Unlock instant, AI-driven research and patent intelligence for your innovation.

A method and device for auditing communication data

A technology of communication data and attribute information, which is applied in the field of network communication and industrial control network security, can solve problems such as unfavorable industrial control system security, and achieve the effect of improving security

Active Publication Date: 2022-04-01
BEIJING TOPSEC NETWORK SECURITY TECH +2
View PDF10 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] As a widely used network security defense technology, the firewall often audits the communication relationship of the five-tuple of the industrial control protocol when auditing the communication data, but cannot audit the specific operation of the industrial control protocol. Generate audit policies for received communication data, which is not conducive to the security of industrial control systems

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and device for auditing communication data
  • A method and device for auditing communication data
  • A method and device for auditing communication data

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0067] In order to more clearly understand the above objects, features and advantages of the present disclosure, the solutions of the present disclosure will be further described below. It should be noted that, in the case of no conflict, the embodiments of the present disclosure and the features in the embodiments can be combined with each other.

[0068] In the following description, many specific details are set forth in order to fully understand the present disclosure, but the present disclosure can also be implemented in other ways than described here; obviously, the embodiments in the description are only some of the embodiments of the present disclosure, and Not all examples.

[0069] In the embodiments of the present disclosure, words such as "exemplary" or "for example" are used as examples, illustrations or illustrations. Any embodiment or design described as "exemplary" or "for example" in the embodiments of the present disclosure shall not be construed as being pr...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

Embodiments of the present disclosure provide a method and device for auditing communication data, which relate to the fields of network communication and industrial control network security. The method includes: at the end of the audit period, obtaining at least one attribute information of the used industrial control protocol, function code, register address, and process parameter; counting the occurrence times of each audit event in the audit period; The attribute information of each audit event in the period and the occurrence times of each audit event in the audit period are used as model parameters of the access rule control model to obtain an audit policy; and the communication data received by the firewall is audited according to the audit policy. Therefore, by analyzing the attribute information of each audit event in the audit cycle and the occurrence times of each audit event in the audit cycle to form an audit strategy, the firewall can automatically and flexibly configure the protection strategy and improve the security of the industrial control system.

Description

technical field [0001] The present disclosure relates to the field of network communication and industrial control network security, in particular to a method and device for auditing communication data. Background technique [0002] Industrial control systems (industrial control systems) are widely used in very important fields such as electric power, transportation, and municipal administration. In industrial control systems, devices communicate through communication protocols. In order to ensure the safety of industrial control systems, it is necessary to Security audit of communication data. In the traditional audit method, the communication data is analyzed and audited according to the communication protocol. [0003] As a widely used network security defense technology, the firewall often audits the communication relationship of the five-tuple of the industrial control protocol when auditing the communication data, but cannot audit the specific operation of the industr...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L9/40
CPCH04L63/02H04L63/20
Inventor 刘树强
Owner BEIJING TOPSEC NETWORK SECURITY TECH