CN114253762A - Heterogeneous method and system for improving command issuing security of industrial personal computer - Google Patents

Heterogeneous method and system for improving command issuing security of industrial personal computer Download PDF

Info

Publication number
CN114253762A
CN114253762A CN202111561811.5A CN202111561811A CN114253762A CN 114253762 A CN114253762 A CN 114253762A CN 202111561811 A CN202111561811 A CN 202111561811A CN 114253762 A CN114253762 A CN 114253762A
Authority
CN
China
Prior art keywords
command
processing module
target instruction
instruction information
request message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111561811.5A
Other languages
Chinese (zh)
Inventor
彭懿
刘晓
周公建
孙博龙
陈景柱
张文辉
任倩
易晨旭
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Casco Signal Ltd
Original Assignee
Casco Signal Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Casco Signal Ltd filed Critical Casco Signal Ltd
Priority to CN202111561811.5A priority Critical patent/CN114253762A/en
Publication of CN114253762A publication Critical patent/CN114253762A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/08Error detection or correction by redundancy in data representation, e.g. by using checking codes
    • G06F11/10Adding special bits or symbols to the coded information, e.g. parity check, casting out 9's or 11's
    • G06F11/1004Adding special bits or symbols to the coded information, e.g. parity check, casting out 9's or 11's to protect a block of data words, e.g. CRC or checksum
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L1/00Arrangements for detecting or preventing errors in the information received
    • H04L1/004Arrangements for detecting or preventing errors in the information received by using forward error control
    • H04L1/0056Systems characterized by the type of code used
    • H04L1/0061Error detection codes

Landscapes

  • Engineering & Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Quality & Reliability (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Input From Keyboards Or The Like (AREA)

Abstract

The invention discloses a heterogeneous method and a heterogeneous system for improving the safety of issuing commands by an industrial personal computer, wherein the method comprises the following steps: the first processing module issues a command request message to the control module according to the target instruction information; the second processing module issues a secondary command confirmation message to the control module according to the target instruction information; the control module analyzes and compares the primary command request message and the secondary command confirmation message, and when the target instruction information contained in the primary command request message and the secondary command confirmation message is the same and does not time out, the control module starts to execute the target instruction. The advantages are that: the method adopts two different processing modules to process the same target instruction information, effectively reduces operation errors, reduces the possibility of accidents, ensures the correct and real control intention of operators, and greatly improves the safety of issuing control commands.

Description

Heterogeneous method and system for improving command issuing security of industrial personal computer
Technical Field
The invention relates to the field of train control command security, in particular to a heterogeneous method and a heterogeneous system for improving command issuing security of an industrial personal computer.
Background
An Automatic Train monitoring system (ATS) is used as an important component of a subway signal control system, and is matched with signal equipment such as microcomputer interlocking, trackside ATP (Automatic Train Protection) equipment, vehicle-mounted ATP/ATO equipment and the like, so that centralized monitoring of the signal equipment is realized, and a Train is controlled to automatically run on a main line and a vehicle section/parking lot according to a plan. The ATS sends control commands to the devices such as the interlock and the ATP, the devices such as the interlock and the ATP feed back the state of the devices on the ATS interface after the commands are successfully executed, and safety related commands are from system function safety analysis.
Taking the command of 'canceling temporary speed limit' as an example: the ATS should transmit "cancel temporary speed limit" to the zone 1, but erroneously transmit to the zone 2 to which the speed limit should be limited, and the train does not comply with the speed limit when traveling to the zone 2, thereby possibly causing train derailment and casualties. Therefore, special protection is required to be performed on the ATS to ensure that the ATS can correctly reach the instructions intended by the operator, and the issuing of wrong or stretch-hat commands due to one-time misoperation of the operator or random failure of the ATS is avoided.
The common practice in the industry at present is as follows: based on hardware equipment such as a commercial industrial personal computer, risks such as automatic issuing of control commands and mistaken issuing of control commands are prevented by improving software design and strengthening operation processes. For example: simulating a mode that a bank account sends a random code to be filled by a user; simply presenting different input modes to the user on the man-machine operation interface; and thirdly, adding a physical lock on the operation table, and matching the physical lock for use when executing related instructions. Although the above measures can effectively solve the problem of user operation authority, the protection strength for misissuing commands caused by health diagnosis of the ATS or ATS failure is far from sufficient. Therefore, based on the current status of the railway signal system and the shortcomings of the existing protection method, a command issuing method and system with higher safety is needed.
Disclosure of Invention
The invention aims to provide a heterogeneous method and a heterogeneous system for improving command issuing safety of an industrial personal computer, wherein the method processes the same target instruction information by adopting two different processing modules, analyzes and compares messages transmitted by the two processing modules by means of a control module, and when the target instruction information contained in the messages transmitted by the two processing modules is the same and is not overtime, namely the target task is transmitted without errors, the control module starts to execute corresponding operation. Meanwhile, the method protects the environmental interference and hardware failure, ensures the correct and real control intention of the operator, and greatly improves the safety of issuing the control command.
In order to achieve the purpose, the invention is realized by the following technical scheme:
a heterogeneous method for improving the safety of issuing commands by an industrial personal computer comprises the following steps:
the first processing module issues a command request message to the control module according to the target instruction information;
the second processing module issues a secondary command confirmation message to the control module according to the target instruction information;
the control module analyzes and compares the primary command request message and the secondary command confirmation message, and when the target instruction information contained in the primary command request message and the secondary command confirmation message is the same and does not time out, the control module starts to execute the target instruction.
Optionally, the target instruction information includes an operating device number and an operating command type;
the primary command request message and/or the secondary command confirmation message comprise a host address, a device address, an operating device number, an operating command type, a random code and a check code.
Optionally, after receiving the primary command request message sent by the first processing module, the control module sends a prompt message to the second processing module to trigger the second processing module to operate.
Optionally, before the first processing module edits and sends a command request message, the task center module and the first processing module together complete a request, the task center module sends target instruction information to the first processing module, the first processing module destroys or resets the device ID variable to be invalid after extracting the operating device number in the target instruction information as a device true value, and generates a plurality of operating device numbers, and after the operating device number at the first processing module is confirmed, the first processing module dialog box is automatically destroyed;
and/or before the second processing module edits and sends the secondary command confirmation message, editing target instruction information at the second processing module to complete secondary confirmation.
Optionally, the task center module and the first processing module adopt different editing interfaces for each element in the target instruction information;
and the second processing module adopts different editing interfaces for each element in the target instruction information.
Optionally, when the task center module edits the target instruction information, the mode of clicking a selection device on the site map is adopted for the operating device number in the target instruction information, a right-key selection interface is adopted for the operating command type in the target instruction information, and the first processing module adopts a drop-down frame selection interface for the operating device number in the target instruction information;
when the second processing module edits the target instruction information, a drop-down box selection interface is adopted for the operation command type in the target instruction information, and a keyboard input interface is adopted for the operation equipment number in the target instruction information.
Optionally, the primary command request message and the secondary command confirmation message are edited in different manners;
and/or the primary command request message and/or the secondary command confirmation message adopt CRC check;
the primary command request message adopts clear codes, and the secondary command confirmation message adopts NISAL coding.
Optionally, the first processing module uses MFC coding and VC10 compiler to edit a command request message once;
and the second processing module adopts QT and C language coding and adopts an intel C + + compiler to edit the secondary command confirmation message.
Optionally, a system using the heterogeneous method for improving command issuing security of the industrial personal computer includes:
the first processing module is used for generating a primary command request message according to the target instruction information;
the second processing module is used for generating a secondary command confirmation message according to the target instruction information;
and the control module is respectively connected with the first processing module and the second processing module, and receives, analyzes and compares the primary command request message and the secondary command confirmation message.
Optionally, the method further includes:
and the task center module is connected with the first processing module and sends target instruction information containing the operating equipment number and the operating command type to the first processing module.
Compared with the prior art, the invention has the following advantages:
in the heterogeneous method and the heterogeneous system for improving the command issuing safety of the industrial personal computer, the method processes the same target instruction information by adopting two different processing modules, analyzes and compares the messages transmitted by the two processing modules by means of the control module, and when the target instruction information contained in the messages transmitted by the two processing modules is the same and is not overtime, namely the target task is transmitted without errors, the control module starts to execute corresponding operation. Meanwhile, the method protects the environmental interference and hardware failure, ensures the correct and real control intention of the operator, and greatly improves the safety of issuing the control command.
Furthermore, compared with the operation habit of the old user, the method does not need to add new means and steps, and can keep the operation habit of the user.
Furthermore, the method adopts different design methods, thereby greatly preventing common-mode failure of the industrial personal computer in the processes of generating and processing the request command and confirming the command, and improving the safety of the system.
Furthermore, the method adopts the Diversity technology recommended in the EN standard, so that the system meets the standard requirements better, and the reliability of the safety of the equipment is more confident.
Drawings
FIG. 1 is a schematic diagram of a heterogeneous method for improving the security of commands issued by an industrial personal computer according to the present invention;
FIG. 2 is a schematic diagram of a heterogeneous method for improving command issuing security of an industrial personal computer in the embodiment of the present invention;
FIG. 3a is a schematic diagram of an editing interface of target instruction information in the task center module according to the present invention;
FIG. 3b is a schematic diagram of an editing interface of target instruction information in the first processing module according to the present invention;
FIG. 3c is a schematic diagram of an editing interface of target instruction information in the second processing module according to the present invention;
FIG. 4 is a schematic diagram of a system architecture of the heterogeneous method for improving the security of commands issued by an industrial personal computer according to the present invention;
fig. 5 is a schematic diagram of a system device architecture adopting a heterogeneous method for improving command issuing security of an industrial personal computer.
Detailed Description
The present invention will now be further described by way of the following detailed description of a preferred embodiment thereof, taken in conjunction with the accompanying drawings.
As shown in fig. 1 and fig. 2, the heterogeneous method for improving the security of commands issued by an industrial personal computer according to the present invention includes:
s1, the first processing module (for example HILC1) issues a command request message (Requst _ Ackonknowledge) to the control module according to the target instruction information.
S2, the second processing module (such as HILC2) issues a secondary command confirmation message (SCONDE _ Confirm) to the control module according to the target instruction information.
In this embodiment, the target instruction information includes information such as an operating device number and an operating command type, and the primary command request message and the secondary command acknowledge message include information such as a host address, a device address, an operating device number, an operating command type, a random code, and a check code. In this embodiment, the control module mainly compares whether the operating device number and the operating command type in the target instruction information are the same.
Further, before the first processing module edits and sends the command request message, that is, before step S1, the method further includes a request process, where the request process is completed by the task center module and the first processing module, and specifically includes: the task center module (such as GPC) edits target instruction information and sends the target instruction information to the first processing module, wherein the task center module adopts a mode of clicking selection equipment on a site map for operating equipment numbers in the target instruction information, adopts a right key selection interface for operating command types in the target instruction information, the first processing module receives the target instruction information and extracts the operating equipment numbers in the target instruction information as equipment truth values and generates a plurality of operating equipment numbers, the variable of the operating equipment numbers is destroyed or reset to be invalid, and when the first processing module sets up the operating equipment numbers in the target instruction information, a user needs to select from the operating equipment numbers and the equipment truth values. The user confirms the operation command at the first processing module and selects the operation device number from the drop-down box. And after receiving the primary command request message sent by the first processing module, the control module sends a prompt message (SRHour) to the second processing module to trigger the operation of the second processing module.
Illustratively, in the present embodiment, the user sets the operating device number, i.e., the operating device ID, in the target instruction information to switch P1202 at the task center module, and sets the operating command type to unseal.
The task center module and the first operation module adopt different editing operation interfaces (such as figures 3a-3b) for each element in the target instruction information. Specifically, when the task center module sends the target instruction information to the first processing module, the user clicks a device on the station yard graph on a mouse of the task center module, selects an operation command in the command menu, and sends the operation command to the first processing module. And the user adopts a drop-down box selection interface for the operating equipment number in the target instruction information in the first processing module, and the operating command type in the target instruction information received from the task center module is displayed on the operating interface of the first processing module so as to be convenient for the user to confirm.
In this embodiment, the user clicks a switch (switch P1202) on the site map at the task center module, i.e., the GPC mouse, and right clicks to select an operation command (unseal) in the command menu; the GPC transmits target instruction information including the operation command (decapsulation) + the operation device ID (switch P1202) to the first processing module. The first processing module, HILC1, generates a random entry of 4 operator numbers from the GPC right key position diffusion finding device: p1206, P1208, P1203, P1205, fill the four random entries and the device truth value P1202 into the drop-down box of the operating device number for user selection. And the first processing module automatically destroys the dialog box after the user issues the equipment ID.
In this embodiment, the first processing module uses MFC code and VC10 compiler to compile a command request message once according to the target instruction information. Illustratively, the one-time command request message includes a host address, a device address, an operating device number, an operating command type, a random code, and a check code, as shown in table 1 below. Further, the primary command request message adopts CRC check to increase the secure transmission of the target instruction information, and information such as the operating device number and the operating command type is all key information and is protected by the CRC check.
TABLE 1 composition of one-time Command request message
Description of the invention Host address Device address Operating device numbering Type of operation command Random code Check code
Content providing method and apparatus 0x5537 0x2355 P1202 Deblocking 31326 24789
Further, before the second processing module edits and sends the secondary command confirmation message, that is, before step S2, the method further includes a secondary confirmation process, specifically, editing and selecting the target instruction message at the second processing module to complete the secondary confirmation.
Optionally, when the second processing module edits and selects the target instruction information (the operating device number is the switch P1202, and the operating command type is set to unseal), the user uses different editing operation interfaces for each element in the target instruction information (see fig. 3 c). Specifically, when the user edits and selects the target instruction information, the drop-down box selection interface is adopted for the operation command type in the target instruction information, and the keyboard input interface is adopted for the operation equipment number in the target instruction information. Namely, the user selects the type of the operation command in the drop-down box of the second processing module, and inputs the number of the operation device, i.e. the ID of the operation device, by using the keyboard, and the second processing module does not judge the validity of the device truth value, based on the information input by the user.
In this embodiment, the second processing module adopts QT and C language coding, and edits the secondary command confirmation message according to the target instruction information by using an intel C + + compiler. Illustratively, the secondary command acknowledge message is shown in table 2 below, which contains a host address, a device address, an operating device number, an operating command type, a random code, and a check code. Furthermore, the secondary command confirmation message adopts CRC to increase the safe transmission of the target instruction information, the number of the operating equipment, the type of the operating command and other information are all key information, NISAL coding is adopted, and the information is protected by the CRC, so that the transmission accuracy of the target instruction information is ensured.
TABLE 2 composition of Secondary Command acknowledgment messages
Figure BDA0003415152530000071
And S3, the control module analyzes and compares the primary command request message and the secondary command confirmation message, and when the target instruction information contained in the primary command request message and the secondary command confirmation message is the same and is not overtime (namely the time difference between the two messages reaching the control module does not exceed a preset time), the control module starts to execute the target instruction. That is, the control module mainly compares whether the operating device numbers and the operating command types contained in the two command messages are consistent, and whether the time between the two command messages exceeds a preset time, and only when the operating device numbers and the operating command types contained in the two messages are consistent, the control module executes corresponding operations.
The method processes the same target instruction information by adopting two different processing modules, analyzes and compares the messages transmitted by the two processing modules by means of the control module, and when the target instruction information contained in the messages transmitted by the two processing modules is the same and is not overtime, namely the target task is transmitted without errors, the control module starts to execute corresponding operation. Meanwhile, the method protects the environmental interference and hardware failure, ensures the correct and real control intention of the operator, and greatly improves the safety of issuing the control command.
Based on the same inventive concept, as shown in fig. 4 and 5, the invention also provides a system adopting the heterogeneous method for improving the command issuing security of the industrial personal computer, and the system comprises: a first processing module, a second processing module, and a control module (e.g., an interlock, ATP, or other SIL4 level device).
The first processing module is used for generating a primary command request message according to target instruction information, the second processing module is used for generating a secondary command confirmation message according to the target instruction information, the control module is respectively connected with the first processing module and the second processing module, and the control module receives, analyzes and compares the primary command request message and the secondary command confirmation message sent by the first processing module and the second processing module. The data transmission channels of the first processing module and the second processing module are not communicated with each other, and no data exchange is carried out between transmission processes.
Furthermore, the system adopting the heterogeneous method for improving the command issuing security of the industrial personal computer also comprises a task center module. The task center module is connected with the first processing module, a user clicks the selected equipment on a site map of the task center module by a mouse, and after an operation command is selected in the command menu, the task center module sends target instruction information containing the operation command and the serial number of the operation equipment to the first processing module.
In this embodiment, the first processing module adopts an MFC code and a VC10 compiler, and after receiving target instruction information sent by the task center module, the first processing module takes out a device true value, and destroys or resets the device ID variable to invalid, thereby preventing the use of the input device ID number. The first processing module HILC1 generates 4 random items and 1 true value, fills the random items and 1 true value into the drop-down list of the operating device, selects the device ID by the user, issues the device ID, and automatically destroys the dialog box of the HILC1 after issuing the device ID. After the user selects the equipment ID, the software calculates the CRC and then sends a first message (Requst _ Ackonknowledge) to the control module.
The second processing module adopts QT and C language coding, and an intelC + + compiler is used for receiving the SRHour message. And after the user selects an operation command and inputs an operation equipment ID, the software calculates CRC and then sends a third message (SCONDE _ Confirm) to the control module. At this stage, HILC2 does not make a true device validity determination based on user input. The message packet coding methods of the primary request and the secondary confirmation command are different, the primary request adopts a clear code, and the secondary confirmation adopts NISAL coding.
For the selection of the operation command in the target instruction information, the operation interfaces of the primary request process and the secondary confirmation process are different, the operation requirements of operators are different, a right key selection mode is adopted in the primary request process, and a mode selected from a drop-down box is adopted in the secondary confirmation process; for the selection of the operation equipment, a mode of selecting from a drop-down box is adopted in the primary request process, and a mode of keyboard input is adopted in the secondary confirmation process. The method ensures the real intention of the operator through different operation modes, and prevents misoperation of the operator.
In this embodiment, the task center module, i.e., GPC, is a non-secure module, which is used for state machine management, prevents windows from popping up erroneously, pops up a corresponding window only until a fixed state is reached, and provides a right-click menu function to initiate operations related to HILC 1. And after the user clicks equipment on the station yard graph on a mouse of the task center module and selects an operation command in the command menu, the task center module sends target instruction information containing the operation command and the number of the operation equipment to the first processing module.
In summary, in the heterogeneous method and system for improving the command issuing security of the industrial personal computer, the method respectively sends the primary command request message and the secondary command confirmation message to the control module through the first processing module and the second processing module, the two processes do not have message interaction by means of double-process time-sharing processing, and the security and the accuracy of target instruction information transmission are improved by means of the independence and the dissimilarity of the two transmission channels.
Further, the task center module sends target instruction information to the first processing module, and different editing operation interfaces are adopted in the primary request process and the secondary confirmation process to prevent misoperation of operators.
Furthermore, the primary command request message and the secondary command confirmation message have different editing modes, and different control command codes, control message formats, equipment information representation methods and the like are adopted to prevent interface errors from independently issuing control commands.
Furthermore, one part of the method prevents manual misoperation through a standard operation flow, and the other part of the method protects random hardware failure through a double-version design with a fault safety comparison and time-sharing operation electronic structure.
While the present invention has been described in detail with reference to the preferred embodiments, it should be understood that the above description should not be taken as limiting the invention. Various modifications and alterations to this invention will become apparent to those skilled in the art upon reading the foregoing description. Accordingly, the scope of the invention should be determined from the following claims.

Claims (10)

1. A heterogeneous method for improving the command issuing security of an industrial personal computer is characterized by comprising the following steps:
the first processing module issues a command request message to the control module according to the target instruction information;
the second processing module issues a secondary command confirmation message to the control module according to the target instruction information;
the control module analyzes and compares the primary command request message and the secondary command confirmation message, and when the target instruction information contained in the primary command request message and the secondary command confirmation message is the same and does not time out, the control module starts to execute the target instruction.
2. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 1,
the target instruction information comprises an operating equipment number and an operating command type;
the primary command request message and/or the secondary command confirmation message comprise a host address, a device address, an operating device number, an operating command type, a random code and a check code.
3. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 1,
and after receiving the primary command request message sent by the first processing module, the control module sends a prompt message to the second processing module to trigger the second processing module to operate.
4. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 1,
before the first processing module edits and sends a command request message, the task center module and the first processing module jointly complete a request, the task center module sends target instruction information to the first processing module, the first processing module destroys or resets an equipment ID variable to be invalid after extracting an operating equipment number in the target instruction information as an equipment true value and generates a plurality of operating equipment numbers, and a dialog box of the first processing module automatically destroys after the operating equipment number at the first processing module is confirmed;
and/or before the second processing module edits and sends the secondary command confirmation message, editing target instruction information at the second processing module to complete secondary confirmation.
5. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 4,
the task center module and the first processing module adopt different editing interfaces for each element in the target instruction information;
and the second processing module adopts different editing interfaces for each element in the target instruction information.
6. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 4 or 5,
when the task center module edits the target instruction information, the mode of clicking selection equipment on a station yard graph is adopted for the operating equipment number in the target instruction information, a right-key selection interface is adopted for the operating command type in the target instruction information, and a drop-down frame selection interface is adopted for the operating equipment number in the target instruction information by the first processing module;
when the second processing module edits the target instruction information, a drop-down box selection interface is adopted for the operation command type in the target instruction information, and a keyboard input interface is adopted for the operation equipment number in the target instruction information.
7. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 1,
the editing modes of the primary command request message and the secondary command confirmation message are different;
and/or the primary command request message and/or the secondary command confirmation message adopt CRC check;
the primary command request message adopts clear codes, and the secondary command confirmation message adopts NISAL coding.
8. The heterogeneous method for improving the command issuing security of the industrial personal computer according to claim 7,
the first processing module adopts MFC coding and VC10 compiler to edit once command request message;
and the second processing module adopts QT and C language coding and adopts an intel C + + compiler to edit the secondary command confirmation message.
9. The system for improving the command issuing security of the industrial personal computer by adopting the heterogeneous method for improving the command issuing security of the industrial personal computer as claimed in any one of claims 1 to 8 is characterized by comprising the following steps:
the first processing module is used for generating a primary command request message according to the target instruction information;
the second processing module is used for generating a secondary command confirmation message according to the target instruction information;
and the control module is respectively connected with the first processing module and the second processing module, and receives, analyzes and compares the primary command request message and the secondary command confirmation message.
10. The system of claim 9, further comprising:
and the task center module is connected with the first processing module and sends target instruction information containing the operating equipment number and the operating command type to the first processing module.
CN202111561811.5A 2021-12-16 2021-12-16 Heterogeneous method and system for improving command issuing security of industrial personal computer Pending CN114253762A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111561811.5A CN114253762A (en) 2021-12-16 2021-12-16 Heterogeneous method and system for improving command issuing security of industrial personal computer

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111561811.5A CN114253762A (en) 2021-12-16 2021-12-16 Heterogeneous method and system for improving command issuing security of industrial personal computer

Publications (1)

Publication Number Publication Date
CN114253762A true CN114253762A (en) 2022-03-29

Family

ID=80795925

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111561811.5A Pending CN114253762A (en) 2021-12-16 2021-12-16 Heterogeneous method and system for improving command issuing security of industrial personal computer

Country Status (1)

Country Link
CN (1) CN114253762A (en)

Similar Documents

Publication Publication Date Title
US20100299006A1 (en) Method and System for Providing Redundancy in Railroad Communication Equipment
CN108189863B (en) Safety command control method for automatic train monitoring system
EP1738233B2 (en) Safety-oriented control system
CN104869006A (en) Data service automatic activation method and platform
CN112124375B (en) Temporary speed limiting method and system
CN114253762A (en) Heterogeneous method and system for improving command issuing security of industrial personal computer
CN110828018A (en) Compact distributed nuclear power reactor DCS architecture
WO2011128210A1 (en) Method and device for confirming an operationally safe state of a critical safety system
CN114228789A (en) Full-automatic train dual-channel remote control method, device, equipment and medium
CN114275009B (en) Method, equipment and medium for preventing route error unlocking based on full-electronic interlocking
JP2007018414A (en) Control device having correcting function of memory bit error
CN105329266A (en) Train starting and braking control method
EP1104735A1 (en) Multiple system processor, controller connected to multiple system processor, and multiple system processing system
CN108068845A (en) Method and device for hot backup of wireless communication/control unit and storage medium
CN108032877A (en) Method and device for hot backup of vehicle-mounted BTM unit and computer readable medium
CN114940195A (en) Train operation safety protection method and system
CN114802368B (en) Device control method, system, device, equipment and storage medium of interlocking system
JP4722016B2 (en) Operation support system
CN109189280B (en) Icon safety operation method under voice screen mouse check
CN111717237B (en) Tramcar axle counting remote reset design method based on safety password
JP4504990B2 (en) Control system, communication method, operation terminal, control device, and program
JP3210833B2 (en) Error checking method and device
JP2005511386A (en) Method for controlling railway operation process requiring safety and apparatus for carrying out this method
CN107798906A (en) A kind of communication system and its method for underground parking garage guiding
CN113422672B (en) Safe display method for control command execution state

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination