KR102156246B1 - RTU access system and RTU access method using the simplified wireless access function of field control panel - Google Patents

Abstract

The present invention relates to a remote terminal unit (RTU) wireless access method to which a wireless access simplification function of a field control panel is applied. According to the present invention, the RTU wireless access method may comprise the steps of: inputting identifier information to an operator terminal; connecting an operator terminal to an access point (AP) corresponding to the identifier information; executing a web browser on the operator terminal connected to the AP and connecting to an RTU web; and inputting a web ID and a web password to the RTU web, and connecting the operator terminal to an RTU corresponding to the ID.

Description

RTU access system and RTU access method using the simplified wireless access function of field control panel}

The present invention relates to an RTU radio access system and an RTU radio access method, and more particularly, to an RTU radio access system and an RTU radio access method to which a wireless access simplification function of a field control panel is applied.

A number of RTUs (Remote Terminal Units) are installed at the site of the conventional water and sewage business, and the RTUs are connected to various sensors and actuators such as pressure gauges, flow meters, IP cameras, etc., respectively. The RTU installed in this way functions to collect various measuring instruments and sensor data, control the processor, and communicate with the upper server. In order for an operator to connect to the RTU in the field and transmit and receive data with sensors and actuators, a laptop or dedicated inspection equipment must be connected to the RTU by wire, which prevents the operator from having to always carry a laptop computer, dedicated inspection equipment, and cables. Caused.

1 is a diagram schematically showing a site to which the RTU wireless access method using a wireless LAN is applied, which is an improved conventional RTU wired access method. 2 is a diagram schematically illustrating an RTU wireless access method using a wireless LAN, which is an improved conventional wired RTU control method. 3 is a diagram schematically illustrating a system using the RTU control scheme of FIG. 2.

In the conventional wired RTU connection method, in order to change the wired switch to a web-based virtual system and to be able to access and control wirelessly, a method of accessing the RTU using the web and Wi-Fi is Was developed.

In the conventional wireless access system, there are panels 30 in which a plurality of RTUs 40 operating as Wi-Fi APs are installed in the field, and the operator has his or her own operator terminal 20 (eg, mobile phone, laptop, tablet, etc.) Using, selects an AP of the RTU to be connected from among wireless access APs (Access Points) listed in the wireless LAN list, and accesses the selected AP by entering the password of the AP.

Thereafter, the operator enters the RTU web address after launching a web browser with the operator terminal 20, and logs in to the RTU web by entering an ID and password on the RTU web screen. The web browser of the operator terminal 20 displays a dashboard web page corresponding to the ID, and after that, the operator monitors and controls the RTU status and the measured value of the field sensor 50. .

However, this system has a security problem and a problem that the login procedure is complicated. In other words, anyone can check the wireless AP list, and each time access, the user must find the AP and enter the password, and the RTU web address, web ID, and web password. In addition, there is an inconvenience that the administrator terminal 10 must notify all workers when setting/changing a password.

A technical problem to be achieved by the RTU radio access system and method according to the technical idea of the present invention is to provide an RTU radio access system and method with enhanced security while simplifying a radio access procedure for an RTU.

The technical problem to be achieved by the RTU wireless access system and method according to the technical idea of the present invention is not limited to the above-mentioned problem, and another problem not mentioned can be clearly understood by a person skilled in the art from the following description. will be.

According to an embodiment of the inventive concept, the RTU wireless access method includes the steps of inputting identifier information to a worker terminal; Connecting the worker terminal to an AP corresponding to the identifier information; Executing a web browser in an operator terminal connected to the AP and connecting to the RTU web; And inputting a web ID and a web password to the RTU web, and connecting the operator terminal to the RTU corresponding to the ID.

The identifier information is included in the identifier generated by the administrator terminal, and the identifier may be attached to the RTU installation panel.

The identifier is a QR-code, and the identifier information may be input to the operator terminal in a manner that is scanned by the camera of the operator terminal.

The identifier information is encrypted and decrypted by an RTU access program installed in the worker terminal, and the identifier information includes the SSID and SSID password of the AP, and the worker terminal uses the SSID and the SSID password. It can be automatically connected to the AP.

The SSID of the AP may be in a private state.

The decryption of the RTU access program can be performed only when a decryption password generated by an administrator terminal is input.

The web ID and the web password preset in the operator terminal may be automatically entered into the web browser for accessing the RTU.

According to an embodiment of the inventive concept, the RTU wireless access system includes: an administrator terminal for generating an identifier including an SSID and an SSID password of an AP; An RTU installation panel to which the identifier is attached; A worker terminal that scans the identifier and automatically connects to the AP using the SSID and the SSID password; And an RTU controlled by an operator terminal logged in to the web displayed by a web browser automatically executed on the operator terminal connected to the AP.

The identifier is encrypted, and when a decryption password generated by the administrator terminal and transmitted to the operator terminal is input, the identifier may be decrypted by an RTU access program that is driven.

The identifier is encrypted, the identifier is decrypted by the decryption password generated by the administrator terminal, and the operator terminal divides the identifier to generate a plurality of identifier pieces, assigns an address to each of the identifier pieces, and provides an address Chopping unit for generating a combination rule in consideration of; A first transfer for transmitting a plurality of identifier pieces to an administrator terminal in a random order; And a second transfer for transmitting the combination rule to the manager terminal, wherein the manager terminal receives the plurality of identifier fragments and the combination rule transmitted to the manager terminal, and combines the plurality of identifier pieces according to the combination rule to obtain an identifier. It may include a combining unit to generate.

The RTU radio access system and method according to embodiments according to the inventive concept can provide an RTU radio access system and method with enhanced security while simplifying a radio access procedure for an RTU.

However, the effects that can be achieved by the RTU radio access system and method according to an embodiment of the present invention are not limited to those mentioned above, and other effects not mentioned are clearly to those skilled in the art from the following description. It will be understandable.

In order to more fully understand the drawings cited in the present specification, a brief description of each drawing is provided.
1 is a diagram schematically showing a site to which the RTU wireless access method using a wireless LAN is applied, which is an improved conventional RTU wired access method.
2 is a diagram schematically illustrating an RTU wireless access method using a wireless LAN, which is an improved conventional wired RTU access method.
3 is a diagram schematically illustrating a system using the RTU radio access method of FIG. 2.
4 is a schematic diagram of an RTU radio access system according to an embodiment of the present invention.

In the present invention, various modifications may be made and various embodiments may be provided, and specific embodiments are illustrated in the drawings and will be described in detail through detailed description. However, this is not intended to limit the present invention to specific embodiments, and the present invention should be understood to include all changes, equivalents, and substitutes included in the spirit and scope of the present invention.

In describing the present invention, when it is determined that a detailed description of a related known technology may unnecessarily obscure the subject matter of the present invention, a detailed description thereof will be omitted. In addition, numbers (eg, first, second, etc.) used in the description of the present specification are merely identification symbols for distinguishing one component from another component.

In addition, in the present specification, when one component is referred to as "connected" or "connected" to another component, the one component may be directly connected or directly connected to the other component, but specially It should be understood that as long as there is no opposing substrate, it may be connected or may be connected via another component in the middle.

In addition, as for the constituent elements represented by'~ unit' in the present specification, two or more constituent elements may be combined into one constituent element, or one constituent element may be divided into two or more for each more subdivided function. In addition, each of the components to be described below may additionally perform some or all of the functions that other components are responsible for in addition to its own main function, and some of the main functions that each component is responsible for are different. It goes without saying that it may be performed exclusively by components.

Hereinafter, embodiments according to the technical idea of the present invention will be sequentially described in detail.

4 is a schematic diagram of an RTU radio access system according to an embodiment of the present invention.

The RTU wireless access system according to an embodiment of the present invention may include a manager terminal 110, an operator terminal 120, an RTU installation panel 130 in which the RTU 140 is installed, and a sensor/motor 150.

The manager and the worker can access the RTU wireless access system using the manager terminal 110 and the worker terminal 120, respectively, to exchange signals with the RTU wireless access system.

The manager terminal 110 and the operator terminal 120 may be implemented as computers that can access a remote server or terminal through a network. Here, the computer may include, for example, a notebook equipped with a web browser, a desktop, a laptop, and the like. In addition, the manager terminal 110 and the operator terminal 120 may be implemented as terminal devices capable of accessing a remote server or terminal through a network. The terminal device is, for example, a wireless communication device that guarantees portability and mobility, and may include all kinds of handheld-based wireless communication devices such as a smartphone and a tablet PC. .

The manager terminal 110 may generate an identifier 111 including the SSID and SSID password of the wireless AP. The identifier 111 may be applied to various types of information storage media. For example, a QR-code, a barcode, a number/character arrangement, an image arrangement, etc. may be used as the identifier 111.

The identifier 111 may be attached to the RTU installation panel 130 in the form of an output image, and the operator may run the RTU connection program and scan the identifier 111 with the camera of the operator terminal 120. For example, if the identifier 111 is a QR-code, identifier information included in the QR-code may be input to the operator terminal 120 by scanning the camera of the operator terminal 120.

The identifier 111 includes identifier information, and the identifier information may include the SSID and SSID password for the AP of the RTU 140 installed on the RTU installation panel 130 to which the identifier is attached. The identifier information may be encrypted, which is set by the administrator terminal 110, and the RTU access program of the operator terminal 120 may decrypt the encrypted identifier information using the decryption password provided to the operator terminal 120. . Various known methods may be applied to the encryption and decryption of the identifier information.

In this way, the operator terminal 120 scans the identifier 111 and decrypts the SSID and SSID password included in the identifier 111, and the RTU access program automatically detects the operator terminal 120 corresponding to the identifier 111. You can connect to the AP.

The RTU access program automatically launches a web browser on the operator terminal 120 connected to the AP, and connects the operator terminal 120 to the RTU web through the web browser. The RTU web can be displayed on a web browser only when connected through a preset AP. Since the SSID of the AP is kept in a private state, it is difficult for an unauthorized third party to access the AP, and only an authorized worker can access the AP by scanning the identifier 111.

The operator can log in to the RTU web by entering a web ID and web password on the RTU web through the operator terminal 120. The web ID and web password input can be stored in the RTU access program, and when the RTU web is accessed, it is also possible to automatically input the web ID and web password.

Through this process, the operator terminal 120 is connected to the RTU 140 corresponding to the logged-in ID, and the RTU 140 may be controlled by the operator terminal 120. The RTU 140 may be connected to a sensor/motor 150 in the field to receive a sensor value or drive a motor.

Meanwhile, in the above embodiment, it has been described that the RTU access program installed in the operator terminal 120 receives and decrypts the decryption password from the manager terminal 110, but the scanned identifier 111 is used in the manager terminal 110 or a separate It is also possible to decode by transmitting to the decoding unit.

For this configuration, the RTU radio access system may include a chopping unit, a first transfer and a second transfer, and a combining unit.

The chopping unit may be a module operating in the RTU connection program. The chopping unit may generate a plurality of identifier pieces by dividing the identifier image, and may assign an address to each of the identifier pieces. Here, the addresses of the identifier pieces may be made of a combination of a plurality of letters and numbers, and may be arbitrarily assigned in the form of AB00001, AQ00013, or the like.

In addition, the chopping unit may generate a combination rule in consideration of each address. Here, the combination rule refers to a rule that allows a plurality of identifier pieces to be combined into an identifier 111 before being divided based on each address.

The first transfer may be a module operating in the RTU access program, and may transmit a plurality of identifier pieces to the manager terminal 110 in an arbitrary order. Here, the plurality of identifier fragments may be transmitted to the manager terminal 110 together with each assigned address.

The second transfer may be a module operating in the RTU access program, and may transmit a combination rule corresponding to a plurality of identifier fragments transmitted by the first transfer to the manager terminal 110. Here, it may be desirable for the second transfer to transmit a combination rule with a time difference with respect to the transmission of the plurality of identifier pieces by the first transfer.

In addition, in another method, after the first transfer converts the identifier fragments to binary code and transmits it, the second transfer converts the combination rule and the identifier fragments to binary code, and alternately merges them by a predetermined length to one unit. After forming the binary code, it may be transmitted to the manager terminal 110. The manager terminal 110 may remove a portion that overlaps the information transmitted by the first transfer and check the combination rule.

The combining unit may be a module driven by the manager terminal 110 and may receive a plurality of identifier pieces and combination rules transmitted to the manager terminal 110. Here, the plurality of identifier pieces may be arranged in the order of transmission. The combining unit may reconstruct the identifier image by combining a plurality of identifier pieces according to the received combination rule. The restored identifier may be decrypted in the administrator terminal 110 using the decryption password.

In another method, the chopping unit arranges the information of the identifier image data transmission signal into a binary sequence, cuts an arbitrary position of the binary sequence to insert noise data, and the first transfer generates a binary sequence in which noise data is arbitrarily inserted. The data is transmitted to the manager terminal 110, and the second transfer may transmit information of the noise data and the insertion position of the noise data to the manager terminal 110. The combining unit may recover the binary sequence of the identifier image data transmission signal after filtering the noise data from the binary sequence into which the noise data is arbitrarily inserted based on the information of the noise data and the insertion position of the noise data.

The functional operations described in the present specification and embodiments related to the subject may be implemented in digital electronic circuits, computer software, firmware, or hardware, including structures disclosed in this specification and structural equivalents thereof, or in a combination of one or more of them. Do.

Embodiments of the subject matter described herein are one or more computer program products, i.e., one or more modules relating to computer program instructions encoded on a tangible program medium for execution by a data processing device or to control its operation. Can be implemented. The tangible program medium may be a radio wave signal or a computer-readable medium. A radio wave signal is an artificially generated signal, such as a machine-generated electrical, optical or electromagnetic signal, generated to encode information for transmission to an appropriate receiver device for execution by a computer. The computer-readable medium may be a machine-readable storage device, a machine-readable storage substrate, a memory device, a combination of materials that affect a machine-readable radio wave signal, or a combination of one or more of them.

Computer programs (also known as programs, software, software applications, scripts, or code) can be written in any form of a compiled or interpreted language or a programming language, including a priori or procedural language, and can be written as a standalone program or module, It can be deployed in any form, including components, subroutines, or other units suitable for use in a computer environment.

Computer programs do not necessarily correspond to files in the file system. A program may be in a single file provided to the requested program, or in multiple interactive files (e.g., files that store one or more modules, subprograms, or portions of code), or part of a file that holds other programs or data. (Eg, one or more scripts stored within a markup language document).

A computer program may be deployed to run on a single computer or multiple computers located at one site or distributed across a plurality of sites and interconnected by a communication network.

Additionally, the logical flows and structural block diagrams described herein describe the corresponding actions and/or specific methods supported by the corresponding functions and steps supported by the disclosed structural means. It can also be used to build structures and algorithms and their equivalents.

The processes and logic flows described herein can be performed by one or more programmable processors executing one or more computer programs to perform functions by operating on input data and generating output.

Processors suitable for execution of computer programs include, for example, both general and special purpose microprocessors and any one or more processors of any kind of digital computer. Typically, the processor will receive instructions and data from read-only memory, random access memory, or both.

The key elements of a computer are one or more memory devices for storing instructions and data, and a processor for performing the instructions. In addition, computers are typically operatively coupled to receive data from, transfer data to, or perform both of these operations, for example, from one or more mass storage devices for storing data, such as magnetic, magneto-optical disks or optical disks. Or will include it. However, the computer does not need to have such a device.

The present description presents the best mode of the invention, and provides examples to illustrate the invention and to enable those skilled in the art to make and use the invention. The thus written specification does not limit the present invention to the specific terms presented.

Accordingly, although the present invention has been described in detail with reference to the above-described examples, those skilled in the art can make modifications, changes, and modifications to these examples without departing from the scope of the present invention. In short, in order to achieve the intended effect of the present invention, it is not necessary to separately include all the functional blocks shown in the drawings or to follow all the sequences shown in the drawings as shown in the order shown. It reveals that it may fall within range.

10, 110: administrator terminal
111: identifier
20, 120: operator terminal
30, 130: RTU installation panel
40, 140: RTU
50, 150: sensor/motor

Claims (10)

Inputting identifier information to an operator terminal;
Connecting the worker terminal to an AP corresponding to the identifier information;
Executing a web browser in an operator terminal connected to the AP and connecting to the RTU web; And
Including the step of accessing the RTU corresponding to the ID by the operator terminal by entering a web ID and a web password on the RTU web,
The identifier information is encrypted and decrypted by the RTU access program installed in the operator terminal,
The identifier information includes the SSID and SSID password of the AP,
The worker terminal is automatically connected to the AP using the SSID and the SSID password,
RTU wireless access method, characterized in that the SSID of the AP is in a private state.
The method of claim 1,
The identifier information is included in an identifier generated by an administrator terminal, and the identifier is attached to an RTU installation panel.
The method of claim 2,
The identifier is a QR-code, wherein the identifier information is input to the operator terminal in a manner that is scanned by a camera of the operator terminal RTU wireless access method.
delete delete The method of claim 1,
RTU wireless access method, characterized in that the decryption of the RTU access program is performed only when a decryption password generated by an administrator terminal is input.
The method of claim 1,
The RTU wireless access method, characterized in that the web ID and the web password preset in the operator terminal are automatically input into a web browser for RTU access.
delete delete delete

Images