Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Power grid industrial control security collaborative monitoring method and device based on deep protocol analysis

An in-depth analysis and specification technology, applied in the field of information security, can solve the problems of large amount of calculation of feature matching algorithm, difficulty in finding application layer attack events, high misconfiguration rate, etc., achieve comprehensive security protection, improve security monitoring accuracy, and strengthen scalability sexual effect

Active Publication Date: 2017-12-12
GLOBAL ENERGY INTERCONNECTION RES INST CO LTD +3
View PDF13 Cites 15 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] In view of the above analysis, the present invention proposes a power grid industrial control security collaborative monitoring method and device based on protocol depth analysis, to solve the problem that existing intrusion detection technology is difficult to find application layer attack events, and the feature matching algorithm calculation of existing intrusion detection mechanism The problem of large volume and high mis-assignment rate

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Power grid industrial control security collaborative monitoring method and device based on deep protocol analysis
  • Power grid industrial control security collaborative monitoring method and device based on deep protocol analysis
  • Power grid industrial control security collaborative monitoring method and device based on deep protocol analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0035] The technical solutions of the present invention will be clearly and completely described below in conjunction with the accompanying drawings. Apparently, the described embodiments are some of the embodiments of the present invention, but not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0036] In addition, the technical features involved in the different embodiments of the present invention described below may be combined with each other as long as there is no conflict with each other.

[0037] The embodiment of the present invention provides a collaborative monitoring method for power grid industrial control security based on protocol depth analysis. The flow chart of the method is as follows figure 1 shown, including:

[0038] S1: Collect multiple data packets in the power grid industrial ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a power grid industrial control security collaborative monitoring method and device based on deep protocol analysis. The power grid industrial control security collaborative monitoring method comprises the steps of collecting a plurality of data packets in a power grid industrial control system; establishing a strategy library composed of rules for known attacks and scripts for unknown attacks; carrying out protocol analysis on the plurality of data packets to generate protocol abnormity events; aggregating the protocol abnormity events to generate aggregated alarm groups; and generating a security threat assessment result according to the strategy library and the aggregated alarm groups. According to the method and the device, security threats is effectively identified, positioned and assessed; comprehensive protection is realized; the security monitoring precision of the power grid industrial control system is improved; and the security monitoring expandability is improved.

Description

technical field [0001] The invention relates to the field of information security, in particular to a method and device for collaborative monitoring of power grid industrial control security based on in-depth analysis of protocols. Background technique [0002] In recent years, power grid industrial control systems are suffering from more and more serious security threats, and attacks are becoming more frequent and systematic. Compared with the traditional Internet attack methods, the attack methods against the power grid industrial control system are generally APT (Advanced Persistent Threat) attacks. Attackers exploit the loopholes in the software and hardware of the industrial control system and the unsound management and control during operation and maintenance debugging, etc., through hidden channels or encrypted channels. , using unknown Trojan horse programs to launch attacks, threatening the safe and stable operation of the power grid. [0003] In order to build a c...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
Inventor 费稼轩张涛马媛媛周诚范杰汪晨石聪聪邵志鹏黄秀丽郭骞张波管小娟李伟伟
Owner GLOBAL ENERGY INTERCONNECTION RES INST CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com