Unlock instant, AI-driven research and patent intelligence for your innovation.

Safety management method and system for industrial control equipment

A technology for industrial control equipment and security management, applied in the field of information security, can solve the problems of false positives and low accuracy of security management methods, and achieve the effect of reducing false positives and false negatives

Active Publication Date: 2020-06-16
BEIJING QIANXIN TECH +1
View PDF9 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In view of this, the embodiments of the present invention provide a security management method, system, computer equipment, and computer-readable storage medium for industrial control equipment, which are used to solve the problem of low accuracy and a large number of false alarms in existing industrial control equipment security management methods. The problem

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Safety management method and system for industrial control equipment
  • Safety management method and system for industrial control equipment
  • Safety management method and system for industrial control equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0052] see figure 2 , shows a flowchart of the steps of the security management method for industrial control equipment according to the embodiment of the present invention. It can be understood that the flowchart in this method embodiment is not used to limit the sequence of execution steps. The following is an exemplary description taking computer equipment as the execution subject, as follows:

[0053] Such as figure 2 As shown, the security management method for industrial control equipment may include steps S100-S130, wherein:

[0054] Step S100, acquiring basic data of a plurality of industrial control devices, and performing word segmentation processing on the basic data to obtain a word segmentation result of each industrial control device.

[0055] Specifically, the basic data includes but is not limited to device name, unit, device type, risk level, series name, region, supplier, business IP, manufacturer, importance, device model, system, protocol type, Version ...

Embodiment 2

[0092] read on Figure 8 , shows a schematic diagram of the program modules of the safety management system of the industrial control equipment of the present invention. In this embodiment, the security management system 70 of the industrial control device may include or be divided into one or more program modules, one or more program modules are stored in a storage medium and executed by one or more processors, In order to complete the present invention, and realize the safety management method of the above-mentioned industrial control equipment. The program module referred to in the embodiment of the present invention refers to a series of computer program instruction segments capable of completing specific functions, which is more suitable than the program itself to describe the execution process of the security management system 70 of the industrial control equipment in the storage medium. The following description will specifically introduce the functions of each program...

Embodiment 3

[0102] refer to Figure 9 , is a schematic diagram of the hardware architecture of the computer device according to Embodiment 3 of the present invention. In this embodiment, the computer device 2 is a device capable of automatically performing numerical calculation and / or information processing according to preset or stored instructions. The computer device 2 may be a rack server, a blade server, a tower server or a cabinet server (including an independent server, or a server cluster composed of multiple servers) and the like. Such as Figure 9 As shown, the computer device 2 at least includes, but is not limited to, a memory 21, a processor 22, a network interface 23, and a security management system 70 for industrial control devices that can communicate with each other through a system bus. in:

[0103] In this embodiment, the memory 21 includes at least one type of computer-readable storage medium, and the readable storage medium includes flash memory, hard disk, multim...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The embodiment of the invention provides a safety management method for industrial control equipment, and the method comprises the steps: obtaining the basic data of a plurality of pieces of industrial control equipment, and carrying out the word segmentation of the basic data to obtain a word segmentation result of each piece of industrial control equipment; matching in a security database according to the word segmentation result, wherein the security database comprises a plurality of pieces of security risk information based on the word segmentation result; when the matching condition is met, generating pre-alarm information corresponding to the industrial control equipment; verifying the pre-alarm information, and outputting final alarm information when a verification result meets a final alarm condition. The embodiment of the invention further provides a safety management system of the industrial control equipment. According to the embodiment of the invention, fuzzy matching is carried out in the security database through the word segmentation technology to generate the pre-alarm information, and then the pre-alarm information is verified and confirmed to output the final alarm information, so that false alarm and missing alarm of the alarm information are reduced.

Description

technical field [0001] The invention relates to the technical field of information security, in particular to a method and system for security management of industrial control equipment. Background technique [0002] The existing industrial control equipment does not allow the information monitoring and management platform to scan for vulnerabilities. The solution to the security threat discovery of industrial control equipment is to match the industrial control assets with the vulnerability database. The matching accuracy of the vulnerability database is low, and there are a large number of false positives. . Contents of the invention [0003] In view of this, the embodiments of the present invention provide a security management method, system, computer equipment, and computer-readable storage medium for industrial control equipment, which are used to solve the problem of low accuracy and a large number of false alarms in existing industrial control equipment security ma...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/24G06F16/903
CPCH04L63/1433H04L63/1425H04L41/0631G06F16/90344
Inventor 章洋余亮常月
Owner BEIJING QIANXIN TECH