A method and device for updating a program white list knowledge base

A whitelist and knowledge base technology, applied in the field of industrial control host security, can solve problems such as hidden safety hazards and unfavorable operation and maintenance work

Inactive Publication Date: 2019-05-17
北京威努特技术有限公司
View PDF4 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Among them, the process of upgrading the operating system and program installation and upgrading of the industrial control host has great potential safety hazards and is extremely detrimental to the operation and maintenance work. The program is added to the program whitelist knowledge base

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for updating a program white list knowledge base
  • A method and device for updating a program white list knowledge base
  • A method and device for updating a program white list knowledge base

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0027] In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative efforts fall within the protection scope of the present invention.

[0028] The embodiment of the present invention provides a method for updating the program whitelist knowledge base, such as figure 1 shown, including:

[0029] S101. Detect whether the operation of running the installation program occurs in the system;

[0030] In practical applications, in the environment of whitelist protection of industrial control hosts...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a method and device for updating a program white list knowledge base. The method comprises the following steps of detecting whether an operation of running an installation program is generated in a system or not; if the operation of running the installation program is detected, establishing a process parent-child relationship tree of the installation program and a temporaryprogram white list; executing the installation program in the temporary program white list; judging whether a new file generated in the execution process of the installation program belongs to a process parent-child relationship tree or not; if the new file belongs to the process parent-child relationship tree, storing the file into a temporary program white list; and updating a preset program white list knowledge base according to the temporary program white list. According to the method, the control of the program white list knowledge base on the industrial control system is not affected inthe installation and updating process of the installation program, the program white list knowledge base can be automatically updated in the installation and updating process of the installation program, the installation program is similar to common program installation, and no excessive manual intervention is needed.

Description

technical field [0001] The invention relates to the technical field of industrial control host security, in particular to a method and device for updating a program whitelist knowledge base. Background technique [0002] With the advent of Industry 4.0 and the integration of industrialization and industrialization, the traditional industrial control system network security (referred to as industrial control security) has become a severe challenge for enterprises and national security, and has attracted more and more attention from enterprises and governments. Industrial control systems After a long period of closed state has begun to develop. In the early days, industrial control systems usually did not upgrade patches due to concerns about system compatibility issues. Therefore, for the specific environment of industrial control, the program whitelist knowledge base technology in the industrial control environment was introduced. [0003] In order to improve production eff...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F8/65
Inventor 杨建平
Owner 北京威努特技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap