Unlock instant, AI-driven research and patent intelligence for your innovation.

An access control method for scada system

An access control and user technology, applied in transmission systems, electrical components, etc., can solve problems such as failure to provide user identity combination identification technology, and achieve the effect of complete functions and flexible configuration

Active Publication Date: 2019-05-21
NANJING GUODIAN NANZI WEIMEIDE AUTOMATION CO LTD
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

It realizes access control based on security marks at the application layer (functional layer), but because it was proposed earlier, it fails to provide two or more user identity combination authentication technologies, and, because its mechanism is only based on the application layer, once The attacker masters the application development interface of the system, and can easily bypass the relevant security mechanisms through direct coding to achieve various actions

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • An access control method for scada system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050]The technical scheme of the present invention will be described in further detail below in conjunction with the accompanying drawings and specific embodiments, so that those skilled in the art can better understand the present invention and implement it, but the examples given are not intended to limit the present invention.

[0051] The security mark and access control system described in the present invention divides all security entities in the SCADA system into security subjects and security objects (security subjects are entities directly related to system security operations, such as participants, actions, permissions, levels, domains) , operation, authentication, etc.; security objects are other entities that are not directly related to security operations in the system, such as configuration objects, data objects, etc.), and the data description is based on the object-oriented real-time database SACData implemented in advance. The following For a detailed introduc...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an access control method for an SCADA (Supervisory Control and Data Acquisition) system. The method comprises the following steps: 1, building security principals in the SCADA system, wherein the security principals include USERs, AUTHENTICATION, OPERATIONs, SECURITY_LEVEL, DOMAINs and ROLEs; 2, building security objects in the SCADA system, wherein the security objects include OBJECTs; 3, building a relationship between the security principles and the security objects in the SCADA system; and 4, controlling access of a bus layer by firstly matching the ROLE of an initiator specific to each writing operation through a bottom-layer data bus of the SCADA system, permitting writing if the ROLE of the initiator is consistent with a ROLE set by a data object target property to be written, and otherwise stopping; controlling access of an application layer by judging whether each operation of the application layer is included in a current security level of a current logged-in user or not before execution of the operations, if so, permitting the operations, and otherwise stopping the operations. Through adoption of the access control method, the SCADA system has the advantages of flexible configuration and complete function on the aspects of security and user access control.

Description

technical field [0001] The invention relates to an access control method of a SCADA system. Background technique [0002] SCADA (Supervisory Control And Data Acquisition) system can monitor and control on-site operating equipment to realize various functions such as data collection, storage, analysis, equipment control, physical quantity measurement, parameter adjustment and various signal alarms. In power systems such as power plant electrical / substation monitoring, power grid dispatching control, and various types of substation integrated automation systems and terminal distribution network automation applications, SCADA systems are the most widely used and the technology development is the most mature. [0003] As countries around the world increase the importance of information security, my country also issued the "Guidelines for the Classification of Computer Information System Security Protection Levels" in 1999. The "Guidelines" divide information systems into 5 secur...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06
CPCH04L63/101H04L63/102H04L63/104H04L63/105
Inventor 金舒周金国戴宏斌白忠贺
Owner NANJING GUODIAN NANZI WEIMEIDE AUTOMATION CO LTD