CN114219331A - Industrial control network safety emergency command platform - Google Patents

Industrial control network safety emergency command platform Download PDF

Info

Publication number
CN114219331A
CN114219331A CN202111564669.XA CN202111564669A CN114219331A CN 114219331 A CN114219331 A CN 114219331A CN 202111564669 A CN202111564669 A CN 202111564669A CN 114219331 A CN114219331 A CN 114219331A
Authority
CN
China
Prior art keywords
module
security
command platform
network security
industrial control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111564669.XA
Other languages
Chinese (zh)
Inventor
于元泽
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Dalian Hejie Technology Co ltd
Original Assignee
Dalian Hejie Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Dalian Hejie Technology Co ltd filed Critical Dalian Hejie Technology Co ltd
Priority to CN202111564669.XA priority Critical patent/CN114219331A/en
Publication of CN114219331A publication Critical patent/CN114219331A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • G06Q10/063Operations research, analysis or management
    • G06Q10/0635Risk analysis of enterprise or organisation activities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • G06Q10/063Operations research, analysis or management
    • G06Q10/0637Strategic management or analysis, e.g. setting a goal or target of an organisation; Planning actions based on goals; Analysis or evaluation of effectiveness of goals
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/06Resources, workflows, human or project management; Enterprise or organisation planning; Enterprise or organisation modelling
    • G06Q10/063Operations research, analysis or management
    • G06Q10/0639Performance analysis of employees; Performance analysis of enterprise or organisation operations
    • G06Q10/06393Score-carding, benchmarking or key performance indicator [KPI] analysis

Landscapes

  • Business, Economics & Management (AREA)
  • Human Resources & Organizations (AREA)
  • Engineering & Computer Science (AREA)
  • Strategic Management (AREA)
  • Economics (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Educational Administration (AREA)
  • Development Economics (AREA)
  • Operations Research (AREA)
  • Marketing (AREA)
  • Game Theory and Decision Science (AREA)
  • Quality & Reliability (AREA)
  • Tourism & Hospitality (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention relates to the technical field of emergency command platforms, in particular to an industrial control network security emergency command platform which comprises a wide area network, a network security system, a PC terminal, a mobile phone terminal and a large screen command platform. In the invention, the storage security encryption module, the transmission security module, the database security management module, the firewall, the special virus protection module and the hacker intrusion prevention module are arranged in a large-screen command platform under a wide area network through a network security system, so that the system has the advantages of safe operation under the wide area network and associated sharing of users; according to the invention, through the mobile phone terminal, the PC terminal and the large-screen command platform, an effective curing flow is established for implementing the risk security level, the risk assessment and the plan development network, so that the network security work of the organization meets the requirements of network security legal regulations, industry supervision and the security requirements of the organization, the emergency management capability of the organization is improved, and the handling capability of network security events is improved.

Description

Industrial control network safety emergency command platform
Technical Field
The invention relates to the technical field of emergency command platforms, in particular to an industrial control network safety emergency command platform.
Background
Industrial control, i.e. industrial control, which is a generic name of a control system for industrial production and includes a PLC control system, a distributed control system, a supervisory control and data acquisition system, etc., the PLC control system is a control system formed by interconnecting PLCs alone, and the PLCs are loosely connected, so that it is difficult to perform high-precision control, and the industrial control system is mainly applied to small-sized production processes, such as a filling line, a mail distribution line, etc. The Distributed Control System (DCS) is also called a distributed control system, is used for large-scale continuous process control, and is suitable for industrial sites with a large number of measurement and control points, high precision and high reaction speed, such as power generation, oil refineries, sewage treatment, chemical engineering and the like. A data acquisition and monitoring control System (SCADA), also called configuration monitoring software in China, mainly realizes the production process and object management of a wide-area environment, needs control equipment depending on a field environment for most specific control work, and is mainly applied to power systems, oil pipelines, rail transit and the like
Most of the existing enterprises neglect the construction of application software, and most of the existing software adopts local area networks, although the security is guaranteed, the dependence of the system is strong, the upgrading and maintenance are not easy, and the data sharing under the wide area network cannot be realized; meanwhile, a local area network is used, maintenance and upgrading are not easy, data are difficult to achieve intercommunication consistency, a user can command and drill only by being limited in the local area network, the user can not share the local area network on the internet, a large-screen command system is not available, and unified scheduling cannot be achieved.
Disclosure of Invention
The invention aims to provide an industrial control network safety emergency command platform to solve the problems in the background technology. In order to achieve the purpose, the invention provides the following technical scheme: the industrial control network security emergency command platform comprises a wide area network, a network security system, a PC terminal, a mobile phone terminal and a large screen command platform, wherein the network security system comprises a storage security encryption module, a transmission security module, a database security management module, a firewall, a special virus protection module and a hacker intrusion prevention device.
Preferably, the PC terminal includes an input port module, a data analysis module, and an output port module, the input port module includes an automatic data entry system, and the automatic data entry system includes a text transmission module, an image transmission module, a digital transmission module, and an electronic module.
Preferably, the data analysis module comprises a classification module, and the output port module comprises a data output module.
Preferably, the classification module comprises a risk assessment module and a risk response module, the risk assessment module comprises a primary risk module, a secondary risk module, a tertiary risk module and a quaternary risk module, and the risk response module comprises a primary response module, a secondary response module, a tertiary response module and a quaternary response module.
Preferably, the mobile phone end comprises a mobile phone emergency plan APP, and the mobile phone emergency plan APP comprises an operation prompt window, an operation execution window and a problem feedback window.
Preferably, the large screen command platform comprises an associated user shared information module, a plan storage module, a command module and a display module.
Preferably, the user shared information module, the plan storage module, the command module and the display module are installed inside the large screen command platform.
Preferably, the input port module, the data analysis module and the output port module are installed inside a PC terminal, the network security system, the PC terminal, the mobile phone terminal and the large screen command platform are all externally connected with a power supply, and the network security system, the PC terminal, the mobile phone terminal, the large screen command platform, the storage security encryption module, the transmission security module, the database security management module and the special virus protection module are all externally connected with the power supply.
Preferably, the storage security encryption module is installed in the input port module, the transmission security module is installed in the data analysis module, the database security management module is installed in the output port module, and the firewall, the special virus protection module and the large screen command platform installed in the wide area network are provided for preventing hacker intrusion.
Compared with the prior art, the invention has the beneficial effects that:
in the invention, the storage security encryption module, the transmission security module, the database security management module, the firewall, the special virus protection module and the hacker intrusion prevention module are arranged in a large-screen command platform under a wide area network through a network security system, and the invention has the advantages of safe operation and user association and sharing under the wide area network.
According to the invention, through the mobile phone terminal, the PC terminal and the large-screen command platform, an effective curing flow is established for implementing the risk security level, the risk assessment and the plan development network, so that the network security work of the organization meets the requirements of network security legal regulations, industry supervision and the security requirements of the organization, the emergency management capability of the organization is improved, and the handling capability of network security events is improved.
Drawings
FIG. 1 is a schematic view of the flow structure of a PC terminal, a large screen command platform and a mobile phone terminal in the invention;
FIG. 2 is a schematic diagram of the internal structure of the PC terminal according to the present invention;
FIG. 3 is a schematic diagram of the internal structure of the classification module according to the present invention;
FIG. 4 is a schematic view of the network security system and PC terminal flow structure of the present invention;
fig. 5 is a schematic structural diagram of a large screen command platform in the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be obtained by workers skilled in the art without any inventive work based on the embodiments of the present invention, are within the scope of the present invention.
Referring to fig. 1 to 5, the present invention provides a technical solution: the industrial control network security emergency command platform comprises a wide area network, a network security system, a PC terminal, a mobile phone terminal and a large screen command platform, wherein the network security system comprises a storage security encryption module, a transmission security module, a database security management module, a firewall, a special virus protection module and a hacker intrusion prevention device, the firewall and the special virus protection module are arranged on the large screen command platform, meanwhile, the hacker intrusion prevention device is used for setting a password, the letter + number + case and case distinction + various accords are adopted, a complex patch password is set according to the formula, and meanwhile, the system is updated regularly to prevent hacker intrusion.
In this embodiment, as shown in fig. 2, the PC terminal includes an input port module, a data analysis module, and an output port module, the input port module includes an automatic data entry system, the automatic data entry system includes a text transmission module, an image transmission module, a digital transmission module, and an electronic module, and the text transmission module, the image transmission module, the digital transmission module, and the electronic module adopt the automatic data entry system to transmit the risk data to the classification module.
In this embodiment, as shown in fig. 3, the data analysis module includes a classification module, the classification module integrates a text transmission module, an image transmission module, a digital transmission module, and an electronic module in the automatic data entry system according to the rank (i.e., a first-level risk module, a second-level risk module, a third-level risk module, a fourth-level risk module, a first-level response module, a second-level response module, a third-level response module, and a fourth-level response module) into an independent unit, and is displayed in the form of an electronic flowchart, the output port module includes a data output module, and when the data output module is operated by a user at a mobile phone, the data output module receives a command from the mobile phone and transmits the rank to the large-screen command platform, the mobile phone, and the PC terminal.
In this embodiment, as shown in fig. 3, the classification module includes a risk assessment module and a risk response module, the risk assessment module includes a first-level risk module, a second-level risk module, a third-level risk module and a fourth-level risk module, and the risk response module includes a first-level response module, a second-level response module, a third-level response module and a fourth-level response module.
In this embodiment, as shown in fig. 1, the mobile phone end includes a mobile phone emergency plan APP, the mobile phone emergency plan APP includes an operation prompt, an operation execution window and a problem feedback window, and the mobile phone emergency plan APP, that is, the user, can operate and feed back opinions according to the operation prompt, the operation execution window and the problem feedback window.
In this embodiment, as shown in fig. 1 to 5, the large-screen command platform includes an associated user shared information module, a plan storage module, a command module, and a display module, all associated users can see information, can view details of a plan, each corresponding step, and an execution condition, a related leader can view a global execution condition through a large-screen page at a PC terminal, and initiate a global overall command, and a user of command message content can view the message content in time at a mobile phone terminal.
In this embodiment, as shown in fig. 5, the user shared information module, the plan storage module, the command module, and the display module are installed inside the large screen command platform.
In this embodiment, as shown in fig. 4, the input port module, the data analysis module, and the output port module are installed inside the PC terminal, the network security system, the PC terminal, the mobile phone terminal, and the large-screen command platform, and the network security system, the PC terminal, the mobile phone terminal, the large-screen command platform, the storage security encryption module, the transmission security module, the database security management module, and the dedicated virus protection module are all externally connected to a power supply.
In this embodiment, as shown in fig. 1 to 5, a storage security encryption module is installed in an input port module, a transmission security module is installed in a data analysis module, a database security management module is installed in an output port module, a firewall, a special virus protection module and a hacker intrusion prevention device are installed in a large screen command platform, and there exists a similar platform in the prior art, which is mainly characterized in that a local intranet is used, which is not easy to maintain and upgrade, data is difficult to reach intercommunication consistency, a user needs to be limited in the local intranet to conduct command and exercise, and even cannot share the data on the internet, and there is no large screen command system, so that unified scheduling cannot be achieved, and most of enterprises adopt heavy hardware and light software, neglect construction of application software, and adopt a local intranet in most of existing software, although security is guaranteed, dependence of the system is strong, the upgrading and maintenance are not easy, the data sharing under the wide area network cannot be realized, the existing technical means can still safely operate under the wide area network, and therefore the system of the previous generation is gradually eliminated.
The use method and the advantages of the invention are as follows: when the industrial control network safety emergency command platform is used, the working process is as follows:
as shown in figures 1 to 5, in the present invention, a storage security encryption module is installed in an input port module, a transmission security module is installed in a data analysis module, a database security management module is installed in an output port module, a firewall, a special virus protection module and a large screen command platform installed under a wide area network are provided for preventing hacker intrusion, which are mainly used for preventing data storage security from adopting database encryption storage and authority control provided by a relational database management system, according to the security classification of data, general data are directly stored in plaintext or stored in plaintext plus a verification code, important data and key data are added with verification codes, encryption is firstly carried out and then stored to prevent data from being illegally stolen or tampered, when data are transmitted between the system and a data exchange platform, digital signatures and verifications are comprehensively adopted for the important data or the key data, The platform mainly adopts the steps of setting a firewall, preventing viruses, controlling interconnection with a public network, preventing invasion of hackers, carrying out strict monitoring and standard management on the network safety and the like so as to protect business network resources and teaching management platform application services.
By establishing the platform, the command and scheduling functions of network security emergency early warning and data collection of the industrial control system, drilling and auxiliary decision of emergency command and scheduling, organization, coordination, management control and the like of emergency resources are realized.
The foregoing shows and describes the general principles, essential features, and advantages of the invention. It will be understood by those skilled in the art that the present invention is not limited to the embodiments described above, and the preferred embodiments of the present invention are described in the above embodiments and the description, and are not intended to limit the present invention. The scope of the invention is defined by the appended claims and equivalents thereof.

Claims (9)

1. Emergency command platform of industry control network security, its characterized in that: the system comprises a wide area network, a network security system, a PC terminal, a mobile phone terminal and a large screen command platform, wherein the network security system comprises a storage security encryption module, a transmission security module, a database security management module, a firewall, a special virus protection module and a hacker intrusion prevention device.
2. The industrial control network security emergency command platform of claim 1, wherein: the PC terminal comprises an input port module, a data analysis module and an output port module, wherein the input port module comprises an automatic data entry system, and the automatic data entry system comprises a character transmission module, an image transmission module, a digital transmission module and an electronic module.
3. The industrial control network security emergency command platform of claim 2, wherein: the data analysis module comprises a classification module, and the output port module comprises a data output module.
4. The industrial control network security emergency command platform of claim 3, wherein: the classification module comprises a risk assessment module and a risk response module, the risk assessment module comprises a first-level risk module, a second-level risk module, a third-level risk module and a fourth-level risk module, and the risk response module comprises a first-level response module, a second-level response module, a third-level response module and a fourth-level response module.
5. The industrial control network security emergency command platform of claim 1, wherein: the mobile phone end comprises a mobile phone emergency plan APP which comprises an operation prompt window, an operation execution window and a problem feedback window.
6. The industrial control network security emergency command platform of claim 1, wherein: the large screen command platform comprises an associated user shared information module, a plan storage module, a command module and a display module.
7. The industrial control network security emergency command platform of claim 6, wherein: the user shared information module, the plan storage module, the command module and the display module are installed inside the large screen command platform.
8. The industrial control network security emergency command platform of claim 2, wherein: the network security system, the PC terminal, the mobile phone terminal, the large screen command platform, the storage security encryption module, the transmission security module, the database security management module and the special virus protection module are all externally connected with a power supply.
9. The industrial control network security emergency command platform of claim 1, wherein: the storage security encryption module is arranged in the input end port module, the transmission security module is arranged in the data analysis module, the database security management module is arranged in the output port module, and the firewall, the special virus protection module and the large screen command platform are arranged under the wide area network in an anti-hacker invasion mode.
CN202111564669.XA 2021-12-20 2021-12-20 Industrial control network safety emergency command platform Pending CN114219331A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111564669.XA CN114219331A (en) 2021-12-20 2021-12-20 Industrial control network safety emergency command platform

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111564669.XA CN114219331A (en) 2021-12-20 2021-12-20 Industrial control network safety emergency command platform

Publications (1)

Publication Number Publication Date
CN114219331A true CN114219331A (en) 2022-03-22

Family

ID=80704424

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111564669.XA Pending CN114219331A (en) 2021-12-20 2021-12-20 Industrial control network safety emergency command platform

Country Status (1)

Country Link
CN (1) CN114219331A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115086009A (en) * 2022-06-13 2022-09-20 北京融讯智晖技术有限公司 Network space security risk management control system for video cloud command system

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115086009A (en) * 2022-06-13 2022-09-20 北京融讯智晖技术有限公司 Network space security risk management control system for video cloud command system

Similar Documents

Publication Publication Date Title
Krutz Securing SCADA systems
Weiss Protecting industrial control systems from electronic threats
CN104753936B (en) OPC security gateway systems
CN109255482B (en) Disposal system applied to emergency management
CN102682245A (en) Systems and methods for detecting fraud associated with systems application processing
CN101127133A (en) Door access remote management method
CN114553720B (en) User operation abnormity detection method and device
CN114219331A (en) Industrial control network safety emergency command platform
CN103093314A (en) Four-layer emergency plan digitization generation method based on rule engine and four-layer emergency plan digitization emergency system based on rule engine
CN103426041A (en) Radiation source real-time monitoring and managing system and method based on Internet of things
CN105278509A (en) Internet-of-things-based centralized monitoring platform for operation condition of dust removing equipment
Temple et al. Railway system failure scenario analysis
Anderson et al. Cyber-informed engineering
CN107659597A (en) A kind of method that screen locking is remotely carried out to controlled terminal
CN113516394B (en) Intelligent system and method for managing whole-process environment of two-high project
Inayat et al. Security-based safety hazard analysis using FMEA: a DAM case study
CN115619212A (en) Intelligent chemical industry park big data analysis method based on block chain
CN108418831A (en) A kind of network safety pre-warning method towards cloud computing
Yang Design on remote sensing monitoring system of navigation pharos in bridge area for inland waterway
CN105334825A (en) Pollution control facility operation condition integrated monitoring Internet of Things platform
Wu et al. Research on mobile intelligent mine platform based on risk control
CN111883277A (en) Nuclear power station safety credible state monitoring system based on physical disconnection
Zhang et al. Urban Rail Traffic Security Management System Based on Big Data Platform
CN112383844A (en) Interactive communication method of power grid monitoring data, computer device and readable storage medium
Park et al. Study on the system development for port logistics system diagnostics

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination