CN115048062B - Mobile storage device management system based on hierarchical management and control - Google Patents
Mobile storage device management system based on hierarchical management and control Download PDFInfo
- Publication number
- CN115048062B CN115048062B CN202210879657.4A CN202210879657A CN115048062B CN 115048062 B CN115048062 B CN 115048062B CN 202210879657 A CN202210879657 A CN 202210879657A CN 115048062 B CN115048062 B CN 115048062B
- Authority
- CN
- China
- Prior art keywords
- terminal
- mobile storage
- storage device
- management
- control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/06—Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
- G06F3/0601—Interfaces specially adapted for storage systems
- G06F3/0602—Interfaces specially adapted for storage systems specifically adapted to achieve a particular effect
- G06F3/062—Securing storage systems
- G06F3/0622—Securing storage systems in relation to access
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/606—Protecting data by securing the transmission between two devices or processes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/06—Digital input from, or digital output to, record carriers, e.g. RAID, emulated record carriers or networked record carriers
- G06F3/0601—Interfaces specially adapted for storage systems
- G06F3/0628—Interfaces specially adapted for storage systems making use of a particular technique
- G06F3/0638—Organizing or formatting or addressing of data
- G06F3/0644—Management of space entities, e.g. partitions, extents, pools
Abstract
The mobile storage equipment management system based on hierarchical management and control comprises a hierarchical management and control terminal and a mobile terminal partition authority setting terminal; the hierarchical management and control terminal comprises a management unit arranged on the server, an upper computer terminal arranged on an upper computer, and a mobile terminal partition authority setting terminal arranged on a lower computer terminal of a lower computer; the hierarchical control tool generates a hierarchical control node topological graph of the industrial control terminal according to the process flow, and marks the read-write permission of the industrial control terminal to the data of the mobile storage device on the device of the hierarchical control node of the topological graph; the layout strategy unit comprises a mobile storage device partition data read-write strategy; the strategy changing unit comprises a dynamic change strategy of a partition data read-write strategy of the mobile storage equipment according to a time axis; and the mobile terminal partition authority setting terminal executes a partition data read-write strategy to the mobile storage device according to the setting of the management unit, and records, manages and alarms the partition data interaction of the mobile storage device.
Description
Technical Field
The invention relates to the technical field of industrial control data safety, in particular to a mobile storage device management system based on hierarchical management and control.
Background
Industrial control refers to industrial automation control and is mainly realized by combining electronics, electricity, machinery and software. I.e., industrial control, or factory automation. Mainly means that the production and the manufacturing process of a factory are more automated, efficient and accurate by using a computer technology, a microelectronic technology and an electrical means, and the method has controllability and visibility.
The appearance and popularization of industrial control technology bring about the third industrial revolution, the production speed and efficiency of factories are greatly improved, and great contribution is made to the modernization construction of China.
Data generated by industrial control has certain defects in the transmission and storage processes, for example, the abuse of a mobile storage device is easy to steal, so that the data is leaked, or the data is attacked by network viruses, so that the paralysis of an industrial control system is caused.
Therefore, the problems of the prior art are to be further improved and developed.
Disclosure of Invention
The object of the invention is: in order to solve the problems in the prior art, an object of the present invention is to provide a mobile storage device management system based on hierarchical management and control, which performs innovative management on the use of a mobile storage device to improve the network attack prevention capability of an industrial control system.
The technical scheme is as follows: in order to solve the technical problems, the technical scheme provides a mobile storage device management system based on hierarchical management and control, which is applied to an industrial control system and comprises a hierarchical management and control terminal and a mobile terminal partition authority setting terminal;
the hierarchical management and control terminal comprises a management unit arranged on the server and an upper computer terminal arranged on an upper computer, and the mobile terminal partition authority setting terminal is a lower computer terminal arranged on a lower computer;
the management unit comprises a hierarchical management and control tool, a layout strategy unit and a strategy change unit;
the hierarchical control tool generates a hierarchical control node topological graph of the industrial control terminal according to the process flow, and marks the read-write permission of the industrial control terminal to the data of the mobile storage device on the device of the hierarchical control node of the topological graph;
the layout strategy unit comprises a mobile storage device partition data read-write strategy;
the strategy changing unit comprises a dynamic change strategy of a partition data read-write strategy of the mobile storage equipment according to a time axis;
and the mobile terminal partition authority setting terminal is used for executing a partition data read-write strategy of the mobile storage device according to the setting of the management unit and recording, managing and alarming the partition data interaction of the mobile storage device.
The mobile storage equipment management system based on hierarchical management and control is characterized in that the hierarchical management and control tool acquires a process flow corresponding to an industrial control system and industrial control terminal data corresponding to the process flow and adapted to the mobile storage device, and establishes a hierarchical management and control node topological graph.
In the mobile storage device management system based on hierarchical management and control, the hierarchical management and control tool further includes a layout calculation module and a layout generation display module.
The mobile storage device management system based on hierarchical management and control is characterized in that the layout calculation module comprises a preset series monitoring layout and a preset parallel monitoring layout, the preset series monitoring layout and the preset parallel monitoring layout are reversely matched upwards from the tail end of a branch of the process flow, a layout strategy of the series monitoring layout and/or the parallel monitoring layout is calculated, and the industrial control terminal with the mobile storage device is subjected to hierarchical management and control setting of an upper computer and/or a lower computer;
in the series monitoring layout, an upper computer and a lower computer are connected in series, and the lower computers are sequentially connected in series according to the control sequence of the process flow;
according to the parallel monitoring layout, an upper computer and a lower computer are connected in parallel, and the lower computers are sequentially arranged in parallel according to the control sequence of the process flow;
and the layout generation display module is used for displaying the finally determined serial monitoring layout and/or parallel monitoring layout on the hierarchical control node topological graph.
The mobile storage device management system based on hierarchical management and control is characterized in that the layout strategy unit sets the mobile storage device of the industrial control system into more than 2 partitions, and the industrial control terminal can only perform data interaction with the designated partitions of the mobile storage device; and the upper computer terminal sets and changes the available partitions of the mobile storage equipment according to a preset strategy.
The mobile storage device management system based on hierarchical management and control is characterized in that the management of the mobile storage device is set by an upper computer terminal, the upper computer is a management end, and the lower computer terminal is an execution end for the mobile storage device; and when the industrial control terminal is an upper computer and a lower computer at the same time, the management terminal and the execution terminal are dynamically switched according to the actual scene of the industrial control terminal.
The mobile storage device management system based on hierarchical management and control is characterized in that the policy changing unit dynamically changes the preset data types and/or the opening and closing authorities stored in each partition of the mobile storage device along with a time axis.
The mobile storage device management system based on hierarchical management and control is characterized in that the policy changing unit can dynamically adjust the type of the preset data stored in each partition of the mobile storage device stored in the upper computer terminal and/or the opening and closing authority according to the change of the process flow according to the time axis and the production change of data.
The mobile storage equipment management system based on hierarchical management and control is characterized in that the mobile terminal partition authority setting terminal sends the use rules of the corresponding mobile storage devices to the bound mobile terminals in real time when the mobile storage devices are used, so that an operator of the mobile storage devices uses the mobile storage devices according to the real-time rules.
(III) the beneficial effects are as follows: the invention provides a mobile storage equipment management system based on hierarchical management and control, which manages mobile storage equipment used in an industrial control system through a hierarchical management and control node topological graph corresponding to a process flow, manages an upper computer terminal and a lower computer terminal, realizes different mobile storage device read-write strategies of different process flow branches of the industrial control system, and can dynamically adjust the read-write strategies of the mobile storage devices through the upper computer terminal along with time change, thereby ensuring the confidentiality of data transmission among all departments in the industrial control system and increasing the safety protection coefficient of the industrial control system.
Drawings
FIG. 1 is a schematic diagram of an architecture of a mobile storage device management system based on hierarchical management control according to the present invention;
FIG. 2 is a schematic diagram of the connection relationship between the industrial control terminals in the tandem monitoring layout according to the present invention;
FIG. 3 is a schematic diagram of the connection relationship between the industrial control terminals in the parallel monitoring layout according to the present invention.
Detailed Description
The invention will be described in further detail with reference to preferred embodiments thereof, and in the following description more details are set forth in order to provide a thorough understanding of the invention, but it will be apparent that the invention can be embodied in many other forms different from those described herein and that a person skilled in the art can make similar generalizations and deductions depending on the actual application without departing from the spirit of the invention, and therefore the scope of the invention should not be limited by the contents of this specific embodiment.
The drawings are schematic representations of embodiments of the invention, and it is noted that the drawings are intended only as examples and are not drawn to scale and should not be construed as limiting the true scope of the invention.
The mobile storage device management system based on hierarchical management and control of the invention comprises a hierarchical management and control terminal and a mobile terminal partition authority setting terminal as shown in figure 1, wherein the hierarchical management and control terminal comprises a management unit arranged on a server and an upper computer terminal arranged on an upper computer, and the mobile terminal partition authority setting terminal is a lower computer terminal arranged on a lower computer.
Aiming at the industrial control field, because the industrial network is relatively closed, the behavior that field engineers and maintenance personnel use mobile storage media to download reports or copy data is common, and the abuse of mobile storage devices is frequent, the invention creates opportunities for data management in the industrial control field and viruses such as zombies, trojans, worms and the like to enter the industrial network. The invention innovatively changes the management of the mobile storage device, carries out a dynamic partition use strategy on the mobile storage, and finds a proper balance point between the security risk management and the operation convenience.
Firstly, according to the process flow, the industrial control terminal adaptive to the mobile storage device is subjected to hierarchical management and control of an upper computer and a lower computer, and the upper computer is utilized to change the read-write strategy management of the mobile storage device to the lower computer; the invention sets two layout strategies of the upper computer and the lower computer, and thus, the upper computer is simultaneously included, and different mobile storage device reading and writing strategies for different process flows of the industrial control system are convenient. The optimal layout strategies of different upper computers and lower computers can be applied to different departments of an industrial control system, so that the mobile storage device is used in a diversified manner, abuse of the mobile storage device is reduced, and the safety risk of the mobile storage device in the industrial control field is reduced.
In addition, the invention can judge the data change of the industrial control system and the data change of the industrial control terminal according to the progress of the process flow, determine whether to start the data read-write permission of the mobile storage device corresponding to the industrial control terminal and which data read-write permission of the mobile storage device corresponding to the industrial control terminal under which upper node is opened, and manage the mobile storage equipment controlled in a grading way according to the data change of the process flow by the industrial control system, so that the data read-write of the industrial control system is safer.
The management unit comprises a hierarchical management and control tool, a layout strategy unit and a strategy change unit.
According to the preferred embodiment of the hierarchical control tool, a hierarchical control node topological graph of an industrial control terminal is generated according to a process flow, and the read-write permission of the industrial control terminal on the data of the mobile storage device is marked on the device of the hierarchical control node of the topological graph; the layout strategy unit comprises a mobile storage device partition data read-write strategy; the strategy changing unit comprises a dynamic change strategy of a partition data read-write strategy of the mobile storage equipment according to a time axis; and the mobile terminal partition authority setting terminal is used for executing a partition data read-write strategy of the mobile storage device and recording, managing and alarming the partition data interaction of the mobile storage device according to the setting of the management unit.
The hierarchical administration tool includes: the system comprises a data import module, a data attribute adding module, a layout calculation module, a layout adjustment module and a layout generation display module.
The hierarchical control tool acquires a process flow corresponding to an industrial control system and an industrial control terminal corresponding to the process flow, and imports the process flow through the data import module, wherein the data import module is used for identifying imported data so as to establish basic data of hierarchical control topology nodes, the basic data comprises the process flow nodes and the corresponding industrial control terminals, and the data is integrated into a set format; the data attribute adding module is used for judging parameters of the industrial control terminal for importing data, adding the setting of the control attribute to the industrial control terminal adapted to the mobile storage device, and adding the data of the industrial control terminal to the process flow nodes to manufacture the hierarchical control node topological graph.
The layout calculation module comprises a preset serial monitoring layout and a preset parallel monitoring layout, the two layout modes of the upper computer and/or the lower computer are reversely matched upwards from the tail end of a branch of the process flow, the layout strategy of the serial monitoring layout and/or the parallel monitoring layout is calculated, and the industrial control terminal with the mobile storage device is subjected to hierarchical control setting of the upper computer and/or the lower computer. The layout adjusting module is used for manually adjusting the layout according to the service condition and is an optional module. And the layout generation display module is used for displaying the finally determined serial monitoring layout and/or parallel monitoring layout on the hierarchical control node topological graph. The management unit of the invention performs hierarchical control setting of the upper computer and/or the lower computer on the industrial control terminal adapted to the mobile storage device, thereby performing authority management on the mobile storage device on the industrial control terminal.
The invention relates to a mobile storage device management system based on hierarchical management and control, which is applied to an industrial control system based on hierarchical management and control. The industrial control system divides the multistage industrial control terminals corresponding to the continuous process flow into a plurality of grading devices according to the process flow sequence, for example: comprises a first upper computer, a second lower computer, a third lower computer, a fourth lower computer and the like. The meaning of the serial monitoring layout is that the lower computers are more than two connected in series according to the process flow, and the specific number is not limited. The levels of the lower computers, such as the second lower computer, the third lower computer and the fourth lower computer, are sequentially arranged according to the control sequence of the process flow, as shown in fig. 2. According to the mobile storage equipment management system with hierarchical control, the lower computers are connected to the upper computers in series according to the control sequence of the process flow, and the system is preferably applied to process flow branches with continuous process flows, namely a series monitoring layout for short.
The invention serially monitors data processing between an upper computer and a lower computer in the layout, wherein the first upper computer is an upper computer, the second lower computer is a lower computer, the first upper computer sends a command to the second lower computer, the first upper computer collects operation data of the second lower computer, and the second lower computer receives and executes the command and sends the operation data of the second lower computer to the first upper computer. And (3) data processing between the second lower computer and the third lower computer, wherein the second lower computer sends a command to the third lower computer, the second lower computer collects operation data of the third lower computer, and the third lower computer receives and executes the command and sends the operation data of the third lower computer to the second lower computer. And (3) data processing between the third lower computer and the fourth lower computer, wherein the third lower computer sends a command to the fourth lower computer, the third lower computer collects fourth lower computer operation data, and the fourth lower computer receives and executes the command and sends the fourth lower computer operation data to the third lower computer. And the serially connected lower computers are provided with respective lower computer terminals, and data interaction is realized through serially connected lines.
The invention is explained in detail by hydrolysis acidification process flow branches in a large-scale industrial control system for water treatment, and the equipment topology structure corresponding to the hydrolysis acidification process flow comprises a hydrolysis acidification process control console, a PLC (programmable logic controller), water quality detection equipment, biological filler adding equipment, sludge stirring equipment connected with a servo driver/frequency converter and the like. In an industrial control system for water treatment, a hydrolysis acidification process console is a first upper computer, a PLC is a second lower computer, a water quality detection device is a third lower computer, and a biological filler adding device is a fourth lower computer. The upper computer and the lower computer of the industrial control system of the invention are respectively provided with respective external mobile storage devices, such as an SD card, a usb disk, a mobile hard disk, and the like, and are not limited herein. The invention aims to carry out hierarchical management on the mobile storage management equipment on the industrial control terminal in a mode of an upper computer and a lower computer on the corresponding industrial control terminal according to continuous process flow branches.
In another preferred embodiment, the parallel monitoring layout in the mobile storage device management system of the present invention includes a first upper computer, and a plurality of parallel lower computers connected to the first upper computer, where the lower computers may include a second lower computer, a third lower computer, a fourth lower computer, and the like, which are parallel. The number of the lower computers is more than two, and the specific number is not limited. As shown in fig. 3, the preferred embodiment is applied to a process flow main line in which different process flow branches are connected in parallel, which is referred to as a parallel monitoring layout for short. For example, the first upper computer is a primary water treatment control device, the second lower computer is a grid well control device, the third lower computer is an oil removal control device, the fourth lower computer is a water quantity control device, and the adjustment is specifically carried out according to an industrial control terminal of water treatment, and the adjustment is not limited here. And the parallel lower computers are provided with respective lower computer terminals, and data interaction is realized through parallel lines.
In the industrial control system of the hierarchical control terminal, an upper computer terminal manages a data read-write strategy of a mobile storage device connected with a lower computer terminal, and the data read-write strategy stored by the upper computer terminal is dynamically adjusted according to the change of a strategy change unit.
The layout strategy unit of the invention sets the mobile storage device of the industrial control system into more than 2 partitions, preferably more than 3 partitions. The industrial control terminal can only perform data interaction with the appointed partition of the mobile storage device, and the upper computer terminal sets and changes the available partition of the mobile storage device according to a preset strategy.
The mobile terminal partition authority setting terminal is used for recording and managing data interaction of the mobile storage device partitions according to the setting of the management unit, and executing data read-write strategies of the mobile storage device, such as setting the designated partitions to be available, designating the partitions to store data in a designated format, and the like.
Preferably, the mobile terminal of the industrial control terminal on the tandem monitoring layout of the present invention sequentially arranges the partitions of the mobile storage device according to the process flow sequence, and if the mobile terminal has three partitions including the C disk, the D disk, and the E disk: the second lower computer uses the disk C, the third lower computer uses the disk D, and the fourth lower computer uses the disk E. If the mobile terminal has four partitions including a C disk, a D disk, an E disk and an F disk, the second lower computer uses the C disk, the third lower computer uses the D disk, and the fourth lower computer uses the E disk. The fifth lower computer uses an F disc, the sixth lower computer uses a C disc, and so on.
The mobile terminal of the industrial control terminal on the parallel monitoring layout performs reverse arrangement on the subareas of the mobile storage equipment according to the process flow sequence, if the mobile terminal has three subareas including a C disc, a D disc and an E disc, then: the second lower computer uses the E-disk, the third lower computer uses the D-disk, and the fourth lower computer uses the C-disk. If the mobile terminal has four partitions including a disk C, a disk D, a disk E and a disk F, the disk F is used by the second lower computer, the disk E is used by the third lower computer, the disk D is used by the fourth lower computer, the disk C is used by the fifth lower computer, the disk F is used by the sixth lower computer, and so on.
In the hierarchical management and control setting of the management unit, the industrial control terminal is set by an upper computer terminal for the management of the mobile storage equipment, wherein the upper computer is a management end, and the lower computer terminal is an execution end for the mobile storage equipment; some industrial control terminals can be an upper computer and a lower computer at the same time, and dynamic switching can be performed at a management end and an execution end according to the actual scene of the industrial control terminal.
The strategy changing unit of the invention dynamically changes the preset material type and/or the opening and closing authority of each partition stored in the mobile storage device along with the time axis. For example, on Monday, the C disk stores water detection data, and the D disk stores control class data; the Tuesday C disk stores control data, and the D disk stores water detection data. The strategy changing unit can also dynamically adjust the preset data type and/or the opening and closing authority of each subarea of the mobile storage device stored by the upper computer terminal according to the change of the process flow according to the time axis and the production change of the data. For example, if an oil removal device in an industrial control system for water treatment is suspended in a process flow and no data is generated, the data read-write permission of the corresponding mobile storage device can be stopped through the upper computer terminal and the lower computer terminal.
And the lower computer terminal of the industrial control terminal is used for setting the mobile terminal partition authority setting terminal and is used for recording and managing data interaction of the mobile storage device partitions according to the hierarchical management and control setting of the management unit and verifying the mobile terminal bound with the mobile storage device. When the mobile storage device is used, the mobile terminal partition authority setting terminal sends the use rule of the corresponding mobile storage device to the bound mobile terminal in real time, so that an operator of the mobile storage device uses the mobile storage device according to the real-time rule.
And when the data reading and writing of the mobile storage device do not accord with the real-time mobile terminal partition authority setting, the mobile terminal partition authority setting terminal gives an alarm. The method comprises the steps that if the mobile storage device is attacked by a network, incorrect data reading and writing can be carried out, and timely discovery and alarm can be carried out.
The mobile storage device is divided into a plurality of partitions under the hierarchical management and control setting of the management unit, and different mobile storage devices have different data reading authorities for different partitions. In the data of the mobile storage device, a plurality of partitions are also divided, and the data read-write permission of different classification devices to different partitions is different. The data partitions of the hierarchical device and the mobile storage device may be divided according to data types, or may be divided according to data roles or data production components, and are not particularly limited herein.
The mobile storage equipment management system based on hierarchical management and control manages the mobile storage equipment used in the industrial control system through the hierarchical management and control node topological graph corresponding to the process flow, manages the upper computer terminal and the lower computer terminal, realizes the read-write strategies of different mobile storage devices of different process flow branches of the industrial control system, can also dynamically adjust the read-write strategies of the mobile storage devices through the upper computer terminal along with the change of time, ensures the confidentiality of data transmission among all departments in the industrial control system, and increases the safety protection coefficient of the industrial control system.
The above description is provided for the purpose of illustrating the preferred embodiments of the present invention and will assist those skilled in the art in more fully understanding the technical solutions of the present invention. However, these examples are merely illustrative, and the embodiments of the present invention are not to be considered as being limited to the description of these examples. It will be apparent to those skilled in the art that numerous, simple, and obvious alterations and modifications can be made without departing from the inventive concepts herein.
Claims (9)
1. The mobile storage device management system based on hierarchical management and control is applied to an industrial control system and comprises a hierarchical management and control terminal and a mobile terminal partition authority setting terminal;
the hierarchical management and control terminal comprises a management unit arranged on the server and an upper computer terminal arranged on an upper computer, and the mobile terminal partition authority setting terminal is a lower computer terminal arranged on a lower computer;
the management unit comprises a hierarchical management and control tool, a layout strategy unit and a strategy change unit;
the hierarchical control tool generates a hierarchical control node topological graph of the industrial control terminal according to the process flow, and marks the read-write permission of the industrial control terminal to the data of the mobile storage device on the device of the hierarchical control node of the topological graph; the industrial control terminal comprises an upper computer terminal arranged on an upper computer and a lower computer terminal arranged on a lower computer;
the layout strategy unit comprises a mobile storage device partition data read-write strategy;
the strategy changing unit comprises a dynamic change strategy of a partition data read-write strategy of the mobile storage equipment according to a time axis;
and the mobile terminal partition authority setting terminal is used for executing a partition data read-write strategy of the mobile storage device and recording, managing and alarming the partition data interaction of the mobile storage device according to the setting of the management unit.
2. The hierarchical management and control based mobile storage device management system according to claim 1, wherein the hierarchical management and control tool obtains a process flow corresponding to an industrial control system and industrial control terminal data of an adaptive mobile storage device corresponding to the process flow, and establishes a hierarchical management and control node topological graph.
3. The system according to claim 2, wherein the hierarchy management tool further comprises a layout calculation module and a layout generation display module.
4. The mobile storage device management system based on hierarchical management and control according to claim 3, wherein the layout calculation module includes a preset serial monitoring layout and a preset parallel monitoring layout, and performs reverse upward matching from a branch end of a process flow to calculate a layout strategy of the serial monitoring layout and/or the parallel monitoring layout, and performs hierarchical management and control setting of an upper computer and/or a lower computer on an industrial control terminal with the mobile storage device;
in the serial monitoring layout, the upper computer and the lower computer are connected in series, and the lower computers are sequentially connected in series according to the control sequence of the process flow;
according to the parallel monitoring layout, an upper computer and a lower computer are connected in parallel, and the lower computers are sequentially arranged in parallel according to the control sequence of the process flow;
and the layout generation display module is used for displaying the finally determined serial monitoring layout and/or parallel monitoring layout on the hierarchical control node topological graph.
5. The system according to claim 4, wherein the layout policy unit sets the mobile storage device of the industrial control system to 2 or more partitions, and the industrial control terminal can only perform data interaction with the designated partition of the mobile storage device; and the upper computer terminal sets and changes the available partitions of the mobile storage equipment according to a preset strategy.
6. The hierarchical management and control-based mobile storage device management system according to claim 4, wherein the management usage of the mobile storage device is set by an upper computer terminal, the upper computer is a management end, and the lower computer terminal is an execution end for the mobile storage device; and when the industrial control terminal is an upper computer and a lower computer at the same time, the management terminal and the execution terminal are dynamically switched according to the actual scene of the industrial control terminal.
7. The system according to claim 4, wherein the policy changing unit dynamically changes the preset material types and/or the opening/closing rights stored in each partition of the mobile storage device according to the time axis.
8. The system according to claim 4, wherein the policy changing unit is further configured to dynamically adjust the type of the preset data stored in each partition of the mobile storage device stored in the upper computer terminal and/or the opening/closing permission according to a change of a process flow according to a time axis and a production change of data.
9. The system according to claim 4, wherein the mobile terminal partition authority setting terminal sends the usage rule of the corresponding mobile storage device to the bound mobile terminal in real time when the mobile storage device is used, so that an operator of the mobile storage device uses the mobile storage device according to the real-time rule.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210879657.4A CN115048062B (en) | 2022-07-25 | 2022-07-25 | Mobile storage device management system based on hierarchical management and control |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210879657.4A CN115048062B (en) | 2022-07-25 | 2022-07-25 | Mobile storage device management system based on hierarchical management and control |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115048062A CN115048062A (en) | 2022-09-13 |
| CN115048062B true CN115048062B (en) | 2023-01-06 |
Family
ID=83167399
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210879657.4A Active CN115048062B (en) | 2022-07-25 | 2022-07-25 | Mobile storage device management system based on hierarchical management and control |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115048062B (en) |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101197874A (en) * | 2008-01-02 | 2008-06-11 | 中兴通讯股份有限公司 | Mobile terminal equipment |
| CN103812915A (en) * | 2012-11-15 | 2014-05-21 | 中兴通讯股份有限公司 | Resource sharing method, device and system, terminal and resource management center |
| CN104657671A (en) * | 2013-11-19 | 2015-05-27 | 研祥智能科技股份有限公司 | Access authority management method and system for mobile storage device |
| CN106506455A (en) * | 2016-10-11 | 2017-03-15 | 杭州迪普科技股份有限公司 | A kind of management-control method of movable storage device and device |
| CN106874802A (en) * | 2017-01-19 | 2017-06-20 | 湖北航天技术研究院总体设计所 | A kind of industrial control equipment virus protection system based on drive control |
| CN107483434A (en) * | 2017-08-10 | 2017-12-15 | 郑州云海信息技术有限公司 | The management system and method for a kind of movable storage device |
| CN111818368A (en) * | 2020-07-06 | 2020-10-23 | 聚好看科技股份有限公司 | Method for managing display device authority, mobile terminal and server |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI246028B (en) * | 2001-06-28 | 2005-12-21 | Trek 2000 Int Ltd | A portable device having biometrics-based authentication capabilities |
| CN105141614B (en) * | 2015-09-07 | 2019-05-21 | 北京北信源软件股份有限公司 | A kind of access right control method and device of movable storage device |
| CN111241498A (en) * | 2019-03-29 | 2020-06-05 | 吴涛 | Multifunctional USB storage device |
-
2022
- 2022-07-25 CN CN202210879657.4A patent/CN115048062B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101197874A (en) * | 2008-01-02 | 2008-06-11 | 中兴通讯股份有限公司 | Mobile terminal equipment |
| CN103812915A (en) * | 2012-11-15 | 2014-05-21 | 中兴通讯股份有限公司 | Resource sharing method, device and system, terminal and resource management center |
| CN104657671A (en) * | 2013-11-19 | 2015-05-27 | 研祥智能科技股份有限公司 | Access authority management method and system for mobile storage device |
| CN106506455A (en) * | 2016-10-11 | 2017-03-15 | 杭州迪普科技股份有限公司 | A kind of management-control method of movable storage device and device |
| CN106874802A (en) * | 2017-01-19 | 2017-06-20 | 湖北航天技术研究院总体设计所 | A kind of industrial control equipment virus protection system based on drive control |
| CN107483434A (en) * | 2017-08-10 | 2017-12-15 | 郑州云海信息技术有限公司 | The management system and method for a kind of movable storage device |
| CN111818368A (en) * | 2020-07-06 | 2020-10-23 | 聚好看科技股份有限公司 | Method for managing display device authority, mobile terminal and server |
Non-Patent Citations (1)
| Title |
|---|
| "一种多密级移动存储设备多级密钥管理方案";冯力,邓国庆,郁滨;《信息安全研究》;20180430(第4期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN115048062A (en) | 2022-09-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3196716B1 (en) | Model-based security policy configuration and enforcement in an industrial automation system | |
| US7574417B1 (en) | Self configuration of embedded historians | |
| EP2728426B1 (en) | Secure models for model-based control and optimization | |
| US8438191B1 (en) | Incremental association of metadata to production data | |
| US7643892B2 (en) | Historian integrated with MES appliance | |
| CN107957716A (en) | For process control data streams formula to be transferred to the method and system of remote equipment | |
| US20080208374A1 (en) | Testing utilizing controller engine instances | |
| US20120232876A1 (en) | Method for Computer-Aided Analysis of an Automation Plant | |
| EP1906328B1 (en) | Conditional download of data from embedded historians | |
| CN101183261B (en) | Standard MES interface for batch manufacturing | |
| CN108416230A (en) | A kind of data access method based on data isolation model | |
| CN109753029B (en) | Method for identifying and displaying operator access process objects and operator system | |
| Iturbe et al. | Visualizing network flows and related anomalies in industrial networks using chord diagrams and whitelisting | |
| US20080288775A1 (en) | Embedded historians with data aggregator | |
| CN102820706A (en) | Method and device for realizing intelligent alarm and auxiliary decision of intelligent transformer substation | |
| CN115048062B (en) | Mobile storage device management system based on hierarchical management and control | |
| CN105512001A (en) | Monitoring template realizing method for operation and maintenance management system | |
| US20210255607A1 (en) | Automation Component Configuration | |
| Zolotova et al. | Supervisory control sustainability of technological processes after the network failure | |
| CN115185466B (en) | Hierarchical management and control tool and method for mobile storage device | |
| JP7298701B2 (en) | Analysis system, method and program | |
| US7899559B2 (en) | Language-based organization of controller engine instances | |
| CN103218472A (en) | Method for computer-based design of an automation system | |
| Ponce et al. | The energy 4.0 concept and its relationship with the S3 framework | |
| EP4332705A1 (en) | Industrial automation system topology with point to point representation paths |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |