CN113741249B - Industrial control system network security analysis monitoring system - Google Patents

Industrial control system network security analysis monitoring system Download PDF

Info

Publication number
CN113741249B
CN113741249B CN202110934924.9A CN202110934924A CN113741249B CN 113741249 B CN113741249 B CN 113741249B CN 202110934924 A CN202110934924 A CN 202110934924A CN 113741249 B CN113741249 B CN 113741249B
Authority
CN
China
Prior art keywords
emergency
workshop
equipment
control system
industrial control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202110934924.9A
Other languages
Chinese (zh)
Other versions
CN113741249A (en
Inventor
陶万进
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jiangsu Ronghui Information Technology Co ltd
Original Assignee
Jiangsu Ronghui Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jiangsu Ronghui Information Technology Co ltd filed Critical Jiangsu Ronghui Information Technology Co ltd
Priority to CN202110934924.9A priority Critical patent/CN113741249B/en
Publication of CN113741249A publication Critical patent/CN113741249A/en
Application granted granted Critical
Publication of CN113741249B publication Critical patent/CN113741249B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B19/00Programme-control systems
    • G05B19/02Programme-control systems electric
    • G05B19/04Programme control other than numerical control, i.e. in sequence controllers or logic controllers
    • G05B19/042Programme control other than numerical control, i.e. in sequence controllers or logic controllers using digital processors
    • G05B19/0428Safety, monitoring
    • GPHYSICS
    • G05CONTROLLING; REGULATING
    • G05BCONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
    • G05B2219/00Program-control systems
    • G05B2219/20Pc systems
    • G05B2219/24Pc safety
    • G05B2219/24024Safety, surveillance
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02PCLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
    • Y02P90/00Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
    • Y02P90/02Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Automation & Control Theory (AREA)
  • Testing Or Calibration Of Command Recording Devices (AREA)
  • Testing And Monitoring For Control Systems (AREA)

Abstract

The invention belongs to the technical field of safety analysis of industrial control systems, and aims to solve the problem that the existing network safety analysis and detection system of the industrial control system cannot analyze the overall safety performance of the industrial control system according to specific environments, equipment and emergency situations of a workshop; according to the invention, the safety grade of the industrial control system is graded through the safety rating module, the safety coefficient is obtained through analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, and the safety grade of the industrial control system is graded through the result of comparing the safety coefficient with the safety coefficient threshold value.

Description

Industrial control system network security analysis monitoring system
Technical Field
The invention belongs to the technical field of safety analysis of an industrial control system, and particularly relates to a network safety analysis monitoring system of the industrial control system.
Background
Industrial control systems are demanding for high data volume, high rate transmission of data such as images, voice signals, etc., and are forcing the integration of ethernet and control networks, which are currently popular in the commercial field. The networking wave of the industrial control system integrates various current popular technologies such as an embedded technology, multi-standard industrial control network interconnection, a wireless technology and the like, thereby expanding the development space of the industrial control field and bringing new development opportunities.
The existing network security analysis and detection system of the industrial control system cannot analyze the overall security performance of the industrial control system according to the specific environment, equipment and emergency conditions of a workshop, so that the security performance of the industrial control system cannot be graded.
Disclosure of Invention
The invention aims to provide a network security analysis and monitoring system of an industrial control system, which is used for solving the problem that the existing network security analysis and detection system of the industrial control system cannot analyze the overall security performance of the industrial control system according to the specific environment, equipment and emergency conditions of a workshop;
the technical problems to be solved by the invention are as follows: how to provide a safety analysis and detection system which can analyze the overall safety performance of an industrial control system through specific environment, equipment and emergency situations of a workshop.
The purpose of the invention can be realized by the following technical scheme:
the network security analysis and monitoring system of the industrial control system comprises a security monitoring platform, wherein the security monitoring platform is in communication connection with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module and a storage module;
marking a workshop of the industrial control system as i, i =1,2, …, n, n is a positive integer;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system to obtain an environment qualification rate and sending the environment qualification rate to the safety rating module;
the equipment management module is used for analyzing the equipment running state of the industrial control system, obtaining the equipment qualification rate of the industrial control system and sending the equipment qualification rate to the safety rating module;
the emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, obtaining the emergency qualified rate of the industrial control system and sending the emergency qualified rate to the safety rating module;
the safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, the safety level of the industrial control system is judged by comparing the safety factor with a safety factor threshold value, and the specific process of analyzing the safety condition of the industrial control system by the safety rating module comprises the following steps: the safety coefficient AQ of the industrial control system is obtained by analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, the safety coefficient threshold values AQmin and AQmax are obtained through the storage module, and the safety coefficient AQ is compared with the safety coefficient threshold values AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, the safety level of the industrial control system is judged to be a second level;
and if the AQ is larger than or equal to the AQmax, judging the safety level of the industrial control system to be a first level.
Further, the specific process of the environment analysis module for detecting and analyzing the working environment of the industrial control system includes:
the method comprises the steps of obtaining temperature data of a workshop, wherein the temperature data is a workshop temperature value detected by a temperature sensor, marking the workshop temperature value as a vehicle temperature, obtaining a vehicle temperature threshold value through a storage module, comparing the vehicle temperature with a Che Wen threshold value, judging that the workshop temperature is abnormal if the vehicle temperature is Che Wen Che Wen threshold value, and sending a temperature abnormal signal to a safety monitoring platform by an environment analysis module; if the vehicle temperature is less than Che Wen threshold value, judging that the temperature of the workshop is normal, and sending a normal temperature signal to the safety monitoring platform by the environment analysis module;
acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the dust data of the workshop is a workshop dust concentration value detected by a dust concentration sensor;
and analyzing the temperature data, the humidity data and the dust data to obtain an environmental coefficient of the workshop.
Further, the method for acquiring the environmental qualification rate comprises the following steps:
acquiring an environment coefficient threshold HJmax of a workshop through a storage module, comparing the environment coefficient HJi of the workshop i with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, judging that the corresponding workshop environment meets the processing requirement, and marking the corresponding workshop as an annular workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
and acquiring the quantity value of the ring-closing workshop, marking the quantity value as m, and marking the ratio of m to n as the environmental qualification rate of the industrial control system.
Further, the specific process of analyzing the device operation state of the industrial control system by the device management module includes:
acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
the WCi, the WSi and the PNi are analyzed to obtain an equipment coefficient SXi of the workshop i, an equipment coefficient threshold value SXmax of the industrial control system is obtained through the storage module, the equipment coefficient SXi of the workshop i is compared with the equipment coefficient threshold value SXmax one by one, and the equipment qualification condition of the industrial control system is judged according to the comparison result.
Further, the process of comparing the plant coefficient SXi with the plant coefficient threshold SXmax is as follows:
and if the equipment coefficient SXi is not more than the equipment coefficient threshold SXMax, judging that the equipment of the industrial control system meets the requirement, marking the corresponding workshop as an equipment qualified workshop, and if the equipment coefficient SXi is more than the equipment coefficient threshold SXMax, judging that the equipment of the industrial control system does not meet the requirement, and marking the corresponding workshop as an equipment unqualified workshop.
Further, the process of acquiring the device yield includes: acquiring the number of qualified plants of the equipment, marking the number as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and judging that the equipment of the industrial control system is qualified if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin; and if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified.
Further, the specific process of analyzing and monitoring the workshop emergency condition of the industrial control system by the emergency monitoring module comprises the following steps:
when an emergency situation occurs in the workshop i, the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi;
the emergency coefficient of the workshop i is obtained by analyzing YSi, DSi and WSi, the emergency efficiency coefficient threshold value is obtained through the storage module, the emergency efficiency coefficient is compared with the emergency efficiency coefficient threshold value, and whether the emergency treatment of the workshop is qualified or not is judged according to the comparison result.
Further, the comparing of the emergency efficiency coefficient to the emergency efficiency coefficient threshold value includes: if the emergency efficiency coefficient is smaller than the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is qualified, and marking the corresponding workshop as an emergency qualified workshop; and if the emergency efficiency is larger than or equal to the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop.
Further, the process of acquiring the emergency qualification coefficient comprises the following steps: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as emergency qualification rate, acquiring an emergency qualification rate threshold value through a storage module, comparing the emergency qualification rate with the emergency qualification rate threshold value, and judging that the emergency treatment of the industrial control system is unqualified if the emergency qualification rate is less than or equal to the emergency qualification rate threshold value; if the emergency qualified rate YH is larger than the emergency qualified rate threshold, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
The invention has the following beneficial effects:
1. the safety rating module is arranged to grade the safety level of the industrial control system, the safety coefficient is obtained by analyzing the environment qualification rate, the equipment qualification rate and the emergency qualification rate, the safety level of the industrial control system is divided into a first grade, a second grade and a third grade according to the result of comparing the safety coefficient with the safety coefficient threshold value, meanwhile, the qualification rate is calculated and analyzed by taking a workshop as a unit, and the environment qualification rate, the equipment qualification rate and the emergency qualification rate are all comprehensive responses to the environment, equipment and stress state of the whole workshop of the industrial control system;
2. the environmental coefficient is a numerical value reflecting the quality of the whole workshop environment, whether the workshop environment meets the standard or not can be monitored through the environmental coefficient, and meanwhile, the obtained temperature data can also monitor the high temperature in the workshop to prevent safety accidents caused by the high temperature;
3. the equipment management module can analyze and monitor the running state and the maintenance efficiency of equipment in a workshop, and comprehensively analyze the damage times, the maintenance time and the service life of the equipment to obtain an equipment coefficient of the workshop, wherein the equipment coefficient is a capacity value for expressing that the equipment can cope with the processing pressure of an industrial control system, and the workshop equipment which does not meet the requirement can be replaced in time by monitoring the equipment coefficient;
4. the emergency monitoring module can detect the efficiency of emergency treatment on emergency by workers when the emergency occurs in a workshop, the emergency treatment efficiency is obtained by analyzing the time of the emergency treatment personnel arriving at the workshop and the time consumed by the emergency treatment, and the emergency treatment capacity of the workshop is reflected by the emergency treatment efficiency.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic block diagram of the present invention.
Detailed Description
The technical solutions of the present invention will be described clearly and completely with reference to the following embodiments, and it should be understood that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
As shown in fig. 1, an industrial control system network security analysis monitoring system includes a security monitoring platform, which is communicatively connected with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module, and a storage module;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system through temperature data, humidity data and dust data, and the specific detection and analysis process comprises the following steps:
step S1: the method comprises the steps of obtaining temperature data of a workshop, wherein the temperature data are workshop temperature values detected by a temperature sensor, the temperature sensor is a sensor capable of sensing temperature and converting the temperature into usable output signals, the sensor is divided into a thermal resistor and a thermocouple according to characteristics of sensor materials and electronic elements, the temperature sensor adopted by the method is a thermal resistor sensor, the workshop temperature value is marked as a vehicle temperature CW, a vehicle temperature threshold CWmax is obtained through a storage module, the vehicle temperature is compared with a Che Wen threshold, if the Che Wen Che Wen threshold is judged to be abnormal, the environment analysis module sends a temperature abnormal signal to a safety monitoring platform; if the vehicle temperature is less than Che Wen threshold value, the workshop temperature is judged to be normal, the environment analysis module sends a temperature normal signal to the safety monitoring platform, and the workshop temperature is monitored by comparing the vehicle temperature with Che Wen threshold value, so that the workshop temperature is fed back in time when a high-temperature condition occurs;
step S2: acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the humidity sensor is characterized in that a substrate is covered with a film made of a humidity sensing material, when water vapor in air is adsorbed on the humidity sensing film, the resistivity and the resistance of an element are changed, the humidity can be measured by utilizing the characteristic, the workshop humidity value is marked as CS, the workshop dust data is a workshop dust concentration value detected by a dust concentration sensor, and the workshop dust concentration value is marked as CH;
and step S3: by the formula
Figure DEST_PATH_IMAGE002
To obtainThe method comprises the following steps of (1) marking a workshop of an industrial control system as i, i =1,2, …, n and n are positive integers, marking the environment coefficient of the workshop i as HJi, wherein the environment coefficient HJ of the workshop is a numerical value representing the suitability degree of the workshop processing environment, and the higher the numerical value of the environment coefficient is, the worse the whole environment of the workshop is;
and step S4: acquiring an environment coefficient threshold HJmax of a workshop through a storage module, comparing the environment coefficient HJi of the workshop i with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, judging that the corresponding workshop environment meets the processing requirement, and marking the corresponding workshop as an annular workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
step S5: the method comprises the steps of obtaining a quantity value of a loop workshop and marking the quantity value as m, marking the ratio of m to n as an environmental qualification rate HH of an industrial control system, wherein the environmental qualification rate is a numerical value representing the quality of the whole environment of the industrial control system, the higher the numerical value of the environmental qualification rate is, the better the whole environment of the industrial control system is, obtaining a qualification rate threshold value HHmin through a storage module, comparing the environmental qualification rate HH of the industrial control system with the qualification rate threshold value HHmin, and judging that the environmental analysis result of the industrial control system is unqualified if the qualification rate of the industrial control system is less than or equal to the qualification rate threshold value; if the qualification rate of the industrial control system is greater than or equal to the qualification rate threshold value, judging that the environmental analysis result of the industrial control system is qualified; and sending the environmental qualification rate of the industrial control system to a safety rating module.
The equipment management module is used for analyzing the equipment running state of the industrial control system, and the specific analysis process comprises the following steps:
step W1: acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
step W2: by the formula
Figure DEST_PATH_IMAGE004
Obtaining an equipment coefficient SXi of the workshop i, wherein beta 1, beta 2 and beta 3 are proportionality coefficients, and beta 1 is more than beta 2 and more than beta 3 is more than 0, wherein the equipment coefficient is a numerical value of the applicable capability of the reaction workshop equipment to the processing pressure, and the smaller the numerical value of the equipment coefficient is, the stronger the applicable capability of the equipment to the processing pressure is;
step W3: acquiring an equipment coefficient threshold value SXmax of the industrial control system through a storage module, comparing the equipment coefficient SXi of the workshop i with the equipment coefficient threshold value SXmax one by one, if the equipment coefficient SXi is not more than the equipment coefficient threshold value SXmax, judging that equipment of the industrial control system meets requirements, marking the corresponding workshop as an equipment-qualified workshop, if the equipment coefficient SXi is more than the equipment coefficient threshold value SXmax, judging that the equipment of the industrial control system does not meet the requirements, and marking the corresponding workshop as an equipment-unqualified workshop;
step W4: acquiring the quantity of qualified workshops of equipment, marking the quantity as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, wherein the equipment qualification rate is a numerical value representing the integral state of production equipment of the industrial control system, the higher the equipment qualification rate is, the better the integral operation state of processing equipment of the industrial control system is, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin, judging the equipment qualification rate of the industrial control system; if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified; and sending the equipment qualification rate SH of the industrial control system to a safety rating module.
The emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, and the specific analysis and monitoring process comprises the following steps:
step Q1: when an emergency situation occurs in the workshop i (the emergency situation comprises high-temperature early warning, fire early warning and the like), the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
step Q2: the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
and step Q3: after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi, and processing the emergency situation through a formula
Figure DEST_PATH_IMAGE006
Obtaining an emergency efficiency coefficient YXi of the workshop i, wherein gamma 1 and gamma 2 are proportional coefficients, and gamma 1 is more than gamma 2 and more than 0;
step Q4: acquiring an emergency efficiency coefficient threshold YXmax through a storage module, comparing an emergency efficiency coefficient YXi with the emergency efficiency coefficient threshold YXmax, if the emergency efficiency coefficient YXi is smaller than the emergency efficiency coefficient threshold YXmax, judging that emergency treatment of the workshop i is qualified, and marking a corresponding workshop as an emergency qualified workshop; if the emergency efficiency YXi is not less than the emergency efficiency coefficient threshold YXmax, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop;
step Q5: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as an emergency qualification rate YH, acquiring an emergency qualification rate threshold YHmin through a storage module, comparing the emergency qualification rate YH with the emergency qualification rate threshold YHmin, and if the emergency qualification rate YH is less than or equal to the emergency qualification rate threshold YHmin, judging that the emergency treatment of the industrial control system is unqualified; if the emergency qualified rate YH is larger than the emergency qualified rate threshold YHmax, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
The safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, wherein the safety factor AQ represents the industrial control systemThe numerical value of whole security performance, the higher the numerical value of factor of safety is better to represent industrial control system's whole security performance, judges industrial control system's security level through the comparison of factor of safety and factor of safety threshold value, and the specific process that the security rating module carries out the analysis to industrial control system's security situation includes: by the formula
Figure DEST_PATH_IMAGE008
Obtaining a safety coefficient AQ of the industrial control system, wherein theta 1, theta 2 and theta 3 are all proportionality coefficients, and theta 3 is more than theta 2 and more than theta 1; acquiring safety factor thresholds AQmin and AQmax through a storage module, and comparing the safety factors AQ with the safety factor thresholds AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, the safety level of the industrial control system is judged to be a second level;
and if the AQ is larger than or equal to the AQmax, judging the safety level of the industrial control system to be a first level.
When the system is used, an environment analysis module analyzes and calculates the overall environment condition of a workshop through temperature data, humidity data and dust data to obtain an environment coefficient, whether the environment in the workshop meets the standard or not can be monitored through the environment coefficient, high temperature in the workshop can be monitored through the acquired temperature data, safety accidents caused by high temperature are prevented, an equipment management module analyzes and monitors the running state and the maintenance efficiency of equipment in the workshop, the equipment coefficient of the workshop is obtained through comprehensive analysis of the damage times, the maintenance time and the service life of the equipment, the equipment of the workshop which does not meet the requirements can be replaced in time through monitoring of the equipment coefficient, an emergency monitoring module detects the emergency processing efficiency of workers when the emergency condition occurs in the workshop, the emergency processing efficiency is obtained through analysis of the time when the emergency processing personnel reach the workshop and the time consumed by the emergency processing, a safety rating module carries out safety grading on the industrial control system, the safety rating of the environment qualification rate, the equipment qualification rate and the emergency processing qualification rate are analyzed, and the safety factor of the industrial control system is divided into a safety grade two and a safety grade.
The foregoing is merely illustrative and explanatory of the present invention and various modifications, additions or substitutions may be made to the specific embodiments described by those skilled in the art without departing from the scope of the invention as defined in the accompanying claims.
The above formulas are all numerical values obtained by normalization processing, the formula is a formula obtained by acquiring a large amount of data and performing software simulation to obtain the latest real situation, and the preset parameters in the formula are set by the technical personnel in the field according to the actual situation.
In the description herein, references to the description of "one embodiment," "an example," "a specific example" or the like are intended to mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
The preferred embodiments of the invention disclosed above are intended to be illustrative only. The preferred embodiments are not intended to be exhaustive or to limit the invention to the precise forms disclosed. Obviously, many modifications and variations are possible in light of the above teaching. The embodiments were chosen and described in order to best explain the principles of the invention and the practical application, to thereby enable others skilled in the art to best utilize the invention. The invention is limited only by the claims and their full scope and equivalents.

Claims (6)

1. The network security analysis and monitoring system of the industrial control system comprises a security monitoring platform, and is characterized in that the security monitoring platform is in communication connection with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module and a storage module;
marking a workshop of the industrial control system as i, i =1,2, …, n, n is a positive integer;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system to obtain an environment qualification rate and sending the environment qualification rate to the safety rating module;
the equipment management module is used for analyzing the equipment running state of the industrial control system, obtaining the equipment qualification rate of the industrial control system and sending the equipment qualification rate to the safety rating module;
the emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, obtaining the emergency qualified rate of the industrial control system and sending the emergency qualified rate to the safety rating module;
the safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, the safety level of the industrial control system is judged by comparing the safety factor with a safety factor threshold value, and the specific process of analyzing the safety condition of the industrial control system by the safety rating module comprises the following steps: the safety coefficient AQ of the industrial control system is obtained by analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, the safety coefficient threshold values AQmin and AQmax are obtained through the storage module, and the safety coefficient AQ is compared with the safety coefficient threshold values AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, judging the safety level of the industrial control system to be a second level;
if AQ is more than or equal to AQmax, judging the safety level of the industrial control system to be a first level;
the specific process of analyzing the equipment running state of the industrial control system by the equipment management module comprises the following steps:
acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of the maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
WCi, WSi and PNi are analyzed to obtain an equipment coefficient SXi of a workshop i, an equipment coefficient threshold value SXmax of the industrial control system is obtained through a storage module, the equipment coefficient SXi of the workshop i is compared with the equipment coefficient threshold value SXmax one by one, and the equipment qualification condition of the industrial control system is judged according to the comparison result;
the process of comparing the plant coefficient SXi with the plant coefficient threshold SXmax is:
if the equipment coefficient SXi is not more than the equipment coefficient threshold value SXMax, judging that the equipment of the industrial control system meets the requirement, marking the corresponding workshop as an equipment-qualified workshop, and if the equipment coefficient SXi is more than the equipment coefficient threshold value SXMax, judging that the equipment of the industrial control system does not meet the requirement, and marking the corresponding workshop as an equipment-unqualified workshop;
the acquisition process of the equipment yield comprises the following steps: acquiring the number of qualified plants of the equipment, marking the number as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and judging that the equipment of the industrial control system is qualified if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin; and if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified.
2. The network security analysis and monitoring system of industrial control system according to claim 1, wherein the specific process of the environment analysis module performing detection and analysis on the working environment of the industrial control system includes:
acquiring temperature data of a workshop, wherein the temperature data is a workshop temperature value detected by a temperature sensor, marking the workshop temperature value as a vehicle temperature, acquiring a vehicle temperature threshold value through a storage module, comparing the vehicle temperature with the Che Wen threshold value, if the Che Wen Che Wen threshold value is reached, judging that the workshop temperature is abnormal, and sending a temperature abnormal signal to a safety monitoring platform by an environment analysis module; if the vehicle temperature is less than Che Wen threshold value, judging that the temperature of the workshop is normal, and sending a normal temperature signal to the safety monitoring platform by the environment analysis module;
acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the dust data of the workshop is a workshop dust concentration value detected by a dust concentration sensor;
and analyzing the temperature data, the humidity data and the dust data to obtain an environmental coefficient of the workshop.
3. The system of claim 2, wherein the environmental qualification rate is obtained by:
the method comprises the steps that an environment coefficient threshold HJmax of a workshop is obtained through a storage module, the environment coefficients HJi of the workshop i are compared with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, it is judged that the corresponding workshop environment meets processing requirements, and the corresponding workshop is marked as a ring-closed workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
and acquiring the number value of the ring-closing workshops, marking the number value as m, and marking the ratio of m to n as the environmental qualification rate HH of the industrial control system.
4. The system for analyzing and monitoring the network safety of the industrial control system according to claim 1, wherein the specific process of analyzing and monitoring the workshop emergency condition of the industrial control system by the emergency monitoring module comprises:
when an emergency situation occurs in the workshop i, the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi;
the emergency coefficient of the workshop i is obtained by analyzing YSi, DSi and WSi, the emergency efficiency coefficient threshold value is obtained through the storage module, the emergency efficiency coefficient is compared with the emergency efficiency coefficient threshold value, and whether the emergency treatment of the workshop is qualified or not is judged according to the comparison result.
5. The system of claim 4, wherein the comparison of the emergency efficiency coefficient to the emergency efficiency coefficient threshold comprises: if the emergency efficiency coefficient is smaller than the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is qualified, and marking the corresponding workshop as an emergency qualified workshop; and if the emergency efficiency is larger than or equal to the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop.
6. The system of claim 5, wherein the process of obtaining the emergency qualification coefficient comprises: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as emergency qualification rate, acquiring an emergency qualification rate threshold value through a storage module, comparing the emergency qualification rate with the emergency qualification rate threshold value, and judging that the emergency treatment of the industrial control system is unqualified if the emergency qualification rate is less than or equal to the emergency qualification rate threshold value; if the emergency qualified rate YH is larger than the emergency qualified rate threshold, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
CN202110934924.9A 2021-08-16 2021-08-16 Industrial control system network security analysis monitoring system Active CN113741249B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110934924.9A CN113741249B (en) 2021-08-16 2021-08-16 Industrial control system network security analysis monitoring system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110934924.9A CN113741249B (en) 2021-08-16 2021-08-16 Industrial control system network security analysis monitoring system

Publications (2)

Publication Number Publication Date
CN113741249A CN113741249A (en) 2021-12-03
CN113741249B true CN113741249B (en) 2023-04-07

Family

ID=78731174

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110934924.9A Active CN113741249B (en) 2021-08-16 2021-08-16 Industrial control system network security analysis monitoring system

Country Status (1)

Country Link
CN (1) CN113741249B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114612267A (en) * 2022-02-25 2022-06-10 上海隽鑫安全技术管理服务有限公司 On-site safety supervision and control system based on data analysis
CN114900369B (en) * 2022-06-02 2024-04-05 京闽数科(北京)有限公司 Chip access safety supervision system based on Internet of things

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016192157A1 (en) * 2015-05-29 2016-12-08 广州特种承压设备检测研究院 Bi-directional communicative remote intelligent method of monitoring coal-fired boiler
WO2018076368A1 (en) * 2016-10-31 2018-05-03 美的智慧家居科技有限公司 Method and system for safely operating device in local area network, and device therefor
CN111932112A (en) * 2020-08-07 2020-11-13 孟轲 Industrial equipment operation data analysis system based on cloud computing

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111474299B (en) * 2020-04-13 2021-07-13 深圳普泰电气有限公司 Industrial environment real-time monitoring system based on big data
CN112162537A (en) * 2020-10-09 2021-01-01 苏宇航 Chemical production safety online monitoring and early warning management system based on big data
CN112947327B (en) * 2021-01-28 2022-12-13 卓然(靖江)设备制造有限公司 WINCC-based industrial furnace group intelligent monitoring and management system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016192157A1 (en) * 2015-05-29 2016-12-08 广州特种承压设备检测研究院 Bi-directional communicative remote intelligent method of monitoring coal-fired boiler
WO2018076368A1 (en) * 2016-10-31 2018-05-03 美的智慧家居科技有限公司 Method and system for safely operating device in local area network, and device therefor
CN111932112A (en) * 2020-08-07 2020-11-13 孟轲 Industrial equipment operation data analysis system based on cloud computing

Also Published As

Publication number Publication date
CN113741249A (en) 2021-12-03

Similar Documents

Publication Publication Date Title
CN113741249B (en) Industrial control system network security analysis monitoring system
CN114184229B (en) Switch cabinet operation environment monitoring system
EP1638253A1 (en) Method of monitoring wireless network performance
JP6977650B2 (en) Anomaly detection method, anomaly detection program, and anomaly detection device
CN116246407A (en) Agriculture and forestry area fire early warning supervisory systems based on artificial intelligence
CN107332917B (en) Underground pipe gallery space environment data acquisition method and system with fault judgment function
CN111273130A (en) Multi-parameter acquisition and abnormity prevention early warning method for cable channel of transformer substation and application
CN112631157A (en) Explosion-proof electrical apparatus monitoring system based on computer cloud platform
CN108650139A (en) A kind of powerline network monitoring system
CN114970888B (en) Component fault analysis system based on electric power electrical control
CN115469176A (en) Digital twin power grid risk assessment system based on data model
CN117079428A (en) Regional early warning system for monitoring leakage of dangerous chemical gas in factory
CN115995886A (en) Power monitoring system of power equipment
CN115015623B (en) Mining equipment operation safety evaluation system based on big data
CN116381460A (en) Power supply operation safety supervision system for vehicle-mounted shelter CT
CN116070917A (en) Dangerous chemical risk level evaluation system based on artificial intelligent storage
CN115933508A (en) Intelligent power operation and maintenance system for power distribution network
CN104793270B (en) A kind of synthetic determination method of equipment running status in Integrated Meteorological Observation net
CN115688014A (en) Method, device and equipment for determining running state of relay protection equipment
CN111505436A (en) Electric power communication analysis system based on big data
CN117930795A (en) Industrial computer self-checking control system based on artificial intelligence
CN111289812A (en) Power transmission and transformation equipment state monitoring and management method and system
CN110175745A (en) A kind of electric power telecommunication network risk assessment method and system based on fault modeling
CN117409526A (en) Electrical fire extremely early warning and monitoring system and fire extinguishing method
CN117134490A (en) Cloud platform-based intelligent surge protector monitoring system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant