CN201733329U - Network one-way isolator of electric power system - Google Patents

Network one-way isolator of electric power system Download PDF

Info

Publication number
CN201733329U
CN201733329U CN2010202613591U CN201020261359U CN201733329U CN 201733329 U CN201733329 U CN 201733329U CN 2010202613591 U CN2010202613591 U CN 2010202613591U CN 201020261359 U CN201020261359 U CN 201020261359U CN 201733329 U CN201733329 U CN 201733329U
Authority
CN
China
Prior art keywords
host
network
host machine
management information
production control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2010202613591U
Other languages
Chinese (zh)
Inventor
梁文
张鹏
刘显明
马勇
朱正刚
付萍萍
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
INFORMATION COMMUNICATION CENTER OF JIANGXI ELECTRIC POWER CO Ltd
Original Assignee
INFORMATION COMMUNICATION CENTER OF JIANGXI ELECTRIC POWER CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by INFORMATION COMMUNICATION CENTER OF JIANGXI ELECTRIC POWER CO Ltd filed Critical INFORMATION COMMUNICATION CENTER OF JIANGXI ELECTRIC POWER CO Ltd
Priority to CN2010202613591U priority Critical patent/CN201733329U/en
Application granted granted Critical
Publication of CN201733329U publication Critical patent/CN201733329U/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Landscapes

  • Small-Scale Networks (AREA)

Abstract

The utility model discloses a network one-way isolator of an electric power system, which comprises a gateway, a network exchanger, a host machine B, a gateway, a network exchanger and a host machine A, wherein the gateway, the network exchanger and the host machine B are placed in a production control region, and the gateway, the network exchanger and the host machine A are placed in a management information region. The utility model is characterized in that switches controlled by mutually repelling switch control circuits are respectively arranged between the network exchanger and the host machine A in the management information region, between the network exchanger and the host machine B in the production control region and between the host machine A and the host machine B, the host machine A and the host machine B are connected through a one-way serial port wire, and only the one-way data transmission from the host machine B to the host machine A is allowed. The utility model effectively isolates all networks of the electric power system at different safety levels, has the advantages of data one-way flowing realization, high safety, reliable data precaution, high practicability, simple use and low cost, solves the potential risks caused by mixed use of the networks at different safety levels in the electric power network, and builds a safe protective system.

Description

A kind of network uni-directional spacer assembly of electric power system
Technical field
The utility model relates to the network equipment, especially relates to a kind of network uni-directional spacer assembly of electric power system.
Background technology
Electric equipment is divided into primary equipment and secondary device.Primary equipment (also claiming main equipment) is the main body that constitutes electric power system, and it is the equipment of direct production, conveying and distribution electric energy, comprises generator, power transformer, circuit breaker, isolating switch, power bus-bar, power cable and transmission line etc.Secondary device is the equipment that primary equipment is controlled, regulates, protected and monitors, and it comprises controling appliance, relaying protection and automatics, measuring instrument, signal utensil etc.Along with the development of information network, the mutual communication between the secondary device generally is carried on the information network.
Requirement according to the power system security isolation, the necessary strict subregion of information network, to guarantee that those can be directly and the secondary device of primary system mutual (monitoring and control), its information interaction is carried on independently on the information network subregion, makes the routine office work network area can not directly visit the secondary device in production control district.
Yet data network is increasingly extensive in application on power system at present, has become indispensable infrastructure.Quasi real time control business and management information business when State Grid's data network carries really simultaneously, but level of security is lower, real-time requires lower business and level of security is higher, the demanding business of real-time is used with together.And the system of different safety class does not have quarantine measures, lacks effective isolation of production control system and other information systems especially, and the security protection system of setting up electric power system.
Therefore, between the different electric power system of safe class, need to take quarantine measures.The Network Isolation method mainly contains following two kinds at present:
(1) adopts dual network.The method requires the separate network system of configuration two covers, networking cost height, and the user need operate two computers, inconvenience respectively.
(2) adopt technology such as fire compartment wall or acting server.The advantage of this method is: easy to use, it is little to take up room; Shortcoming is: can only realize logic isolation.
Summary of the invention
The purpose of this utility model just provide a kind of with each level of security of electric power secondary system network inequality keep apart effectively, realize that unidirectional flow of data is moving, fail safe is higher, data take precautions against reliable, practical, use the network uni-directional spacer assembly simple, that cost is low.
The purpose of this utility model is achieved in that
A kind of network uni-directional spacer assembly of electric power system, comprise the production control district gateway that is positioned in the production control district, the production control district network switch, host B and the management information area gateway that is positioned in the management information area, the management information area network switch, host A, feature is between the production control district network switch and the management information area network switch mutual exclusion ON-OFF control circuit to be installed, between the management information area network switch and host A, between the production control district network switch and the host B, the switch that is subjected to the control of mutual exclusion ON-OFF control circuit all is installed between host A and the host B.
Be connected by unidirectional Serial Port Line between host A and the host B, only allow host B, stop to set up ICP/IP protocol between production control district and the management information area in this way and be connected to host A one-way transmission data.
The utility model is the unidirectional spacer assembly of configuration network between production control district and management information area, control three switches by the mutual exclusion ON-OFF control circuit, and the connection line between host A and host B adopts unidirectional Serial Port Line, when making unidirectional Serial Port Line between host A and host B open, connecting line between Shutdown Hosts A and the management information area and the connecting line between host B and the production control district simultaneously; When the connecting line between connecting line between host A and management information area and host B and the production control district is opened, unidirectional Serial Port Line between while Shutdown Hosts A and the host B, and the utility model becomes one-way transmission with the transfer of data in production control district and two districts of management information area, can also adopt the reception program to carry out verification, thereby each level of security of electric power secondary system network inequality is kept apart effectively, and realized the one-way flow of data, and then level of security network inequality is used the potential risk of bringing with together in the middle of having solved electric power networks, has set up security protection system.Therefore, the utlity model has with each level of security of electric power secondary system network inequality keep apart effectively, realize that unidirectional flow of data is moving, fail safe is higher, data take precautions against reliable, practical, use the advantage simple, that cost is low.
Description of drawings
Fig. 1 is a structured flowchart of the present utility model.
Embodiment
Below in conjunction with embodiment and contrast accompanying drawing the utility model is described in further detail.
A kind of network uni-directional spacer assembly of electric power system, comprise the production control district gateway that is positioned in the production control district, the production control district network switch, host B and the management information area gateway that is positioned in the management information area, the management information area network switch, host A, host A is set up two-way the connection by data connecting line (RJ45 or optical fiber) with the management information area network switch, the information network transfer of data of carrying TCP/IP, host B is set up two-way the connection by data connecting line (RJ45 or optical fiber) with the production control district network switch, the information network transfer of data of carrying TCP/IP, between the production control district network switch and the management information area network switch, the mutual exclusion ON-OFF control circuit is installed, the switch 1 that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between the management information area network switch and host A, the switch 3 that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between the production control district network switch and host B, the switch 2 that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between host A and host B.
Be connected by unidirectional Serial Port Line between host A and the host B, only allow host B, stop to set up ICP/IP protocol between production control district and the management information area in this way and be connected to host A one-way transmission data.
Use the mutual exclusion ON-OFF control circuit to come the connecting line between unidirectional Serial Port Line, host A and the management information area between main control system A and the host B and the switch of the connecting line between host B and the production control district, when making unidirectional Serial Port Line between host A and host B open, connecting line between Shutdown Hosts A and the management information area and the connecting line between host B and the production control district simultaneously; When the connecting line between connecting line between host A and management information area and host B and the production control district is opened, the unidirectional Serial Port Line between while Shutdown Hosts A and the host B.
The design implementation of selecting chain can use combinational logic circuit to realize, by the priority level of regulation input signal and the truth table of logic function, does not according to priority distribute critical resource, designs it with Karnaugh map then and realizes circuit; Also can realize,, realize locking-release of connecting line circuit by increasing clock signal, enable signal, chip selection signal or other command signals as input signal by sequence circuit.
The safety measure that strengthens comprises:
(1), the host B of data sending terminal at first signs to the data that needs send, and gives host A by unidirectional Serial Port Line territory then.
(2), after the host A of data receiver receives data, carry out signature verification, and data are carried out processing such as information filtering, validity check.

Claims (2)

1. the network uni-directional spacer assembly of an electric power system, comprise the production control district gateway that is positioned in the production control district, the production control district network switch, host B and the management information area gateway that is positioned in the management information area, the management information area network switch, host A, host A is set up two-way the connection by data connecting line with the management information area network switch, the information network transfer of data of carrying TCP/IP, host B is set up two-way the connection by data connecting line with the production control district network switch, the information network transfer of data of carrying TCP/IP, it is characterized in that: between the production control district network switch and the management information area network switch, the mutual exclusion ON-OFF control circuit is installed, the switch (1) that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between the management information area network switch and host A, the switch (3) that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between the production control district network switch and host B, the switch (2) that is subjected to the control of mutual exclusion ON-OFF control circuit is installed between host A and host B.
2. network uni-directional spacer assembly as claimed in claim 1 is characterized in that: be connected by unidirectional Serial Port Line between host A and the host B, only allow host B to host A one-way transmission data.
CN2010202613591U 2010-07-16 2010-07-16 Network one-way isolator of electric power system Expired - Fee Related CN201733329U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2010202613591U CN201733329U (en) 2010-07-16 2010-07-16 Network one-way isolator of electric power system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2010202613591U CN201733329U (en) 2010-07-16 2010-07-16 Network one-way isolator of electric power system

Publications (1)

Publication Number Publication Date
CN201733329U true CN201733329U (en) 2011-02-02

Family

ID=43524483

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010202613591U Expired - Fee Related CN201733329U (en) 2010-07-16 2010-07-16 Network one-way isolator of electric power system

Country Status (1)

Country Link
CN (1) CN201733329U (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103186743A (en) * 2012-09-14 2013-07-03 曾崛 Multi-network system data transmission device and method
CN103269332A (en) * 2013-04-22 2013-08-28 中国南方电网有限责任公司 Safeguard system for power secondary system
CN107809415A (en) * 2017-08-07 2018-03-16 国网河南省电力公司 Network isolation system and its implementation based on double half-duplex channel transmission technologys
TWI649983B (en) * 2015-10-29 2019-02-01 日商東芝股份有限公司 Monitoring control system and monitoring control method
CN113542243A (en) * 2021-07-02 2021-10-22 上海企翔智能科技有限公司 Unidirectional security isolation gateway device and data transmission method thereof
CN114465821A (en) * 2022-04-02 2022-05-10 浙江国利网安科技有限公司 Data transmission system and data transmission method

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103186743A (en) * 2012-09-14 2013-07-03 曾崛 Multi-network system data transmission device and method
CN103186743B (en) * 2012-09-14 2015-10-28 曾崛 A kind of multi-network system data transmission device and method
CN103269332A (en) * 2013-04-22 2013-08-28 中国南方电网有限责任公司 Safeguard system for power secondary system
CN103269332B (en) * 2013-04-22 2017-02-08 中国南方电网有限责任公司 Safeguard system for power secondary system
TWI649983B (en) * 2015-10-29 2019-02-01 日商東芝股份有限公司 Monitoring control system and monitoring control method
CN107809415A (en) * 2017-08-07 2018-03-16 国网河南省电力公司 Network isolation system and its implementation based on double half-duplex channel transmission technologys
CN113542243A (en) * 2021-07-02 2021-10-22 上海企翔智能科技有限公司 Unidirectional security isolation gateway device and data transmission method thereof
CN114465821A (en) * 2022-04-02 2022-05-10 浙江国利网安科技有限公司 Data transmission system and data transmission method

Similar Documents

Publication Publication Date Title
CN201733329U (en) Network one-way isolator of electric power system
CN102183928B (en) Method, device and intelligent household appliance controller for controlling running mode of household appliance
CN103199617B (en) Representing method of corresponding relationship between virtual circuits and physical ports in secondary circuit graph
CN204103598U (en) A kind of redundancy protection systems of transformer station
CN105577785A (en) Interregional network communication system and implementation method thereof
CN202602694U (en) Physical-isolation Ethernet switch
CN205491169U (en) Electric power data transmission device based on big dipper satellite short message communication for service
CN204425396U (en) A kind of powerline network construction system
CN103560820A (en) Communication device and communication system
CN204010270U (en) A kind of converged communication box for people's air-defence warning
CN205844839U (en) A kind of mixed type safe RTU module
CN203180652U (en) Five-prevention electric display locking system
CN205051434U (en) Automatic communication control system of power distribution network
CN102024319A (en) Centralized meter reading system capable of realizing multiple communication modes
CN2907103Y (en) Dual-network electronic switch
Smaiah et al. The implementation of SCADA open protocol IEC60870-5-101 on ARDUINO UNO board
CN202103475U (en) Dual power supply automatic changeover switch control system
CN201360286Y (en) EMC photoelectric isolation device with multiple wire pairs
CN204836219U (en) Wireless router suitable for government affairs official working
CN103812221A (en) Composite interlocking device for power distribution equipment
CN109639681A (en) A kind of online core power distribution monitoring system
CN203745539U (en) Three-phase carrier wave electric energy meter system
CN102904182B (en) A kind of smart grounding wire management box
CN204205544U (en) Two cover reclosing conservation treatment system
CN216391045U (en) Isolating device for telecontrol communication of transformer substation

Legal Events

Date Code Title Description
C14 Grant of patent or utility model
GR01 Patent grant
C17 Cessation of patent right
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110202

Termination date: 20110716