CN114153182A - Process self-adaptive industrial terminal safety protection system and method - Google Patents
Process self-adaptive industrial terminal safety protection system and method Download PDFInfo
- Publication number
- CN114153182A CN114153182A CN202010830663.1A CN202010830663A CN114153182A CN 114153182 A CN114153182 A CN 114153182A CN 202010830663 A CN202010830663 A CN 202010830663A CN 114153182 A CN114153182 A CN 114153182A
- Authority
- CN
- China
- Prior art keywords
- safety
- module
- safety protection
- result
- inspection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 214
- 230000008569 process Effects 0.000 title claims abstract description 196
- 238000004891 communication Methods 0.000 claims abstract description 136
- 238000007689 inspection Methods 0.000 claims abstract description 89
- 238000004458 analytical method Methods 0.000 claims abstract description 11
- 230000002159 abnormal effect Effects 0.000 claims description 20
- 230000003044 adaptive effect Effects 0.000 claims description 7
- 238000012423 maintenance Methods 0.000 claims description 6
- 238000001914 filtration Methods 0.000 claims description 3
- 230000006872 improvement Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 238000011161 development Methods 0.000 description 3
- 238000004519 manufacturing process Methods 0.000 description 3
- 230000006855 networking Effects 0.000 description 2
- 206010063385 Intellectualisation Diseases 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000013480 data collection Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000009776 industrial production Methods 0.000 description 1
- 238000002955 isolation Methods 0.000 description 1
- 238000013507 mapping Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B19/00—Programme-control systems
- G05B19/02—Programme-control systems electric
- G05B19/418—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS], computer integrated manufacturing [CIM]
- G05B19/4183—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS], computer integrated manufacturing [CIM] characterised by data acquisition, e.g. workpiece identification
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B19/00—Programme-control systems
- G05B19/02—Programme-control systems electric
- G05B19/418—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS], computer integrated manufacturing [CIM]
- G05B19/4185—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS], computer integrated manufacturing [CIM] characterised by the network communication
- G05B19/4186—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS], computer integrated manufacturing [CIM] characterised by the network communication by protocol, e.g. MAP, TOP
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Abstract
The invention belongs to the technical field of network safety protection, and particularly relates to a process self-adaptive industrial terminal safety protection system and a method thereof, wherein the system comprises the following steps: the system comprises a protocol analysis module, a process matching module, a process inspection module, a safety protection module and a configuration management module; the protocol analysis module is used for decomposing the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values and transmitting each communication instruction to the process matching module; the process matching module is used for matching each communication instruction with corresponding process characteristics according to a preset process matching criterion, obtaining a process matching result aiming at each process characteristic and transmitting the process matching result to the process inspection module; the process inspection module is used for carrying out safety inspection on the communication instruction in each process matching result and sending the inspection result to the safety protection module; and the safety protection module is used for determining safety protection measures required to be taken according to the inspection result.
Description
Technical Field
The invention belongs to the technical field of network safety protection, and particularly relates to a process self-adaptive industrial terminal safety protection system and method.
Background
The development of intellectualization and networking of the industrial control system brings about a plurality of potential safety hazards while promoting the development of industrial production. The traditional industrial control system adopts special hardware, software and communication protocols, and basically does not consider the communication safety problem which must be considered in interconnection and intercommunication. The protection functions of the management network and the industrial control network are weak, and even the isolation function is almost not provided. For example, a remote user connects to a system data collection and monitoring control system through the internet, so that the industrial control system faces various security threats such as remote control and network intrusion, and if any one component in the industrial control system is attacked, the whole system may be broken down. The application of general communication protocols, software, hardware and a large number of technologies in the industrial control system enables the industrial control system to be highly integrated with the traditional enterprise network and simultaneously introduces the information security problem in the traditional field.
With the development of computer technology, communication technology and control technology, the traditional control field is undergoing an unprecedented revolution and starts to develop towards networking. The structure of the control system has been developed from the first CCS (computer centralized control system), to the second generation DCS (distributed control system), to the now popular FCS (field bus control system). With the convergence of informatization and industrialization, the safety problem of the industrial control system becomes more and more prominent. Once the industrial control system has a security hole, the possibility that the industrial control system is attacked by threats such as viruses and trojans is increased, and further, the industrial generation control process faces security threats.
Currently, the security measures taken in industrial control systems are generally to deploy firewalls between the local area network and the external network of the industrial control system. Because the protection measures are few and single, once the firewall between the local area network and the external network of the industrial control system is broken by an attacker, the internal network of the industrial control system is easily controlled, so that data such as production data in the industrial control system is stolen, or field devices are maliciously controlled, and normal industrial control is influenced. In addition, the current industrial firewall mainly checks the validity of communication protocols and data, and cannot identify and block data which do not conform to the production process.
Disclosure of Invention
In order to solve the defects in the prior art, the invention provides a process-adaptive industrial terminal security protection system which can match communication protocols and data with a process, automatically judge the legality of control instructions and transmission data, and effectively block network attacks on industrial terminals by using the communication channels of an industrial control system.
In order to achieve the above object, the present invention provides a process adaptive industrial terminal security protection system, which comprises: the system comprises a protocol analysis module, a process matching module, a process inspection module, a safety protection module and a configuration management module;
the configuration management module is used for configuring a corresponding safety threshold value for each process characteristic and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module is used for decomposing the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values and transmitting each communication instruction to the process matching module;
the process matching module is used for matching each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmitting the process matching result to the process inspection module;
the process inspection module is used for carrying out safety inspection on the communication instruction in each process matching result and sending the inspection result to the safety protection module;
and the safety protection module is used for determining safety protection measures to be taken according to the inspection result and realizing the safety protection of the network communication.
As an improvement of the above technical solution, the process inspection module includes:
the receiving unit is used for receiving the communication instruction in each process matching result and the corresponding instruction value; and
and the checking unit is used for carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, comparing the received instruction value corresponding to the communication instruction in each process matching result with a preset safety threshold value, and sending the comparison result serving as a checking result to the safety protection module.
As one improvement of the above technical solution, the safety check is performed on the instruction value corresponding to the communication instruction in each process matching result, the received instruction value corresponding to the communication instruction in each process matching result is compared with a preset safety threshold, and the comparison result is used as a check result and sent to the safety protection module; the method specifically comprises the following steps:
and carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, and comparing the instruction value corresponding to the communication instruction in each received process matching result with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
As an improvement of the above technical solution, the safety protection module includes:
a safety measure making unit for filtering the process characteristic, the communication instruction matched with the process characteristic and the corresponding instruction value according to the received abnormal inspection result, and determining the safety protection measure to be taken; and
and the safety maintenance unit is used for determining that safety protection measures are not taken according to the received safety inspection result.
The invention also provides a process self-adaptive industrial terminal safety protection method, which comprises the following steps:
configuring a corresponding safety threshold value for each process characteristic by a configuration management module, and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module decomposes the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values, and transmits each communication instruction to the process matching module;
the process matching module matches each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmits the process matching result to the process inspection module;
the process inspection module carries out safety inspection on the communication instruction in each process matching result and sends the inspection result to the safety protection module;
and the safety protection module determines safety protection measures required to be taken according to the inspection result, so that the safety protection of the network communication is realized.
As one improvement of the above technical solution, the process inspection module performs security inspection on the communication instruction in each process matching result, and sends the inspection result to the security protection module; the method specifically comprises the following steps:
the receiving unit receives the communication instruction in each process matching result and the corresponding instruction value;
the inspection unit carries out safety inspection on the instruction value corresponding to the communication instruction in each process matching result, compares the received instruction value corresponding to the communication instruction in each process matching result with a preset safety threshold value, and sends the comparison result serving as an inspection result to the safety protection module.
As one improvement of the above technical solution, the safety check is performed on the instruction value corresponding to the communication instruction in each process matching result, the received instruction value corresponding to the communication instruction in each process matching result is compared with a preset safety threshold, and the comparison result is used as a check result and sent to the safety protection module; the method specifically comprises the following steps:
and carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, and comparing the instruction value corresponding to the communication instruction in each received process matching result with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
As one improvement of the above technical solution, the security protection module determines the security protection measures to be taken according to the inspection result, so as to implement security protection on network communication; the method specifically comprises the following steps:
the safety measure making unit filters the process characteristics, the communication instruction matched with the process characteristics and the corresponding instruction value of the process characteristics according to the received abnormal inspection result, and determines the safety protection measures to be taken;
and the safety maintenance unit determines not to take safety protection measures according to the received safety inspection result.
Compared with the prior art, the invention has the beneficial effects that:
the system can identify the process characteristic information of the industrial control system based on the pre-configured process characteristics of the industrial industry, additionally utilizes the process characteristics to perform safety inspection on the communication instruction matched with the process characteristics, filters out the process characteristics with abnormal inspection results, the communication instruction matched with the process characteristics and the instruction value corresponding to the communication instruction, and adopts safety protection measures to change according to different process characteristics in a self-adaptive mode, so that malicious attacks can be effectively intercepted, and damage to the process characteristics of the industrial control system through a normal communication mechanism can be prevented.
Drawings
Fig. 1 is a schematic diagram of a process adaptive industrial terminal safety protection system according to the present invention.
Detailed Description
The invention will now be further described with reference to the accompanying drawings.
As shown in fig. 1, the present invention provides a process adaptive industrial terminal security protection system, and compared with the existing industrial firewall and other protection devices, the system of the present invention can identify the process characteristic information of the industrial control system according to the pre-configured process characteristics of the industrial industry, and add the process characteristics to perform security check on the communication command matched with the process characteristic information, find abnormal data in time, and block high-risk data.
The system comprises: the system comprises a protocol analysis module, a process matching module, a process inspection module, a safety protection module and a configuration management module;
the configuration management module is used for configuring a corresponding safety threshold value for each process characteristic and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module is used for decomposing the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values, a one-to-one mapping relation is formed between each communication instruction and the corresponding communication instruction value, and each communication instruction is transmitted to the process matching module;
the process matching module is used for matching each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmitting the process matching result to the process inspection module;
the process matching criterion is that according to preset industrial process characteristics, when a process communication instruction changes, the communication instruction is compared with a preset instruction, and if the comparison result of the communication instruction and the preset instruction is consistent, a legal process is determined; otherwise, the mismatch process is identified.
The process inspection module is used for carrying out safety inspection on the communication instruction in each process matching result and sending the inspection result to the safety protection module;
specifically, the process inspection module includes:
the receiving unit is used for receiving the communication instruction in each process matching result and the corresponding instruction value;
the checking unit is used for carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, and comparing the instruction value corresponding to the communication instruction in each received process matching result with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
And the safety protection module is used for determining safety protection measures to be taken according to the inspection result and realizing the safety protection of the network communication.
Specifically, the safety protection module comprises:
a safety measure making unit for filtering the process characteristic, the communication instruction matched with the process characteristic and the corresponding instruction value according to the received abnormal inspection result, and determining the safety protection measure to be taken;
and the safety maintenance unit is used for determining that safety protection measures are not taken according to the received safety inspection result.
The invention also provides a process self-adaptive industrial terminal safety protection method, which comprises the following steps:
configuring a corresponding safety threshold value for each process characteristic by a configuration management module, and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module decomposes the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values, and transmits each communication instruction to the process matching module;
the process matching module matches each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmits the process matching result to the process inspection module;
the process inspection module carries out safety inspection on the communication instruction in each process matching result and sends the inspection result to the safety protection module;
specifically, the receiving unit receives a communication instruction in each process matching result and an instruction value corresponding to the communication instruction;
the inspection unit carries out safety inspection on the instruction value corresponding to the communication instruction in each process matching result, compares the received instruction value corresponding to the communication instruction in each process matching result with a preset safety threshold value, and sends the comparison result serving as an inspection result to the safety protection module.
Specifically, safety check is performed on the instruction value corresponding to the communication instruction in each process matching result, and the received instruction value corresponding to the communication instruction in each process matching result is compared with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
And the safety protection module determines safety protection measures required to be taken according to the inspection result, so that the safety protection of the network communication is realized.
Specifically, the safety measure making unit filters the process characteristic, the communication instruction matched with the process characteristic and the corresponding instruction value according to the received abnormal inspection result, and determines the safety protection measure to be taken;
and the safety maintenance unit determines not to take safety protection measures according to the received safety inspection result.
Finally, it should be noted that the above embodiments are only used for illustrating the technical solutions of the present invention and are not limited. Although the present invention has been described in detail with reference to the embodiments, it will be understood by those skilled in the art that various changes may be made and equivalents may be substituted without departing from the spirit and scope of the invention as defined in the appended claims.
Claims (8)
1. A process adaptive industrial terminal safety protection system is characterized by comprising: the system comprises a protocol analysis module, a process matching module, a process inspection module, a safety protection module and a configuration management module;
the configuration management module is used for configuring a corresponding safety threshold value for each process characteristic and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module is used for decomposing the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values and transmitting each communication instruction to the process matching module;
the process matching module is used for matching each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmitting the process matching result to the process inspection module;
the process inspection module is used for carrying out safety inspection on the communication instruction in each process matching result and sending the inspection result to the safety protection module;
and the safety protection module is used for determining safety protection measures to be taken according to the inspection result and realizing the safety protection of the network communication.
2. The process-adaptive industrial terminal safety protection system according to claim 1, wherein the process inspection module comprises:
the receiving unit is used for receiving the communication instruction in each process matching result and the corresponding instruction value; and
and the checking unit is used for carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, comparing the received instruction value corresponding to the communication instruction in each process matching result with a preset safety threshold value, and sending the comparison result serving as a checking result to the safety protection module.
3. The process-adaptive industrial terminal safety protection system according to claim 2, wherein the safety inspection is performed on the instruction value corresponding to the communication instruction in each process matching result, the received instruction value corresponding to the communication instruction in each process matching result is compared with a preset safety threshold, and the comparison result is used as an inspection result and sent to the safety protection module; the method specifically comprises the following steps:
and carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, and comparing the instruction value corresponding to the communication instruction in each received process matching result with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
4. The process-adaptive industrial terminal safety protection system according to claim 3, wherein the safety protection module comprises:
a safety measure making unit for filtering the process characteristic, the communication instruction matched with the process characteristic and the corresponding instruction value according to the received abnormal inspection result, and determining the safety protection measure to be taken; and
and the safety maintenance unit is used for determining that safety protection measures are not taken according to the received safety inspection result.
5. A process adaptive industrial terminal safety protection method, which is implemented based on the system of one of claims 1 to 4, and comprises the following steps:
configuring a corresponding safety threshold value for each process characteristic by a configuration management module, and configuring a corresponding process matching criterion for each process characteristic;
the protocol analysis module decomposes the communication data of the industrial control system collected in real time into a plurality of communication instructions and corresponding communication instruction values, and transmits each communication instruction to the process matching module;
the process matching module matches each communication instruction with corresponding process characteristics according to a pre-configured process matching criterion to obtain a process matching result aiming at each process characteristic and transmits the process matching result to the process inspection module;
the process inspection module carries out safety inspection on the communication instruction in each process matching result and sends the inspection result to the safety protection module;
and the safety protection module determines safety protection measures required to be taken according to the inspection result, so that the safety protection of the network communication is realized.
6. The process adaptive industrial terminal safety protection method according to claim 5, wherein the process inspection module performs safety inspection on the communication instruction in each process matching result and sends the inspection result to the safety protection module; the method specifically comprises the following steps:
the receiving unit receives the communication instruction in each process matching result and the corresponding instruction value;
the inspection unit carries out safety inspection on the instruction value corresponding to the communication instruction in each process matching result, compares the received instruction value corresponding to the communication instruction in each process matching result with a preset safety threshold value, and sends the comparison result serving as an inspection result to the safety protection module.
7. The process adaptive industrial terminal safety protection method according to claim 6, wherein the safety inspection is performed on the instruction value corresponding to the communication instruction in each process matching result, the received instruction value corresponding to the communication instruction in each process matching result is compared with a preset safety threshold, and the comparison result is used as an inspection result and sent to the safety protection module; the method specifically comprises the following steps:
and carrying out safety check on the instruction value corresponding to the communication instruction in each process matching result, and comparing the instruction value corresponding to the communication instruction in each received process matching result with a preset safety threshold value:
if the instruction value corresponding to the communication instruction in each received process matching result is smaller than or equal to a preset safety threshold, judging that the acquired communication data of the industrial control system are safe and legal, and sending the judgment result to a safety protection module as a safety inspection result;
and if the instruction value corresponding to the communication instruction in each received process matching result is greater than a preset safety threshold value, judging that the acquired communication data of the industrial control system is abnormal, and sending the judgment result as an abnormal inspection result to the safety protection module.
8. The process-adaptive industrial terminal safety protection method according to claim 5, wherein the safety protection module determines safety protection measures to be taken according to the inspection result to realize safety protection of network communication; the method specifically comprises the following steps:
the safety measure making unit filters the process characteristics, the communication instruction matched with the process characteristics and the corresponding instruction value of the process characteristics according to the received abnormal inspection result, and determines the safety protection measures to be taken;
and the safety maintenance unit determines not to take safety protection measures according to the received safety inspection result.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010830663.1A CN114153182B (en) | 2020-08-18 | 2020-08-18 | Industrial terminal safety protection system and method with self-adaptive process |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010830663.1A CN114153182B (en) | 2020-08-18 | 2020-08-18 | Industrial terminal safety protection system and method with self-adaptive process |
Publications (2)
Publication Number | Publication Date |
---|---|
CN114153182A true CN114153182A (en) | 2022-03-08 |
CN114153182B CN114153182B (en) | 2024-03-12 |
Family
ID=80460093
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202010830663.1A Active CN114153182B (en) | 2020-08-18 | 2020-08-18 | Industrial terminal safety protection system and method with self-adaptive process |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN114153182B (en) |
Citations (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020152180A1 (en) * | 1999-09-10 | 2002-10-17 | Paul Turgeon | System and method for performing secure remote real-time financial transactions over a public communications infrastructure with strong authentication |
KR200305424Y1 (en) * | 2002-11-12 | 2003-02-26 | 우광일 | Safety management system for factory automation |
US20040172557A1 (en) * | 2002-08-20 | 2004-09-02 | Masayuki Nakae | Attack defending system and attack defending method |
US20090045910A1 (en) * | 2007-08-14 | 2009-02-19 | Bayerische Motoren Werke Aktiengesellschaft | Platform for Standardizing Vehicle Communications With Third-Party Applications |
CN104460602A (en) * | 2014-11-07 | 2015-03-25 | 浙江大学 | Method and system for detecting safety of industrial process control technological process |
CN106774168A (en) * | 2016-12-09 | 2017-05-31 | 中国电子科技网络信息安全有限公司 | A kind of numerical control NC code safety filtering system |
US20180113442A1 (en) * | 2016-10-24 | 2018-04-26 | Fisher-Rosemount Systems, Inc. | Process device condition and performance monitoring |
CN109459995A (en) * | 2018-12-17 | 2019-03-12 | 国家计算机网络与信息安全管理中心 | A kind of condition monitoring system and monitoring method towards a variety of industrial ethernet protocols |
KR20190026115A (en) * | 2017-09-04 | 2019-03-13 | 수상에스티(주) | Method for operating process of manufacturing equipment based on cloud connector and computer readable record medium on which a program therefor is recorded |
US20190124044A1 (en) * | 2017-10-19 | 2019-04-25 | Bank Of America Corporation | Preventing Unauthorized Access to Secure Enterprise Information Systems Using a Multi-Filtering and Randomizing Control System |
CN109690425A (en) * | 2016-09-12 | 2019-04-26 | 大力士股份有限公司 | Control-the interactive approach and communication device interacted for executing the control-between manipulation electronic device and adjustment equipment |
CN109976239A (en) * | 2019-04-29 | 2019-07-05 | 北京京航计算通讯研究所 | Industrial control system terminal security guard system |
KR102112046B1 (en) * | 2019-12-04 | 2020-05-18 | (주) 다음기술단 | Method for maintenance and safety diagnosis of facilities |
-
2020
- 2020-08-18 CN CN202010830663.1A patent/CN114153182B/en active Active
Patent Citations (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20020152180A1 (en) * | 1999-09-10 | 2002-10-17 | Paul Turgeon | System and method for performing secure remote real-time financial transactions over a public communications infrastructure with strong authentication |
US20040172557A1 (en) * | 2002-08-20 | 2004-09-02 | Masayuki Nakae | Attack defending system and attack defending method |
KR200305424Y1 (en) * | 2002-11-12 | 2003-02-26 | 우광일 | Safety management system for factory automation |
US20090045910A1 (en) * | 2007-08-14 | 2009-02-19 | Bayerische Motoren Werke Aktiengesellschaft | Platform for Standardizing Vehicle Communications With Third-Party Applications |
CN104460602A (en) * | 2014-11-07 | 2015-03-25 | 浙江大学 | Method and system for detecting safety of industrial process control technological process |
CN109690425A (en) * | 2016-09-12 | 2019-04-26 | 大力士股份有限公司 | Control-the interactive approach and communication device interacted for executing the control-between manipulation electronic device and adjustment equipment |
US20180113442A1 (en) * | 2016-10-24 | 2018-04-26 | Fisher-Rosemount Systems, Inc. | Process device condition and performance monitoring |
CN106774168A (en) * | 2016-12-09 | 2017-05-31 | 中国电子科技网络信息安全有限公司 | A kind of numerical control NC code safety filtering system |
KR20190026115A (en) * | 2017-09-04 | 2019-03-13 | 수상에스티(주) | Method for operating process of manufacturing equipment based on cloud connector and computer readable record medium on which a program therefor is recorded |
US20190124044A1 (en) * | 2017-10-19 | 2019-04-25 | Bank Of America Corporation | Preventing Unauthorized Access to Secure Enterprise Information Systems Using a Multi-Filtering and Randomizing Control System |
CN109459995A (en) * | 2018-12-17 | 2019-03-12 | 国家计算机网络与信息安全管理中心 | A kind of condition monitoring system and monitoring method towards a variety of industrial ethernet protocols |
CN109976239A (en) * | 2019-04-29 | 2019-07-05 | 北京京航计算通讯研究所 | Industrial control system terminal security guard system |
KR102112046B1 (en) * | 2019-12-04 | 2020-05-18 | (주) 다음기술단 | Method for maintenance and safety diagnosis of facilities |
Also Published As
Publication number | Publication date |
---|---|
CN114153182B (en) | 2024-03-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11595396B2 (en) | Enhanced smart process control switch port lockdown | |
US20160019389A1 (en) | System and method for detecting obd-ii can bus message attacks | |
US8925083B2 (en) | Cyber security in an automotive network | |
CN111711615B (en) | Knowledge base information synchronization system and method for edge security computing node | |
US20080301810A1 (en) | Monitoring apparatus and method therefor | |
CN115150208B (en) | Zero-trust-based Internet of things terminal secure access method and system | |
KR20090090641A (en) | System for active security surveillance | |
Kwon et al. | Mitigation mechanism against in-vehicle network intrusion by reconfiguring ECU and disabling attack packet | |
Paul et al. | Towards the protection of industrial control systems–conclusions of a vulnerability analysis of profinet IO | |
CN112270020A (en) | Terminal equipment safety encryption device based on safety chip | |
CN114268457A (en) | Multi-protocol multi-service public network security access method | |
CN114153182B (en) | Industrial terminal safety protection system and method with self-adaptive process | |
CN115150209B (en) | Data processing method, industrial control system, electronic device, and storage medium | |
CN112866186B (en) | Security level determination method and device | |
Rinaldi et al. | Softwarization of SCADA: lightweight statistical SDN-agents for anomaly detection | |
Zihan et al. | Research on intrusion detection technology based on embedded Ethernet | |
CN111224931A (en) | Industrial isolation communication system and method | |
WO2024066059A1 (en) | Industrial internet security system and method based on sdp and edge computing | |
US20230030504A1 (en) | Transmission device for transmitting data | |
US20220417268A1 (en) | Transmission device for transmitting data | |
CN115001804B (en) | Bypass access control system, method and storage medium applied to field station | |
KR101196366B1 (en) | Security NIC system | |
CN111654497A (en) | Method and device for enhancing access security of power monitoring system terminal | |
CN113965368A (en) | Network anomaly detection method based on communication protocol | |
CN111614515A (en) | Computer network communication method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |