CN213937972U - Cabin monitoring and alarming system with network defense function - Google Patents
Cabin monitoring and alarming system with network defense function Download PDFInfo
- Publication number
- CN213937972U CN213937972U CN202023338611.7U CN202023338611U CN213937972U CN 213937972 U CN213937972 U CN 213937972U CN 202023338611 U CN202023338611 U CN 202023338611U CN 213937972 U CN213937972 U CN 213937972U
- Authority
- CN
- China
- Prior art keywords
- network
- station
- data acquisition
- operation station
- ros
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The utility model discloses a cabin monitoring alarm system with network defense function, include: the method comprises the following steps: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor which is used as an I/O interface of the sensors and the controllers, a data acquisition unit which is connected with the distributed processor through a serial communication interface, a remote operation station which is connected with the data acquisition unit through a system gateway, a first alarm device which is connected with the remote operation station, a field operation station, a second alarm device which is connected with the field operation station, a portable operation station, a third alarm device which is connected with the portable operation station, an extension alarm device, a route data acquisition instrument and a network defense auditing system; a safe and reliable cabin monitoring alarm system network is established, not only CAN the conventional network virus be defended, but also the virus input of external equipment to the CAN field bus CAN be avoided.
Description
Technical Field
The invention relates to the field of automatic monitoring of ships, in particular to a cabin monitoring and alarming system with a network defense function.
Background
The cabin monitoring and alarming system is an important component of ship automation and is used for monitoring the operation conditions of a main engine, an auxiliary engine, a cargo hold and auxiliary equipment in a cabin. In a ship with an unmanned engine room with higher automation requirements, an alarm system has an audible and visual alarm in a cab, a centralized control room and the engine room, and the alarm needs to be extended to a restaurant, a crew rest room and the like. The advanced and reliable cabin monitoring and alarming system improves the safe reliability of the ship operation, reduces the labor intensity of personnel, and can also reduce the configuration quantity of shipmen, thereby improving the economy of the ship operation.
However, open information systems necessarily present numerous potential security risks, and the struggle of hackers and blackmen, vandalism, and vandalism will continue. In such a battle, security technology is increasingly receiving attention from global network builders as a unique field. In recent years, the ship automation system is covered by a large extension, which makes the information security important, and it is necessary to optimize the cabin monitoring alarm system and establish a reliable security protection system.
SUMMERY OF THE UTILITY MODEL
For overcoming the problem that exists among the prior art, the utility model provides a cabin monitoring alarm system with network defense function, include: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor which is used as an I/O interface of the sensors and the controllers, a data acquisition unit which is connected with the distributed processor through a serial communication interface, a remote operation station which is connected with the data acquisition unit through a system gateway, a first alarm device which is connected with the remote operation station, a field operation station, a second alarm device which is connected with the field operation station, a portable operation station, a third alarm device which is connected with the portable operation station, an extension alarm device, a route data acquisition instrument and a network defense auditing system; the sensor, the controller, the distributed processor and the data acquisition unit are positioned in a dual-redundancy CAN field bus; the field operation station, the portable operation station, the remote operation station, the extension alarm device and the air route data acquisition instrument are positioned in a first dual-redundancy local area network.
The system comprises a server and a ship-shore network communication system, wherein the server collects remote operation station data through a first dual-redundancy local area network and is in bidirectional communication with an external network through the ship-shore network communication system.
The sensors include temperature sensors, pressure sensors, liquid level sensors, flow sensors, gas detectors, etc. which are arranged in the devices and detect the positions, and the sensors can be arranged independently; when monitoring equipment with an execution action, the sensors are arranged in a manner of being matched with the controller, the sensors and the controller are both connected with the distributed processor, and the distributed processor is used for performing I/O signal conversion and bidirectional data transmission on each sensor, controller and data acquisition unit; the data acquisition unit transmits data to a remote operation station, a field operation station and a portable operation station in a first dual-redundancy local area network according to a set program; the method comprises the following steps that an on-duty worker obtains equipment data, fault data and alarm information through each operation station, processes the equipment data, the fault data and the alarm information in time, the processed information is recorded into each operation station, and each operation station collects the data to a server; the air route data acquisition instrument is directly connected with and acquires data of each remote operation station, field operation station and portable operation station.
The network defense auditing system comprises a security monitoring station, and an industrial firewall, a network auditing device and a longitudinal encryption device which are interconnected with the security monitoring station through a second dual-redundancy local area network; and the safety monitoring station is used for uniformly managing each industrial firewall, the network auditing device and the longitudinal encryption device.
As an improvement, the industrial firewall is deployed in series between the data acquisition unit and the remote operation station to achieve logical isolation between the dual-redundant CAN fieldbus and the first dual-redundant local area network.
As an improvement, the network auditing device is respectively arranged on the sides of a remote operation station, a field operation station and a portable operation station in a mirror image mode so as to verify the legality of input data.
The longitudinal encryption device is arranged between the first dual-redundancy local area network and the external network to realize bidirectional identity authentication, data encryption and access control.
Has the advantages that: the utility model discloses a safe and reliable's cabin monitoring alarm system network has been established to simple reasonable network defense equipment, not only CAN defend conventional network virus, CAN also avoid external equipment to CAN field bus input virus.
Drawings
FIG. 1 is a schematic diagram of the network connection of the present invention;
fig. 2 is a schematic diagram of network connection according to an embodiment of the present invention;
fig. 3 is a schematic diagram of the network defense network connection of the present invention.
Detailed Description
In order to make the above objects, features and advantages of the present invention more comprehensible, embodiments of the present invention are described in detail below with reference to the accompanying drawings. In the following description, numerous specific details are set forth in order to provide a thorough understanding of the present invention. The present invention can be embodied in many different forms other than those specifically described herein, and it will be apparent to those skilled in the art that similar modifications can be made without departing from the spirit and scope of the invention, and it is therefore not to be limited to the specific embodiments disclosed below.
As shown in fig. 1, the cabin monitoring alarm system with network defense function includes: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor DPU which is used as an I/O interface of the sensors and the controllers, a data acquisition unit SAU which is connected with the distributed processor DPU through a serial communication interface SCU, a remote operation station ROS which is connected with the data acquisition unit SAU through a system gateway SGW, a first alarm device which is connected with the remote operation station ROS, a field operation station LOS, a second alarm device which is connected with the field operation station LOS, a portable operation station MOS, a third alarm device which is connected with the portable operation station MOS, an extension alarm device WBU, an airline data acquisition instrument VDR and a network defense auditing system; the sensor, the controller, the distributed processor DPU and the data acquisition unit SAU are positioned in a dual-redundancy CAN field bus; the field operating station LOS, the portable operating station MOS, the remote operating station ROS, the extension alarm device WBU and the air line data acquisition instrument VDR are positioned in the first dual-redundancy local area network Ethernet 1.
As shown in fig. 2, in some embodiments, a server, a ship-shore network communication system, is included, the server collecting remote station ROS data via a first dual redundant local area network Ethernet1 and in bidirectional communication with an extranet via the ship-shore network communication system.
The sensors include temperature sensors, pressure sensors, liquid level sensors, flow sensors, gas detectors, etc. which are arranged in the devices and detect the positions, and the sensors can be arranged independently; when monitoring equipment with executing action, the sensor is arranged in cooperation with the controller, the sensor and the controller are both connected with the distributed processor DPU, and the distributed processor DPU is used for performing I/O signal conversion and bidirectional data transmission on each sensor, controller and the data acquisition unit SAU; the data acquisition unit SAU transmits data to a remote operation station ROS, a field operation station LOS and a portable operation station MOS in the first dual-redundancy local area network Ethernet1 according to a set program; the method comprises the following steps that an on-duty worker obtains equipment data, fault data and alarm information through each operation station, processes the equipment data, the fault data and the alarm information in time, the processed information is recorded into each operation station, and each operation station collects the data to a server; the flight line data acquisition instrument VDR is directly connected with and acquires data of each remote operating station ROS, field operating station LOS and portable operating station MOS.
As shown in fig. 3, in some embodiments, the network defense auditing system includes a security monitoring station 05, and an industrial firewall 03, a network auditing apparatus 04, and a longitudinal encryption apparatus 02, which are interconnected with the security monitoring station 05 through a second dual redundant local area network Ethernet 2; and the security monitoring station 05 is used for uniformly managing each industrial firewall 03, each network auditing device 04 and each longitudinal encryption device 02.
In some embodiments, the industrial firewall 03 is disposed in series between the data acquisition unit SAU and the remote operating station ROS to achieve logical isolation between the dual-redundant CAN fieldbus and the first dual-redundant local area network Ethernet 1.
In some embodiments, the network auditing device 04 is respectively arranged on the remote operating station ROS, the field operating station LOS and the portable operating station MOS side in a mirror image mode to verify the validity of the input data.
In some embodiments, the vertical encryption device 02 is disposed between the first dual redundant local area network Ethernet1 and an external network to implement bidirectional authentication, data encryption and access control.
The above description is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, many variations and modifications can be made without departing from the inventive concept, and these should also be considered as within the scope of the present invention.
While the foregoing description shows and describes the preferred embodiments of the present invention, it is to be understood that the invention is not limited to the forms disclosed herein, but is not intended to be exhaustive or to exclude other embodiments and may be used in various other combinations, modifications, and environments and is capable of changes within the scope of the inventive concept as expressed herein, commensurate with the above teachings, or the skill or knowledge of the relevant art. But that modifications and variations may be effected by those skilled in the art without departing from the spirit and scope of the invention, which is to be limited only by the claims appended hereto.
Claims (6)
1. Cabin monitoring alarm system with network defense function, its characterized in that includes: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a Distributed Processor (DPU) which is used as an I/O interface of the sensors and the controllers, a data acquisition unit (SAU) which is connected with the DPU through a serial communication interface (SCU), a Remote Operation Station (ROS) which is connected with the data acquisition unit (SAU) through a System Gateway (SGW), a first alarm device which is connected with the ROS, a field operation station (LOS), a second alarm device which is connected with the LOS, a portable operation station (MOS), a third WBalarm device which is connected with the portable operation station (MOS), an extension alarm device (WBU), a course data acquisition instrument (VDR) and a network defense audit system; the sensor, the controller, the Distributed Processor (DPU) and the data acquisition unit (SAU) are located in a dual-redundancy CAN field bus; the field operating station (LOS), the portable operating station (MOS), the Remote Operating Station (ROS), the extension alarm device (WBU) and the air line data acquisition instrument (VDR) are arranged in a first dual-redundancy local area network (Ethernet 1).
2. The network defense enabled cabin monitoring alarm system of claim 1, further comprising a server, a shore network communication system, the server collecting Remote Operating Station (ROS) data via a first dual redundant local area network (Ethernet 1) and bi-directionally communicating with an extranet via the shore network communication system.
3. The system of claim 1, wherein the system comprises a security monitoring station, and an industrial firewall, a network auditing device, and a longitudinal encryption device which are interconnected with the security monitoring station through a second dual redundant local area network (Ethernet 2); and the safety monitoring station is used for uniformly managing each industrial firewall, the network auditing device and the longitudinal encryption device.
4. The network defense enabled cabin monitoring alarm system of claim 3, wherein the industrial firewall is deployed in series between the data acquisition unit (SAU) and the Remote Operating Station (ROS) to achieve logical isolation between the dual redundant CAN Fieldbus and the first dual redundant local area network (Ethernet 1).
5. The system of claim 3, wherein the network auditing means are respectively arranged on the Remote Operating Station (ROS), field operating station (LOS) and portable operating station (MOS) side in a mirror image manner.
6. The ship cabin monitoring alarm system with network defense function according to claim 3, characterized in that the longitudinal encryption device is deployed between the first dual redundant local area network (Ethernet 1) and the external network to realize bidirectional identity authentication, data encryption and access control.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202023338611.7U CN213937972U (en) | 2020-12-31 | 2020-12-31 | Cabin monitoring and alarming system with network defense function |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202023338611.7U CN213937972U (en) | 2020-12-31 | 2020-12-31 | Cabin monitoring and alarming system with network defense function |
Publications (1)
Publication Number | Publication Date |
---|---|
CN213937972U true CN213937972U (en) | 2021-08-10 |
Family
ID=77157058
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202023338611.7U Active CN213937972U (en) | 2020-12-31 | 2020-12-31 | Cabin monitoring and alarming system with network defense function |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN213937972U (en) |
-
2020
- 2020-12-31 CN CN202023338611.7U patent/CN213937972U/en active Active
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10698378B2 (en) | Industrial control system smart hardware monitoring | |
CN111614502B (en) | Intelligent ship comprehensive information redundancy monitoring system | |
CN106125766A (en) | A kind of railway line based on unmanned plane patrols and examines monitoring system and method for inspecting | |
CN112379694A (en) | Emergency processing method and system for flight fault | |
CN205353672U (en) | Flight monitoring device , unmanned aerial vehicle and ground control station | |
CN110379111A (en) | A kind of unmanned plane inspection system for forest fire protection | |
CA2927826C (en) | Industrial control system smart hardware monitoring | |
JPWO2020084979A1 (en) | AIS information processing device | |
CN204883287U (en) | Boats and ships cabin safety monitoring system based on data integration and processing | |
KR102659096B1 (en) | Integrated security network system having reinforced cyber security in smartship | |
EP2784676A1 (en) | DIMA extension health monitor supervisor | |
CN213937972U (en) | Cabin monitoring and alarming system with network defense function | |
CN107786253A (en) | A kind of method of controlling antenna and device | |
CN204143213U (en) | A kind of monitoring of watercraft engine room and warning system | |
CN106970597B (en) | Control device and control method | |
EP3923521A1 (en) | Packet communication system, and infrastructure system, building automation system, and factory automation system using packet communication system | |
CN107959586B (en) | Cloud platform-based ship-side integrated navigation system network architecture | |
CN204256473U (en) | Based on the marine air conditioning supervisory system of PLC | |
CN205336543U (en) | Unmanned aerial vehicle | |
CN106227273B (en) | A kind of remote monitoring system of building environment | |
CN108303991A (en) | Unmanned plane obstruction warning system | |
CN205844875U (en) | A kind of MOCVD device long distance control system | |
CN109062260A (en) | Unmanned plane safety control system and method for controlling security | |
CN209821633U (en) | CCR-FARs structure of oil field control system | |
CN105719420A (en) | Underground garage automatic fire alarm system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
GR01 | Patent grant | ||
GR01 | Patent grant |