CN205670253U - A kind of trusted gateway system of industrial control system - Google Patents
A kind of trusted gateway system of industrial control system Download PDFInfo
- Publication number
- CN205670253U CN205670253U CN201620239838.0U CN201620239838U CN205670253U CN 205670253 U CN205670253 U CN 205670253U CN 201620239838 U CN201620239838 U CN 201620239838U CN 205670253 U CN205670253 U CN 205670253U
- Authority
- CN
- China
- Prior art keywords
- control system
- industrial control
- trusted gateway
- industrial
- communication unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
This utility model provides the trusted gateway system of a kind of industrial control system, it is possible to solves industrial network and outreaches the safety problem faced.Described system includes: trusted gateway and industrial computer, and wherein, described trusted gateway includes: trusted gateway security control unit, Intranet communication unit, outbound communication unit;Trusted gateway security control unit, the industrial control system data information sent for internal Network Communication unit performs intrusion detection and the detection of depth data bag, judge whether industrial control system occurs exception, if, then produce warning message, and the industrial control system data information sent is encrypted, protocol conversion, and by after protocol conversion information send to outbound communication unit;Industrial computer, for being decrypted receiving industrial control system data information, and is controlled industrial control system according to the industrial control system data delivering control instruction after deciphering.This utility model is applicable to industrial control system field of information security technology.
Description
Technical field
This utility model relates to industrial control system field of information security technology, particularly relates to a kind of industrial control system
Trusted gateway system.
Background technology
In recent years, transfer rate and the real-time of ethernet technology are greatly improved with the development of himself,
This also makes its being applied in industrial control network progressively, makes field bus type network technology natural with ether net type network technology
And right combining.When Ethernet brings the huge advantage of traditional industry, this past of information security is fresh with industrial circle
Related problem but highlights in face of proprietary, to the serious destruction of industrial information network and nucleus equipment band.
Industrial network security, different from traditional commercial network, faced by between industrial network be field personnel and
Work equipment, even small error is likely to cause the collapse of industrial network, causes life and property loss difficult to the appraisal.
The related data of industrial control system is not accomplished that safety is anti-completely by Industrial Management network both at home and abroad
Protecting, even without safety prevention measure, this brings serious threat to industrial network.
Utility model content
The technical problems to be solved in the utility model is to provide the trusted gateway system of a kind of industrial control system, to solve
The problem that industrial control system data transmission security existing for prior art is low.
For solving above-mentioned technical problem, this utility model embodiment provides the trusted networks relation of a kind of industrial control system
System, including: trusted gateway and the industrial computer being connected with described trusted gateway, wherein, described trusted gateway includes: trusted gateway is pacified
Intranet communication unit that full control unit communicates with industrial control system and trusted gateway security control unit and industry control
The outbound communication unit that machine and trusted gateway security control unit communicate;
Described trusted gateway security control unit, the industrial control system data information sent for internal Network Communication unit
Perform intrusion detection and detect with depth data bag, it is judged that whether industrial control system occurs exception, the most then produce alarm signal
Breath, and the industrial control system data information sent is encrypted, protocol conversion, and by after protocol conversion information send extremely
Outbound communication unit;
Described trusted gateway security control unit, the control instruction being additionally operable to send outbound communication unit carries out invasion inspection
Survey and depth data bag detects, it is determined that described instruction is the most abnormal, the most then abandon this instruction and produce warning message, otherwise,
This instruction is carried out protocol conversion, and the instruction after protocol conversion is sent to Intranet communication unit;
Described industrial computer, for being decrypted receiving industrial control system data information, and according to the work after deciphering
Industry control system data message sends control instruction and is controlled industrial control system.
Further, described trusted gateway system also includes: alarm log manager, and described trusted gateway also includes:
RS232 interface;
Described trusted gateway security control unit, is additionally operable to be sent by the warning message produced by described RS232 interface
To alarm log manager;
Described alarm log manager, for carrying out Realtime Alerts according to the warning message received, and to described warning
Information stores.
Further, described industrial computer includes: data base;
Described industrial computer, is additionally operable to show the data message of the industrial control system received and store.
Further, described trusted gateway also includes: a RJ45 Ethernet interface;
Described Intranet communication unit utilizes a described RJ45 Ethernet interface by EPA and Industry Control system
System is attached;
Data communication is carried out by UDP/IP multicast between described Intranet communication unit and industrial control system.
Further, described trusted gateway also includes: the 2nd RJ45 Ethernet interface;
Described outbound communication unit is attached with Ethernet by described 2nd RJ45 Ethernet interface;
Data communication is carried out by the ICP/IP protocol of standard between described outbound communication unit and Ethernet.
Further, described trusted gateway also includes: light-coupled isolation unit;
Described light-coupled isolation unit, for the industrial control system data information and the industry that are got by Intranet communication unit
Control on-the-spot original data message to isolate.
Further, described trusted gateway security control unit includes: USB hardware encrypting module;
Described USB hardware encrypting module: for the industrial control system data information got is encrypted.
Further, described trusted gateway security control unit includes: protocol conversion module;
Described protocol conversion module, for by the industrial control system proprietary protocol in the UDP multicast of industrial control system
Parsing is converted to ICP/IP protocol;Or, the ICP/IP protocol of Ethernet is converted to industrial control system proprietary protocol.
Further, described trusted gateway security control unit includes: depth data bag detection module;
Described depth data bag detection module, is used for combining communication protocol to industrial control system data information or outside control
Instruction processed compares, and detects abnormal industrial control system data information or instruction.
Further, described trusted gateway also includes: USB interface;
By described USB interface by industrial control system data information copy/be written in USB storage device.
Having the beneficial effect that of technique scheme of the present utility model:
In such scheme, the industrial control system data information that internal Network Communication unit sends performs intrusion detection and the degree of depth
Packet detects, it is judged that whether industrial control system occurs exception, the most then produce warning message, and to the industry control sent
System data information processed is encrypted, protocol conversion, and sends the information after protocol conversion to outbound communication unit, finally,
It is decrypted receiving industrial control system data information by industrial computer, and according to the industrial control system data after deciphering
Industrial control system is controlled by delivering control instruction;The control instruction sending outbound communication unit carries out invasion inspection
Survey and depth data bag detects, it is determined that described instruction is the most abnormal, the most then abandon this instruction and produce warning message, otherwise,
This instruction is carried out protocol conversion, and the instruction after protocol conversion is sent to Intranet communication unit.So, to Industry Control system
System data message perform intrusion detection, depth data bag detection, encryption, simultaneously will encryption after industrial control system data information
Be linked into Ethernet, it is possible on the premise of not changing original industrial control system layout, plug and play, it is achieved industry control network by
Fieldbus distributed controll, Portable safety be linked into Ethernet, it is achieved organically blending of industry control network and information network, thus
Efficiently solve industrial network and outreach the safety problem faced.
Accompanying drawing explanation
The structural representation one of the trusted gateway system of the industrial control system that Fig. 1 provides for this utility model embodiment;
The trusted gateway systematic difference schematic diagram one of the industrial control system that Fig. 2 provides for this utility model embodiment;
The interface diagram of the trusted gateway that Fig. 3 provides for this utility model embodiment;
The trusted gateway systematic difference schematic diagram two of the industrial control system that Fig. 4 provides for this utility model embodiment.
Detailed description of the invention
For making the technical problems to be solved in the utility model, technical scheme and advantage clearer, below in conjunction with accompanying drawing
And specific embodiment is described in detail.
This utility model is for the low problem of existing industrial control system data transmission security, it is provided that a kind of industry control
The trusted gateway system of system processed.
Being illustrated in figure 1 the trusted gateway system of a kind of industrial control system that this utility model embodiment provides, it is special
Levy and be, including: trusted gateway and the industrial computer being connected with described trusted gateway, wherein, described trusted gateway includes: trusted networks
Close the Intranet communication unit that communicates with industrial control system and trusted gateway security control unit of security control unit and
The outbound communication unit that industrial computer and trusted gateway security control unit communicate;
Described trusted gateway security control unit, the industrial control system data information sent for internal Network Communication unit
Perform intrusion detection and detect with depth data bag, it is judged that whether industrial control system occurs exception, the most then produce alarm signal
Breath, and the industrial control system data information sent is encrypted, protocol conversion, and by after protocol conversion information send extremely
Outbound communication unit;
Described trusted gateway security control unit, the control instruction being additionally operable to send outbound communication unit carries out invasion inspection
Survey and depth data bag detects, it is determined that described instruction is the most abnormal, the most then abandon this instruction and produce warning message, otherwise,
This instruction is carried out protocol conversion, and the instruction after protocol conversion is sent to Intranet communication unit;
Described industrial computer, for being decrypted receiving industrial control system data information, and according to the work after deciphering
Industry control system data message sends control instruction and is controlled industrial control system.
The trusted gateway system of the industrial control system described in this utility model embodiment, internal Network Communication unit sends
Industrial control system data information performs intrusion detection and detects with depth data bag, it is judged that it is different whether industrial control system occurs
Often, the most then produce warning message, and the industrial control system data information sent is encrypted, protocol conversion, and will association
Information after view conversion sends to outbound communication unit, finally, by industrial computer to receiving industrial control system data information
It is decrypted, and according to the industrial control system data delivering control instruction after deciphering, industrial control system is controlled
System;The control instruction sending outbound communication unit performs intrusion detection and the detection of depth data bag, it is determined that whether described instruction
Abnormal, the most then abandon this instruction and produce warning message, otherwise, this instruction being carried out protocol conversion, and by after protocol conversion
Instruction send to Intranet communication unit.So, perform intrusion detection industrial control system data information, depth data bag is examined
Survey, encryption, simultaneously will encryption after industrial control system data information access to Ethernet, it is possible to do not changing original industry control
On the premise of system layout processed, plug and play, it is achieved industry control network by fieldbus distributed controll, Portable safety be linked into
Too net, it is achieved organically blending of industry control network and information network, thus efficiently solve industrial network and outreach the safety faced and ask
Topic.
In this utility model embodiment, described industrial control system includes: industrial control equipment/industrial field device, industry are now
Field sensors etc., described industrial control system data information includes: the data message of industrial field device, industry spot sensor
The information collected, the site environment information collected.
In this utility model embodiment, described trusted gateway can be based on ARM-cortex8 framework AM335x core at
Four layers of hardware circuit of reason chip, utilize standard ethernet interface to realize industrial control system data information, and
The Ethernet utilizing standard follows the communication of IEEE 802.3 standard implementation and Ethernet, thus the input realizing network data is defeated
Go out TCP/IP and the UDP/IP function of function, standard.In this utility model embodiment, described trusted gateway includes: interior Network Communication
Unit, trusted gateway security control unit, outbound communication unit, wherein, Intranet communication unit, trusted gateway security control unit
Data flow connection is passed sequentially through with outbound communication unit.
In this utility model embodiment, described outbound communication unit and Ethernet or host computer communication (such as: industrial computer) phase
Even, described outbound communication unit includes: the configuration of communication function, the TCP webserver and log recording, for the TCP/ of standard
IP agreement ethernet communication;Described Intranet communication unit is connected with industrial control system, and described Intranet communication unit includes: communication
Function, UDP Multicast configuration and log recording, be used for realizing industrial control system UDP multicast communication.So, by described outer net
Communication unit and Intranet communication unit and then realize the Ethernet both-way communication of trusted gateway.
In this utility model embodiment, as in figure 2 it is shown, described trusted gateway security control unit includes: USB hardware is encrypted
Module, intrusion detection module, depth data bag detection module, alarm module and protocol conversion module;Wherein:
Described USB hardware encrypting module integrated USB interface hardware encryption chip, described USB interface hardware encryption chip can
With use 32 RISC CPU as core processor, be internally integrated PKI (SM2, RSA, ECC), packet (SM1, SMS4, SSF33,
DES/3DES, AES) and hash three classes multiple crypto engine algorithms such as (SM3, SHA-1, SHA-256), cover international and national
The main flow AES of standard, fully meets industry control network data and encrypts safely the demand with long-distance identity-certifying such that it is able to
Realize the cryptographic operation of industrial control system data information.And described USB interface hardware encryption chip, utilize USB interface to carry out
Data interaction, communications protocol can use USB2.0 at full speed agreement, communication speed up to 12Mps, achieve data encryption and
The running space of trusted gateway, convenient, efficiency height is saved while authentication.
Described intrusion detection module is based on snort intruding detection system, monitors network packet detection network in real time and enters
Invade behavior, once find that warning message record is shown by alarm module by network intrusions behavior at once, and by warning message
Send.
Described depth data bag detection module is according to industrial requirements, compares network packet in conjunction with communication protocol
Analyzing, to having the control instruction running counter to process control procedure, instructing combination, malicious modification sensitive variable, critical data is entered extremely
Row detection, once finds that warning message record is shown by alarm module by network intrusions behavior at once, and by warning message
Send, from the safety of ground shield equipment, have more specific aim and practicality.
Described protocol conversion module, for private by the industrial control system in the UDP multicast of industrial control system (Intranet)
Protocols having parsing is converted to common protocol and is converted into ICP/IP protocol transmission, or the ICP/IP protocol of Ethernet is converted to work
Industry control system proprietary protocol, thus ensure that independence and the integrity of industrial network, there are powerful data and process and association
View exchange capacity.
In this utility model embodiment, described trusted gateway security control unit can also include: access control module, institute
State access control module, authority classification and network white list can be used, limit the network address IP of access industrial control system
And the network port, only allow the address access device of regulation, carry out user right classification and user right certification simultaneously, different
User has different control authorities, forbids unauthorized access.
In this utility model embodiment, described trusted gateway is additionally provided with industrial control system level I/O mouth and passes industry spot
Sensor information, industrial environment information.As it is shown on figure 3, described trusted gateway also includes: two IEEE 802.3
The gigabit Ethernet RJ45 interface of standard (including: a RJ45 Ethernet interface and the 2nd RJ45 Ethernet interface, two RJ45
Ethernet interface is extended out by two AR8031 gigabit networking chips), two-way RS232 serial communication interface (use by serial ports 0
In connecting alarm log manager transmission warning message, serial ports 1 is used for connecting industrial computer and carries out gateway parameter configuration, two-way
RS232 serial communication interface is extended out by MAX3232 chip), a road RS485 serial communication interface, three road USB connect
Mouthful, light-coupled isolation I/O mouth, CAN interface, such that it is able to effectively cope with the requirement of the connection of plurality of devices interface, it is achieved
The extension of communication function.
In this utility model embodiment, as shown in Figure 4, described Intranet communication unit utilizes the RJ45 on trusted gateway
Ethernet interface is connected with industrial control system by EPA, described Intranet communication unit and industrial control system it
Between utilize UDP/IP multicast to carry out data communication.Described Intranet communication unit arranges UDP multicast after being connected with industrial control system
Address and port, configuration network connection realizes UDP/IP multicast.
In this utility model embodiment, described outbound communication unit is by the 2nd RJ45 Ethernet interface on trusted gateway
It is attached with Ethernet, utilizes the ICP/IP protocol of standard to carry out data between described outbound communication unit and Ethernet and lead to
Letter.Described outbound communication unit configures gateway server address and port after being connected with Ethernet, in order to carry out even with industrial computer
Connect.
In this utility model embodiment, described trusted gateway also includes: light-coupled isolation unit;Described light-coupled isolation unit leads to
Crossing light-coupled isolation I/O mouth and access trusted gateway, described light-coupled isolation unit can be PS2801-4 light-coupled isolation chip, and being used for will
The industrial control system data information that Intranet communication unit gets original data message on-the-spot with Industry Control is kept apart,
Ensure that trusted gateway system and Industry Control on-site transfer signal complementation interference, thus ensure that stablizing of trusted gateway system
Property.
In this utility model embodiment, it is also possible to by the USB interface of trusted gateway by industrial control system data information
Copy/be written in USB storage device.
In this utility model embodiment, when network is invaded, Ethernet connects data will be the most credible, for preventing trusted networks
The warning message that pass system produces is distorted by invader or the loss of warning message, and described trusted gateway system also includes: report
Alert log manager;The warning message produced is sent by described trusted gateway security control unit by RS232 interface (serial ports 0)
To alarm log manager;Realtime Alerts is carried out according to the warning message received by described alarm log manager, and to institute
State warning message and carry out storage backup, thus when preventing network to be hacked, data are tampered, cannot transmit or lose.
In this utility model embodiment, described industrial computer not only solves receiving industrial control system data information
Close, and according to the industrial control system data delivering control instruction after deciphering, industrial control system is controlled, also may be used
So that the industrial control system data information after deciphering is carried out data monitoring, shows and store in data base.
In this utility model embodiment, such as, described industrial control system can be DCS industrial control system, such as Fig. 2 institute
It is shown as this trusted gateway systematic difference system, the data of DCS industrial control system can be received by trusted gateway and carry out
Control.Industrial computer needs to plug the USBKEY deciphering chip with the pairing of USB hardware encrypting module and carries out industrial control system data
The decryption work of information.
In this utility model embodiment, after trusted gateway system start-up, the outbound communication unit of trusted gateway, trusted gateway
Security control unit, Intranet communication unit and warning function are all by startup, and wherein, trusted gateway security control unit will be carried out must
The security protection wanted.Intranet communication unit connects DCS industrial control system, gathers the real time data of DCS industrial control system.Adopt
The DCS industrial control system data information that collection arrives enters snort intruding detection system by data stream and depth data bag detects
Module, detection DCS industrial control system runs whether exception occurs, if occurring abnormal, produces warning message, and by can
Warning message is transferred to alarm log manager to carry out safe handling timely by the RS232 interface of letter gateway;Then, number
Entering USB hardware encrypting module according to stream, carry out data encryption work, after having encrypted, data stream enters protocol conversion module will
The proprietary protocol of encapsulation in UDP message section, resolves and is converted into ICP/IP protocol, and data stream enters outbound communication unit, by data
Being streamed to Ethernet, industrial computer receives Ethernet data, and display in real time carries out data monitoring and stores to data base.
In this utility model embodiment, when the external control instruction that industrial computer sends enters described trusted gateway, outer Netcom
After letter unit receives described instruction (data stream), data streaming is entered snort intruding detection system, once finds intrusion behavior,
Packet discard, and by alarm module, warning message record is shown, and utilize the RS232 serial ports of trusted gateway to incite somebody to action. at once
Warning message is transferred to alarm log manager to carry out safe handling timely, afterwards, instructs normally, enters degree of depth number
According to bag detection module, in conjunction with communication protocol, data variable is compared, refer to there being the control running counter to process control procedure
Making, instruct combination, have malicious modification sensitive variable, critical data is abnormal to be detected, and afterwards, normal data stream enters agreement
Modular converter, according to the DCS industrial control system communication proprietary protocol resolved, by standard ethernet data conversion process DCS
Internal proprietary protocol, and by UDP/IP multicast, control instruction sent into DCS equipment.
The above is preferred implementation of the present utility model, it is noted that for the ordinary skill of the art
For personnel, on the premise of without departing from principle described in the utility model, it is also possible to make some improvements and modifications, these improve
Also protection domain of the present utility model is should be regarded as with retouching.
Claims (7)
1. the trusted gateway system of an industrial control system, it is characterised in that including: trusted gateway and with described trusted gateway
The industrial computer connected, wherein, described trusted gateway includes: trusted gateway security control unit and industrial control system and credible
The Intranet communication unit that gateway security control unit communicates communicates with industrial computer and trusted gateway security control unit
Outbound communication unit;
Described trusted gateway security control unit, the industrial control system data information sent for internal Network Communication unit is carried out
Intrusion detection and the detection of depth data bag, it is judged that whether industrial control system occurs exception, the most then produce warning message, and
The industrial control system data information sent is encrypted, protocol conversion, and by after protocol conversion information send to outer net
Communication unit;
Described trusted gateway security control unit, be additionally operable to outbound communication unit send control instruction perform intrusion detection and
Depth data bag detects, it is determined that described instruction is the most abnormal, the most then abandon this instruction and produce warning message, otherwise, to this
Instruction carries out protocol conversion, and sends the instruction after protocol conversion to Intranet communication unit;
Described industrial computer, for being decrypted receiving industrial control system data information, and according to the industry control after deciphering
System data information processed sends control instruction and is controlled industrial control system.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described trusted networks relation
System also includes: alarm log manager, described trusted gateway also includes: RS232 interface;
Described trusted gateway security control unit, is additionally operable to be sent the warning message produced to report by described RS232 interface
Alert log manager;
Described alarm log manager, for carrying out Realtime Alerts according to the warning message received, and to described warning message
Store.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described industrial computer bag
Include: data base;
Described industrial computer, is additionally operable to show the data message of the industrial control system received and store.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described trusted gateway
Also include: a RJ45 Ethernet interface;
Described Intranet communication unit utilizes a described RJ45 Ethernet interface to be entered with industrial control system by EPA
Row connects;
Data communication is carried out by UDP/IP multicast between described Intranet communication unit and industrial control system.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described trusted gateway is also
Including: the 2nd RJ45 Ethernet interface;
Described outbound communication unit is attached with Ethernet by described 2nd RJ45 Ethernet interface;
Data communication is carried out by the ICP/IP protocol of standard between described outbound communication unit and Ethernet.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described trusted gateway is also
Including: light-coupled isolation unit;
Described light-coupled isolation unit, for the industrial control system data information got by Intranet communication unit and Industry Control
On-the-spot original data message is isolated.
The trusted gateway system of industrial control system the most according to claim 1, it is characterised in that described trusted gateway is also
Including: USB interface;
By described USB interface by industrial control system data information copy/be written in USB storage device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201620239838.0U CN205670253U (en) | 2016-03-25 | 2016-03-25 | A kind of trusted gateway system of industrial control system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201620239838.0U CN205670253U (en) | 2016-03-25 | 2016-03-25 | A kind of trusted gateway system of industrial control system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN205670253U true CN205670253U (en) | 2016-11-02 |
Family
ID=57192818
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201620239838.0U Active CN205670253U (en) | 2016-03-25 | 2016-03-25 | A kind of trusted gateway system of industrial control system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN205670253U (en) |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106982233A (en) * | 2017-05-23 | 2017-07-25 | 信联安宝(北京)科技有限公司 | The discrete integrated security management interchanger of power supply |
| CN109547497A (en) * | 2019-01-16 | 2019-03-29 | 浙江乾行信息技术有限公司 | Signal transmission, alarm system between a kind of safety net |
| CN109714767A (en) * | 2019-02-25 | 2019-05-03 | 陈超 | A kind of secure communication of network device |
| CN111431905A (en) * | 2020-03-26 | 2020-07-17 | 重庆新致金服信息技术有限公司 | Intelligent gateway system suitable for credit industry |
| CN111917800A (en) * | 2020-08-14 | 2020-11-10 | 王志东 | External authorization system and method based on protocol |
| CN112491838A (en) * | 2020-11-17 | 2021-03-12 | 北京航空航天大学杭州创新研究院 | Method and system for safely sending message through industrial internet |
| WO2021128594A1 (en) * | 2019-12-24 | 2021-07-01 | 南京轩世琪源软件科技有限公司 | Industrial control system and control method |
| CN114513444A (en) * | 2022-02-15 | 2022-05-17 | 南京鑫蓝优图信息技术有限公司 | Inspection gateway with network gate function and data uploading and issuing method |
| CN114785836A (en) * | 2022-02-22 | 2022-07-22 | 浙江大学 | But based on 5G long-range management and control environmental protection water treatment control system |
| CN114839938A (en) * | 2022-04-28 | 2022-08-02 | 东方电气中能工控网络安全技术(成都)有限责任公司 | DCS industrial control network security audit analysis system and method |
| EP4264930A1 (en) * | 2020-12-15 | 2023-10-25 | CBB Software GmbH | Gateway, specifically for ot networks |
-
2016
- 2016-03-25 CN CN201620239838.0U patent/CN205670253U/en active Active
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106982233A (en) * | 2017-05-23 | 2017-07-25 | 信联安宝(北京)科技有限公司 | The discrete integrated security management interchanger of power supply |
| CN109547497A (en) * | 2019-01-16 | 2019-03-29 | 浙江乾行信息技术有限公司 | Signal transmission, alarm system between a kind of safety net |
| CN109714767A (en) * | 2019-02-25 | 2019-05-03 | 陈超 | A kind of secure communication of network device |
| WO2021128594A1 (en) * | 2019-12-24 | 2021-07-01 | 南京轩世琪源软件科技有限公司 | Industrial control system and control method |
| CN111431905A (en) * | 2020-03-26 | 2020-07-17 | 重庆新致金服信息技术有限公司 | Intelligent gateway system suitable for credit industry |
| CN111917800A (en) * | 2020-08-14 | 2020-11-10 | 王志东 | External authorization system and method based on protocol |
| CN112491838A (en) * | 2020-11-17 | 2021-03-12 | 北京航空航天大学杭州创新研究院 | Method and system for safely sending message through industrial internet |
| EP4264930A1 (en) * | 2020-12-15 | 2023-10-25 | CBB Software GmbH | Gateway, specifically for ot networks |
| CN114513444A (en) * | 2022-02-15 | 2022-05-17 | 南京鑫蓝优图信息技术有限公司 | Inspection gateway with network gate function and data uploading and issuing method |
| CN114513444B (en) * | 2022-02-15 | 2024-01-23 | 南京鑫蓝优图信息技术有限公司 | Patrol gateway with gateway function and data uploading and issuing method |
| CN114785836A (en) * | 2022-02-22 | 2022-07-22 | 浙江大学 | But based on 5G long-range management and control environmental protection water treatment control system |
| CN114839938A (en) * | 2022-04-28 | 2022-08-02 | 东方电气中能工控网络安全技术(成都)有限责任公司 | DCS industrial control network security audit analysis system and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN205670253U (en) | A kind of trusted gateway system of industrial control system | |
| CN101795271B (en) | Network secure printing system and printing method | |
| US11134064B2 (en) | Network guard unit for industrial embedded system and guard method | |
| US11102226B2 (en) | Dynamic security method and system based on multi-fusion linkage response | |
| Sandaruwan et al. | PLC security and critical infrastructure protection | |
| Morris et al. | A retrofit network intrusion detection system for MODBUS RTU and ASCII industrial control systems | |
| CN104683352B (en) | A kind of industrial communication isolation gap with binary channels ferry-boat | |
| CN202856781U (en) | Industrial control system main station safety device | |
| CN110958262A (en) | Ubiquitous Internet of things safety protection gateway system, method and deployment architecture in power industry | |
| CN108809970B (en) | Safety protection method of intelligent home security gateway | |
| CN104683332A (en) | Security isolation gateway in industrial control network and security isolation method thereof | |
| CN103491072A (en) | Boundary access control method based on double one-way separation gatekeepers | |
| CN204392296U (en) | Secure isolation gateway in a kind of industrial control network | |
| CN107483444A (en) | A kind of intelligent grid information transmission security protector and safety protecting method | |
| CN105656883A (en) | Unidirectional transmission internal and external network secure isolating gateway applicable to industrial control network | |
| CN104320332A (en) | Multi-protocol industrial communication safety gateway and communication method with gateway applied | |
| CN103560911A (en) | Method and system for financial self-service equipment initiative preventive maintenance | |
| CN105656655B (en) | A kind of network safety managing method, device and system | |
| CN108322484A (en) | A kind of industrial control data ferry-boat system | |
| CN205584238U (en) | Network data encryption equipment | |
| Khosroshahi et al. | Security technology by using firewall for smart grid | |
| Kumar et al. | Cyber security threats in synchrophasor system in WAMS | |
| CN106161330A (en) | A kind of security isolation system being applied to PROFINET EPA | |
| Yue et al. | The research of firewall technology in computer network security | |
| CN206178834U (en) | Computer network information safety coefficient |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |