Check patentability & draft patents in minutes with Patsnap Eureka AI!

A kind of address protection method, device and electronic equipment

An address and gateway device technology, applied in the field of communications, can solve the problems of unusable functions, inability to protect address data, and inability to read data, so as to achieve the effect of address data protection.

Active Publication Date: 2022-07-12
BEIJING TOPSEC NETWORK SECURITY TECH +2
View PDF5 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, with such a processing mechanism, when encountering the subscription function of OPCDA, based on the global nature of OPCDA resources, the same resource can be used in different sessions, so gateway devices need to associate and use resources across sessions; at the same time, subscriptions generate The session may be a connection established from the server to the client, or it may be a connection established by ipv6, which will result in the failure to associate related resources on the gateway device, unable to control the reading of data, and unable to guarantee data security
[0005] In response to the above requirements, it is currently possible to restrict the function codes of OPCDA subscriptions on the gateway; although this method is simple and convenient, after the function codes are restricted, it will cause extreme results that the data cannot be read and the functions cannot be used, and it is impossible to enable the subscription Protection of address data after function

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A kind of address protection method, device and electronic equipment
  • A kind of address protection method, device and electronic equipment
  • A kind of address protection method, device and electronic equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0029] This embodiment provides an address protection method, which can be applied to a gateway device between an OPC client and an OPC server. Wherein, the OPC client and the OPC server are two terminals that have been successfully enabled or are to be enabled with the OPCDA subscription function. Specifically, after the OPC client sends the OPC server to enable the subscription function, the OPC server actively initiates a three-way handshake to the OPC client, establishes a connection, and determines that the OPCDA subscription function is successfully enabled. In practical applications, an identifier (cookie) can be used as the unique identifier of the subscription function between an OPC client and an OPC server. The OPCDA subscription function is successfully enabled. When the data on the OPC server changes, the OPC server actively sends a message indicating the data change to the OPC client. If the OPC client wants to obtain the data of a certain memory of the OPC serv...

Embodiment 2

[0071] This embodiment provides an address protection apparatus for implementing the address protection method provided in the first embodiment above, and the apparatus is applied to a gateway device between an OPC client and an OPC server. like image 3 , the address protection device provided by this embodiment includes the following modules:

[0072] The linked list acquisition module 302 is used to acquire a pre-created linked list, wherein each resource node of the linked list includes: an identifier, a client handle and an address name, and the identifier is used to identify the OPC client and OPC that successfully start the subscription function Server;

[0073] The message parsing module 304 is configured to parse the first identifier, the first client handle and the first address name in the first subscription message when the first subscription message from the OPC server passes through;

[0074] A node search module 306, configured to search for a target resource ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present disclosure relates to an address protection method, device and electronic device, including: acquiring a pre-created linked list, wherein each resource node of the linked list includes: an identifier, a client handle and an address name, and the identifier is used to identify a successful Start the OPC client and OPC server of the subscription function; when the first subscription message from the OPC server passes through, parse the first identifier, the first client handle and the first address name in the first subscription message; Find the target resource node containing the first identifier and the handle of the first client in the resource nodes of the linked list; obtain the second address name recorded in the target resource node; determine the first address name by comparing the first address name and the second address name Security of subscription messages. The present disclosure can better protect the address data of the OPCDA subscription function.

Description

technical field [0001] The present disclosure relates to the field of communication technologies, and in particular, to an address protection method, an apparatus, and an electronic device. Background technique [0002] OPC (OLE for Process Control, object connection and embedding applied to process control) real-time data access protocol (OPCDA) as a traditional mainstream industrial control protocol, is highly used in the industrial control environment. With the development of industrial intelligence, the traditional closed industrial control network and the Internet are more and more closely integrated, and the security problem of industrial control network is becoming more and more prominent. [0003] In the actual industrial control network environment, to ensure the security of the OPCDA protocol, it is necessary to limit the transmitted OPCDA protocol data on the gateway device to protect the security of the on-site industrial control network. [0004] The subscripti...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40H04L67/146H04L12/66
CPCY02P90/02
Inventor 程卫冰
Owner BEIJING TOPSEC NETWORK SECURITY TECH
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com