CN202652254U - Safety isolation and operational audit linkage system - Google Patents
Safety isolation and operational audit linkage system Download PDFInfo
- Publication number
- CN202652254U CN202652254U CN 201220116901 CN201220116901U CN202652254U CN 202652254 U CN202652254 U CN 202652254U CN 201220116901 CN201220116901 CN 201220116901 CN 201220116901 U CN201220116901 U CN 201220116901U CN 202652254 U CN202652254 U CN 202652254U
- Authority
- CN
- China
- Prior art keywords
- module
- safety
- interlocking
- data interface
- links
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Landscapes
- Monitoring And Testing Of Exchanges (AREA)
Abstract
The utility model is a safety isolation and operational audit linkage system. The system comprises an operation safety audit system and a safety isolation and information exchange system. The operation safety audit system mainly comprises an operation safety audit central control unit, a first event triggering linkage module, a first time linkage module, an operation information storage module and a first data interface module. The safety isolation and information exchange system mainly comprises a safety isolation and information exchange central control unit, a second time linkage module, a second event triggering linkage module, a dedicated operation channel module and a second data interface module. The first time linkage module is connected with the second time linkage module. The first event triggering linkage module is connected with the second event triggering linkage module. By using the system of the utility model, there are the following advantages that unified management of the operation safety audit system to operation and maintenance of internal and external networks is realized; the safety and controllability of the operation and maintenance are enhanced.
Description
Technical field
The utility model relates to a kind of safety isolation and Information Exchange System, particularly discloses a kind of safety isolation and O﹠M audit linked system.
Background technology
In the prior art, the general safety isolation of adopting safety isolation and Information Exchange System to realize intranet and extranet adopts the realization of O﹠M safety auditing system to operation management and the operation audit of all kinds of servers, the network equipment etc. in the Intranet.In this equipment O﹠M pattern, safe isolation and Information Exchange System and O﹠M safety auditing system are brought into play its function independently, have produced following problem: the O﹠M operating data exchanges between intranet and extranet by the normal transmission passage, lacks fail safe; The O﹠M safety auditing system can not be audited to the O﹠M operation of Inside and outside network simultaneously; Occur in time to block data exchange channel after the O﹠M operation in violation of rules and regulations; Safety isolation and Information Exchange System can not be controlled the O﹠M state of O﹠M safety auditing system etc.
Summary of the invention
The purpose of this utility model is to overcome the shortcoming that exists in the prior art, provide a kind of make two scripts independently safety means realizing unification aspect network O﹠M and the audit, strengthen the fail safe of O﹠M operation and the safety isolation and O﹠M audit linked system of controllability.
The utility model is achieved in that a kind of safety isolation and O﹠M audit linked system, comprise the O﹠M safety auditing system, safety isolation and Information Exchange System, it is characterized in that: described O﹠M safety auditing system mainly comprises O﹠M security audit central control unit, the first Event triggered interlocking module, very first time interlocking module, the O﹠M information storage module, the first data interface module, described O﹠M security audit central control unit respectively with described O﹠M information storage module, very first time interlocking module, the first Event triggered interlocking module links to each other, described O﹠M information storage module also links to each other with the first Event triggered interlocking module, and described the first Event triggered interlocking module also links to each other with described the first data interface module; Described safety isolation and Information Exchange System mainly comprise safety isolation and information exchange central control unit, the second time interlocking module, second event triggering interlocking module, special-purpose O﹠M channel module, the second data interface module that link to each other with the information exchange central control unit with the safety isolation respectively, and described the second data interface module also links to each other with described special-purpose O﹠M channel module; Described very first time interlocking module links to each other with described the second time interlocking module, and described the first Event triggered interlocking module triggers interlocking module with described second event and links to each other, and described the first data interface module links to each other with described special-purpose O﹠M channel module.
Described O﹠M safety auditing system also comprises the emphasis O﹠M information flag module that links to each other with the first Event triggered interlocking module, the first data interface module respectively.
The beneficial effects of the utility model are: make two scripts independently safety means realizing unification aspect network O﹠M and the audit, realize that the O﹠M safety auditing system is to the unified management of the O﹠M operation of intranet and extranet, utilize the time interlock, realize that safety is isolated and Information Exchange System is assigned time command to the O﹠M safety auditing system, open the operation management function of O﹠M safety auditing system; Utilize the Event triggered interlock, realization O﹠M safety auditing system is assigned the instructions such as blocking-up, opening and closing to the safety isolation with Information Exchange System, and control safety is isolated the exchanges data with Information Exchange System; Strengthened fail safe and the controllability of O﹠M operation, provide technological means for opening up new safe O﹠M pattern, wherein, safe transmission path has been set up in the transmission that special-purpose O﹠M passage is the O﹠M operation information, guarantees the integrality of O﹠M operation information; Time interlock and Event triggered interlock have improved safe isolation and Information Exchange System and O﹠M safety auditing system to the control dynamics of O﹠M operation, have further avoided the generation of great safe O﹠M event; The audit that intranet and extranet are unified provides effective support for reviewing security incident.
Description of drawings
Fig. 1 is the utility model structure square frame.
Fig. 2 is the utility model workflow diagram.
Embodiment
According to Fig. 1, Fig. 2, the utility model comprises the O﹠M safety auditing system, safety isolation and Information Exchange System, described O﹠M safety auditing system mainly comprises O﹠M security audit central control unit, the first Event triggered interlocking module, very first time interlocking module, the O﹠M information storage module, the first data interface module, emphasis O﹠M information flag module, described O﹠M security audit central control unit respectively with described O﹠M information storage module, very first time interlocking module, the first Event triggered interlocking module links to each other, described O﹠M information storage module also links to each other with the first Event triggered interlocking module, described the first Event triggered interlocking module also links to each other with described the first data interface module, described emphasis O﹠M information flag module respectively with described the first Event triggered interlocking module, the first data interface module links to each other; Described safety isolation and Information Exchange System mainly comprise safety isolation and information exchange central control unit, the second time interlocking module, second event triggering interlocking module, special-purpose O﹠M channel module, the second data interface module that link to each other with the information exchange central control unit with the safety isolation respectively, and described the second data interface module also links to each other with described special-purpose O﹠M channel module; Described very first time interlocking module links to each other with described the second time interlocking module, and described the first Event triggered interlocking module triggers interlocking module with described second event and links to each other, and described the first data interface module links to each other with described special-purpose O﹠M channel module.
Described O﹠M security audit central control unit is as main controller controls and coordinate the overall operation of O﹠M safety auditing system, and be used for receiving, the transmitting system control signal.Described emphasis O﹠M information flag module is used for carrying out mark by safety isolation and the O﹠M operating data of Information Exchange System transmission.Described O﹠M information storage module is used for the operation management behavior that record and storage are carried out Inside and outside network server, the network equipment.Described very first time interlocking module is used for receiving described safety isolation and passes through the control signal that the second time interlocking module sends with the information exchange central controller, and changes the running status of O﹠M safety auditing system.Whether described the first Event triggered interlocking module transmits control signal in violation of rules and regulations and to second event triggering interlocking module for detection of the O﹠M operation.Described the first data interface module is used for receiving and send the O﹠M operating data to the second data interface module.
The safety isolation of described safety isolation and Information Exchange System is used for control with the information exchange central control unit and coordinates the overall operation of safety isolation and Information Exchange System, and reception, transmitting system control signal.
Described the second time interlocking module is used for transmitting control signal to very first time interlocking module, inquiry or change O﹠M safety auditing system running status.Described second event triggers interlocking module and is used for receiving the control signal that the first Event triggered interlocking module sends, and by safety isolation and the control of information exchange central control unit, transmit control signal to special-purpose O﹠M channel module, close the exchanges data of special-purpose O﹠M passage, described special-purpose O﹠M channel module is used to the O﹠M operating data to set up dedicated transmission channel.
Described the second data interface module is used for receiving the O﹠M operating data that O﹠M operation side sends, and notifies the safety isolation to receive the O﹠M operation requests with the information exchange central control unit, please inquire about the O﹠M state of O﹠M safety auditing system; Then the safety isolation sends the control request signal with the information exchange central control unit to the second time interlocking module, the second time interlocking module sends the state of O﹠M status poll signal inquiry O﹠M safety auditing system to very first time interlocking module, if the O﹠M safety auditing system not at the O﹠M state, then requires the O﹠M safety auditing system to be set to the O﹠M state; Very first time interlocking module sends the O﹠M signal to O﹠M security audit central control unit, and O﹠M security audit central control unit O﹠M safety auditing system is set to the O﹠M state; The first data interface module sends to special-purpose O﹠M channel module with the O﹠M operating data, and special-purpose O﹠M channel module is set up special-purpose O﹠M passage for this O﹠M operation, and sends the data to the first data interface module; The first data interface module sends it to emphasis O﹠M information flag module after receiving the O﹠M operating data; Emphasis O﹠M information flag module carries out sending to the first Event triggered interlocking module after mark is processed to the O﹠M data; The first Event triggered interlocking module carries out high-risk operation identification to the O﹠M operating data, if belong to high-risk operation, then triggers interlocking module to second event and sends high-risk operation signal; Second event triggers interlocking module and receives that the backward safety isolation of high-risk operation signal and information exchange central control unit send disabling signal; The safety isolation receives that with the information exchange central control unit the backward special-purpose O﹠M channel module of disabling signal sends disabling signal, after special-purpose O﹠M channel module is received disabling signal, closes O﹠M operating data transmission channel, stops this O﹠M operation; The first Event triggered interlocking module sends recording information signal to O﹠M security audit central control unit; O﹠M security audit central control unit receives that the backward O﹠M information storage module of recording information signal sends storage signal, records this O﹠M operation information; The first Event triggered interlocking module sends to the O﹠M information storage module with this O﹠M operation information; If the O﹠M operation belongs to normal running, the O﹠M operation return information after the first Event triggered interlocking module is processed the O﹠M safety auditing system sends to the first data interface module; The first data interface module sends to special-purpose O﹠M channel module with return information; Special-purpose O﹠M channel module sends to the second data interface module with return information; The second data interface module sends to O﹠M operation side with return information.
According to Fig. 2, specific works flow process of the present utility model has the following steps:
1, receives an O﹠M operation requests by the second data interface module when safety isolation and Information Exchange System, whether the safety isolation at first is in the O﹠M time by the second time interlocking module and very first time interlocking module inquiry O﹠M safety auditing system with the information exchange central control unit, if the O﹠M safety auditing system is not in the O﹠M time, then do not allow to carry out this O﹠M operation, record simultaneously the information of this O﹠M operation by the O﹠M information storage module;
If 2 O﹠M safety auditing systems are in the O﹠M time, judge that then whether this O﹠M operation is from outer net.If then change step 3 over to; If not then change step 4 over to;
3, judge that the O﹠M operation is whether to the O﹠M operation of Intranet equipment, if then change step 4 over to; If not then allow to carry out this O﹠M operation, and by the relevant audit information of O﹠M information storage module record;
4, the safety isolation is called special-purpose O﹠M channel module with the information exchange central control unit and is set up special-purpose O﹠M passage;
5, O﹠M security audit central control unit calls emphasis O﹠M information flag module this O﹠M operation information is labeled as emphasis O﹠M information;
6, O﹠M security audit central control unit judges whether the O﹠M operation belongs to high-risk O﹠M operation, assign blocking-up instruction to the safety isolation with Information Exchange System if then call the first Event triggered interlocking module by O﹠M security audit central control unit, second event triggers blocks this O﹠M operation with safety isolation and the acting in conjunction of information exchange central control unit after interlocking module is received the blocking-up instruction, then records this operation management operation information by the O﹠M information storage module; If not then allow to carry out this O﹠M operation, and by the relevant audit information of O﹠M information storage module record.
Claims (2)
1. a safety is isolated and O﹠M audit linked system, comprise the O﹠M safety auditing system, safety isolation and Information Exchange System, it is characterized in that: described O﹠M safety auditing system mainly comprises O﹠M security audit central control unit, the first Event triggered interlocking module, very first time interlocking module, the O﹠M information storage module, the first data interface module, described O﹠M security audit central control unit respectively with described O﹠M information storage module, very first time interlocking module, the first Event triggered interlocking module links to each other, described O﹠M information storage module also links to each other with the first Event triggered interlocking module, and described the first Event triggered interlocking module also links to each other with described the first data interface module; Described safety isolation and Information Exchange System mainly comprise safety isolation and information exchange central control unit, the second time interlocking module, second event triggering interlocking module, special-purpose O﹠M channel module, the second data interface module that link to each other with the information exchange central control unit with the safety isolation respectively, and described the second data interface module also links to each other with described special-purpose O﹠M channel module; Described very first time interlocking module links to each other with described the second time interlocking module, and described the first Event triggered interlocking module triggers interlocking module with described second event and links to each other, and described the first data interface module links to each other with described special-purpose O﹠M channel module.
2. according to claim 1 described a kind of safety isolation and O﹠M audit linked system, it is characterized in that: described O﹠M safety auditing system also comprises the emphasis O﹠M information flag module that links to each other with the first Event triggered interlocking module, the first data interface module respectively.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220116901 CN202652254U (en) | 2012-03-26 | 2012-03-26 | Safety isolation and operational audit linkage system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201220116901 CN202652254U (en) | 2012-03-26 | 2012-03-26 | Safety isolation and operational audit linkage system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN202652254U true CN202652254U (en) | 2013-01-02 |
Family
ID=47421279
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201220116901 Expired - Lifetime CN202652254U (en) | 2012-03-26 | 2012-03-26 | Safety isolation and operational audit linkage system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN202652254U (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106330919A (en) * | 2016-08-26 | 2017-01-11 | 国家电网公司 | Operation and maintenance safety auditing method and system |
| CN110011848A (en) * | 2019-04-03 | 2019-07-12 | 鼎信信息科技有限责任公司 | A kind of mobile O&M auditing system |
-
2012
- 2012-03-26 CN CN 201220116901 patent/CN202652254U/en not_active Expired - Lifetime
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106330919A (en) * | 2016-08-26 | 2017-01-11 | 国家电网公司 | Operation and maintenance safety auditing method and system |
| CN110011848A (en) * | 2019-04-03 | 2019-07-12 | 鼎信信息科技有限责任公司 | A kind of mobile O&M auditing system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN207671478U (en) | A kind of Internet of Things elevator monitoring system docked with elevator monitoring platform | |
| CN201440210U (en) | Computer room monitoring system | |
| CN102938761A (en) | One-way data exchange device and method for physical isolation among networks at different security levels | |
| CN101464690B (en) | Dredging synthetic platform management system of trail suction dredger based on redundancy network | |
| CN101764768A (en) | Data security transmission system | |
| CN107479574A (en) | A kind of unmanned plane management-control method and device based on mobile communication technology | |
| CN202652254U (en) | Safety isolation and operational audit linkage system | |
| CN103178988A (en) | Method and system for monitoring virtualized resources with optimized performance | |
| CN211425889U (en) | Remote monitoring system of locomotive signal equipment | |
| CN105743695B (en) | A kind of monitor method and system based on IEC104 stipulations | |
| CN108551400B (en) | Portable fortune dimension fort machine system | |
| CN106781917A (en) | It is a kind of to support a pair of power distribution automation Training Simulation Systems of multi-mode | |
| CN106656994A (en) | Integrated communication system | |
| CN105024454B (en) | Substation secondary device monitoring system | |
| CN206195824U (en) | Fuse communication system | |
| CN105356595A (en) | Intensive remote management and control system | |
| CN205405641U (en) | A intelligent entrance guard integrated device for production of explosive line | |
| CN110825057A (en) | Method for improving stability and safety of plant-level information monitoring system of power plant | |
| CN203301525U (en) | Network security isolator based on information bridge | |
| CN111565167B (en) | Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation | |
| CN101227519B (en) | System and method for performing lawful interception by monitoring gateway | |
| CN107942996A (en) | A kind of existing platform door system part, overall upgrading control method and system | |
| CN209086736U (en) | More power station opening and closing device long-distance intelligent total management systems | |
| CN209390103U (en) | A kind of safety device that industrial control network and Office Network interconnection may be implemented | |
| CN202649800U (en) | Distributed control system network architecture |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term | ||
| CX01 | Expiry of patent term |
Granted publication date: 20130102 |