Security protection method and system for industrial control system using S7 protocol

A security protection and industrial control system technology, applied in transmission systems, electrical components, etc., can solve problems such as low reliability, achieve the effect of avoiding safety risks and ensuring confidentiality

Active Publication Date: 2016-08-10
INSECTECH BEIJING CO LTD
View PDF5 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The embodiment of the present invention provides a security protection method and system based on RFC1006 bearing the S7 protocol, which

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Security protection method and system for industrial control system using S7 protocol
  • Security protection method and system for industrial control system using S7 protocol
  • Security protection method and system for industrial control system using S7 protocol

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts belong to the protection scope of the present invention.

[0029] It should be noted that, in the case of no conflict, the implementations in the present application and the features in the implementations can be combined with each other.

[0030] It should also be noted that in this article, relational terms such as first and second etc. are only used to distinguish one entity or operation from another ent...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a security protection method for an industrial control system using an S7 protocol. The method includes the following steps that: TCP/IP layer protocol analysis is performed on an external access request from a client, the IP address and port number of the client are determined, so that the validity of the external access request can be determined according to a client address white list; the external access request is packetized, the integrity of frames formed by the external access request is detected; the validity of the external access request is determined according to an application function white list, and whether the application function of the external access request is a read-write function is determined; and when the application function of the external access request is a read-write function, the validity of the external access request is determined according to a second preset white the list. The invention also provides a corresponding security protection system. According to the security protection method and the security protection system of the invention, multilevel security protection is carried out in a TCP/IP layer and an application layer, and therefore, a variety of attacks at an industrial control device or system adopting an S7 protocol can be effectively resisted, and security risks caused by the lack of security prevention mechanisms in the prior art can be avoided effectively.

Description

technical field [0001] The invention relates to the field of industrial information technology, in particular to an industrial control system security protection method and system using the S7 protocol. Background technique [0002] The industrial control communication protocol is an important language for communication between industrial control equipment and applications, and between equipment and equipment. If remote data monitoring is required in the industrial control system, the communication protocol must be inseparable. With the development of the times, the real-time and reliability requirements of factory-level monitoring have increased, and the communication rate of industrial communication buses has continued to increase. From RS232 / 485 to industrial Ethernet and then to industrial real-time Ethernet, a large number of Ethernets have been introduced into industrial control networks. , and use TCP / IP or ISO standard encapsulation for transmission, because general ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06
CPCH04L63/0236H04L63/123H04L63/126H04L63/166H04L63/168
Inventor 陈惠欣
Owner INSECTECH BEIJING CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap