CN109460400B - System and method for establishing safety baseline library of power monitoring system - Google Patents

System and method for establishing safety baseline library of power monitoring system Download PDF

Info

Publication number
CN109460400B
CN109460400B CN201811515472.5A CN201811515472A CN109460400B CN 109460400 B CN109460400 B CN 109460400B CN 201811515472 A CN201811515472 A CN 201811515472A CN 109460400 B CN109460400 B CN 109460400B
Authority
CN
China
Prior art keywords
baseline
safety
target object
management
item
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811515472.5A
Other languages
Chinese (zh)
Other versions
CN109460400A (en
Inventor
霍雪松
王梓
裴培
张明
陈兵
朱红勤
王黎明
韩勇
韩禹
陈诚
程长春
孙佳炜
戴然
景娜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
State Grid Corp of China SGCC
State Grid Jiangsu Electric Power Co Ltd
NARI Group Corp
Nanjing Power Supply Co of State Grid Jiangsu Electric Power Co Ltd
Original Assignee
State Grid Corp of China SGCC
State Grid Jiangsu Electric Power Co Ltd
NARI Group Corp
Nanjing Power Supply Co of State Grid Jiangsu Electric Power Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by State Grid Corp of China SGCC, State Grid Jiangsu Electric Power Co Ltd, NARI Group Corp, Nanjing Power Supply Co of State Grid Jiangsu Electric Power Co Ltd filed Critical State Grid Corp of China SGCC
Priority to CN201811515472.5A priority Critical patent/CN109460400B/en
Publication of CN109460400A publication Critical patent/CN109460400A/en
Application granted granted Critical
Publication of CN109460400B publication Critical patent/CN109460400B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Alarm Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

A system and a method for establishing a safety baseline library of an electric power monitoring system are provided, firstly, safety baseline objects related in the electric power monitoring system are classified, and a baseline class, a baseline class and a target object are sequentially determined; then, determining a baseline index set for each target object, wherein the baseline index set comprises baseline items, baseline indexes, inspection rules and evaluation suggestions; and finally, selecting a safety baseline index set required by each target object according to requirements and forming a safety baseline library.

Description

System and method for establishing safety baseline library of power monitoring system
Technical Field
The invention relates to the field of application of information security of an electric power monitoring system, in particular to a system and a method for establishing a security baseline library of the electric power monitoring system.
Background
The power monitoring system is used for monitoring and controlling the power production and supply process, is a service system and intelligent equipment based on computer and network technology and a communication and data network used as a basic support, and information assets of the power monitoring system comprise hardware equipment such as network equipment, safety equipment, host equipment, external equipment and the like, and tangible assets such as software of an operating system, a database, middleware, an application system and the like, intangible assets such as regulation, management methods and the like.
The safety baseline of the power monitoring system generally refers to the minimum safety configuration requirement on hardware equipment or a software system, namely minimum safety guarantee; meanwhile, the establishment of a safety baseline library of the power monitoring system becomes the primary step of safety supervision, and is a prerequisite for safety evaluation and information system safety problem solving.
The safety baseline library of the power system in the prior art is usually based on the existing safety level protection standard or the safety baseline technical specification file in the power industry and is set to be separately and cooperatively established according to the system establishment time, however, each system is inconvenient for the unified management and control of a safety management department because the requirements and the attributes of the asset safety baseline are different and the system does not support the capability of customizing and modifying the baseline.
At present, each service system security baseline library in the power monitoring system is usually constructed based on software and hardware tangible assets, and does not usually contain security baseline configuration information of intangible assets such as regulations and regulations, management methods and the like.
At present, a safety baseline library of an electric power system is established based on different safety baseline requirements of each service system, and generally comprises contents such as target object types, safety baseline items, baseline attributes and the like, but the definition of information is not uniform, the support classification types are not comprehensive, and real-time modification and updating of configuration items of the safety baseline cannot be performed.
Disclosure of Invention
In order to overcome the defects of the prior art, the invention provides a system and a method for establishing a safety baseline library of an electric power monitoring system. The system and the method for establishing the safety baseline library provided by the invention provide reasonable safety baseline object classification according to the requirements of the safety baseline library of the power monitoring system, support adjustment of the configuration information of the safety baseline index items, and meet the customizable requirements of the safety baseline library of users.
In order to achieve the above purpose, the technical scheme adopted by the invention is as follows: the utility model provides an electric power monitoring system safety baseline storehouse establish system which characterized in that, includes front end interface and back-end service, wherein:
the front-end interface comprises a baseline library operation interface and a baseline library display interface; the baseline library operation interface provides a user with the configuration of a safety baseline item, and the user completes the confirmation of a target object, the screening of the safety baseline item and the baseline index and the customization of the safety baseline library according to the user-defined requirement and generates a corresponding safety baseline library file; the baseline library display interface is used for statically displaying the configured security baseline library in a graphical list mode by reading the security baseline library file;
the back-end service comprises a safety baseline object classification module, a safety baseline index establishing module, a safety baseline library integration module and a database module; the safety baseline object classification module finishes classification of the information assets of the power monitoring system and provides the information assets to the database module for storage by sequentially confirming the baseline type, the baseline type and the target object; the safety baseline index establishing module completes the establishment of a safety baseline index set of each target object and provides the safety baseline index set for the database module to store by sequentially selecting the baseline items and the baseline indexes of each target object, and according to the corresponding supplementary inspection rules and evaluation recommendation attributes of each selected baseline index; the safety baseline library integration module reads corresponding data of the database by receiving a customization request of a safety baseline library operation interface of a front-end user and actively triggering user requirement conditions, combines classification information of a safety baseline object and safety baseline index set information to generate a safety baseline library file required by the user and sends the safety baseline library file to a front-end baseline library display interface; the database module is responsible for storing the classification information of the safety baseline object, the safety baseline information of the target object and relevant attributes thereof generated in the process of establishing the safety baseline library, and is used for storing the front-end operation log information of the user and the customized safety baseline library file.
Further, the baseline library operation interface supports the selected baseline objects to include hardware physical assets of hardware network equipment, security equipment and host equipment, software physical assets of an operating system, a database, middleware and an application system, and safety management intangible assets related to institutional specifications.
Further, when the set target object in the safety baseline integration module in the back-end service is a management system and completes the configuration operation of the index set, the safety baseline integration module compares the configuration content with corresponding baseline indexes of other simultaneously selected or configured target objects, if the target object does not have the baseline indexes, the corresponding baseline indexes of the target object are increased in a linkage manner, specifically, after the user completes the selection confirmation of the target object and the corresponding baseline items in the system, when the set target object is the management system and performs the index set configuration operation capable of generating linkage baseline items, the system automatically highlights the baseline index items of the other confirmed target objects related to the index items in a safety baseline operation interface through a mapping relationship and requires the user to confirm whether to add or not again, if the user finishes the configuration of the baseline index items of other target objects which can be linked partially in advance, the system screens out the unconfigured association items through the mapping relation and prompts the user to confirm whether to add the unconfigured association items or not through an interface.
Furthermore, the target object is a management system and can generate linked baseline items including asset management, equipment management, monitoring management, network security management, system security management, malicious code management, password management, backup and recovery management;
wherein, the mapping relation comprises:
the target object is a management system and can generate a linkage baseline item for asset management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item for naming specification to generate a linkage relation;
the target object is a management system and can generate a linkage baseline item for equipment management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch and a router baseline item for equipment management to generate a linkage relation, and the target object is a management system and can generate a linkage baseline item for equipment management and the target object is WINDOWS, LINUX, UNIX and AIX baseline items for hardware redundancy to generate a linkage relation;
the target object is a management system baseline item, the monitoring management and target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item generate a linkage relation for security audit, and the target object is a management system and can generate a linkage baseline item, the monitoring management and target object is intrusion detection, WINDOWS, LINUX, UNIX and AIX baseline items generate a linkage relation for intrusion prevention;
the target object is a management system baseline item, network security management is performed, the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic and WINDOWS baseline items generate a linkage relation for access control, and the target object is a management system and can generate a linkage baseline item, and the network security management and the network architecture baseline item generate a linkage relation for structure security;
the target object is a management system baseline item, the system safety management and the target object are a C/S system, a B/S system, a Tomcat and a Weblogic baseline item, the linkage relation is generated for protecting the residual information, the communication confidentiality and the resource control, and the target object is a management system and can generate linkage baseline items, the system safety management and WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item are linkage relations for protecting the residual information and controlling the resource;
the target object is a linkage relation generated by management of malicious codes in a management system baseline item and prevention of the target object from the intrusion detection baseline item;
the target object is management system baseline item which is password management and the target object is firewall, intrusion detection, isolation, encryption authentication, switch, router, C/S system, B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, relational database and non-relational database baseline item which are identity authentication to generate linkage relation.
The establishing system of the power monitoring system safety baseline library also provides a parameter configuration interface facing an administrator user or a common user;
the system is characterized in that a parameter configuration interface of an administrator is arranged, an administrator user can perform adding, modifying and deleting operations including a baseline type item, a target object item, a baseline index item, a corresponding check rule and an evaluation suggestion attribute in real time through the interface according to different safety specifications, safety requirements or updating requirements of various sites, in addition, when the administrator user starts the operations, a common user cannot enter an operation interface of a baseline library of the system to perform the baseline operation, and in the process of establishing the baseline library, the system can automatically save the current operation progress of the user and give a prompt for forcing the interface to quit the user.
The safety baseline library establishing method based on the electric power monitoring system safety baseline library system is characterized by comprising the following steps of:
1) classifying safety baseline objects related in the power monitoring system, and sequentially determining a baseline type, a baseline type and a target object;
2) determining a baseline index set for each target object, the baseline index set comprising baseline items, baseline indexes, inspection rules and evaluation recommendation attribute information; firstly, a user selects and confirms required baseline items and baseline indexes of each target object, and meanwhile, according to the determined baseline indexes, the user supplements check rules corresponding to the baseline indexes and evaluates suggested attribute information so as to establish a safe baseline index set of each target object;
3) based on the determined target objects and the corresponding safety baseline index sets, the user selects the safety baseline index sets required by the target objects according to requirements and forms a safety baseline library.
Further, the determining the baseline category information of the security baseline object includes: safety management, network safety, application safety and host safety;
the baseline type information of which the baseline type is safety management comprises safety management;
the baseline type information of which the baseline type is network security comprises security equipment, network equipment and a network architecture;
the baseline type information of which the baseline category is application safety comprises an application system and middleware;
the baseline type information of which the baseline type is the host security comprises a host and a database;
the target object with the baseline type of safety management comprises safety management, management personnel and a management system;
the target object with the baseline type of the safety equipment comprises a firewall, intrusion detection, isolation and encryption authentication;
the target object with the baseline type of the network equipment comprises a switch and a router;
the target object with the baseline type of the network architecture comprises the network architecture;
the target object with the baseline type of the application system comprises a C/S system and a B/S system;
the target object with the baseline type being the middleware comprises Tomcat and Weblogic;
the target object with the baseline type of the host comprises WINDOWS, LINUX, UNIX and AIX;
the target object with the baseline type as the database comprises a relational database and a non-relational database;
the baseline item, the baseline index, the inspection rule and the attribute information of the evaluation suggestion of the target object are derived from national grade protection standards and national grid company safety baseline technical specification requirements;
and when the target object performs baseline index configuration for a management system, automatically linking and increasing the safe baseline configuration of corresponding baseline indexes of other target objects according to configuration contents.
The invention has the advantages and effects that:
the invention provides a system and a method for establishing a safety baseline library of a power monitoring system, which comprises a system structure, wherein the classification of target objects is determined, when the safety baseline target objects are a management system and index set configuration is carried out on the safety baseline target objects, a system module can be compared with corresponding baseline indexes of other target objects according to configuration contents, and if the target objects do not have the baseline indexes, the system module can correspondingly increase the corresponding baseline indexes of the target objects in a linkage manner.
The invention can flexibly modify the safety baseline indexes and the related attributes thereof according to the difference of the national safety level or the standard of the electric power industry standard, establishes the safety baseline library which is suitable for different safety standards and safety requirements, and meets the characteristic that the real-time updating and maintenance can be rapidly carried out on the safety baseline library according to the field requirements.
Drawings
FIG. 1 is a diagram of a system for establishing a security baseline library of a power monitoring system;
FIG. 2 is a set of target objects of a power monitoring system security baseline library;
fig. 3 is a flowchart of a method for establishing a security baseline library of a power monitoring system.
Detailed Description
The invention is described in further detail below with reference to the figures and examples.
The embodiment of the invention provides a system for establishing a safety baseline library of an electric power monitoring system, which can be combined with the method for establishing the safety baseline library of the electric power monitoring system provided by the invention, and the establishment of the safety baseline library of the electric power monitoring system is completed together by means of informatization means, wherein the system structure chart 1 comprises a front-end interface and a back-end service composition.
The front-end interface comprises a baseline library operation interface and a baseline library display interface.
The baseline library operation interface provides a user with the configuration of the safety baseline item, the user can complete the confirmation of the target object, the screening of the safety baseline item and the baseline index and the splicing and customizing of the safety baseline library according to the user-defined requirement, generate a corresponding safety baseline library file, and simultaneously provide the linkage confirmation operation of the target object index item.
The baseline library display interface is used for statically displaying the configured safety baseline library in a graphical list mode by reading a safety baseline library file; the display mode not only supports the sequential tree structure display according to the base line object type, type and target object, but also can classify, combine and display according to the same safety base line index attribute type.
The back-end service comprises a safety baseline object classification module, a safety baseline index establishing module, a safety baseline library integration module and a database module.
The safety baseline object classification module finishes classification of the information assets of the power monitoring system by sequentially confirming the baseline type, the baseline category and the target object and provides the information assets of the power monitoring system for the database module to store;
the safety baseline index establishing module is used for sequentially selecting baseline items and baseline indexes of all required target objects, completing the establishment of all safety baseline indexes of the target object set according to the selected corresponding supplementary inspection rules and evaluation suggestion attributes of all the baseline indexes and providing the safety baseline indexes for the database module for storage;
the safety baseline library integration module receives a customization request of a safety baseline library operation interface of a front-end user and actively triggers user requirement conditions to read corresponding data of the database, combines classification information of a safety baseline object and safety baseline index set information to generate a safety baseline library file required by the user and sends the safety baseline library file to a front-end baseline library display interface.
The database module is responsible for storing the classification information of the safety baseline object, the safety baseline information of the target object and relevant attributes thereof generated in the process of establishing the safety baseline library, and is used for storing the front-end operation log information of the user and the customized safety baseline library file.
When the set target object is a management system and the target object completes the configuration operation of the index set in the safety baseline integration module, the module can compare the configuration content with corresponding baseline indexes of other simultaneously selected or configured target objects, and if the target object does not have the baseline indexes, the corresponding baseline indexes of the target object can be increased in a linkage manner after the user confirms the operation.
The system for establishing the safety baseline library of the power monitoring system also provides a parameter configuration interface facing an administrator user or a common user, and the administrator user can edit the baseline indexes and the related attributes thereof to form a new configuration template.
The baseline library operation interface provides a configuration template of a safety baseline item, template data respectively reads preset information of a safety baseline classification module and a safety baseline index establishing module, and the preset information is derived from a target object set shown in fig. 2, a national grade protection standard or related requirements of a safety baseline technical specification of a national power grid company. The user can select the target object of the safety baseline required to be established through the steps of sequentially determining the baseline type and the baseline type according to the user-defined requirement.
The classification of the partial set of target objects supported by the system is shown in fig. 2.
The system defined baseline category part information comprises: the safety management of the category items of the intangible asset safety baseline, the network safety, the application safety and the host safety of the category items of the tangible asset safety baseline.
The baseline type information of which the baseline category is security management includes security management.
The baseline type information of which the baseline category is network security comprises security equipment, network equipment and network architecture.
The baseline type information of which the baseline category is application safety comprises an application system and middleware.
The baseline type information of which the baseline category is host security comprises a host and a database.
The target object with the baseline type of safety management comprises safety management, management personnel and a management system.
The target object with the baseline type of the safety equipment comprises a firewall, intrusion detection, isolation and encryption authentication.
The target objects with the baseline type of the network equipment comprise switches and routers.
The target object whose baseline type is a network architecture includes the network architecture.
The target objects with the baseline type of the application system comprise a C/S system and a B/S system.
The target object with the baseline type of middleware comprises Tomcat and Weblogic.
Target objects with baseline types of hosts include WINDOWS, LINUX, UNIX, AIX.
The target object with the baseline type as the database comprises a relational database and a non-relational database.
When the target object performs baseline index configuration for a management system, the safety baseline configuration of the baseline indexes corresponding to other target objects can be automatically increased according to the configuration content.
Corresponding to the system for establishing the safety baseline library of the power monitoring system in the embodiment of the invention, the invention also provides a method for establishing the safety baseline library of the power monitoring system, the flow of which is shown in fig. 3, and the method comprises the following steps:
1. a user carries out classification on safety baseline objects by sequentially determining the baseline type and the baseline type of information assets related to the power monitoring system, so as to determine a target object;
2. the user first selects and confirms the desired baseline terms and baseline indicators for each target object. Meanwhile, according to the determined baseline index items, supplementing check rules corresponding to the baseline indexes and evaluating the attribute information of the suggestions so as to establish a safe baseline index set of each target object;
3. based on the determined target objects and the corresponding safety baseline index sets, the user selects the safety baseline index sets required by the target objects according to requirements and forms a safety baseline library.
The baseline item, the baseline index, the inspection rule and the attribute template information of the evaluation suggestion of the target object are derived from national level protection standards and national grid company safety baseline technical specification requirements.
The system and method of the present invention are described below by taking the baseline type as network security, the baseline type as network equipment, and the target object as switch equipment as examples.
Taking the establishment of a security baseline index with a target object as a switch device as an example:
firstly, according to the requirements of enterprise-related files, selectable baseline items of switch equipment comprise identity authentication, naming specifications and equipment management;
secondly, taking the selection of the switch equipment baseline item as identity authentication as an example, the corresponding baseline indexes comprise a password mechanism, an identity authentication mechanism, a password storage mechanism, a login failure processing mechanism and the like;
thirdly, taking the baseline item of the selected switch device as identity authentication, the selected baseline index as a password mechanism as an example, the corresponding check rule is "determine whether the password length is less than 8 bits through display current-configuration | include password pointer instruction, and the password length is a mixed combination of letters, numbers or special characters, and the user name and the password are not the same", and the evaluation suggestion is "modify the device password mechanism so that the password length is not less than 8 bits, and the password length is a mixed combination of letters, numbers or special characters, and the user name and the password are not the same", as shown in table 1:
Figure GDA0003394039680000081
TABLE 1 certain Security Baseline Attribute with target object as switch device
The following example illustrates that when a target object is determined to be safe to manage and complete index set configuration operation during the process of establishing the power monitoring system baseline library, the safe baseline library integration module can add corresponding baseline indexes of other determined target objects in a linkage manner according to configuration contents to generate a linkage effect.
As shown in table 2, when the user configures the target object as a management system, the baseline item is password management, the baseline index conforms to the password use requirement, technology and product conforming to the national password management rule, and the corresponding check rule is "check whether the password use or the key use conforms to the password management rule, check the password use management system", and evaluate and suggest "need to execute according to the password management rule and check the password use management system", the system automatically links and prompts to increase the baseline index of the relevant baseline item when the configuration of the index is completed and the baseline items of the selected other target objects are related to the password management. Taking the baseline library as an example that the target object is simultaneously contained as the switch, if the identity authentication baseline item of the switch is not configured with the baseline index containing the password mechanism, the system can automatically link the target object as the switch equipment and prompt that the switch equipment baseline item shown in the table 1 is added as identity authentication, and the baseline index is a related index item of the password mechanism.
Figure GDA0003394039680000091
TABLE 2 certain safety baseline Properties with target object as management System
As described above, the present invention provides a system and a method for establishing a security baseline library of a power monitoring system, which includes a system structure for determining a classification of a target object. In the method and the system provided by the invention, when the safety baseline target object is a management system and index set configuration is carried out on the safety baseline target object, the system module can compare with corresponding baseline indexes of other target objects according to configuration contents, and if the target object does not have the baseline index, the system module can correspondingly increase the corresponding baseline index of the target object in a linkage manner.

Claims (7)

1. The utility model provides an electric power monitoring system safety baseline storehouse establish system which characterized in that, includes front end interface and back-end service, wherein:
the front-end interface comprises a baseline library operation interface and a baseline library display interface; the baseline library operation interface provides a user with the configuration of a safety baseline item, and the user completes the confirmation of a target object, the screening of the safety baseline item and the baseline index and the customization of the safety baseline library according to the user-defined requirement and generates a corresponding safety baseline library file; the baseline library display interface is used for statically displaying the configured security baseline library in a graphical list mode by reading the security baseline library file;
the back-end service comprises a safety baseline object classification module, a safety baseline index establishing module, a safety baseline library integration module and a database module; the safety baseline object classification module finishes classification of the information assets of the power monitoring system and provides the information assets to the database module for storage by sequentially confirming the baseline type, the baseline type and the target object; the safety baseline index establishing module completes the establishment of a safety baseline index set of each target object and provides the safety baseline index set for the database module to store by sequentially selecting the baseline items and the baseline indexes of each target object, and according to the corresponding supplementary inspection rules and evaluation recommendation attributes of each selected baseline index; the safety baseline library integration module reads corresponding data of the database by receiving a customization request of a safety baseline library operation interface of a front-end user and actively triggering user requirement conditions, combines classification information of a safety baseline object and safety baseline index set information to generate a safety baseline library file required by the user and sends the safety baseline library file to a front-end baseline library display interface; the database module is responsible for storing the classification information of the safety baseline object, the safety baseline information of the target object and relevant attributes thereof generated in the process of establishing the safety baseline library, and is used for storing the front-end operation log information of the user and the customized safety baseline library file.
2. The system for establishing a security baseline library of a power monitoring system according to claim 1, wherein the baseline library operation interface supports selected baseline objects including hardware physical assets of a network device, a security device and a host device of hardware, software physical assets of an operating system, a database, middleware and an application system, and security management intangible assets related to institutional specifications.
3. The system for establishing a security baseline library of a power monitoring system according to claim 1, wherein when a set target object in the back-end-service security baseline integration module is a management system and performs index set configuration operation on the set target object, the security baseline integration module compares the configuration content with corresponding baseline indexes of other target objects selected simultaneously or having completed configuration, if the target object does not have the baseline index, the corresponding baseline index of the target object is increased in a linked manner, specifically, after a user completes selection and confirmation of the target object and the corresponding baseline item in the system, when the set target object is the management system and performs index set configuration operation capable of generating a linked baseline item on the set target object, the system automatically highlights the baseline index items of the other confirmed target objects associated with the index item in a security baseline operation interface through a mapping relationship, and requiring the user to confirm whether to add or not again, wherein if the user finishes the configuration of the baseline index items of other target objects which can generate linkage in advance, the system screens out the unconfigured association items through the mapping relation and prompts the user to confirm whether to add or not through an interface.
4. The system for establishing the security baseline library of the power monitoring system according to claim 3, wherein the baseline items of which the target objects are management systems and which can generate linkage comprise asset management, equipment management, monitoring management, network security management, system security management, malicious code management, password management, backup and recovery management;
wherein the mapping relationship comprises:
the target object is a management system and can generate a linkage baseline item for asset management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item for naming specification to generate a linkage relation;
the target object is a management system and can generate a linkage baseline item for equipment management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch and a router baseline item for equipment management to generate a linkage relation, and the target object is a management system and can generate a linkage baseline item for equipment management and the target object is WINDOWS, LINUX, UNIX and AIX baseline items for hardware redundancy to generate a linkage relation;
the target object is a management system and can generate a linked baseline item for monitoring management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item for generating a linked relation for security audit, and the target object is a management system and can generate a linked baseline item for monitoring management and the target object is intrusion detection, WINDOWS, LINUX, UNIX and AIX baseline items for intrusion prevention and generating a linked relation;
the target object is a management system and can generate a linked baseline item for network security management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic and WINDOWS baseline item for access control to generate a linked relationship, and the target object is a management system and can generate a linked baseline item for network security management and network architecture baseline item for structure security to generate a linked relationship;
the target object is a management system and can generate a linkage baseline item for system security management and the target object is a C/S system, a B/S system, Tomcat and Weblogic baseline items for residual information protection, communication confidentiality and resource control to generate a linkage relation, and the target object is a management system and can generate a linkage baseline item for system security management and WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item for residual information protection and resource control to generate a linkage relation;
the target object is a management system and can generate a linkage baseline item for managing malicious codes and a linkage relation for preventing the malicious codes for the target object by using the intrusion detection baseline item;
the target object is a management system and can generate linkage baseline items for password management and the target object is a firewall, intrusion detection, isolation, encryption authentication, a switch, a router, a C/S system, a B/S system, Tomcat, Weblogic, WINDOWS, LINUX, UNIX, AIX, a relational database and a non-relational database baseline item for identity authentication to generate linkage relation.
5. The system for establishing the safety baseline library of the power monitoring system according to claim 1, wherein the system for establishing the safety baseline library of the power monitoring system further provides a parameter configuration interface for an administrator user or a common user;
the administrator user performs the adding, modifying and deleting operations including the baseline type item, the target object item, the baseline index item, the corresponding check rule and the evaluation suggestion attribute in real time through the interface according to different safety specifications, safety requirements or updating requirements of each site.
6. The safety baseline library establishing method based on the electric power monitoring system safety baseline library system is characterized by comprising the following steps of:
1) classifying safety baseline objects related in the power monitoring system, and sequentially determining a baseline type, a baseline type and a target object;
2) determining a baseline index set for each target object, the baseline index set comprising baseline items, baseline indexes, inspection rules and evaluation recommendation attribute information; firstly, a user selects and confirms required baseline items and baseline indexes of each target object, and meanwhile, according to the determined baseline indexes, the user supplements check rules corresponding to the baseline indexes and evaluates suggested attribute information so as to establish a safe baseline index set of each target object;
3) based on the determined target objects and the corresponding safety baseline index sets, the user selects the safety baseline index sets required by the target objects according to requirements and forms a safety baseline library.
7. The safety baseline bank establishing method based on the power monitoring system safety baseline bank system according to claim 6, wherein:
determining baseline category information for a secure baseline object includes: safety management, network safety, application safety and host safety;
the baseline type information of which the baseline type is safety management comprises safety management;
the baseline type information of which the baseline type is network security comprises security equipment, network equipment and a network architecture;
the baseline type information of which the baseline category is application safety comprises an application system and middleware;
the baseline type information of which the baseline type is the host security comprises a host and a database;
the target object with the baseline type of safety management comprises safety management, management personnel and a management system;
the target object with the baseline type of the safety equipment comprises a firewall, intrusion detection, isolation and encryption authentication;
the target object with the baseline type of the network equipment comprises a switch and a router;
the target object with the baseline type of the network architecture comprises the network architecture;
the target object with the baseline type of the application system comprises a C/S system and a B/S system;
the target object with the baseline type being the middleware comprises Tomcat and Weblogic;
the target object with the baseline type of the host comprises WINDOWS, LINUX, UNIX and AIX;
the target object with the baseline type as the database comprises a relational database and a non-relational database;
the baseline item, the baseline index, the inspection rule and the attribute information of the evaluation suggestion of the target object are derived from national grade protection standards and national grid company safety baseline technical specification requirements;
and when the target object performs baseline index configuration for a management system, automatically linking and increasing the safe baseline configuration of corresponding baseline indexes of other target objects according to configuration contents.
CN201811515472.5A 2018-12-12 2018-12-12 System and method for establishing safety baseline library of power monitoring system Active CN109460400B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811515472.5A CN109460400B (en) 2018-12-12 2018-12-12 System and method for establishing safety baseline library of power monitoring system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811515472.5A CN109460400B (en) 2018-12-12 2018-12-12 System and method for establishing safety baseline library of power monitoring system

Publications (2)

Publication Number Publication Date
CN109460400A CN109460400A (en) 2019-03-12
CN109460400B true CN109460400B (en) 2022-04-08

Family

ID=65613099

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811515472.5A Active CN109460400B (en) 2018-12-12 2018-12-12 System and method for establishing safety baseline library of power monitoring system

Country Status (1)

Country Link
CN (1) CN109460400B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111814152A (en) * 2020-07-09 2020-10-23 北京嘀嘀无限科技发展有限公司 Security assessment method, device, electronic equipment and medium
CN112380533B (en) * 2020-11-17 2023-12-15 广东电网有限责任公司江门供电局 Method for checking security baseline of computer terminal
CN113791973B (en) * 2021-08-23 2022-09-06 湖北省农村信用社联合社网络信息中心 Compatibility baseline detection method and system based on rural telecommunication system
CN113992422B (en) * 2021-11-04 2024-03-26 中海油信息科技有限公司北京分公司 Firewall rule dynamic configuration method

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103414585A (en) * 2013-08-01 2013-11-27 华南师范大学 Method and device for building safety baselines of service system
CN104125197A (en) * 2013-04-24 2014-10-29 阿里巴巴集团控股有限公司 Security baseline system and method thereof for implementing security checks
CN104966021A (en) * 2015-05-21 2015-10-07 浪潮电子信息产业股份有限公司 Creating and analytic methods and device for security baseline data files
CN105740723A (en) * 2016-01-28 2016-07-06 浪潮电子信息产业股份有限公司 Management method and system of security baseline
CN106651005A (en) * 2016-11-18 2017-05-10 云南电网有限责任公司电力科学研究院 Baseline load prediction method and apparatus
CN106933819A (en) * 2015-12-29 2017-07-07 大唐高鸿信安(浙江)信息科技有限公司 Security baseline storehouse dynamic fixing method based on metadata
CN107679692A (en) * 2017-09-02 2018-02-09 深圳供电局有限公司 Security baseline management system and method

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102270271B (en) * 2011-05-03 2014-03-19 北京中瑞泰科技有限公司 Equipment failure early warning and optimizing method and system based on similarity curve

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104125197A (en) * 2013-04-24 2014-10-29 阿里巴巴集团控股有限公司 Security baseline system and method thereof for implementing security checks
CN103414585A (en) * 2013-08-01 2013-11-27 华南师范大学 Method and device for building safety baselines of service system
CN104966021A (en) * 2015-05-21 2015-10-07 浪潮电子信息产业股份有限公司 Creating and analytic methods and device for security baseline data files
CN106933819A (en) * 2015-12-29 2017-07-07 大唐高鸿信安(浙江)信息科技有限公司 Security baseline storehouse dynamic fixing method based on metadata
CN105740723A (en) * 2016-01-28 2016-07-06 浪潮电子信息产业股份有限公司 Management method and system of security baseline
CN106651005A (en) * 2016-11-18 2017-05-10 云南电网有限责任公司电力科学研究院 Baseline load prediction method and apparatus
CN107679692A (en) * 2017-09-02 2018-02-09 深圳供电局有限公司 Security baseline management system and method

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
《A New Security Baseline Reinforcement Method for the Power Information System》;Shan Gao等;《Applied Mechanics and Materials》;20130228;第2407-2411页 *
《信息安全配置核查***的设计与实现》;刘杰;《中国优秀硕士学位论文全文数据库 信息科技辑》;20180315;第I138-217页 *
《安全基线管理***的研究与实现》;王方宁;《中国优秀硕士学位论文全文数据库 信息科技辑》;20180415;第I138-504页 *
《电力监控***安全等级保护在线测评技术研究与应用》;朱红勤等;《信息与电脑》;20171230;第1-3页 *

Also Published As

Publication number Publication date
CN109460400A (en) 2019-03-12

Similar Documents

Publication Publication Date Title
CN109460400B (en) System and method for establishing safety baseline library of power monitoring system
CN110457891B (en) Permission configuration interface display method, device, terminal and storage medium
CN111460495B (en) Data hierarchical management system and method
CN104486346A (en) Stepping stone system
CN102447684A (en) Data processing method and equipment
CN114201447B (en) Archive classification system realized based on cloud and archive integrated platform
CN112150122A (en) Agile network resource positioning and decision-making system
CN110188089B (en) Database operation and maintenance management and control method and device
CN113361937A (en) Integrated quality evaluation method for electronic government system
CN112380533A (en) Method for checking security baseline of computer terminal
CN108614882A (en) A kind of file management method and system based on server
CN112685743A (en) Automatic reinforcing method and system for host security baseline
CN111047301B (en) Spacecraft development process management system and method
CN108830565B (en) Menu authorization method based on role
CN111652454A (en) Supervision quality and safety production management evaluation management system
CN112015715A (en) Industrial Internet data management service testing method and system
CN116070193A (en) Authority auditing method, system and storage medium for operation and maintenance personnel
CN115455008A (en) Database processing method, device, equipment and medium
CN112784235B (en) Method for automatically distributing link tracking system permission based on CMDB project related information
CN115688199A (en) Key generation method and device for intelligent device, electronic device and medium
CN109412861B (en) Method for establishing security association display of terminal network
CN113032770A (en) User classification authority management method and device and intelligent terminal
CN112766678A (en) Wisdom fire control big data supervise platform
CN110719246A (en) Website vulnerability checking system
CN115879429B (en) Electronic form verification method and device, electronic equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant