CN213937972U - Cabin monitoring and alarming system with network defense function - Google Patents

Cabin monitoring and alarming system with network defense function Download PDF

Info

Publication number
CN213937972U
CN213937972U CN202023338611.7U CN202023338611U CN213937972U CN 213937972 U CN213937972 U CN 213937972U CN 202023338611 U CN202023338611 U CN 202023338611U CN 213937972 U CN213937972 U CN 213937972U
Authority
CN
China
Prior art keywords
network
station
data acquisition
operation station
ros
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202023338611.7U
Other languages
Chinese (zh)
Inventor
陈元法
张晏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jiangsu Hailan Ship Electrical System Technology Co ltd
Original Assignee
Jiangsu Hailan Ship Electrical System Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jiangsu Hailan Ship Electrical System Technology Co ltd filed Critical Jiangsu Hailan Ship Electrical System Technology Co ltd
Priority to CN202023338611.7U priority Critical patent/CN213937972U/en
Application granted granted Critical
Publication of CN213937972U publication Critical patent/CN213937972U/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The utility model discloses a cabin monitoring alarm system with network defense function, include: the method comprises the following steps: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor which is used as an I/O interface of the sensors and the controllers, a data acquisition unit which is connected with the distributed processor through a serial communication interface, a remote operation station which is connected with the data acquisition unit through a system gateway, a first alarm device which is connected with the remote operation station, a field operation station, a second alarm device which is connected with the field operation station, a portable operation station, a third alarm device which is connected with the portable operation station, an extension alarm device, a route data acquisition instrument and a network defense auditing system; a safe and reliable cabin monitoring alarm system network is established, not only CAN the conventional network virus be defended, but also the virus input of external equipment to the CAN field bus CAN be avoided.

Description

Cabin monitoring and alarming system with network defense function
Technical Field
The invention relates to the field of automatic monitoring of ships, in particular to a cabin monitoring and alarming system with a network defense function.
Background
The cabin monitoring and alarming system is an important component of ship automation and is used for monitoring the operation conditions of a main engine, an auxiliary engine, a cargo hold and auxiliary equipment in a cabin. In a ship with an unmanned engine room with higher automation requirements, an alarm system has an audible and visual alarm in a cab, a centralized control room and the engine room, and the alarm needs to be extended to a restaurant, a crew rest room and the like. The advanced and reliable cabin monitoring and alarming system improves the safe reliability of the ship operation, reduces the labor intensity of personnel, and can also reduce the configuration quantity of shipmen, thereby improving the economy of the ship operation.
However, open information systems necessarily present numerous potential security risks, and the struggle of hackers and blackmen, vandalism, and vandalism will continue. In such a battle, security technology is increasingly receiving attention from global network builders as a unique field. In recent years, the ship automation system is covered by a large extension, which makes the information security important, and it is necessary to optimize the cabin monitoring alarm system and establish a reliable security protection system.
SUMMERY OF THE UTILITY MODEL
For overcoming the problem that exists among the prior art, the utility model provides a cabin monitoring alarm system with network defense function, include: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor which is used as an I/O interface of the sensors and the controllers, a data acquisition unit which is connected with the distributed processor through a serial communication interface, a remote operation station which is connected with the data acquisition unit through a system gateway, a first alarm device which is connected with the remote operation station, a field operation station, a second alarm device which is connected with the field operation station, a portable operation station, a third alarm device which is connected with the portable operation station, an extension alarm device, a route data acquisition instrument and a network defense auditing system; the sensor, the controller, the distributed processor and the data acquisition unit are positioned in a dual-redundancy CAN field bus; the field operation station, the portable operation station, the remote operation station, the extension alarm device and the air route data acquisition instrument are positioned in a first dual-redundancy local area network.
The system comprises a server and a ship-shore network communication system, wherein the server collects remote operation station data through a first dual-redundancy local area network and is in bidirectional communication with an external network through the ship-shore network communication system.
The sensors include temperature sensors, pressure sensors, liquid level sensors, flow sensors, gas detectors, etc. which are arranged in the devices and detect the positions, and the sensors can be arranged independently; when monitoring equipment with an execution action, the sensors are arranged in a manner of being matched with the controller, the sensors and the controller are both connected with the distributed processor, and the distributed processor is used for performing I/O signal conversion and bidirectional data transmission on each sensor, controller and data acquisition unit; the data acquisition unit transmits data to a remote operation station, a field operation station and a portable operation station in a first dual-redundancy local area network according to a set program; the method comprises the following steps that an on-duty worker obtains equipment data, fault data and alarm information through each operation station, processes the equipment data, the fault data and the alarm information in time, the processed information is recorded into each operation station, and each operation station collects the data to a server; the air route data acquisition instrument is directly connected with and acquires data of each remote operation station, field operation station and portable operation station.
The network defense auditing system comprises a security monitoring station, and an industrial firewall, a network auditing device and a longitudinal encryption device which are interconnected with the security monitoring station through a second dual-redundancy local area network; and the safety monitoring station is used for uniformly managing each industrial firewall, the network auditing device and the longitudinal encryption device.
As an improvement, the industrial firewall is deployed in series between the data acquisition unit and the remote operation station to achieve logical isolation between the dual-redundant CAN fieldbus and the first dual-redundant local area network.
As an improvement, the network auditing device is respectively arranged on the sides of a remote operation station, a field operation station and a portable operation station in a mirror image mode so as to verify the legality of input data.
The longitudinal encryption device is arranged between the first dual-redundancy local area network and the external network to realize bidirectional identity authentication, data encryption and access control.
Has the advantages that: the utility model discloses a safe and reliable's cabin monitoring alarm system network has been established to simple reasonable network defense equipment, not only CAN defend conventional network virus, CAN also avoid external equipment to CAN field bus input virus.
Drawings
FIG. 1 is a schematic diagram of the network connection of the present invention;
fig. 2 is a schematic diagram of network connection according to an embodiment of the present invention;
fig. 3 is a schematic diagram of the network defense network connection of the present invention.
Detailed Description
In order to make the above objects, features and advantages of the present invention more comprehensible, embodiments of the present invention are described in detail below with reference to the accompanying drawings. In the following description, numerous specific details are set forth in order to provide a thorough understanding of the present invention. The present invention can be embodied in many different forms other than those specifically described herein, and it will be apparent to those skilled in the art that similar modifications can be made without departing from the spirit and scope of the invention, and it is therefore not to be limited to the specific embodiments disclosed below.
As shown in fig. 1, the cabin monitoring alarm system with network defense function includes: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a distributed processor DPU which is used as an I/O interface of the sensors and the controllers, a data acquisition unit SAU which is connected with the distributed processor DPU through a serial communication interface SCU, a remote operation station ROS which is connected with the data acquisition unit SAU through a system gateway SGW, a first alarm device which is connected with the remote operation station ROS, a field operation station LOS, a second alarm device which is connected with the field operation station LOS, a portable operation station MOS, a third alarm device which is connected with the portable operation station MOS, an extension alarm device WBU, an airline data acquisition instrument VDR and a network defense auditing system; the sensor, the controller, the distributed processor DPU and the data acquisition unit SAU are positioned in a dual-redundancy CAN field bus; the field operating station LOS, the portable operating station MOS, the remote operating station ROS, the extension alarm device WBU and the air line data acquisition instrument VDR are positioned in the first dual-redundancy local area network Ethernet 1.
As shown in fig. 2, in some embodiments, a server, a ship-shore network communication system, is included, the server collecting remote station ROS data via a first dual redundant local area network Ethernet1 and in bidirectional communication with an extranet via the ship-shore network communication system.
The sensors include temperature sensors, pressure sensors, liquid level sensors, flow sensors, gas detectors, etc. which are arranged in the devices and detect the positions, and the sensors can be arranged independently; when monitoring equipment with executing action, the sensor is arranged in cooperation with the controller, the sensor and the controller are both connected with the distributed processor DPU, and the distributed processor DPU is used for performing I/O signal conversion and bidirectional data transmission on each sensor, controller and the data acquisition unit SAU; the data acquisition unit SAU transmits data to a remote operation station ROS, a field operation station LOS and a portable operation station MOS in the first dual-redundancy local area network Ethernet1 according to a set program; the method comprises the following steps that an on-duty worker obtains equipment data, fault data and alarm information through each operation station, processes the equipment data, the fault data and the alarm information in time, the processed information is recorded into each operation station, and each operation station collects the data to a server; the flight line data acquisition instrument VDR is directly connected with and acquires data of each remote operating station ROS, field operating station LOS and portable operating station MOS.
As shown in fig. 3, in some embodiments, the network defense auditing system includes a security monitoring station 05, and an industrial firewall 03, a network auditing apparatus 04, and a longitudinal encryption apparatus 02, which are interconnected with the security monitoring station 05 through a second dual redundant local area network Ethernet 2; and the security monitoring station 05 is used for uniformly managing each industrial firewall 03, each network auditing device 04 and each longitudinal encryption device 02.
In some embodiments, the industrial firewall 03 is disposed in series between the data acquisition unit SAU and the remote operating station ROS to achieve logical isolation between the dual-redundant CAN fieldbus and the first dual-redundant local area network Ethernet 1.
In some embodiments, the network auditing device 04 is respectively arranged on the remote operating station ROS, the field operating station LOS and the portable operating station MOS side in a mirror image mode to verify the validity of the input data.
In some embodiments, the vertical encryption device 02 is disposed between the first dual redundant local area network Ethernet1 and an external network to implement bidirectional authentication, data encryption and access control.
The above description is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, many variations and modifications can be made without departing from the inventive concept, and these should also be considered as within the scope of the present invention.
While the foregoing description shows and describes the preferred embodiments of the present invention, it is to be understood that the invention is not limited to the forms disclosed herein, but is not intended to be exhaustive or to exclude other embodiments and may be used in various other combinations, modifications, and environments and is capable of changes within the scope of the inventive concept as expressed herein, commensurate with the above teachings, or the skill or knowledge of the relevant art. But that modifications and variations may be effected by those skilled in the art without departing from the spirit and scope of the invention, which is to be limited only by the claims appended hereto.

Claims (6)

1. Cabin monitoring alarm system with network defense function, its characterized in that includes: the system comprises various sensors and controllers which are arranged on each device and used for monitoring and controlling the device, a Distributed Processor (DPU) which is used as an I/O interface of the sensors and the controllers, a data acquisition unit (SAU) which is connected with the DPU through a serial communication interface (SCU), a Remote Operation Station (ROS) which is connected with the data acquisition unit (SAU) through a System Gateway (SGW), a first alarm device which is connected with the ROS, a field operation station (LOS), a second alarm device which is connected with the LOS, a portable operation station (MOS), a third WBalarm device which is connected with the portable operation station (MOS), an extension alarm device (WBU), a course data acquisition instrument (VDR) and a network defense audit system; the sensor, the controller, the Distributed Processor (DPU) and the data acquisition unit (SAU) are located in a dual-redundancy CAN field bus; the field operating station (LOS), the portable operating station (MOS), the Remote Operating Station (ROS), the extension alarm device (WBU) and the air line data acquisition instrument (VDR) are arranged in a first dual-redundancy local area network (Ethernet 1).
2. The network defense enabled cabin monitoring alarm system of claim 1, further comprising a server, a shore network communication system, the server collecting Remote Operating Station (ROS) data via a first dual redundant local area network (Ethernet 1) and bi-directionally communicating with an extranet via the shore network communication system.
3. The system of claim 1, wherein the system comprises a security monitoring station, and an industrial firewall, a network auditing device, and a longitudinal encryption device which are interconnected with the security monitoring station through a second dual redundant local area network (Ethernet 2); and the safety monitoring station is used for uniformly managing each industrial firewall, the network auditing device and the longitudinal encryption device.
4. The network defense enabled cabin monitoring alarm system of claim 3, wherein the industrial firewall is deployed in series between the data acquisition unit (SAU) and the Remote Operating Station (ROS) to achieve logical isolation between the dual redundant CAN Fieldbus and the first dual redundant local area network (Ethernet 1).
5. The system of claim 3, wherein the network auditing means are respectively arranged on the Remote Operating Station (ROS), field operating station (LOS) and portable operating station (MOS) side in a mirror image manner.
6. The ship cabin monitoring alarm system with network defense function according to claim 3, characterized in that the longitudinal encryption device is deployed between the first dual redundant local area network (Ethernet 1) and the external network to realize bidirectional identity authentication, data encryption and access control.
CN202023338611.7U 2020-12-31 2020-12-31 Cabin monitoring and alarming system with network defense function Active CN213937972U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202023338611.7U CN213937972U (en) 2020-12-31 2020-12-31 Cabin monitoring and alarming system with network defense function

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202023338611.7U CN213937972U (en) 2020-12-31 2020-12-31 Cabin monitoring and alarming system with network defense function

Publications (1)

Publication Number Publication Date
CN213937972U true CN213937972U (en) 2021-08-10

Family

ID=77157058

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202023338611.7U Active CN213937972U (en) 2020-12-31 2020-12-31 Cabin monitoring and alarming system with network defense function

Country Status (1)

Country Link
CN (1) CN213937972U (en)

Similar Documents

Publication Publication Date Title
US10698378B2 (en) Industrial control system smart hardware monitoring
CN111614502B (en) Intelligent ship comprehensive information redundancy monitoring system
CN106125766A (en) A kind of railway line based on unmanned plane patrols and examines monitoring system and method for inspecting
CN112379694A (en) Emergency processing method and system for flight fault
CN205353672U (en) Flight monitoring device , unmanned aerial vehicle and ground control station
CN110379111A (en) A kind of unmanned plane inspection system for forest fire protection
CA2927826C (en) Industrial control system smart hardware monitoring
JPWO2020084979A1 (en) AIS information processing device
CN204883287U (en) Boats and ships cabin safety monitoring system based on data integration and processing
KR102659096B1 (en) Integrated security network system having reinforced cyber security in smartship
EP2784676A1 (en) DIMA extension health monitor supervisor
CN213937972U (en) Cabin monitoring and alarming system with network defense function
CN107786253A (en) A kind of method of controlling antenna and device
CN204143213U (en) A kind of monitoring of watercraft engine room and warning system
CN106970597B (en) Control device and control method
EP3923521A1 (en) Packet communication system, and infrastructure system, building automation system, and factory automation system using packet communication system
CN107959586B (en) Cloud platform-based ship-side integrated navigation system network architecture
CN204256473U (en) Based on the marine air conditioning supervisory system of PLC
CN205336543U (en) Unmanned aerial vehicle
CN106227273B (en) A kind of remote monitoring system of building environment
CN108303991A (en) Unmanned plane obstruction warning system
CN205844875U (en) A kind of MOCVD device long distance control system
CN109062260A (en) Unmanned plane safety control system and method for controlling security
CN209821633U (en) CCR-FARs structure of oil field control system
CN105719420A (en) Underground garage automatic fire alarm system

Legal Events

Date Code Title Description
GR01 Patent grant
GR01 Patent grant