CN113741249B - Industrial control system network security analysis monitoring system - Google Patents
Industrial control system network security analysis monitoring system Download PDFInfo
- Publication number
- CN113741249B CN113741249B CN202110934924.9A CN202110934924A CN113741249B CN 113741249 B CN113741249 B CN 113741249B CN 202110934924 A CN202110934924 A CN 202110934924A CN 113741249 B CN113741249 B CN 113741249B
- Authority
- CN
- China
- Prior art keywords
- emergency
- workshop
- equipment
- control system
- industrial control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B19/00—Programme-control systems
- G05B19/02—Programme-control systems electric
- G05B19/04—Programme control other than numerical control, i.e. in sequence controllers or logic controllers
- G05B19/042—Programme control other than numerical control, i.e. in sequence controllers or logic controllers using digital processors
- G05B19/0428—Safety, monitoring
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B2219/00—Program-control systems
- G05B2219/20—Pc systems
- G05B2219/24—Pc safety
- G05B2219/24024—Safety, surveillance
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Testing And Monitoring For Control Systems (AREA)
- Testing Or Calibration Of Command Recording Devices (AREA)
Abstract
The invention belongs to the technical field of safety analysis of industrial control systems, and aims to solve the problem that the existing network safety analysis and detection system of the industrial control system cannot analyze the overall safety performance of the industrial control system according to specific environments, equipment and emergency situations of a workshop; according to the invention, the safety grade of the industrial control system is graded through the safety rating module, the safety coefficient is obtained through analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, and the safety grade of the industrial control system is graded through the result of comparing the safety coefficient with the safety coefficient threshold value.
Description
Technical Field
The invention belongs to the technical field of safety analysis of an industrial control system, and particularly relates to a network safety analysis monitoring system of the industrial control system.
Background
Industrial control systems are demanding for high data volume, high rate transmission of data such as images, voice signals, etc., and are forcing the integration of ethernet and control networks, which are currently popular in the commercial field. The networking wave of the industrial control system integrates various current popular technologies such as an embedded technology, multi-standard industrial control network interconnection, a wireless technology and the like, thereby expanding the development space of the industrial control field and bringing new development opportunities.
The existing network security analysis and detection system of the industrial control system cannot analyze the overall security performance of the industrial control system according to the specific environment, equipment and emergency conditions of a workshop, so that the security performance of the industrial control system cannot be graded.
Disclosure of Invention
The invention aims to provide a network security analysis and monitoring system of an industrial control system, which is used for solving the problem that the existing network security analysis and detection system of the industrial control system cannot analyze the overall security performance of the industrial control system according to the specific environment, equipment and emergency conditions of a workshop;
the technical problems to be solved by the invention are as follows: how to provide a safety analysis and detection system which can analyze the overall safety performance of an industrial control system through specific environment, equipment and emergency situations of a workshop.
The purpose of the invention can be realized by the following technical scheme:
the network security analysis and monitoring system of the industrial control system comprises a security monitoring platform, wherein the security monitoring platform is in communication connection with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module and a storage module;
marking a workshop of the industrial control system as i, i =1,2, …, n, n is a positive integer;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system to obtain an environment qualification rate and sending the environment qualification rate to the safety rating module;
the equipment management module is used for analyzing the equipment running state of the industrial control system, obtaining the equipment qualification rate of the industrial control system and sending the equipment qualification rate to the safety rating module;
the emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, obtaining the emergency qualified rate of the industrial control system and sending the emergency qualified rate to the safety rating module;
the safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, the safety level of the industrial control system is judged by comparing the safety factor with a safety factor threshold value, and the specific process of analyzing the safety condition of the industrial control system by the safety rating module comprises the following steps: the safety coefficient AQ of the industrial control system is obtained by analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, the safety coefficient threshold values AQmin and AQmax are obtained through the storage module, and the safety coefficient AQ is compared with the safety coefficient threshold values AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, the safety level of the industrial control system is judged to be a second level;
and if the AQ is larger than or equal to the AQmax, judging the safety level of the industrial control system to be a first level.
Further, the specific process of the environment analysis module for detecting and analyzing the working environment of the industrial control system includes:
the method comprises the steps of obtaining temperature data of a workshop, wherein the temperature data is a workshop temperature value detected by a temperature sensor, marking the workshop temperature value as a vehicle temperature, obtaining a vehicle temperature threshold value through a storage module, comparing the vehicle temperature with a Che Wen threshold value, judging that the workshop temperature is abnormal if the vehicle temperature is Che Wen Che Wen threshold value, and sending a temperature abnormal signal to a safety monitoring platform by an environment analysis module; if the vehicle temperature is less than Che Wen threshold value, judging that the temperature of the workshop is normal, and sending a normal temperature signal to the safety monitoring platform by the environment analysis module;
acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the dust data of the workshop is a workshop dust concentration value detected by a dust concentration sensor;
and analyzing the temperature data, the humidity data and the dust data to obtain an environmental coefficient of the workshop.
Further, the method for acquiring the environmental qualification rate comprises the following steps:
acquiring an environment coefficient threshold HJmax of a workshop through a storage module, comparing the environment coefficient HJi of the workshop i with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, judging that the corresponding workshop environment meets the processing requirement, and marking the corresponding workshop as an annular workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
and acquiring the quantity value of the ring-closing workshop, marking the quantity value as m, and marking the ratio of m to n as the environmental qualification rate of the industrial control system.
Further, the specific process of analyzing the device operation state of the industrial control system by the device management module includes:
acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
the WCi, the WSi and the PNi are analyzed to obtain an equipment coefficient SXi of the workshop i, an equipment coefficient threshold value SXmax of the industrial control system is obtained through the storage module, the equipment coefficient SXi of the workshop i is compared with the equipment coefficient threshold value SXmax one by one, and the equipment qualification condition of the industrial control system is judged according to the comparison result.
Further, the process of comparing the plant coefficient SXi with the plant coefficient threshold SXmax is as follows:
and if the equipment coefficient SXi is not more than the equipment coefficient threshold SXMax, judging that the equipment of the industrial control system meets the requirement, marking the corresponding workshop as an equipment qualified workshop, and if the equipment coefficient SXi is more than the equipment coefficient threshold SXMax, judging that the equipment of the industrial control system does not meet the requirement, and marking the corresponding workshop as an equipment unqualified workshop.
Further, the process of acquiring the device yield includes: acquiring the number of qualified plants of the equipment, marking the number as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and judging that the equipment of the industrial control system is qualified if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin; and if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified.
Further, the specific process of analyzing and monitoring the workshop emergency condition of the industrial control system by the emergency monitoring module comprises the following steps:
when an emergency situation occurs in the workshop i, the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi;
the emergency coefficient of the workshop i is obtained by analyzing YSi, DSi and WSi, the emergency efficiency coefficient threshold value is obtained through the storage module, the emergency efficiency coefficient is compared with the emergency efficiency coefficient threshold value, and whether the emergency treatment of the workshop is qualified or not is judged according to the comparison result.
Further, the comparing of the emergency efficiency coefficient to the emergency efficiency coefficient threshold value includes: if the emergency efficiency coefficient is smaller than the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is qualified, and marking the corresponding workshop as an emergency qualified workshop; and if the emergency efficiency is larger than or equal to the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop.
Further, the process of acquiring the emergency qualification coefficient comprises the following steps: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as emergency qualification rate, acquiring an emergency qualification rate threshold value through a storage module, comparing the emergency qualification rate with the emergency qualification rate threshold value, and judging that the emergency treatment of the industrial control system is unqualified if the emergency qualification rate is less than or equal to the emergency qualification rate threshold value; if the emergency qualified rate YH is larger than the emergency qualified rate threshold, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
The invention has the following beneficial effects:
1. the safety rating module is arranged to grade the safety level of the industrial control system, the safety coefficient is obtained by analyzing the environment qualification rate, the equipment qualification rate and the emergency qualification rate, the safety level of the industrial control system is divided into a first grade, a second grade and a third grade according to the result of comparing the safety coefficient with the safety coefficient threshold value, meanwhile, the qualification rate is calculated and analyzed by taking a workshop as a unit, and the environment qualification rate, the equipment qualification rate and the emergency qualification rate are all comprehensive responses to the environment, equipment and stress state of the whole workshop of the industrial control system;
2. the environmental coefficient is a numerical value reflecting the quality of the whole workshop environment, whether the workshop environment meets the standard or not can be monitored through the environmental coefficient, and meanwhile, the obtained temperature data can also monitor the high temperature in the workshop to prevent safety accidents caused by the high temperature;
3. the equipment management module can analyze and monitor the running state and the maintenance efficiency of equipment in a workshop, and comprehensively analyze the damage times, the maintenance time and the service life of the equipment to obtain an equipment coefficient of the workshop, wherein the equipment coefficient is a capacity value for expressing that the equipment can cope with the processing pressure of an industrial control system, and the workshop equipment which does not meet the requirement can be replaced in time by monitoring the equipment coefficient;
4. the emergency monitoring module can detect the efficiency of emergency treatment on emergency by workers when the emergency occurs in a workshop, the emergency treatment efficiency is obtained by analyzing the time of the emergency treatment personnel arriving at the workshop and the time consumed by the emergency treatment, and the emergency treatment capacity of the workshop is reflected by the emergency treatment efficiency.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts.
Fig. 1 is a schematic block diagram of the present invention.
Detailed Description
The technical solutions of the present invention will be described clearly and completely with reference to the following embodiments, and it should be understood that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
As shown in fig. 1, an industrial control system network security analysis monitoring system includes a security monitoring platform, which is communicatively connected with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module, and a storage module;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system through temperature data, humidity data and dust data, and the specific detection and analysis process comprises the following steps:
step S1: the method comprises the steps of obtaining temperature data of a workshop, wherein the temperature data are workshop temperature values detected by a temperature sensor, the temperature sensor is a sensor capable of sensing temperature and converting the temperature into usable output signals, the sensor is divided into a thermal resistor and a thermocouple according to characteristics of sensor materials and electronic elements, the temperature sensor adopted by the method is a thermal resistor sensor, the workshop temperature value is marked as a vehicle temperature CW, a vehicle temperature threshold CWmax is obtained through a storage module, the vehicle temperature is compared with a Che Wen threshold, if the Che Wen Che Wen threshold is judged to be abnormal, the environment analysis module sends a temperature abnormal signal to a safety monitoring platform; if the vehicle temperature is less than Che Wen threshold value, the workshop temperature is judged to be normal, the environment analysis module sends a temperature normal signal to the safety monitoring platform, and the workshop temperature is monitored by comparing the vehicle temperature with Che Wen threshold value, so that the workshop temperature is fed back in time when a high-temperature condition occurs;
step S2: acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the humidity sensor is characterized in that a substrate is covered with a film made of a humidity sensing material, when water vapor in air is adsorbed on the humidity sensing film, the resistivity and the resistance of an element are changed, the humidity can be measured by utilizing the characteristic, the workshop humidity value is marked as CS, the workshop dust data is a workshop dust concentration value detected by a dust concentration sensor, and the workshop dust concentration value is marked as CH;
and step S3: by the formulaTo obtainThe method comprises the following steps of (1) marking a workshop of an industrial control system as i, i =1,2, …, n and n are positive integers, marking the environment coefficient of the workshop i as HJi, wherein the environment coefficient HJ of the workshop is a numerical value representing the suitability degree of the workshop processing environment, and the higher the numerical value of the environment coefficient is, the worse the whole environment of the workshop is;
and step S4: acquiring an environment coefficient threshold HJmax of a workshop through a storage module, comparing the environment coefficient HJi of the workshop i with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, judging that the corresponding workshop environment meets the processing requirement, and marking the corresponding workshop as an annular workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
step S5: the method comprises the steps of obtaining a quantity value of a loop workshop and marking the quantity value as m, marking the ratio of m to n as an environmental qualification rate HH of an industrial control system, wherein the environmental qualification rate is a numerical value representing the quality of the whole environment of the industrial control system, the higher the numerical value of the environmental qualification rate is, the better the whole environment of the industrial control system is, obtaining a qualification rate threshold value HHmin through a storage module, comparing the environmental qualification rate HH of the industrial control system with the qualification rate threshold value HHmin, and judging that the environmental analysis result of the industrial control system is unqualified if the qualification rate of the industrial control system is less than or equal to the qualification rate threshold value; if the qualification rate of the industrial control system is greater than or equal to the qualification rate threshold value, judging that the environmental analysis result of the industrial control system is qualified; and sending the environmental qualification rate of the industrial control system to a safety rating module.
The equipment management module is used for analyzing the equipment running state of the industrial control system, and the specific analysis process comprises the following steps:
step W1: acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
step W2: by the formulaObtaining an equipment coefficient SXi of the workshop i, wherein beta 1, beta 2 and beta 3 are proportionality coefficients, and beta 1 is more than beta 2 and more than beta 3 is more than 0, wherein the equipment coefficient is a numerical value of the applicable capability of the reaction workshop equipment to the processing pressure, and the smaller the numerical value of the equipment coefficient is, the stronger the applicable capability of the equipment to the processing pressure is;
step W3: acquiring an equipment coefficient threshold value SXmax of the industrial control system through a storage module, comparing the equipment coefficient SXi of the workshop i with the equipment coefficient threshold value SXmax one by one, if the equipment coefficient SXi is not more than the equipment coefficient threshold value SXmax, judging that equipment of the industrial control system meets requirements, marking the corresponding workshop as an equipment-qualified workshop, if the equipment coefficient SXi is more than the equipment coefficient threshold value SXmax, judging that the equipment of the industrial control system does not meet the requirements, and marking the corresponding workshop as an equipment-unqualified workshop;
step W4: acquiring the quantity of qualified workshops of equipment, marking the quantity as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, wherein the equipment qualification rate is a numerical value representing the integral state of production equipment of the industrial control system, the higher the equipment qualification rate is, the better the integral operation state of processing equipment of the industrial control system is, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin, judging the equipment qualification rate of the industrial control system; if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified; and sending the equipment qualification rate SH of the industrial control system to a safety rating module.
The emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, and the specific analysis and monitoring process comprises the following steps:
step Q1: when an emergency situation occurs in the workshop i (the emergency situation comprises high-temperature early warning, fire early warning and the like), the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
step Q2: the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
and step Q3: after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi, and processing the emergency situation through a formulaObtaining an emergency efficiency coefficient YXi of the workshop i, wherein gamma 1 and gamma 2 are proportional coefficients, and gamma 1 is more than gamma 2 and more than 0;
step Q4: acquiring an emergency efficiency coefficient threshold YXmax through a storage module, comparing an emergency efficiency coefficient YXi with the emergency efficiency coefficient threshold YXmax, if the emergency efficiency coefficient YXi is smaller than the emergency efficiency coefficient threshold YXmax, judging that emergency treatment of the workshop i is qualified, and marking a corresponding workshop as an emergency qualified workshop; if the emergency efficiency YXi is not less than the emergency efficiency coefficient threshold YXmax, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop;
step Q5: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as an emergency qualification rate YH, acquiring an emergency qualification rate threshold YHmin through a storage module, comparing the emergency qualification rate YH with the emergency qualification rate threshold YHmin, and if the emergency qualification rate YH is less than or equal to the emergency qualification rate threshold YHmin, judging that the emergency treatment of the industrial control system is unqualified; if the emergency qualified rate YH is larger than the emergency qualified rate threshold YHmax, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
The safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, wherein the safety factor AQ represents the industrial control systemThe numerical value of whole security performance, the higher the numerical value of factor of safety is better to represent industrial control system's whole security performance, judges industrial control system's security level through the comparison of factor of safety and factor of safety threshold value, and the specific process that the security rating module carries out the analysis to industrial control system's security situation includes: by the formulaObtaining a safety coefficient AQ of the industrial control system, wherein theta 1, theta 2 and theta 3 are all proportionality coefficients, and theta 3 is more than theta 2 and more than theta 1; acquiring safety factor thresholds AQmin and AQmax through a storage module, and comparing the safety factors AQ with the safety factor thresholds AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, the safety level of the industrial control system is judged to be a second level;
and if the AQ is larger than or equal to the AQmax, judging the safety level of the industrial control system to be a first level.
When the system is used, an environment analysis module analyzes and calculates the overall environment condition of a workshop through temperature data, humidity data and dust data to obtain an environment coefficient, whether the environment in the workshop meets the standard or not can be monitored through the environment coefficient, high temperature in the workshop can be monitored through the acquired temperature data, safety accidents caused by high temperature are prevented, an equipment management module analyzes and monitors the running state and the maintenance efficiency of equipment in the workshop, the equipment coefficient of the workshop is obtained through comprehensive analysis of the damage times, the maintenance time and the service life of the equipment, the equipment of the workshop which does not meet the requirements can be replaced in time through monitoring of the equipment coefficient, an emergency monitoring module detects the emergency processing efficiency of workers when the emergency condition occurs in the workshop, the emergency processing efficiency is obtained through analysis of the time when the emergency processing personnel reach the workshop and the time consumed by the emergency processing, a safety rating module carries out safety grading on the industrial control system, the safety rating of the environment qualification rate, the equipment qualification rate and the emergency processing qualification rate are analyzed, and the safety factor of the industrial control system is divided into a safety grade two and a safety grade.
The foregoing is merely illustrative and explanatory of the present invention and various modifications, additions or substitutions may be made to the specific embodiments described by those skilled in the art without departing from the scope of the invention as defined in the accompanying claims.
The above formulas are all numerical values obtained by normalization processing, the formula is a formula obtained by acquiring a large amount of data and performing software simulation to obtain the latest real situation, and the preset parameters in the formula are set by the technical personnel in the field according to the actual situation.
In the description herein, references to the description of "one embodiment," "an example," "a specific example" or the like are intended to mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
The preferred embodiments of the invention disclosed above are intended to be illustrative only. The preferred embodiments are not intended to be exhaustive or to limit the invention to the precise forms disclosed. Obviously, many modifications and variations are possible in light of the above teaching. The embodiments were chosen and described in order to best explain the principles of the invention and the practical application, to thereby enable others skilled in the art to best utilize the invention. The invention is limited only by the claims and their full scope and equivalents.
Claims (6)
1. The network security analysis and monitoring system of the industrial control system comprises a security monitoring platform, and is characterized in that the security monitoring platform is in communication connection with an environment analysis module, an equipment management module, an emergency monitoring module, a security rating module and a storage module;
marking a workshop of the industrial control system as i, i =1,2, …, n, n is a positive integer;
the environment analysis module is used for detecting and analyzing the working environment of the industrial control system to obtain an environment qualification rate and sending the environment qualification rate to the safety rating module;
the equipment management module is used for analyzing the equipment running state of the industrial control system, obtaining the equipment qualification rate of the industrial control system and sending the equipment qualification rate to the safety rating module;
the emergency monitoring module is used for analyzing and monitoring the workshop emergency condition of the industrial control system, obtaining the emergency qualified rate of the industrial control system and sending the emergency qualified rate to the safety rating module;
the safety rating module is used for analyzing the safety condition of the industrial control system and obtaining a safety factor AQ, the safety level of the industrial control system is judged by comparing the safety factor with a safety factor threshold value, and the specific process of analyzing the safety condition of the industrial control system by the safety rating module comprises the following steps: the safety coefficient AQ of the industrial control system is obtained by analyzing the environmental qualification rate, the equipment qualification rate and the emergency qualification rate, the safety coefficient threshold values AQmin and AQmax are obtained through the storage module, and the safety coefficient AQ is compared with the safety coefficient threshold values AQmin and AQmax:
if AQ is less than or equal to AQmin, judging the safety level of the industrial control system to be three levels;
if AQmin is less than AQ and less than AQmax, judging the safety level of the industrial control system to be a second level;
if AQ is more than or equal to AQmax, judging the safety level of the industrial control system to be a first level;
the specific process of analyzing the equipment running state of the industrial control system by the equipment management module comprises the following steps:
acquiring the maintenance times of equipment of a workshop i in a half year and marking the maintenance times as WCi, acquiring the sum of the maintenance time consumed when the equipment of the workshop i breaks down in the half year and marking the sum as WSi, wherein the unit is hour, and acquiring the average service life of the equipment of the workshop i and marking the average service life as PNi;
WCi, WSi and PNi are analyzed to obtain an equipment coefficient SXi of a workshop i, an equipment coefficient threshold value SXmax of the industrial control system is obtained through a storage module, the equipment coefficient SXi of the workshop i is compared with the equipment coefficient threshold value SXmax one by one, and the equipment qualification condition of the industrial control system is judged according to the comparison result;
the process of comparing the plant coefficient SXi with the plant coefficient threshold SXmax is:
if the equipment coefficient SXi is not more than the equipment coefficient threshold value SXMax, judging that the equipment of the industrial control system meets the requirement, marking the corresponding workshop as an equipment-qualified workshop, and if the equipment coefficient SXi is more than the equipment coefficient threshold value SXMax, judging that the equipment of the industrial control system does not meet the requirement, and marking the corresponding workshop as an equipment-unqualified workshop;
the acquisition process of the equipment yield comprises the following steps: acquiring the number of qualified plants of the equipment, marking the number as u, marking the ratio of u to n as the equipment qualification rate SH of the industrial control system, acquiring an equipment qualification rate threshold value SHmin through a storage module, comparing the equipment qualification rate with the equipment qualification rate threshold value SHmin, and judging that the equipment of the industrial control system is qualified if the equipment qualification rate SH is greater than or equal to the equipment qualification rate threshold value SHmin; and if the equipment qualification rate SH is smaller than the equipment qualification rate threshold SHmin, judging that the equipment of the industrial control system is unqualified.
2. The network security analysis and monitoring system of industrial control system according to claim 1, wherein the specific process of the environment analysis module performing detection and analysis on the working environment of the industrial control system includes:
acquiring temperature data of a workshop, wherein the temperature data is a workshop temperature value detected by a temperature sensor, marking the workshop temperature value as a vehicle temperature, acquiring a vehicle temperature threshold value through a storage module, comparing the vehicle temperature with the Che Wen threshold value, if the Che Wen Che Wen threshold value is reached, judging that the workshop temperature is abnormal, and sending a temperature abnormal signal to a safety monitoring platform by an environment analysis module; if the vehicle temperature is less than Che Wen threshold value, judging that the temperature of the workshop is normal, and sending a normal temperature signal to the safety monitoring platform by the environment analysis module;
acquiring humidity data and dust data of a workshop, wherein the humidity data of the workshop is a workshop humidity value detected by a humidity sensor, and the dust data of the workshop is a workshop dust concentration value detected by a dust concentration sensor;
and analyzing the temperature data, the humidity data and the dust data to obtain an environmental coefficient of the workshop.
3. The system of claim 2, wherein the environmental qualification rate is obtained by:
the method comprises the steps that an environment coefficient threshold HJmax of a workshop is obtained through a storage module, the environment coefficients HJi of the workshop i are compared with the environment coefficient threshold HJmax one by one, if the environment coefficient HJi is smaller than the environment coefficient threshold HJmax, it is judged that the corresponding workshop environment meets processing requirements, and the corresponding workshop is marked as a ring-closed workshop; if the environment coefficient HJi is greater than or equal to the environment coefficient threshold HJmax, judging that the corresponding workshop environment does not meet the processing requirement, and marking the corresponding workshop as a non-workshop;
and acquiring the number value of the ring-closing workshops, marking the number value as m, and marking the ratio of m to n as the environmental qualification rate HH of the industrial control system.
4. The system for analyzing and monitoring the network safety of the industrial control system according to claim 1, wherein the specific process of analyzing and monitoring the workshop emergency condition of the industrial control system by the emergency monitoring module comprises:
when an emergency situation occurs in the workshop i, the emergency monitoring module receives an emergency signal, the time when the emergency monitoring module receives the emergency signal is marked as YSi, and the emergency monitoring module receives the emergency signal and then sends the emergency signal to the safety detection platform;
the safety detection platform sends the emergency signal to a mobile phone terminal of a manager after receiving the emergency signal, the manager arranges the emergency personnel to go to a workshop for emergency treatment, and marks the time when the emergency personnel arrive at the workshop as DSi;
after the emergency personnel finish the processing of the emergency situation, marking the time for finishing the processing of the emergency situation as WSi;
the emergency coefficient of the workshop i is obtained by analyzing YSi, DSi and WSi, the emergency efficiency coefficient threshold value is obtained through the storage module, the emergency efficiency coefficient is compared with the emergency efficiency coefficient threshold value, and whether the emergency treatment of the workshop is qualified or not is judged according to the comparison result.
5. The system of claim 4, wherein the comparison of the emergency efficiency coefficient to the emergency efficiency coefficient threshold comprises: if the emergency efficiency coefficient is smaller than the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is qualified, and marking the corresponding workshop as an emergency qualified workshop; and if the emergency efficiency is larger than or equal to the emergency efficiency coefficient threshold value, judging that the emergency treatment of the workshop i is unqualified, and marking the corresponding workshop as an unqualified emergency workshop.
6. The system of claim 5, wherein the process of obtaining the emergency qualification coefficient comprises: acquiring the number of emergency unqualified workshops and marking the number as o, marking the ratio of o to n as emergency qualification rate, acquiring an emergency qualification rate threshold value through a storage module, comparing the emergency qualification rate with the emergency qualification rate threshold value, and judging that the emergency treatment of the industrial control system is unqualified if the emergency qualification rate is less than or equal to the emergency qualification rate threshold value; if the emergency qualified rate YH is larger than the emergency qualified rate threshold, judging that the emergency treatment of the industrial control system is qualified; and sending the emergency qualified rate YH of the industrial control system to a safety rating module.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110934924.9A CN113741249B (en) | 2021-08-16 | 2021-08-16 | Industrial control system network security analysis monitoring system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110934924.9A CN113741249B (en) | 2021-08-16 | 2021-08-16 | Industrial control system network security analysis monitoring system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN113741249A CN113741249A (en) | 2021-12-03 |
CN113741249B true CN113741249B (en) | 2023-04-07 |
Family
ID=78731174
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110934924.9A Active CN113741249B (en) | 2021-08-16 | 2021-08-16 | Industrial control system network security analysis monitoring system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN113741249B (en) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN114612267A (en) * | 2022-02-25 | 2022-06-10 | 上海隽鑫安全技术管理服务有限公司 | On-site safety supervision and control system based on data analysis |
CN114900369B (en) * | 2022-06-02 | 2024-04-05 | 京闽数科(北京)有限公司 | Chip access safety supervision system based on Internet of things |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2016192157A1 (en) * | 2015-05-29 | 2016-12-08 | 广州特种承压设备检测研究院 | Bi-directional communicative remote intelligent method of monitoring coal-fired boiler |
WO2018076368A1 (en) * | 2016-10-31 | 2018-05-03 | 美的智慧家居科技有限公司 | Method and system for safely operating device in local area network, and device therefor |
CN111932112A (en) * | 2020-08-07 | 2020-11-13 | 孟轲 | Industrial equipment operation data analysis system based on cloud computing |
Family Cites Families (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111474299B (en) * | 2020-04-13 | 2021-07-13 | 深圳普泰电气有限公司 | Industrial environment real-time monitoring system based on big data |
CN112162537A (en) * | 2020-10-09 | 2021-01-01 | 苏宇航 | Chemical production safety online monitoring and early warning management system based on big data |
CN112947327B (en) * | 2021-01-28 | 2022-12-13 | 卓然(靖江)设备制造有限公司 | WINCC-based industrial furnace group intelligent monitoring and management system |
-
2021
- 2021-08-16 CN CN202110934924.9A patent/CN113741249B/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2016192157A1 (en) * | 2015-05-29 | 2016-12-08 | 广州特种承压设备检测研究院 | Bi-directional communicative remote intelligent method of monitoring coal-fired boiler |
WO2018076368A1 (en) * | 2016-10-31 | 2018-05-03 | 美的智慧家居科技有限公司 | Method and system for safely operating device in local area network, and device therefor |
CN111932112A (en) * | 2020-08-07 | 2020-11-13 | 孟轲 | Industrial equipment operation data analysis system based on cloud computing |
Also Published As
Publication number | Publication date |
---|---|
CN113741249A (en) | 2021-12-03 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN114184229B (en) | Switch cabinet operation environment monitoring system | |
CN113741249B (en) | Industrial control system network security analysis monitoring system | |
CN116246407A (en) | Agriculture and forestry area fire early warning supervisory systems based on artificial intelligence | |
JP6977650B2 (en) | Anomaly detection method, anomaly detection program, and anomaly detection device | |
CN107332917B (en) | Underground pipe gallery space environment data acquisition method and system with fault judgment function | |
CN117079428A (en) | Regional early warning system for monitoring leakage of dangerous chemical gas in factory | |
CN111273130A (en) | Multi-parameter acquisition and abnormity prevention early warning method for cable channel of transformer substation and application | |
CN115015623B (en) | Mining equipment operation safety evaluation system based on big data | |
CN115684489A (en) | Combustible toxic gas early warning system for safety production | |
CN117930795B (en) | Industrial computer self-checking control system based on artificial intelligence | |
CN116381460A (en) | Power supply operation safety supervision system for vehicle-mounted shelter CT | |
CN116070917A (en) | Dangerous chemical risk level evaluation system based on artificial intelligent storage | |
CN117991708A (en) | Industrial automatic early warning system based on Internet of things | |
CN109149776A (en) | Transmission line of electricity applied to smart grid reliably monitors system | |
CN115933508A (en) | Intelligent power operation and maintenance system for power distribution network | |
CN111505436A (en) | Electric power communication analysis system based on big data | |
CN118300273B (en) | Cable room fault early warning system based on multi-field coupling | |
CN114928168A (en) | Offshore platform unmanned data edge computing device | |
CN111289812A (en) | Power transmission and transformation equipment state monitoring and management method and system | |
CN117094852B (en) | Energy monitoring system and method for industrial and commercial energy storage | |
CN117058826B (en) | Acoustic security sensor operation detecting system based on artificial intelligence | |
CN118413008A (en) | Intelligent automatic power-off power management system | |
CN210721134U (en) | Digit control machine tool remote monitering system | |
CN117134490A (en) | Cloud platform-based intelligent surge protector monitoring system and method | |
CN117409526A (en) | Electrical fire extremely early warning and monitoring system and fire extinguishing method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |