CN113965623A - Industrial control network data acquisition system based on mobile agent - Google Patents
Industrial control network data acquisition system based on mobile agent Download PDFInfo
- Publication number
- CN113965623A CN113965623A CN202111123529.9A CN202111123529A CN113965623A CN 113965623 A CN113965623 A CN 113965623A CN 202111123529 A CN202111123529 A CN 202111123529A CN 113965623 A CN113965623 A CN 113965623A
- Authority
- CN
- China
- Prior art keywords
- module
- acquisition
- data
- mobile agent
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 230000006854 communication Effects 0.000 claims abstract description 27
- 238000004891 communication Methods 0.000 claims abstract description 27
- 230000003993 interaction Effects 0.000 claims abstract description 22
- 238000013508 migration Methods 0.000 claims abstract description 19
- 230000005012 migration Effects 0.000 claims abstract description 19
- 238000012544 monitoring process Methods 0.000 claims abstract description 19
- 238000012545 processing Methods 0.000 claims abstract description 16
- 238000000354 decomposition reaction Methods 0.000 claims abstract description 13
- 238000013480 data collection Methods 0.000 claims description 28
- 230000005540 biological transmission Effects 0.000 claims description 14
- 238000000034 method Methods 0.000 claims description 13
- 230000008569 process Effects 0.000 claims description 9
- 230000004044 response Effects 0.000 claims description 7
- 230000004913 activation Effects 0.000 claims description 4
- 230000006378 damage Effects 0.000 claims description 4
- 230000003287 optical effect Effects 0.000 claims description 4
- 230000007613 environmental effect Effects 0.000 claims description 3
- 230000007175 bidirectional communication Effects 0.000 claims description 2
- 230000006870 function Effects 0.000 description 8
- 238000010586 diagram Methods 0.000 description 6
- 238000011076 safety test Methods 0.000 description 4
- 230000006978 adaptation Effects 0.000 description 2
- 230000008901 benefit Effects 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000011156 evaluation Methods 0.000 description 2
- 230000002068 genetic effect Effects 0.000 description 2
- 239000011159 matrix material Substances 0.000 description 2
- 230000006399 behavior Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000002085 persistent effect Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000035899 viability Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/02—Topology update or discovery
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention provides an industrial control network data acquisition system based on a mobile agent, which comprises a mobile agent platform, wherein the mobile agent platform comprises: the system comprises a life cycle management module, a directory service module, a task decomposition module, an event service module and a safety service module; the modules are respectively connected with the mobile agent node and are linked with the messenger mobile agent device, the resident acquisition agent device and the resource monitoring agent device through the mobile agent node; the messenger mobile agent device includes: the system comprises a first environment interaction module, a task release module, a dynamic routing module, a migration module and a first communication module; the resident collection agent device comprises: the system comprises a second communication module, a data acquisition module and a data processing and transmitting module; the resource monitoring agent device comprises a second environment interaction module, an information temporary storage module and an information acquisition module.
Description
Technical Field
The invention belongs to the technical field of data acquisition, and relates to an industrial control network data acquisition system based on a mobile agent.
Background
The novel control means such as Programmable Logic Controller (PLC), universal Standard (STD) bus, and PC industrial bus control have been widely applied to industrial control systems, and under severe network security situation, these platforms that seem to belong to "isolated system" are likely to become targets of Advanced Persistent Threat (APT) attack. In order to improve the viability of the information equipment, the safety test work of the information equipment is very important. Compared with the traditional IP network, the data acquisition in the industrial control system network has the characteristics of network layering, heterogeneity and data multiple sources. The communication protocol of the bottom layer equipment of the industrial control system comprises a field bus protocol and an industrial Ethernet protocol, the protocols are complex and various, the difficulty in identification and analysis is high, the protocol message data is difficult to capture, and the difference of the capture method is large. The mobile agent has the technical advantages of mobility, heterogeneity, asynchronism, distribution, parallelism, expandability and the like, and can provide powerful support for improving the network security data acquisition capability of the control system.
The current research and application of data acquisition systems for industrial control networks are urgently needed to break through from two aspects: firstly, in the aspect of adaptation of an acquisition interface of heterogeneous industrial equipment, the common interfaces in the field of industrial control comprise RS485, RS422, RS232, TTL, RJ45, optical interfaces, I/O and the like, while the existing data acquisition objects mainly use industrial Ethernet and lack adaptation to other types of communication interfaces, so that the data source is single, the relevance and redundancy between different interface data of the same data source and between data of different data sources are not considered, and the safety test effect evaluation of information-based equipment should depend on data acquisition and comprehensive evaluation of an all-round whole process; secondly, in the aspect of the particularity of the industrial control system, the design of the industrial control system requires high safety and robustness, and if the traditional agent is adopted for data acquisition, the load which needs to be borne by the individual agent is too heavy, so that the acquisition efficiency is influenced.
A mobility agent is a piece of independent code that migrates through the network according to the goals set by the user prior to its deployment, and operates to find appropriate data or use the resources of the local host to perform a particular task. Compared with the traditional distributed technology, the mobile agent technology can avoid mass transceiving of data packets in the network, because the agent entity is dynamically migrated to the target host to execute tasks on the target host, and the agent developer needs to access the host resources at all times without considering how to get rid of the constraint of the network performance. By utilizing the technical advantages of mobility, isomerism, asynchronism, distribution, parallelism, expandability and the like of the mobile agent, the problems of difficult data acquisition of the industrial control network with layering, isomerism and data multiple sources, complex and various industrial control protocols and high difficulty in capturing and analyzing can be solved.
Disclosure of Invention
In order to solve the technical problem, the invention provides an industrial control network data acquisition system based on a mobile agent, which comprises a mobile agent platform, wherein the mobile agent platform comprises: the system comprises a life cycle management module, a directory service module, a task decomposition module, an event service module, a security service module and a mobile agent node; the modules are respectively connected with a mobile agent node, and the mobile agent node comprises: messenger mobile agent device, resident collection agent device, resource monitoring agent device and database;
the life cycle management module constructs the running environment of the mobile agent node, and completes the creation, dispatch, activation, recall, destruction and management of the mobile agent node;
the directory service module is used for providing data acquisition tasks, the acquired data directories and the input and query service of the current industrial control network state information;
the task decomposition module receives a data acquisition task issued by a user, decomposes the data acquisition task, makes a data acquisition plan, determines the number of dispatched messenger mobile agents and forms an initial routing strategy according to information provided by the directory service module;
the event service module provides support of a transmission protocol and a communication protocol for the messenger mobile agent device, and completes message transmission among the agent devices and data transmission of the agent devices contained in the mobile agent node;
the security service module provides access control to host file resources, network resources and system attributes, and provides user authority control, system message response control and identity authentication;
the messenger mobile agent device includes: the system comprises a first environment interaction module, a task release module, a dynamic routing module, a migration module and a first communication module;
the first environment interaction module is used for acquiring current environment information from the resource monitoring agent device;
the task issuing module is used for issuing specific data acquisition subtasks to the resident acquisition agent device according to a data acquisition plan formulated by the task decomposition module under the mobile agent platform;
the dynamic routing module provides dynamic routing for the messenger mobile agent device;
the migration module completes the migration of the messenger mobile agent device according to the routing table provided by the dynamic routing module;
the first communication module performs bidirectional communication with a second communication module of the resident acquisition agent device;
the resident collection agent device comprises: the system comprises a second communication module, a data acquisition module and a data processing and transmitting module;
the data acquisition module receives a data acquisition subtask issued by the messenger mobile agent device and acquires target data through various interfaces of an external industrial host;
the data processing and transmitting module receives the data acquired by the data acquisition module, performs unified formatting processing on the data and uploads the data to a database, and the database stores the acquired data;
the resource monitoring agent device comprises a second environment interaction module, an information temporary storage module and an information acquisition module;
the second environment interaction module receives the request message transmitted by the first environment interaction module, acquires the acquisition information corresponding to the request message from the information temporary storage module and feeds back the information to the messenger mobile agent device;
the information temporary storage module is used for temporarily storing the CPU utilization rate, the network card state, the memory utilization rate and the network delay with other hosts of the current acquisition host;
the information acquisition module acquires the CPU utilization rate, the network card state, the memory utilization rate of the current acquisition host and the network delay between the information acquisition module and other hosts at certain time intervals, and regularly refreshes the data in the information temporary storage module.
Further, the directory of the directory service module comprises: the topology structure of the current industrial control network, the IP addresses of all the acquisition hosts, the working parameters of all the data acquisition interfaces, the data types acquired by all the acquisition hosts and the names and the number of the operating resident acquisition proxy devices.
Further, the dynamic routing module providing dynamic routing includes: and establishing new routing in real time according to the working state of the collection host, network delay, network throughput, the working state of the resident collection agent and the information of the completion condition of the collection task.
Further, the collection host is a data collection source node, and the resident collection agent device includes the following interfaces: the resident collection agent device can be linked with the collection host through any interface and collect data.
Further, the I/O data collection interface includes: RS232, RS422, RS485, RJ45, and an optical interface.
Further, the data collection subtask includes: the system comprises a host computer, a controller and a data acquisition module, wherein the host computer is used for collecting state information, supporting industrial Ethernet message collection, Profibus field bus message collection, CAN field bus message collection and Modbus field bus message collection, and supporting analog I/O and digital I/O data collection.
Further, the host state information collection includes collecting the following information: CPU utilization rate, memory utilization rate, network card state, disk state, process information, keyboard and mouse input information, file information, system log information, software list, registry information and system service list.
Further, the mobile agent platform formulates a knowledge set and constraint conditions for the messenger mobile agent device and the resident acquisition agent device according to the information and acquisition task requirements provided by each module of the mobile agent platform, and the knowledge set provides various information required for executing the acquisition task for the messenger mobile agent device and the resident acquisition agent device; the constraint condition is used for constraining the operation of the messenger mobile agent device and the resident acquisition agent device and ensuring the performance of the whole data acquisition system.
Further, the knowledge set includes: the system comprises an IP address list of each acquisition host, a directory of all resident acquisition agents in the current environment, the type and the number of the resident acquisition agents on each acquisition host, the type of data which can be acquired on each acquisition host, the state of the resident acquisition agents on each acquisition host, a data acquisition task, the real-time network condition, the task completion condition of each resident acquisition agent and a routing table.
Further, the constraint conditions include: the method comprises the following steps of forced return time of the messenger mobile agent, the longest residence time of the messenger mobile agent in the acquisition host, acquisition task completion degree, system control instructions, environmental constraint conditions and acquisition time period.
By adopting the method, the problems of difficult data acquisition of the industrial control network with layering, isomerism and data multiple sources, complex and various industrial control protocols and high difficulty in capturing and analyzing are solved. The data acquisition capacity of the industrial control network is improved, and the comprehensive data support of the whole process can be provided for the safety test of the industrial control system. The system adopts a system architecture of cooperation of the messenger mobile agent and the resident acquisition agent, occupies less network resources, has high efficiency and good expandability, is convenient for expanding other various interfaces and protocols, and further enhances the data acquisition capability of the system.
Drawings
FIG. 1 is a diagram of a mobile agent based industrial control system data acquisition system architecture;
FIG. 2 is an architecture diagram of a mobile proxy node;
FIG. 3 is a basic working schematic diagram of a mobile agent based industrial control system data collection system;
FIG. 4 is a flow diagram of an implementation of a mobile agent based industrial control system data collection system.
Detailed Description
The invention aims to provide an industrial control network data acquisition system based on a mobile agent, so as to improve the data acquisition capacity of an industrial control network and provide powerful support for the safety test of the industrial control network.
The technical scheme adopted by the invention is as follows:
a mobile agent based industrial control network data collection system comprising:
the mobile agent platform is linked with the messenger mobile agent device, the resident acquisition agent device and the resource monitoring agent device through a mobile agent node;
the mobile agent platform comprises a life cycle management module, a directory service module, a task decomposition module, an event service module, a security service module and a mobile agent node;
the life cycle management module is used for realizing the creation, dispatch, activation, recall, destruction and management of the mobile agent and providing a running environment for the mobile agent;
the directory service module is used for providing records and inquiries of the current industrial control network topology structure, IP addresses of all acquisition hosts, owned data acquisition interfaces, acquirable data types, and names and the number of operating resident acquisition agents;
the task decomposition module is used for decomposing the data acquisition tasks issued by the users, making a data acquisition plan, determining the number of dispatched messenger mobile agents and forming an initial routing strategy according to the information provided by the directory service module;
the event service module is used for providing support of a transmission protocol and a communication protocol for the mobile agent and realizing message transmission among agent devices linked by the mobile agent node and data transmission of the agent devices; the message refers to message response for communicating the proxy devices; the data refers to collected data.
The security service module is used for guaranteeing the security of the mobile agent, the mobile agent platform and the host and providing security strategies such as access control on host file resources, access control on network resources, access control on system attributes, user authority control, system message response control, identity authentication and the like;
the messenger mobile agent device comprises an environment interaction module, a task release module, a dynamic routing module, a migration module and a communication module;
the environment interaction module is used for acquiring current environment information from the resource monitoring agent;
the task issuing module is used for issuing specific data acquisition subtasks to the resident acquisition agent according to a data acquisition plan formulated by the mobile agent platform;
the dynamic routing module provides a dynamic routing function for the messenger mobile agent, and makes new routing selection in real time according to information such as the working state of the acquisition host, network delay, network throughput, the working state of the resident acquisition agent, the completion condition of the acquisition task and the like;
the migration module completes the messenger mobile agent migration process according to the routing table provided by the dynamic routing module;
the communication module is responsible for communication with the resident acquisition agent to complete information interaction;
the resident acquisition agent device comprises a communication module, a data acquisition module and a data processing and transmitting module;
the data acquisition module is used for receiving a data acquisition subtask issued by the messenger mobile agent and acquiring target data through a system API (application program interface), an industrial Ethernet, a field bus or a digital I/O (input/output);
the data processing and transmitting module is used for receiving the data acquired by the data acquisition module, processing the data in a unified format and uploading the processed data to the centralized database;
the resource monitoring agent comprises an environment interaction module, an information temporary storage module and an information acquisition module;
the environment interaction module is used for receiving an environment state information request message of the messenger mobile agent, acquiring corresponding demand information from the information temporary storage module and feeding back the demand information to the messenger mobile agent;
the information temporary storage module is used for temporarily storing the CPU utilization rate, the network card state, the memory utilization rate and the network delay with other hosts of the current host;
the information acquisition module is used for acquiring the CPU utilization rate, the network card state, the memory utilization rate of the current host and the network delay between the current host and other hosts at certain time intervals, and updating the data in the information temporary storage module.
Furthermore, the mobile agent node is responsible for dispatching and maintaining resident acquisition agents, receiving acquisition tasks of users, decomposing the tasks, distributing the tasks to different messenger mobile agents, making a knowledge set, constraint conditions, a migration strategy and the like for the messenger mobile agents, and dispatching the messenger mobile agents to the acquisition host;
the acquisition host is a data acquisition source node and can be accessed to an industrial Ethernet and various field bus networks through various interfaces such as RS232, RS422, RS485, RJ45 and the like;
furthermore, the resident collection agents are responsible for completing specific data collection tasks, each resident collection agent corresponds to a data collection meta-task according to the design of the data collection meta-task, the heterogeneous network environment can be easily adapted, and when the collection environment of the collection host changes, new resident collection agents are dispatched to the collection host and old resident collection agents are recalled. The data collection meta task includes network configuration information collection, device basic information collection, device operation state information collection, network state information collection, ethernet message data collection, various bus message data collection, and the like.
Furthermore, the resident collection agent has a host state information collection interface, an industrial Ethernet data collection interface, a field bus data collection interface and an I/O data collection interface, supports collection of host state information such as CPU utilization rate, memory utilization rate, network card state, disk state, process information, keyboard and mouse input information, file information, system log information, software lists, registry information and system service lists, supports collection of industrial Ethernet messages, supports collection of field bus messages such as Profibus, CAN and Modbus, and supports collection of analog I/O and digital I/O data.
Furthermore, the resident acquisition agents have a data acquisition function, have large code quantity and weak mobility, and generally do not move any more except the updating of the acquisition function or the change of the acquisition environment after being dispatched to the acquisition host, and all resident acquisition agents in the network complete the data acquisition task together under the driving of the messenger mobile agent; the messenger mobile agent has small code amount and strong mobility, and migrates among all target acquisition hosts every time when executing a data acquisition task.
Further, the mobile agent node formulates a knowledge set for the messenger mobile agent, and the knowledge set provides various information required for executing the acquisition task for the messenger mobile agent, and specifically includes: the system comprises an IP address list of each acquisition host, a directory of all resident acquisition agents in the current environment, the type and the number of the resident acquisition agents on each acquisition host, the type of data which can be acquired on each acquisition host, the state of the resident acquisition agents on each acquisition host, data acquisition tasks, real-time network conditions, the task completion condition and a routing table of each resident acquisition agent and the like.
Further, the mobile agent node makes a constraint condition for the messenger mobile agent to constrain the behavior of the messenger mobile agent and ensure the performance of the whole data acquisition system, which specifically comprises: the forced return time of the messenger mobile agent, the longest residence time of the messenger mobile agent in the acquisition host, the completion degree of the acquisition task, a system control instruction, an environmental constraint condition, an acquisition time period and the like.
Further, the messenger mobility agent uses a dynamic search migration policy: and the messenger mobile agent always selects the host with the lowest network delay as the next migration target, acquires the state information of the current host from the resource monitoring agent after migrating to the acquisition host, issues the acquisition task of the current acquisition host if the state information of the current host does not exceed a set threshold, preferentially migrates to the next acquisition host with the lowest network delay, and records and updates the task completion condition of each acquisition host in the migration process.
Further, the task decomposition module of the mobile agent platform uses a genetic algorithm to perform balanced grouping on the IP addresses of the acquisition hosts contained in the acquisition tasks formulated by the users based on the hop count among the hosts, a messenger mobile agent is dispatched for each group to take charge of group data acquisition, and the time spent by the migration of the messenger mobile agents in each group is basically balanced; the hop count is defined as the number of network switching devices between the hosts.
The following detailed description of embodiments of the invention refers to the accompanying drawings.
Fig. 1 is an architecture diagram of a mobile agent-based industrial control system data acquisition system according to an embodiment of the present invention, and as shown in fig. 1 and fig. 2, an embodiment of the present invention provides a mobile agent-based industrial control network data acquisition system, and a mobile agent platform 101, where the mobile agent platform includes a lifecycle management module, a directory service module, a task decomposition module, an event service module, a security service module, and a mobile agent node.
The life cycle management module realizes the creation, dispatch, activation, recall, destruction and management of the mobile agent and provides an operating environment for the mobile agent.
The directory service module provides records and queries of the current industrial control network topology structure, IP addresses of all the acquisition hosts, owned data acquisition interfaces, acquirable data types, names and the number of the operating resident acquisition agents. In this embodiment, the topology structure of n hosts in the current industrial control network is stored as a matrix M _ (n × n), where M _ ij takes the value of the number of network switching devices through which the shortest path from host i to host j passes, and is defined as the hop count, and the network switching devices include switches and routers; storing the IP address, the data acquisition interface, the type of the acquired data, the name and the quantity information of the operating resident acquisition agent of each acquisition host into a quintuple form:
<TAG,IP,List_interface,List_dataType,List_stayAgent>
the task decomposition module is used for decomposing the data acquisition tasks issued by the users, making a data acquisition plan, determining the number of dispatched messenger mobile agents and forming an initial routing strategy according to the information provided by the directory service module. As an alternative embodiment, the data collection task is in the form of a binary set:
<〖List〗_IP,〖List〗_dataType>
the specific implementation mode of the task decomposition processing and the data acquisition plan making is as follows:
1) solving a balanced grouping scheme of 'List' according to a network topology matrix M _ (n multiplied by n) provided by a directory service agent by using a genetic algorithm, and ensuring that the sum of the hop counts of the shortest path in each group is relatively balanced;
2) decomposing the data collection task into a data collection plan on each collection host according to the collection host information provided by the directory service agent, i.e., the name of the resident collection agent that needs to be called, as shown in the following list:
<〖IP〗_1,〖selectList〗_stayAgent>
<〖IP〗_2,〖selectList〗_stayAgent>
…
<〖IP〗_n,〖selectList〗_stayAgent>
3) according to the grouping result of [ (List) ] IP, a messenger mobile agent is dispatched for each group, the initial routing table of the messenger mobile agent is the host order of the assigned group, and a data collection plan is assigned for each messenger mobile agent according to the assigned collection host group.
The event service module is used for providing support of a transmission protocol and a communication protocol for the mobile agents and realizing message transmission between the mobile agents and data transmission of the mobile agents.
The security service module is used for guaranteeing the security of the mobile agent, the mobile agent platform and the host, and providing security policies such as access control on host file resources, access control on network resources, access control on system attributes, user authority control, system message response control, identity authentication and the like.
Messenger mobile agent 102 includes an environment interaction module, a task issuing module, a dynamic routing module, a migration module, and a communication module.
And the environment interaction module is used for acquiring current environment information from the resource monitoring agent, wherein the current environment information comprises network throughput, memory utilization rate, CPU utilization rate and network delay between the resource monitoring agent and other hosts in the network. In this embodiment, the communication format between the messenger mobile agent and the resource monitoring agent is:
request message: < InfoType, IPList >
Response message: < InfoType, CPUState, MemState, Throughput, DelayList >
The InfoType represents a message type and comprises 2 types of 'request' and 'response', the IPList is an IP address list of the acquisition host which is not accessed by the messenger mobile agent, the CPUState is the CPU utilization rate of the current acquisition host, the MemState is the memory utilization rate of the current acquisition host, the Throughput is the network Throughput of the current acquisition host, and the DelayList is a network delay list between the current host and each host in the IPList.
And the task issuing module is used for calling a resident acquisition agent on the acquisition host according to a data acquisition plan formulated by the mobile agent platform and issuing a specific data acquisition subtask.
The dynamic routing module provides a dynamic routing function for the messenger mobile agent, and makes new routing selection in real time according to information such as the working state of the acquisition host, network delay, network throughput, the working state of the resident acquisition agent, the completion condition of the acquisition task and the like. In this embodiment, the messenger mobile agent always selects the acquisition host with the lowest network delay as the next migration target, and after migrating to the acquisition host, acquires the operating conditions (including network throughput, memory utilization rate and CPU utilization rate) of the current host through the resource monitoring agent, and issues an acquisition task if the operating conditions are lower than a set threshold, or preferentially migrates to the next acquisition host.
The migration module calls the transmission interface event provided by the mobile agent platform event service module to complete the messenger mobile agent migration process according to the routing table provided by the dynamic routing module.
And the communication module is responsible for communication with the resident acquisition agent and calls a communication interface provided by the mobile agent node to complete information interaction.
The resident collection agent 103 includes a communication module, a data collection module, and a data processing and transmission module.
And the data acquisition module is used for receiving a local data acquisition plan issued by the messenger mobile agent and acquiring target data through a system API (application program interface), an industrial Ethernet, a field bus or an I/O (input/output). In this embodiment, host state information such as a CPU utilization rate, a memory utilization rate, a network card state, a disk state, process information, keyboard and mouse input information, file information, system log information, a software list, registry information, a system service list, and the like can be collected through a system API; by utilizing an RJ45 interface or an optical port, Ethernet message data can be collected from a mirror image port of an industrial Ethernet switch; by utilizing interfaces such as RS232, RS422, RS485 and the like, Profibus, CAN and Modbus bus message data CAN be collected from each field bus; through the I/O interface, digital quantity and analog quantity data can be collected.
And the data processing and transmitting module is used for receiving the data acquired by the data acquisition module, processing the data in a unified format and uploading the processed data to the centralized database. In this embodiment, the database uses MongoDB to store a large amount of unstructured data in the form of key-value pairs.
The resource monitoring agent 104 comprises an environment interaction module, an information temporary storage module and an information acquisition module;
the environment interaction module is used for receiving the environment state information request message of the messenger mobile agent, acquiring corresponding demand information from the information temporary storage module and feeding back the demand information to the messenger mobile agent, wherein the communication format is as described above.
The information temporary storage module is used for temporarily storing the CPU utilization rate, the network card state, the memory utilization rate of the current host and the network delay between the current host and other hosts, and the storage format is as follows:
<CPUState,MemState,Throughput,AllDelayList>
wherein, CPUState is the CPU utilization rate of the current acquisition host, memstart is the memory utilization rate of the current acquisition host, Throughput is the network Throughput of the current acquisition host, and AllDelayList is the network latency list between the current host and all other acquisition hosts in the network.
The information acquisition module is used for acquiring the CPU utilization rate, the network card state, the memory utilization rate of the current host and the network delay between the current host and other hosts at certain time intervals, and updating the data in the information temporary storage module.
Fig. 3 is a diagram of a basic working mechanism of an industrial control network data collection system based on a mobile agent according to an embodiment of the present invention, and as shown in fig. 3, an industrial control network data collection system based on a mobile agent according to an embodiment of the present invention includes:
1) a mobile agent platform on a management host receives a data acquisition task of a user;
2) the mobile agent node on the management host sends a resident acquisition agent with a data acquisition function to the acquisition host corresponding to the data acquisition function and is responsible for the later maintenance of the resident acquisition agent, for example, when the acquisition environment changes or the acquisition function needs to be upgraded, the original resident acquisition agent is recalled, and the updated resident acquisition agent is sent;
3) managing mobile agent nodes on the hosts, dispatching messenger mobile agents to carry data acquisition tasks to access each acquisition host, and migrating among the acquisition hosts;
4) after the messenger mobile agent is migrated to the acquisition host, a data acquisition subtask of the current acquisition host is issued to the resident acquisition agent, and the resident acquisition agent is called to complete data acquisition;
5) and after finishing the data acquisition task, the resident acquisition agent performs format processing and uploads the data to the database.
Fig. 4 is a flowchart of an implementation of the mobile agent-based industrial control network data acquisition system according to the embodiment of the present invention, and as shown in fig. 4, the mobile agent-based industrial control network data acquisition system according to the embodiment of the present invention includes the following specific implementation flows:
1) initializing a system, generating a topological structure of the whole industrial control network, forming an IP list of acquisition hosts, and recording interface types and acquirable data types of each acquisition host;
2) after the system initialization is completed, the mobile agent platform creates and directionally dispatches resident acquisition agents with various functions to corresponding acquisition hosts according to the data types which can be acquired by each acquisition host in the current industrial control network environment, and adds resident acquisition agent information to a system directory service list;
3) a user issues a data acquisition task on a mobile agent platform, the platform receives the data acquisition task and decomposes the data acquisition task into data acquisition subtasks according to a directory service list, a corresponding number of messenger mobile agents are created, and a data acquisition plan, a knowledge set, constraint conditions and an initial routing table are formulated for each messenger mobile agent according to the directory service list;
4) dispatching all messenger mobile agents;
5) and the messenger mobile agent migrates to a first acquisition host according to an initial routing table established by the platform, if the acquisition host and the resident acquisition agent meet constraint conditions, the data acquisition subtask is issued to the resident acquisition agent on the acquisition host, and if not, the messenger mobile agent migrates to a next acquisition host. The specific steps of the constraint condition judgment are as follows:
5.1) judging whether the CPU utilization rate CPUState, the memory utilization rate MemState and the network card state Throughput of the acquisition host are lower than a preset threshold value or not according to the information fed back by the resource monitoring agent. CPUState < Threshold _ CPU: the CPU is idle; MemState < Threshold _ MEM: the memory is free; throughput < Threshold _ Throughput: the network card is free. Threshold _ CPU, Threshold _ MEM, and Threshold _ Threshold are respectively a CPU utilization Threshold, a memory utilization Threshold, and a network Throughput Threshold;
5.2) if all the state indexes are lower than a preset threshold value, judging whether the collection agent residing on the collection host computer is in a busy state;
6) the resident acquisition agent calls a data acquisition interface corresponding to the resident acquisition agent according to the requirement of the data acquisition subtask, executes the data acquisition subtask, and then updates the state of the resident acquisition agent to be busy;
7) the resident collection agent uploads the collected data to a database after simple format unified processing is carried out on the collected data, and then the state of the resident collection agent is updated to be idle;
8) the messenger mobile agent selects the next acquisition host with the lowest network delay according to the network delay information fed back by the resource monitoring agent, and updates the routing table;
9) the messenger mobile agent migrates to the next acquisition node host to execute the next data acquisition subtask;
10) after the overall data acquisition task is completed, the messenger mobile agent is recalled to the mobile agent platform, and a complete data acquisition task is finished.
Finally, it should be noted that the above embodiments are only used for illustrating the technical solutions of the embodiments of the present invention and not for limiting, and although the embodiments of the present invention are described in detail with reference to the above preferred embodiments, it should be understood by those skilled in the art that modifications or equivalent substitutions can be made on the technical solutions of the embodiments of the present invention without departing from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (10)
1. A mobile agent based industrial control network data collection system, the system comprising a mobile agent platform, the mobile agent platform comprising: the system comprises a life cycle management module, a directory service module, a task decomposition module, an event service module, a security service module and a mobile agent node; the modules are respectively connected with a mobile agent node, and the mobile agent node comprises: messenger mobile agent device, resident collection agent device, resource monitoring agent device and database;
the life cycle management module constructs the running environment of the mobile agent node, and completes the creation, dispatch, activation, recall, destruction and management of the mobile agent node;
the directory service module is used for providing data acquisition tasks, the acquired data directories and the input and query service of the current industrial control network state information;
the task decomposition module receives a data acquisition task issued by a user, decomposes the data acquisition task, makes a data acquisition plan, determines the number of dispatched messenger mobile agents and forms an initial routing strategy according to information provided by the directory service module;
the event service module provides support of a transmission protocol and a communication protocol for the messenger mobile agent device, and completes message transmission among the agent devices and data transmission of the agent devices contained in the mobile agent node;
the security service module provides access control to host file resources, network resources and system attributes, and provides user authority control, system message response control and identity authentication;
the messenger mobile agent device includes: the system comprises a first environment interaction module, a task release module, a dynamic routing module, a migration module and a first communication module;
the first environment interaction module is used for acquiring current environment information from the resource monitoring agent device;
the task issuing module is used for issuing specific data acquisition subtasks to the resident acquisition agent device according to a data acquisition plan formulated by the task decomposition module under the mobile agent platform;
the dynamic routing module provides dynamic routing for the messenger mobile agent device;
the migration module completes the migration of the messenger mobile agent device according to the routing table provided by the dynamic routing module;
the first communication module performs bidirectional communication with a second communication module of the resident acquisition agent device;
the resident collection agent device comprises: the system comprises a second communication module, a data acquisition module and a data processing and transmitting module;
the data acquisition module receives a data acquisition subtask issued by the messenger mobile agent device and acquires target data through various interfaces of an external industrial host;
the data processing and transmitting module receives the data acquired by the data acquisition module, performs unified formatting processing on the data and uploads the data to a database, and the database stores the acquired data;
the resource monitoring agent device comprises a second environment interaction module, an information temporary storage module and an information acquisition module;
the second environment interaction module receives the request message transmitted by the first environment interaction module, acquires the acquisition information corresponding to the request message from the information temporary storage module and feeds back the information to the messenger mobile agent device;
the information temporary storage module is used for temporarily storing the CPU utilization rate, the network card state, the memory utilization rate and the network delay with other hosts of the current acquisition host;
the information acquisition module acquires the CPU utilization rate, the network card state, the memory utilization rate of the current acquisition host and the network delay between the information acquisition module and other hosts at certain time intervals, and regularly refreshes the data in the information temporary storage module.
2. The system of claim 1, wherein the directory of the directory services module comprises: the topology structure of the current industrial control network, the IP addresses of all the acquisition hosts, the working parameters of all the data acquisition interfaces, the data types acquired by all the acquisition hosts and the names and the number of the operating resident acquisition proxy devices.
3. The system of claim 1, wherein the dynamic routing module to provide dynamic routing comprises: and establishing new routing in real time according to the working state of the collection host, network delay, network throughput, the working state of the resident collection agent and the information of the completion condition of the collection task.
4. The system of claim 1, wherein the collection host is a data collection source node and the resident collection agent device comprises the following interfaces: the resident collection agent device can be linked with the collection host through any interface and collect data.
5. The system of claim 4, wherein the I/O data collection interface comprises: RS232, RS422, RS485, RJ45, and an optical interface.
6. The system of claim 1, wherein the data collection subtasks include: the system comprises a host computer, a controller and a data acquisition module, wherein the host computer is used for collecting state information, supporting industrial Ethernet message collection, Profibus field bus message collection, CAN field bus message collection and Modbus field bus message collection, and supporting analog I/O and digital I/O data collection.
7. The system of claim 6, wherein the host state information collection comprises collecting the following information: CPU utilization rate, memory utilization rate, network card state, disk state, process information, keyboard and mouse input information, file information, system log information, software list, registry information and system service list.
8. The system of claim 1, wherein the mobile agent platform sets knowledge set and constraint conditions for the messenger mobile agent device and the resident acquisition agent device according to the information and acquisition task requirements provided by each module of the mobile agent platform, and the knowledge set provides various information required for executing the acquisition task for the messenger mobile agent device and the resident acquisition agent device; the constraint condition is used for constraining the operation of the messenger mobile agent device and the resident acquisition agent device and ensuring the performance of the whole data acquisition system.
9. The system of claim 8, wherein the knowledge set comprises: the system comprises an IP address list of each acquisition host, a directory of all resident acquisition agents in the current environment, the type and the number of the resident acquisition agents on each acquisition host, the type of data which can be acquired on each acquisition host, the state of the resident acquisition agents on each acquisition host, a data acquisition task, the real-time network condition, the task completion condition of each resident acquisition agent and a routing table.
10. The system of claim 8, wherein the constraints comprise: the method comprises the following steps of forced return time of the messenger mobile agent, the longest residence time of the messenger mobile agent in the acquisition host, acquisition task completion degree, system control instructions, environmental constraint conditions and acquisition time period.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111123529.9A CN113965623B (en) | 2021-09-24 | 2021-09-24 | Industrial control network data acquisition system based on mobile agent |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111123529.9A CN113965623B (en) | 2021-09-24 | 2021-09-24 | Industrial control network data acquisition system based on mobile agent |
Publications (2)
Publication Number | Publication Date |
---|---|
CN113965623A true CN113965623A (en) | 2022-01-21 |
CN113965623B CN113965623B (en) | 2024-04-05 |
Family
ID=79462122
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202111123529.9A Active CN113965623B (en) | 2021-09-24 | 2021-09-24 | Industrial control network data acquisition system based on mobile agent |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN113965623B (en) |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6389452B1 (en) * | 1997-12-01 | 2002-05-14 | Recursion Software, Inc. | Method of communicating between objects and agents across a computer network |
CN1819531A (en) * | 2006-03-21 | 2006-08-16 | 南京邮电大学 | Tribal large-scale network fault managment based on mobile agent |
CN101035040A (en) * | 2007-02-02 | 2007-09-12 | 南京邮电大学 | Radio sensor network data collection method based on multi-agent negotiation |
US20100125844A1 (en) * | 2008-11-14 | 2010-05-20 | Oracle International Corporation | Resource broker system for deploying and managing software service in a virtual environment |
CN102378300A (en) * | 2010-08-13 | 2012-03-14 | 中国人民解放军总参谋部第六十一研究所 | Method for selecting dynamic route of MA (mobile agent) |
CN105335221A (en) * | 2015-10-09 | 2016-02-17 | 中国电子科技集团公司第二十九研究所 | Reconstructible distributed software bus |
US20160112544A1 (en) * | 2010-07-09 | 2016-04-21 | Attila Technologies, Llc | Transparent Proxy Architecture for Multi-Path Data Connections |
-
2021
- 2021-09-24 CN CN202111123529.9A patent/CN113965623B/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6389452B1 (en) * | 1997-12-01 | 2002-05-14 | Recursion Software, Inc. | Method of communicating between objects and agents across a computer network |
CN1819531A (en) * | 2006-03-21 | 2006-08-16 | 南京邮电大学 | Tribal large-scale network fault managment based on mobile agent |
CN101035040A (en) * | 2007-02-02 | 2007-09-12 | 南京邮电大学 | Radio sensor network data collection method based on multi-agent negotiation |
US20100125844A1 (en) * | 2008-11-14 | 2010-05-20 | Oracle International Corporation | Resource broker system for deploying and managing software service in a virtual environment |
US20160112544A1 (en) * | 2010-07-09 | 2016-04-21 | Attila Technologies, Llc | Transparent Proxy Architecture for Multi-Path Data Connections |
CN102378300A (en) * | 2010-08-13 | 2012-03-14 | 中国人民解放军总参谋部第六十一研究所 | Method for selecting dynamic route of MA (mobile agent) |
CN105335221A (en) * | 2015-10-09 | 2016-02-17 | 中国电子科技集团公司第二十九研究所 | Reconstructible distributed software bus |
Non-Patent Citations (2)
Title |
---|
QUANQIANG MIAO: "Adaptive AF/DF Selection With FD/HD Switching in Two-Way Relay Networks", IEEE ACCESS ( VOLUME: 5) * |
陈志, 王汝传: "基于移动代理的网络配置管理模型的研究", 微机发展, no. 05 * |
Also Published As
Publication number | Publication date |
---|---|
CN113965623B (en) | 2024-04-05 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105049268B (en) | Distributed computing resource distribution system and task processing method | |
US8583650B2 (en) | Automated management of software images for efficient resource node building within a grid environment | |
CN112000448A (en) | Micro-service architecture-based application management method | |
US20160275123A1 (en) | Pipeline execution of multiple map-reduce jobs | |
US20080133668A1 (en) | Managing intended group membership using domains | |
WO2011088224A2 (en) | Managing workloads and hardware resources in a cloud resource | |
MXPA04003956A (en) | Aggregate system resource analysis including correlation matrix and metric-based analysis. | |
CN105450618A (en) | Operation method and operation system of big data process through API (Application Programming Interface) server | |
CN105187512A (en) | Method and system for load balancing of virtual machine clusters | |
CN103886508A (en) | Mass farmland data monitoring method and system | |
CN113110930A (en) | Cloud solution method, system, server and storage medium for decision problem | |
CN108848132A (en) | A kind of distribution scheduling station system based on cloud | |
CN113660316A (en) | Container cloud platform-based network resource self-adaptive configuration method, system and medium | |
CN114666335A (en) | DDS-based distributed system load balancing device | |
Guo | Aggregating uncertain incast transfers in BCube-like data centers | |
CN114064309A (en) | Cable service data processing method and device based on processing priority | |
CN113965623B (en) | Industrial control network data acquisition system based on mobile agent | |
CN112235356B (en) | Distributed PB-level CFD simulation data management system based on cluster | |
CN116089079A (en) | Big data-based computer resource allocation management system and method | |
US20240176762A1 (en) | Geographically dispersed hybrid cloud cluster | |
CN111107163B (en) | User demand change-oriented micro-service self-adaption method and system | |
Long et al. | An improved topology schedule algorithm for storm system | |
Zhang | MLIM-Cloud: a flexible information monitoring middleware in large-scale cloud environments | |
JP2001344227A (en) | Hierarchical resource monitoring system | |
CN118118488B (en) | Cloud data service dynamic self-adaptive adjustment method and system based on cloud edge cooperation |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |