3.6.1、3.6.4.8、3.5.2节 *

Also Published As

Publication number Publication date
CN112511606A (en) 2021-03-16

Similar Documents

Publication Publication Date Title
CN101436208B (en) Ciphertext database privacy protection enquiring method
CN102291268B (en) Safety domain name server and hostile domain name monitoring system and method based on same
CN1326353C (en) Method and system for integrated protection of data distributed processing in computer networks
CN107508812A (en) A kind of industry control network date storage method, call method and system
CN108256340B (en) Data acquisition method and device, terminal equipment and storage medium
CN104995632A (en) A privacy-preserving database system
CN101803270A (en) Method and system for encryption of data
CN112511606B (en) Intelligent online industrial data acquisition method and system
CN109522328A (en) A kind of data processing method and its device, medium, terminal
CN112084529A (en) Privacy data encryption access method and system based on block chain technology for community
CN106205090A (en) A kind of electric power network real-time monitoring system and control method thereof
CN112367164A (en) Service request processing method and device, computer equipment and storage medium
CN115085902A (en) Power grid dispatching log management method and system
CN1826810A (en) Procedure for monitoring the usage of a broadcasted content
CN110995739A (en) Industry internet control cloud platform
CN112529586B (en) Transaction information management method, device, equipment and storage medium
CN112953902B (en) Industrial Internet of things data encryption communication system and method
WO2019118294A1 (en) Securing digital data transmission in a communication network
CN115982687B (en) User identity verification system for data operation and maintenance management platform
CN111476666A (en) Asset interaction information tracing method and device based on block chain
CN102523580A (en) M2M (Machine-to-Machine/Man) service terminal data processing method and M2M service card as well as M2M terminal data processing card
CN1480872A (en) Mobile police affairs office system
CN113783687A (en) Method and system for generating, encrypting and decrypting electronic anti-theft code of automobile
CN112836200A (en) Paas platform system of Internet of things
CN113127841A (en) Method, device, equipment and storage medium for remotely managing software user

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant