CN112929379B - Intelligent recorder remote operation and maintenance instruction defense method and system - Google Patents
Intelligent recorder remote operation and maintenance instruction defense method and system Download PDFInfo
- Publication number
- CN112929379B CN112929379B CN202110195850.1A CN202110195850A CN112929379B CN 112929379 B CN112929379 B CN 112929379B CN 202110195850 A CN202110195850 A CN 202110195850A CN 112929379 B CN112929379 B CN 112929379B
- Authority
- CN
- China
- Prior art keywords
- information
- maintenance
- remote
- instruction information
- state information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a defense method and a defense system for remote operation and maintenance instructions of an intelligent recorder, wherein the method comprises the following steps: acquiring first operation and maintenance state information of a first remote recorder; generating first identifying code information according to the first operation and maintenance state information; obtaining second operation and maintenance state information of a second remote wave recorder; generating a second verification code according to the second operation and maintenance state information and the first verification code, and so on to obtain the Nth operation and maintenance state information of the Nth remote oscillograph; generating an Nth verification code according to the Nth operation and maintenance state information and the Nth-1 verification code; respectively copying and storing all the operation and maintenance state information and the verification codes on the M devices; according to the corresponding verification code, obtaining a remote operation and maintenance authority corresponding to the verification code; and obtaining remote operation and maintenance instruction information according to the remote operation and maintenance authority. The invention solves the technical problems that operation and maintenance instruction information faces the risk of being tampered in the working process of the intelligent recorder and the working efficiency is low, and can prevent a large-area power failure event caused by network attack.
Description
Technical Field
The invention relates to the technical field of intelligent operation and maintenance of wave recorders, in particular to a defense method and a defense system for remote operation and maintenance instructions of an intelligent wave recorder.
Background
The intelligent oscillograph integrates the functions of fault recording, network record analysis, secondary system visualization and intelligent operation and maintenance, and can be simultaneously applied to intelligent substations and conventional substations. The intelligent oscillograph provides multidimensional visual information support, decision and safe operation basis for working conditions of the substation relay protection system such as daily operation and maintenance, exception handling, accident analysis and maintenance, and is the most important carrier for digital transformation of relay protection.
However, in the process of implementing the technical solution of the invention in the embodiments of the present application, the inventors of the present application find that the above-mentioned technology has at least the following technical problems:
in the working process of the intelligent wave recorder, the received operation and maintenance instruction information faces the risk of being tampered, so that the system defense capability is low, the working efficiency is low, and large-area power failure caused by network attack is possible to happen.
Disclosure of Invention
The invention aims to solve the technical problem of providing a method and a system for defending a remote operation and maintenance instruction of an intelligent recorder so as to improve the confidentiality of operation and maintenance instruction information, enhance the defense capability of the system and improve the working efficiency of the intelligent recorder.
In order to solve the above technical problem, an embodiment of the present invention provides a method for defending a remote operation and maintenance instruction of an intelligent oscillograph, including:
s1, the intelligent wave recording master station obtains Nth operation and maintenance state information of an Nth remote wave recorder, and generates an Nth verification code according to the Nth operation and maintenance state information, wherein the Nth verification code corresponds to the Nth operation and maintenance state information one to one, and N is a natural number greater than 1;
s2, copying and storing all operation and maintenance state information and verification codes on M devices respectively, wherein M is a natural number greater than 1;
s3, obtaining a remote operation and maintenance authority corresponding to the verification code according to the corresponding verification code;
and S4, acquiring corresponding remote operation and maintenance instruction information according to the remote operation and maintenance authority.
Preferably, the defense method for the remote operation and maintenance instruction of the intelligent wave recorder further comprises the following steps:
s51, the remote wave recorder obtains the IP address information of the intelligent wave recording master station which sends the remote operation and maintenance instruction information according to the remote operation and maintenance instruction information;
step S52, judging whether the IP address information is in a pre-stored IP address library of the remote oscillograph;
step S53, if the IP address information is not in the pre-stored IP address library, first defense instruction information is obtained;
and S54, the remote wave recorder refuses to execute the remote operation and maintenance instruction information sent by the intelligent wave recording master station according to the first defense instruction information.
Preferably, the step S52 further includes:
step S521, if the IP address information is in the pre-stored IP address library, the remote oscillograph obtains the information of the sending times of the remote operation and maintenance instruction information;
step S522, the remote oscillograph obtains a preset sending time threshold value;
step S523, the remote oscillograph judges whether the sending frequency information of the remote operation and maintenance instruction information is within the preset sending frequency threshold value;
step S524, if the sending frequency information of the remote operation and maintenance instruction information is within the predetermined sending frequency threshold, obtaining first execution instruction information;
and step S525, executing the remote operation and maintenance instruction information according to the first execution instruction information.
Preferably, after the step S53 obtains the first defense instruction information, the method includes:
step S531, obtaining first shielding instruction information;
step S532, according to the first shielding instruction information, shielding the IP address information;
step S533, obtaining first mark information;
step S534, according to the first marking information, marking the IP address information.
Preferably, the defense method for the remote operation and maintenance instruction of the intelligent wave recorder further comprises the following steps:
step S61, obtaining first monitoring information;
step S62, obtaining first coding instruction information;
step S63, according to the first coding instruction information, coding the first monitoring information to obtain first encrypted monitoring information;
step S64, obtaining first decoding instruction information;
step S65, decoding and reading the first encrypted monitoring information according to the first decoding instruction information.
Preferably, before sending the operation and maintenance instruction to the remote oscillograph, the method further comprises:
step S71, obtaining first query instruction information;
step S72, searching whether the first operation and maintenance state information exists in the first monitoring information according to the first query instruction information;
step S73, if the first operation and maintenance state information is found in the first monitoring information, obtaining first operation and maintenance state information of a first remote oscillograph.
Preferably, before the operation and maintenance instruction is sent to the first remote recorder, the method further comprises:
step S74, if the first operation and maintenance state information is not found in the first monitoring information, first interception instruction information is obtained;
step S75, intercepting the first operation and maintenance state information according to the first interception instruction information.
The invention also provides a defense system for the remote operation and maintenance instruction of the intelligent recorder, which comprises the following components:
the first obtaining unit is used for obtaining first operation and maintenance state information of a first remote recorder;
the first generation unit is used for generating first verification code information according to the first operation and maintenance state information, wherein the first verification codes correspond to the first operation and maintenance state information one to one;
the second obtaining unit is used for obtaining second operation and maintenance state information of a second remote recorder;
the second generating unit is used for generating a second verification code according to the second operation and maintenance state information and the first verification code, and so on to obtain the Nth operation and maintenance state information of the Nth remote recorder;
a third generating unit, configured to generate an nth verification code according to the nth operation and maintenance state information and an nth-1 verification code, where N is a natural number greater than 1;
the first storage unit is used for respectively copying and storing all operation and maintenance state information and verification codes on M devices, wherein M is a natural number greater than 1;
the third obtaining unit is used for obtaining the remote operation and maintenance authority corresponding to the verification code according to the corresponding verification code;
and the fourth obtaining unit is used for obtaining the remote operation and maintenance instruction information according to the remote operation and maintenance permission.
Preferably, the intelligent recorder remote operation and maintenance instruction defense system further comprises:
a fifth obtaining unit, configured to obtain, according to the remote operation and maintenance instruction information, IP address information of the intelligent wave recording master station;
a sixth obtaining unit, configured to obtain a pre-stored IP address library of the remote wave recorder;
the first judging unit is used for judging whether the IP address information is in the pre-stored IP address library or not;
a seventh obtaining unit, configured to obtain first defense instruction information if the IP address information is not in the pre-stored IP address base;
a first prohibiting unit, configured to, according to the first defense instruction information, reject execution of the remote operation and maintenance instruction information by the remote recorder.
The invention also provides a defense system for the remote operation and maintenance instruction of the intelligent recorder, which comprises the following components: the device comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, wherein the processor realizes the intelligent recorder remote operation and maintenance instruction defense method when executing the program.
The embodiment of the invention has the beneficial effects that: the operation and maintenance state information detected by the intelligent wave recording master station is encrypted and stored in the distributed shared account book and the database, so that the storage safety of the operation and maintenance state information is ensured, the safety of the operation and maintenance state information is ensured, and the generated verification code is used for sending an operation and maintenance instruction to the remote wave recorder after the verification is passed, so that the confidentiality and the system defense capability of the operation and maintenance process are improved, and the technical effect of improving the working efficiency of the intelligent wave recorder is achieved;
whether the IP address through confirming intelligent record ripples master station is in the IP address storehouse of prestoring, carry out mark and shielding to nonexistent IP address information, prevent that the hacker from pretending to be connected with long-range oscillograph master station with intelligent record ripples ware, avoid follow-up emergence information potential safety hazard, the number of times of sending information through restriction long-range fortune dimension instruction simultaneously, and monitor fortune dimension state information etc. reached the defense capability who improves in the intelligent oscillograph working process, avoid long-range fortune dimension system to be attacked, improve the long-range fortune dimension work efficiency's of intelligent oscillograph ware technical effect.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic flow chart of a method for defending a remote operation and maintenance instruction of an intelligent oscillograph according to an embodiment of the present invention.
Fig. 2 is a schematic structural diagram of a remote operation and maintenance instruction defense system of an intelligent oscillograph according to a second embodiment of the present invention.
Fig. 3 is a schematic structural diagram of an exemplary electronic device in an embodiment of the present invention.
Detailed Description
The following description of the embodiments refers to the accompanying drawings, which are included to illustrate specific embodiments in which the invention may be practiced.
Referring to fig. 1, an embodiment of the present invention provides a method for defending a remote operation and maintenance instruction of an intelligent recorder, including:
s1, the intelligent wave recording master station obtains Nth operation and maintenance state information of an Nth remote wave recorder, and generates an Nth verification code according to the Nth operation and maintenance state information, wherein the Nth verification code corresponds to the Nth operation and maintenance state information one to one, and N is a natural number greater than 1;
s2, copying and storing all operation and maintenance state information and verification codes on M devices respectively, wherein M is a natural number greater than 1;
s3, obtaining a remote operation and maintenance authority corresponding to the verification code according to the corresponding verification code;
and S4, acquiring corresponding remote operation and maintenance instruction information according to the remote operation and maintenance authority.
Specifically, in step S1, the intelligent wave recording master station obtains first operation and maintenance state information of a first remote wave recorder, and generates first verification code information according to the first operation and maintenance state information, where the first verification codes correspond to the first operation and maintenance state information one to one; the intelligent wave recording master station obtains second operation and maintenance state information of a second remote wave recorder; generating a second verification code according to the second operation and maintenance state information and the first verification code, and by analogy, obtaining the Nth operation and maintenance state information of the Nth remote wave recorder by the intelligent wave recording master station; and generating an Nth verification code according to the Nth operation and maintenance state information and the Nth-1 verification code, wherein N is a natural number greater than 1. The first operation and maintenance state information is the operation and maintenance state information of the first remote wave recorder detected by the intelligent wave recording master station, and the operation and maintenance state information can be data in the operation process of the first remote wave recorder or fault information acquired by the first remote wave recorder. The first verification code corresponds to the first operation and maintenance state information one to one, and further, hash function encryption calculation is performed on the first operation and maintenance state information to obtain a non-modifiable first verification code uniquely corresponding to the first operation and maintenance state information, and the first verification code can be regarded as the uniquely corresponding identity information of the first operation and maintenance state information.
Similarly, the second operation and maintenance state information is associated with the first verification code, the second operation and maintenance state information and the first verification code are used as a whole to be subjected to hash function encryption processing to obtain a second verification code, the second verification code corresponds to the second operation and maintenance state information one to one, and by analogy, an Nth verification code is generated according to the Nth operation and maintenance state information and the Nth-1 verification code, the safety of the operation and maintenance state information is ensured by means of encryption processing of the operation and maintenance state information, and the technical effect of improving the safety of the operation and maintenance state information is achieved.
In step S2, the operation and maintenance state information and the verification code information are copied and stored in M pieces of electronic equipment, where the electronic equipment has a storage capability and can quickly and accurately record the information, and the data is stored in M pieces of electronic equipment.
In step S3, after all the operation and maintenance state information is encrypted, a corresponding verification code can be obtained, and according to the corresponding verification code, a remote operation and maintenance right corresponding to the verification code is obtained.
In step S4, after the verification code generated by distributed encryption storage is stored as a verification authority, a corresponding operation and maintenance instruction can be sent to a corresponding remote oscillograph, and the operation and maintenance state information is processed by a master station operator according to the instruction information sent by the remote operation and maintenance authority.
In order to ensure the security of the IP address of the intelligent wave recording master station that sends the operation and maintenance instruction, this embodiment further includes:
s51, the remote wave recorder obtains the IP address information of the intelligent wave recording master station which sends the remote operation and maintenance instruction information according to the remote operation and maintenance instruction information;
step S52, judging whether the IP address information is in a pre-stored IP address library of the remote oscillograph;
step S53, if the IP address information is not in the pre-stored IP address library, first defense instruction information is obtained;
and S54, the remote wave recorder refuses to execute the remote operation and maintenance instruction information sent by the intelligent wave recording master station according to the first defense instruction information.
Specifically, in order to ensure the security of the IP address for sending the operation and maintenance instruction, the IP address information of the intelligent wave recording master station may be obtained according to the remote operation and maintenance instruction information. The IP address is a uniform address format provided by an IP protocol, a logical address is distributed for each network and each host on the Internet so as to shield the difference of physical addresses, according to a pre-stored IP address library pre-stored by a remote wave recorder, the pre-stored IP address library is an operation and maintenance IP address library which is stored with the IP address of an intelligent wave recording master station, unsafe risks and hidden dangers may exist by judging whether the IP address information is in the pre-stored IP address library or not, namely the intelligent wave recording information may be malicious codes sent by a hacker as the intelligent wave recording master station, the remote wave recorder obtains first defense instruction information, and the remote wave recorder refuses to execute the remote operation and maintenance instruction information sent by the intelligent wave recording master station according to the first defense instruction information.
In order to improve the efficiency and safety of the remote operation and maintenance of the intelligent recorder, step S52 further includes:
step S521, if the IP address information is in the pre-stored IP address library, the remote oscillograph obtains the information of the sending times of the remote operation and maintenance instruction information;
step S522, the remote oscillograph obtains a preset sending time threshold value;
step S523, the remote oscillograph judges whether the sending frequency information of the remote operation and maintenance instruction information is within the preset sending frequency threshold value;
step S524, if the sending frequency information of the remote operation and maintenance instruction information is within the predetermined sending frequency threshold, obtaining first execution instruction information;
and step S525, executing the remote operation and maintenance instruction information according to the first execution instruction information.
Specifically, in order to improve the efficiency and the safety of remote operation and maintenance of the intelligent oscillograph, and avoid repeated remote operation and maintenance instructions of the intelligent oscillograph master station, the number of times of sending the remote operation and maintenance instruction information can be limited, and repeated sending is avoided, if the IP address information is in the pre-stored IP address library, the sending number information of the obtained remote operation and maintenance instruction information is obtained, the sending number of the remote operation and maintenance instruction information is the actual sending number information of the intelligent oscillograph master station, and a predetermined sending number threshold is obtained, the predetermined sending number threshold is a limit value of a predetermined sending number, which can be understood that the predetermined sending number threshold is three times, and further, whether the sending number information of the remote operation and maintenance instruction information is within the predetermined sending number threshold is judged, that is, whether the sending number information of the remote operation and maintenance instruction information is within the predetermined sending number threshold is three times, and if the sending number information of the remote operation and maintenance instruction information is within the predetermined sending number threshold, the first execution instruction information is a technique of feeding back and executing the remote operation and maintenance instruction, and improving the remote operation and maintenance efficiency of the intelligent oscillograph.
After the step S53 obtains the first defense instruction information, the method includes:
step S531, obtaining first shielding instruction information;
step S532, according to the first shielding instruction information, shielding the IP address information;
step S533, obtaining first mark information;
step S534, according to the first marking information, marking the IP address information.
Whether the IP address of the intelligent wave recording master station is in the pre-stored IP address library or not is confirmed, and nonexistent IP address information is marked and shielded, so that a hacker is prevented from being connected with the remote wave recorder by the intelligent wave recording master station, and the follow-up information potential safety hazard is avoided.
In order to ensure that the monitoring of the operation and maintenance status information is safe and reliable, the embodiment further includes:
step S61, obtaining first monitoring information;
step S62, obtaining first coding instruction information;
step S63, according to the first coding instruction information, coding the first monitoring information to obtain first encrypted monitoring information;
step S64, obtaining first decoding instruction information;
step S65, decoding and reading the first encrypted monitoring information according to the first decoding instruction information.
Specifically, the operation and maintenance state information can be safely monitored to ensure whether the operation and maintenance state information is tampered after being accurately queried and verified, and first monitoring information can be obtained, wherein the first monitoring information is used for safely monitoring the operation and maintenance state information; acquiring first coding instruction information, wherein the first coding instruction information is used for coding the first monitoring information to ensure the safety of the monitoring information, and coding the first monitoring information according to the first coding instruction information to acquire first encrypted monitoring information, and the first encrypted monitoring information is the monitoring information obtained after coding and encrypting the first monitoring information; and then obtaining first decoding instruction information, wherein the first decoding instruction information is used for decoding the first encrypted monitoring information, the decoding and the encoding are two corresponding processes, and the first encrypted monitoring information is decoded and read according to the first decoding instruction information, so that the operation and maintenance state information is finally ensured to be verified and effective, and the technical effect of ensuring the safe and reliable monitoring of the operation and maintenance state information is achieved.
Before sending the operation and maintenance instruction to the remote recorder, this embodiment further includes:
step S71, obtaining first query instruction information;
step S72, searching whether the first operation and maintenance state information exists in the first monitoring information according to the first query instruction information;
step S73, if the first operation and maintenance state information is found in the first monitoring information, obtain first operation and maintenance state information of the first remote oscillograph.
Specifically, the first query instruction information is to query the operation and maintenance state information before an operation and maintenance instruction is sent to the first remote wave recorder after the first operation and maintenance state information of the first remote wave recorder is obtained, and according to the first query instruction information, whether the first operation and maintenance state information exists is searched in the first monitoring information, that is, whether the operation and maintenance state information really exists is determined, if the first operation and maintenance state information is searched in the first monitoring information, which indicates that the first operation and maintenance state information really occurs, the first operation and maintenance state information of the first remote wave recorder is obtained, and the first operation and maintenance state information is further recorded and sent, so that the first operation and maintenance state information is ensured to really exist, and the problem of information error sent by remote wave recording is avoided.
Before sending the operation and maintenance instruction to the first remote recorder, this embodiment further includes:
step S74, if the first operation and maintenance state information is not found in the first monitoring information, first interception instruction information is obtained;
step S75, intercepting the first operation and maintenance state information according to the first interception instruction information.
Specifically, when whether the first operation and maintenance state information exists is searched in the first monitoring information, if the first operation and maintenance state information is not searched in the first monitoring information, it is indicated that the first operation and maintenance state information does not exist, first interception instruction information is obtained, the first operation and maintenance state information is intercepted according to the first interception instruction information, the first interception instruction information is used for intercepting the first operation and maintenance state information, and the technical effect of avoiding recording invalid operation and maintenance state information is achieved by intercepting the nonexistent operation and maintenance state information.
Based on the same inventive concept as the method for defending the remote operation and maintenance instruction of the intelligent oscillograph in the foregoing embodiments of the present invention, a second embodiment of the present invention provides a system for defending the remote operation and maintenance instruction of the intelligent oscillograph, as shown in fig. 2, the system includes:
a first obtaining unit 11, where the first obtaining unit 11 is configured to obtain first operation and maintenance state information of a first remote oscillograph;
a first generating unit 12, where the first generating unit 12 is configured to generate first verification code information according to the first operation and maintenance state information, where the first verification code corresponds to the first operation and maintenance state information one to one;
a second obtaining unit 13, where the second obtaining unit 13 is configured to obtain second operation and maintenance state information of a second remote oscillograph;
a second generating unit 14, where the second generating unit 14 is configured to generate a second verification code according to the second operation and maintenance state information and the first verification code, and so on, to obtain nth operation and maintenance state information of an nth remote oscillograph;
a third generating unit 15, where the third generating unit 15 is configured to generate an nth verification code according to the nth operation and maintenance state information and an nth-1 verification code, where N is a natural number greater than 1;
the first storage unit 16 is configured to copy and store all operation and maintenance state information and verification codes on M devices, where M is a natural number greater than 1;
a third obtaining unit 17, where the third obtaining unit 17 is configured to obtain, according to a corresponding verification code, a remote operation and maintenance right corresponding to the verification code;
a fourth obtaining unit 18, where the fourth obtaining unit 18 is configured to obtain remote operation and maintenance instruction information according to the remote operation and maintenance authority.
Further, the system further comprises:
a fifth obtaining unit, configured to obtain, according to the remote operation and maintenance instruction information, IP address information of the intelligent wave recording master station;
a sixth obtaining unit, configured to obtain a pre-stored IP address library of the remote oscillograph;
the first judging unit is used for judging whether the IP address information is in the pre-stored IP address library or not;
a seventh obtaining unit, configured to obtain first defense instruction information if the IP address information is not in the pre-stored IP address base;
a first prohibiting unit, configured to, according to the first defense instruction information, reject execution of the remote operation and maintenance instruction information by the remote recorder.
Further, the system further comprises:
an eighth obtaining unit configured to obtain first mask instruction information;
the first shielding unit is used for shielding the IP address information according to the first shielding instruction information;
a ninth obtaining unit configured to obtain first marker information;
a first marking unit, configured to mark the IP address information according to the first marking information.
Further, the system further comprises:
a tenth obtaining unit, configured to obtain the information of the number of times of sending the obtained remote operation and maintenance instruction information if the IP address information is in an IP address library pre-stored in the master station;
an eleventh obtaining unit configured to obtain a predetermined transmission number threshold;
a second judging unit, configured to judge whether transmission frequency information of the remote operation and maintenance instruction information is within the predetermined transmission frequency threshold;
a twelfth obtaining unit, configured to obtain first execution instruction information if the sending time information of the remote operation and maintenance instruction information is within the predetermined sending time threshold;
and the first execution unit is used for executing the remote operation and maintenance instruction information according to the first execution instruction information.
Further, the system further comprises:
a thirteenth obtaining unit, configured to obtain the first monitoring information;
a fourteenth obtaining unit configured to obtain the first encoding instruction information;
a fifteenth obtaining unit, configured to encode the first monitoring information according to the first encoding instruction information, to obtain first encrypted monitoring information;
a sixteenth obtaining unit to obtain first decode instruction information;
a first decoding unit, configured to decode and read the first encrypted monitoring information according to the first decoding instruction information.
Further, the system further comprises:
a seventeenth obtaining unit, configured to obtain first query instruction information;
the first searching unit is used for searching whether the first operation and maintenance state information exists in the first monitoring information according to the first query instruction information;
an eighteenth obtaining unit, configured to obtain the first operation and maintenance state information of the first remote oscillograph if the first operation and maintenance state information is found in the first monitoring information.
Further, the system further comprises:
a nineteenth obtaining unit, configured to obtain first interception instruction information if the first operation and maintenance state information is not found in the first monitoring information;
and the first interception unit is used for intercepting the first operation and maintenance state information according to the first interception instruction information.
Various changes and specific examples of the intelligent recorder remote operation and maintenance instruction defense method according to the embodiment of the invention are also applicable to the intelligent recorder remote operation and maintenance instruction defense system according to the embodiment of the invention, and through the detailed description of the intelligent recorder remote operation and maintenance instruction defense method, a person skilled in the art can clearly know the implementation mode of the intelligent recorder remote operation and maintenance instruction defense system according to the embodiment of the invention, so for the conciseness of the description, detailed description is not repeated.
The electronic device of the embodiment of the present application is described below with reference to fig. 3. Fig. 3 shows a structure of an electronic apparatus according to an embodiment of the present invention.
Based on the inventive concept of the method for defending the remote operation and maintenance instruction of the intelligent wave recorder in the embodiment of the invention, the third embodiment of the invention further provides a system for defending the remote operation and maintenance instruction of the intelligent wave recorder, wherein a computer program is stored on the system, and when the computer program is executed by a processor, the method for defending the remote operation and maintenance instruction of the intelligent wave recorder in the embodiment of the invention is realized.
Where in fig. 3 a bus architecture (represented by bus 300), bus 300 may include any number of interconnected buses and bridges, bus 300 linking together various circuits including one or more processors, represented by processor 302, and memory, represented by memory 304. The bus 300 may also link together various other circuits such as peripherals, voltage regulators, power management circuits, and the like, which are well known in the art, and therefore, will not be described any further in this embodiment. A bus interface 306 provides an interface between the bus 300 and the receiver 301 and transmitter 303. The receiver 301 and the transmitter 303 may be one and the same element, i.e. a transceiver, providing a means for communicating with various other apparatus over a transmission medium.
The processor 302 is responsible for managing the bus 300 and general processing, and the memory 304 may be used for storing data used by the processor 302 in performing operations.
Various changes and specific examples of the intelligent wave recorder network security management method according to the embodiment of the invention are also applicable to the intelligent wave recorder network security management system according to the embodiment of the invention, and through the detailed description of the intelligent wave recorder network security management method according to the embodiment, those skilled in the art can clearly know the implementation mode of the intelligent wave recorder network security management system according to the embodiment of the invention, so that the detailed description is omitted here for the sake of brevity of the description.
From the above, compared with the prior art, the embodiment of the invention has the following beneficial effects: the operation and maintenance state information detected by the intelligent wave recording master station is encrypted and stored in the distributed shared account book and the database, so that the storage safety of the operation and maintenance state information is ensured, the safety of the operation and maintenance state information is ensured, and the generated verification code is used for sending an operation and maintenance instruction to the remote wave recorder after the verification is passed, so that the confidentiality and the system defense capability of the operation and maintenance process are improved, and the technical effect of improving the working efficiency of the intelligent wave recorder is achieved;
whether the IP address through confirming intelligent record ripples master station is in the IP address storehouse of prestoring, carry out mark and shielding to nonexistent IP address information, prevent that the hacker from pretending to be connected with long-range oscillograph master station with intelligent record ripples ware, avoid follow-up emergence information potential safety hazard, the number of times of sending information through restriction long-range fortune dimension instruction simultaneously, and monitor fortune dimension state information etc. reached the defense capability who improves in the intelligent oscillograph working process, avoid long-range fortune dimension system to be attacked, improve the long-range fortune dimension work efficiency's of intelligent oscillograph ware technical effect.
The above disclosure is only for the purpose of illustrating the preferred embodiments of the present invention, and it is therefore to be understood that the invention is not limited by the scope of the appended claims.
Claims (4)
1. A defense method for remote operation and maintenance instructions of an intelligent recorder is characterized by comprising the following steps:
s1, the intelligent wave recording master station obtains Nth operation and maintenance state information of an Nth remote wave recorder, and generates an Nth verification code according to the Nth operation and maintenance state information, wherein the Nth verification code corresponds to the Nth operation and maintenance state information one to one, and N is a natural number greater than 1;
s2, copying and storing all operation and maintenance state information and verification codes on M devices respectively, wherein M is a natural number greater than 1;
s3, obtaining a remote operation and maintenance authority corresponding to the verification code according to the corresponding verification code;
s4, acquiring corresponding remote operation and maintenance instruction information according to the remote operation and maintenance authority;
s51, the remote wave recorder obtains the IP address information of the intelligent wave recording master station which sends the remote operation and maintenance instruction information according to the remote operation and maintenance instruction information;
step S52, judging whether the IP address information is in a pre-stored IP address library of the remote oscillograph;
step S53, if the IP address information is not in the pre-stored IP address library, first defense instruction information is obtained;
step S54, the remote wave recorder refuses to execute the remote operation and maintenance instruction information sent by the intelligent wave recording master station according to the first defense instruction information;
the step S52 further includes:
step S521, if the IP address information is in the pre-stored IP address library, the remote oscillograph obtains the information of the sending times of the remote operation and maintenance instruction information;
step S522, the remote oscillograph obtains a preset sending time threshold value;
step S523, the remote oscillograph judges whether the sending frequency information of the remote operation and maintenance instruction information is within the preset sending frequency threshold value;
step S524, if the sending frequency information of the remote operation and maintenance instruction information is within the predetermined sending frequency threshold, obtaining first execution instruction information;
step 525, executing the remote operation and maintenance instruction information according to the first execution instruction information;
step S61, obtaining first monitoring information;
step S62, obtaining first coding instruction information;
step S63, according to the first coding instruction information, coding the first monitoring information to obtain first encrypted monitoring information;
step S64, obtaining first decoding instruction information;
step S65, decoding and reading the first encrypted monitoring information according to the first decoding instruction information;
before sending the operation and maintenance instruction to the remote recorder, the method further comprises the following steps:
step S71, obtaining first query instruction information;
step S72, searching whether first operation and maintenance state information exists in the first monitoring information according to the first query instruction information;
step S73, if the first operation and maintenance state information is found in the first monitoring information, obtaining first operation and maintenance state information of a first remote oscillograph;
before sending the operation and maintenance instruction to the first remote recorder, the method further comprises the following steps:
step S74, if the first operation and maintenance state information is not found in the first monitoring information, first interception instruction information is obtained;
step S75, intercepting the first operation and maintenance state information according to the first interception instruction information.
2. The method for defending against remote operation and maintenance instructions of an intelligent recorder as claimed in claim 1, wherein after obtaining the first defense instruction information in step S53, the method comprises:
step S531, obtaining first shielding instruction information;
step S532, according to the first shielding instruction information, shielding the IP address information;
step S533, obtaining first mark information;
step S534, according to the first marking information, marking the IP address information.
3. The utility model provides a long-range fortune dimension instruction defense system of intelligence oscillograph which characterized in that includes:
the first obtaining unit is used for obtaining first operation and maintenance state information of a first remote recorder;
the first generation unit is used for generating first verification code information according to the first operation and maintenance state information, wherein the first verification codes correspond to the first operation and maintenance state information one to one;
the second obtaining unit is used for obtaining second operation and maintenance state information of a second remote recorder;
the second generating unit is used for generating a second verification code according to the second operation and maintenance state information and the first verification code, and so on to obtain the Nth operation and maintenance state information of the Nth remote recorder;
a third generating unit, configured to generate an nth verification code according to the nth operation and maintenance state information and an nth-1 verification code, where N is a natural number greater than 1;
the first storage unit is used for respectively copying and storing all the operation and maintenance state information and the verification codes on M devices, wherein M is a natural number greater than 1;
the third obtaining unit is used for obtaining the remote operation and maintenance authority corresponding to the verification code according to the corresponding verification code;
a fourth obtaining unit, configured to obtain remote operation and maintenance instruction information according to the remote operation and maintenance permission;
a fifth obtaining unit, configured to obtain, according to the remote operation and maintenance instruction information, IP address information of the intelligent wave recording master station;
a sixth obtaining unit, configured to obtain a pre-stored IP address library of the remote oscillograph;
the first judging unit is used for judging whether the IP address information is in the pre-stored IP address library or not;
a seventh obtaining unit, configured to obtain first defense instruction information if the IP address information is not in the pre-stored IP address base;
the first forbidding unit is used for refusing to execute the remote operation and maintenance instruction information by the remote recorder according to the first defense instruction information;
a tenth obtaining unit, configured to obtain the information of the number of times of sending the obtained remote operation and maintenance instruction information if the IP address information is in an IP address library pre-stored in the master station;
an eleventh obtaining unit configured to obtain a predetermined transmission number threshold;
a second judging unit, configured to judge whether transmission frequency information of the remote operation and maintenance instruction information is within the predetermined transmission frequency threshold;
a twelfth obtaining unit, configured to obtain first execution instruction information if the sending time information of the remote operation and maintenance instruction information is within the predetermined sending time threshold;
the first execution unit is used for executing the remote operation and maintenance instruction information according to the first execution instruction information;
a thirteenth obtaining unit configured to obtain the first monitoring information;
a fourteenth obtaining unit configured to obtain the first encoding instruction information;
a fifteenth obtaining unit, configured to encode the first monitoring information according to the first encoding instruction information, to obtain first encrypted monitoring information;
a sixteenth obtaining unit to obtain first decode instruction information;
a first decoding unit, configured to decode and read the first encrypted monitoring information according to the first decoding instruction information;
further, the system further comprises:
a seventeenth obtaining unit, configured to obtain first query instruction information;
the first searching unit is used for searching whether the first operation and maintenance state information exists in the first monitoring information according to the first query instruction information;
an eighteenth obtaining unit, configured to obtain first operation and maintenance state information of a first remote oscillograph if the first operation and maintenance state information is found in the first monitoring information;
further, the system further comprises:
a nineteenth obtaining unit, configured to obtain first interception instruction information if the first operation and maintenance state information is not found in the first monitoring information;
and the first interception unit is used for intercepting the first operation and maintenance state information according to the first interception instruction information.
4. The utility model provides a long-range operation and maintenance instruction defense system of intelligence oscillograph which characterized in that includes: a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method for defending against remote operation and maintenance instructions of the intelligent recorder as claimed in any one of claims 1-2 when executing the program.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110195850.1A CN112929379B (en) | 2021-02-22 | 2021-02-22 | Intelligent recorder remote operation and maintenance instruction defense method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110195850.1A CN112929379B (en) | 2021-02-22 | 2021-02-22 | Intelligent recorder remote operation and maintenance instruction defense method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112929379A CN112929379A (en) | 2021-06-08 |
| CN112929379B true CN112929379B (en) | 2023-03-24 |
Family
ID=76170067
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110195850.1A Active CN112929379B (en) | 2021-02-22 | 2021-02-22 | Intelligent recorder remote operation and maintenance instruction defense method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112929379B (en) |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105791033A (en) * | 2016-05-09 | 2016-07-20 | 浪潮电子信息产业股份有限公司 | Method, device and system for regulating operating state of server |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9699110B2 (en) * | 2014-08-11 | 2017-07-04 | Mellanox Technologies, Ltd. | Accelerating and offloading lock access over a network |
| CN107241300B (en) * | 2016-03-29 | 2020-11-03 | 北京京东尚科信息技术有限公司 | User request intercepting method and device |
| CN108881127B (en) * | 2017-05-15 | 2022-07-15 | 中兴通讯股份有限公司 | Method and system for controlling remote access authority |
| CN109302300B (en) * | 2017-07-25 | 2022-03-15 | 阿里巴巴集团控股有限公司 | Data distribution and processing method, system and computer readable recording medium |
| CN108833450B (en) * | 2018-08-22 | 2020-07-10 | 网宿科技股份有限公司 | Method and device for preventing server from being attacked |
| CN110012036A (en) * | 2019-05-21 | 2019-07-12 | 唯伊云(武汉)科技有限公司 | A kind of security protection system for industrial internet of things data acquisition layer terminal device |
| CN110543348B (en) * | 2019-09-06 | 2023-03-24 | 北京奇艺世纪科技有限公司 | Instruction processing method, system, electronic equipment and storage medium |
| CN111124495B (en) * | 2019-12-16 | 2021-02-12 | 海光信息技术股份有限公司 | Data processing method, decoding circuit and processor |
| CN112380525A (en) * | 2020-12-10 | 2021-02-19 | 深圳供电局有限公司 | Method and device for managing remote access of wave recorder |
-
2021
- 2021-02-22 CN CN202110195850.1A patent/CN112929379B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105791033A (en) * | 2016-05-09 | 2016-07-20 | 浪潮电子信息产业股份有限公司 | Method, device and system for regulating operating state of server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112929379A (en) | 2021-06-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11122061B2 (en) | Method and server for determining malicious files in network traffic | |
| CN109739203B (en) | Industrial network boundary protection system | |
| CN112217835B (en) | Message data processing method and device, server and terminal equipment | |
| CN113098846A (en) | Industrial control flow monitoring method, equipment, storage medium and device | |
| CN110011848B (en) | Mobile operation and maintenance auditing system | |
| Eden et al. | A forensic taxonomy of SCADA systems and approach to incident response | |
| CN105683990A (en) | Method and apparatus for protecting dynamic libraries | |
| CN103020495B (en) | Embedded-type software anti-piracy encryption method | |
| CN110324416B (en) | Download path tracking method, device, server, terminal and medium | |
| CN113596028B (en) | Method and device for handling network abnormal behaviors | |
| CN113872965B (en) | SQL injection detection method based on Snort engine | |
| CN108319822B (en) | Method, storage medium, electronic device and system for protecting webpage code | |
| CN116049859A (en) | Data security management method, system, terminal equipment and storage medium | |
| CN112929379B (en) | Intelligent recorder remote operation and maintenance instruction defense method and system | |
| CN112600828A (en) | Attack detection and protection method and device for power control system based on data message | |
| Shin et al. | A study on command block collection and restoration techniques through detection of project file manipulation on engineering workstation of industrial control system | |
| CN113572860B (en) | Method and device for tracking leaked data, storage system, equipment and storage medium | |
| CN113496024B (en) | Web page login method and device, storage medium and electronic equipment | |
| CN114978782A (en) | Industrial control threat detection method and device, industrial control equipment and storage medium | |
| CN110647771B (en) | Mysql database storage integrity verification protection method and device | |
| Lee et al. | Detection and analysis technique for manipulation attacks on plc control logic | |
| CN106411816B (en) | Industrial control system, safety interconnection system and processing method thereof | |
| CN112507386A (en) | Computer data full-intelligent safety management system | |
| Guo et al. | Research on Enterprise Computer Network Security Protection Technology Based on Information Technology | |
| CN112491929B (en) | Information security method based on digital feature recognition |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |