Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method for quickly identifying networked industrial control device

An industrial control equipment, fast technology, applied in transmission systems, electrical components, etc., can solve the problems of inability to quickly and accurately identify the type and model of industrial control equipment, failure to build a complete industrial control equipment fingerprint database, host unreachable time, etc., to reduce response delays. time, save resources, reduce the effect of response time

Inactive Publication Date: 2017-05-24
CHINA ELECTRONICS TECH CYBER SECURITY CO LTD
View PDF5 Cites 31 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In the prior art, IP and port are used to directly perform TCP three-way handshake connection. If successful, the industrial control device fingerprint detection data packet will be sent, and if it fails, it will enter the next IP+port device detection, resulting in TIMEOUT( Timeout) time is too long, and at the same time, there is no complete industrial control equipment fingerprint library, which leads to the inability to quickly and accurately identify the type and model of industrial control equipment, etc.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for quickly identifying networked industrial control device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0028] All features disclosed in this specification, or steps in all methods or processes disclosed, may be combined in any manner, except for mutually exclusive features and / or steps.

[0029] Any feature disclosed in this specification, unless specifically stated, can be replaced by other alternative features that are equivalent or have similar purposes. That is, unless expressly stated otherwise, each feature is one example only of a series of equivalent or similar features.

[0030] A method for quickly identifying networked industrial control equipment, characterized in that it includes a pre-scanning stage and an industrial control equipment identification stage, the pre-scanning stage includes,

[0031] Step (1-1), utilizing the distributed scanning mechanism to evenly distribute scanning tasks;

[0032] Step (1-2), splitting the specified IP address segment;

[0033] Step (1-3), utilize TCP stateless detection mechanism to judge whether IP host computer and port surv...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method for quickly identifying a networked industrial control device. The method is characterized by comprising a pre-scanning stage and an industrial control device identification stage, wherein the pre-scanning stage comprises: uniformly allocating scanning tasks by using a distributed scanning mechanism, splitting a specified IP address segment, judging whether an IP host and a port survive by using a TCP stateless detector, and storing IP addresses of the survival IP host and the survival port in an IP buffer pool identified by the device, and the industrial control device identification stage comprises: obtaining the survival IP host and the port from the IP buffer pool, establishing a complete TCP connection, sending a specific industrial control protocol identification data packet of the port, waiting for the response of a server, returning a data packet by the networked industrial control device, analyzing the data packet, and matching the data packet with a fingerprint library of the industrial control device. According to the method disclosed by the invention, the distributed scanning technology is imported, segmented scanning is carried out by fully using scanning nodes, the resources of a computer are saved, the scanning efficiency is greatly improved, and meanwhile the survivability of the IP host and the industrial control port are clarified before the industrial control device is identified, thereby shortening the response delay time caused by the non-survival of the port.

Description

technical field [0001] The invention relates to the field of identification of networked industrial control equipment, in particular to a method for quickly identifying networked industrial control equipment. Background technique [0002] With the development of information technology and intelligent manufacturing technology, more and more industrial control equipment or systems of various industrial control manufacturers such as Siemens, ABB, Advantech, etc. are exposed in the cyberspace of the Internet, and are easily exploited by hackers. attack with serious consequences. In order to quickly search and monitor the industrial control equipment or systems connected to the Internet, and grasp the type, scale and geographical distribution of the equipment, it is urgent to use related technologies to identify networked industrial control systems or equipment. Since the networked industrial control equipment and systems have their corresponding specific attributes on the netwo...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/08H04L29/06H04L29/12
CPCH04L63/0861H04L67/10H04L67/1074H04L61/5007
Inventor 兰昆邓勇羊依银何龙赵翔
Owner CHINA ELECTRONICS TECH CYBER SECURITY CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com