CN115276234A - Power network safety monitoring system - Google Patents
Power network safety monitoring system Download PDFInfo
- Publication number
- CN115276234A CN115276234A CN202210975566.0A CN202210975566A CN115276234A CN 115276234 A CN115276234 A CN 115276234A CN 202210975566 A CN202210975566 A CN 202210975566A CN 115276234 A CN115276234 A CN 115276234A
- Authority
- CN
- China
- Prior art keywords
- safety
- module
- safety monitoring
- power network
- monitoring result
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00002—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by monitoring
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00001—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by the display of information or by user interaction, e.g. supervisory control and data acquisition systems [SCADA] or graphical user interfaces [GUI]
Landscapes
- Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Human Computer Interaction (AREA)
- Alarm Systems (AREA)
Abstract
The invention discloses a power network safety monitoring system and a system, wherein the system comprises: the system comprises a safety monitoring module, a data analysis module, a risk judgment module and a central server, wherein the safety monitoring module is used for carrying out safety monitoring on the power network of a target area to obtain safety monitoring data; the data analysis module analyzes the safety monitoring data to obtain a safety monitoring result; the risk judgment module carries out risk judgment on the safety monitoring result according to a preset safety threat level, generates warning information if the safety risk exists, and sends the warning information and the safety monitoring result to the central server; and the central server visually displays the safety risk according to the received warning information and the safety monitoring result. According to the invention, the power network is monitored in real time, so that the security threat existing in the power network can be found and displayed in time, workers can conveniently deal with the risk in time, and the loss is reduced.
Description
Technical Field
The invention relates to the technical field of network security, in particular to a power network security monitoring system.
Background
With the continuous development of computer network technology, power communication networks rapidly gain popularity in the industrial field by means of powerful power supply networks, in particular for the management and data acquisition of power supply devices. In the aspect of power information data transmission, the optical fiber transmission technology has wide transmission frequency band and large capacity; no relay equipment exists, so that the transmission distance is long; the characteristics of small crosstalk, high signal transmission quality and the like become the current mainstream technology. In recent years, power information networks have been rapidly developed, and an integrated national power dispatching data network and information network covering each power grid enterprise are formed on the basis of a high-speed power communication network. The power communication network has developed into a trunk communication network combining various transmission means such as optical fiber, digital microwave, wireless, satellite and the like, and basically covers all links such as power generation, power transmission, power distribution and the like. Because the development trend of the network tends to a ubiquitous network architecture system, along with the rapid development of the internet, the application of the internet in the power system is more and more extensive, and the failure of the power system causes immeasurable loss, but in the prior art, the network security problem in the power system has great hysteresis in problem discovery and processing.
Disclosure of Invention
In view of this, an embodiment of the present invention provides a power network security monitoring system, so as to solve the problem that in the prior art, there is a large hysteresis in discovery and processing of a power network security problem.
In order to achieve the purpose, the invention provides the following technical scheme:
the embodiment of the invention provides a power network safety monitoring system, which comprises:
a safety monitoring module, a data analysis module, a risk judgment module and a central server, wherein,
the safety monitoring module is used for carrying out safety monitoring on the power network of the target area to obtain safety monitoring data;
the data analysis module is used for analyzing the safety monitoring data to obtain a safety monitoring result;
the risk judgment module is used for carrying out risk judgment on the safety monitoring result according to a preset safety threat level, generating warning information if a safety risk exists, and sending the warning information and the safety monitoring result to the central server;
and the central server is used for visually displaying the safety risk according to the received warning information and the safety monitoring result.
Optionally, the power network safety monitoring system further includes: and the network maintenance module is used for determining a safety problem according to the safety monitoring result when a safety risk exists, and screening corresponding maintenance measures from a preset safety database according to the safety problem to perform safety maintenance on the power network.
Optionally, the power network safety monitoring system further includes: and the updating module is used for repairing the system based on the safety problem and updating the system according to the repaired data in the process of carrying out safety maintenance on the power network by the network maintenance module.
Optionally, the power network safety monitoring system further includes: and the defense module is used for generating a firewall according to a preset security defense strategy, and blocking access with security threats when the risk judgment module determines that the security risks exist.
Optionally, the power network safety monitoring system further includes: the safety transmission module is used for encrypting the warning information and the safety monitoring result before the risk judgment module sends the warning information and the safety monitoring result to the central server; and after the warning information and the safety monitoring result are sent to the central server, decrypting the warning information and the safety monitoring result.
Optionally, the power network safety monitoring system further includes: the log management module comprises an acquisition unit, a processing unit and a storage unit;
the acquisition unit is used for acquiring a network security log;
the processing unit is used for filtering the network security log according to a preset filtering rule;
the storage unit is used for storing the network security log after the filtering processing.
Optionally, the log management module further includes: and the log analysis module is used for carrying out fault positioning and safety identification on the network safety log to obtain a fault position and a safety problem and sending the fault position and the safety problem to the central server.
Optionally, the log management module further includes: and the query module is used for acquiring a query demand, performing keyword identification on the query demand to obtain keyword information, and searching a corresponding network security log in the storage unit according to the keyword information for feedback.
Optionally, the power network safety monitoring system further includes: and the alarm module is used for carrying out alarm reminding when the risk judgment module judges that the safety monitoring result has risks.
Optionally, the power network safety monitoring system further includes: a storage module, a control terminal and an operation terminal,
the storage module is used for storing the warning information and the safety monitoring result;
the control terminal is used for sending an operation instruction to the operation terminal;
and the operation terminal is used for receiving the operation instruction of the control terminal and executing the control operation.
The technical scheme of the invention has the following advantages:
the invention provides a power network safety monitoring system, which comprises: the system comprises a safety monitoring module, a data analysis module, a risk judgment module and a central server, wherein the safety monitoring module is used for carrying out safety monitoring on the power network of a target area to obtain safety monitoring data; the data analysis module is used for analyzing the safety monitoring data to obtain a safety monitoring result; the risk judgment module is used for carrying out risk judgment on the safety monitoring result according to a preset safety threat level, generating warning information if the safety risk exists, and sending the warning information and the safety monitoring result to the central server; and the central server is used for visually displaying the safety risk according to the received warning information and the safety monitoring result. According to the invention, the power network is monitored in real time, so that the security threats existing in the power network can be found and displayed in time, workers can conveniently deal with the risks in time, the security problems can be dealt with more quickly and efficiently, and the loss is reduced.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and other drawings can be obtained by those skilled in the art without creative efforts.
Fig. 1 is a schematic structural diagram of a power network security monitoring system according to an embodiment of the present invention;
fig. 2 is a schematic structural diagram of a power network security monitoring system in an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
In this embodiment, a power network security monitoring system is provided, which can be used in a power network, as shown in fig. 1, and includes: a safety monitoring module 1, a data analysis module 2, a risk judgment module 3 and a central server 4, wherein,
and the safety monitoring module 1 is used for carrying out safety monitoring on the power network of the target area to obtain safety monitoring data. Specifically, the method comprises the steps of monitoring equipment of a power network in real time, acquiring operation data in the operation process of the equipment, analyzing the operation data, and acquiring normal data, abnormal data and equipment fault information as safety monitoring data; the safety monitoring module 1 can monitor the power network in real time and all-around mode, so that the information is more complete and has real-time performance, follow-up and timely problem finding and measures are convenient to take, and loss is reduced.
And the data analysis module 2 is used for analyzing the safety monitoring data to obtain a safety monitoring result. Specifically, the data analysis module 2 may perform security analysis on the security monitoring data, check whether security threats exist in abnormal data and device fault information, and if security threats exist, specifically analyze the data with security threats and judge threat levels of the data to obtain a security monitoring result.
And the risk judgment module 3 is used for carrying out risk judgment on the safety monitoring result according to a preset safety threat level, generating warning information if a safety risk exists, and sending the warning information and the safety monitoring result to the central server 4. Specifically, when the risk of the security threat is small (smaller than a preset security threat level) or the security threat does not exist, it indicates that the system is safe, and the security condition and the security monitoring result are sent to the central server 4; when the security threat is large (greater than the preset security threat level), it indicates that the security risk is large, and the situation is urgent, and needs to be processed in time, so as to generate warning information and send the warning information and the security monitoring result to the central server 4. Through risk judgment, data support can be provided for later maintenance, and risk early warning can be provided for safety workers.
And the central server 4 is used for visually displaying the safety risk according to the received warning information and the safety monitoring result. Specifically, the warning information may be classified according to the severity of the security threat level, and different display modes are set according to the severity, for example: the warning lights with different colors or the fonts with different colors are arranged for distinguishing, through visual display, the safety risk existing at present can be visually displayed, the worker can conveniently and timely handle the safety risk, and the loss is reduced.
According to the power network safety monitoring system provided by the embodiment of the invention, the power network is monitored in real time, so that the safety threat existing in the power network can be found and displayed in time, workers can conveniently deal with the risk in time, the safety problem can be dealt with more quickly and efficiently, and the loss is reduced.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: and the network maintenance module 5 is used for determining a safety problem according to a safety monitoring result when a safety risk exists, and screening corresponding maintenance measures from a preset safety database according to the safety problem to perform safety maintenance on the power network. Specifically, the abnormal data and the equipment fault information are analyzed to obtain the safety problems causing the abnormal data and the equipment faults, maintenance measures corresponding to the safety problems are screened from the safety database, safety maintenance is timely and effectively carried out, and when the problems are found, the safety maintenance can be timely carried out on the power network through establishing the safety database, so that the safety guarantee is improved, and the risk loss is reduced.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: and the updating module 6 is used for repairing the system based on the security problem and updating the system according to the repaired data in the process of performing security maintenance on the power network by the network maintenance module 5. Specifically, based on the safety problem causing abnormal data and equipment failure, equipment inspection and failure removal are performed in time, and after the abnormal data is recovered to be normal or the equipment failure is removed, after all data are recovered to be stable, the system is updated based on the repaired content. The system data is timely updated after the system is repaired through the updating module 6, so that the safety performance of the system is improved, and the safety of the power network is better guaranteed.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: and the defense module 7 is used for generating a firewall according to a preset security defense strategy, and blocking access with security threats when the risk judgment module 3 determines that security risks exist. Specifically, the central server 4 may perform comprehensive analysis on the security situation according to the received warning information and the security monitoring result to obtain the security situation information, and the security defense policy is formulated according to the security situation information of the power network obtained by the central server 4, in combination with the application requirements and the security regulations. The working method of the defense module 7 is as follows: receiving a defense command of the central server 4, starting a firewall, performing firewall blocking processing, recording firewall blocking logs and ending the blocking, enabling the firewall to enter a dormant state, and restarting a system node; the judgment flow of the blocking end is as follows: receiving the instruction of user releasing operation, transmitting user information, forbidding the state of user to complete the blocking action. By the defense module 7, partial access behaviors with security risks can be blocked, and the system security performance is improved.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: and the safety transmission module 8 is used for encrypting the warning information and the safety monitoring result before the risk judgment module 3 sends the warning information and the safety monitoring result to the central server 4. After the warning information and the safety monitoring result are sent to the central server 4, the warning information and the safety monitoring result are decrypted. Specifically, the security in the information transmission process is improved by means of encryption and decryption, and the information is ensured to be transmitted to the central server 4 accurately and completely.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: the log management module 9, the log management module 9 includes a collection unit, a processing unit and a storage unit.
The acquisition unit is used for acquiring the network security logs. Specifically, based on the syslog protocol and the logging rule, the collection of the power network security log is performed through the UDP514 port.
The processing unit is used for filtering the network security log according to a preset filtering rule. Specifically, the filtering process filters the log according to a set filtering rule, where the filtering rule includes a source IP, a destination IP, a source port, a destination port, and an event type.
The storage unit is used for storing the filtered network security log. When the log is stored, the log is stored according to a preset log rule, and the log rule can be set in a user-defined mode, so that workers can monitor the safety events of the power network in real time conveniently, and the safety monitoring level of the power network safety monitoring system is improved.
Specifically, in an embodiment, the log management module 9 further includes: and the log analysis module is used for carrying out fault positioning and safety identification on the network safety log to obtain a fault position and a safety problem and sending the fault position and the safety problem to the central server 4. Specifically, the network security logs are compared with historical network security logs, difference data are found, the difference data are analyzed, safety problems such as abnormal data with potential safety hazards and/or equipment fault information are obtained, fault positions are located through log contents, and then the safety problems and the fault positions are sent to the central server 4. The development trend of the data can be obtained by analyzing the difference data, and whether the data is possibly developed into a security threat in the future or not is judged according to the development trend and reported. The log analysis module can accurately position the power network fault from a large amount of log data and identify the security threat in advance, so that the security monitoring range is improved, and the security protection is more comprehensive.
Specifically, in an embodiment, the log management module 9 further includes: and the query module is used for acquiring a query requirement, performing keyword identification on the query requirement to obtain keyword information, and searching a corresponding network security log in the storage unit according to the keyword information for feedback. Specifically, the security logs related to the security problems can be quickly found through the query module, then calling analysis is carried out, and system efficiency is improved.
Specifically, in an embodiment, as shown in fig. 2, the system further includes: and the alarm module 10 is used for performing alarm reminding when the risk judgment module 3 judges that the safety monitoring result has a risk. Specifically, the safety monitoring result is judged and recognized, real-time alarm reminding is carried out when the risk is recognized, so that safety maintenance personnel can find the risk condition more quickly, measures are taken in time to maintain network safety, and loss is reduced.
Specifically, in an embodiment, the system further includes: a storage module 11, a control terminal and an operation terminal,
and the storage module 11 is used for storing the warning information and the safety monitoring result. Specifically, the Memory module may be a magnetic Disk, an optical Disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a Flash Memory (Flash Memory), a Hard Disk (Hard Disk Drive, abbreviated as HDD), a Solid-State Drive (SSD), or the like. The storage medium may also comprise a combination of memories of the kind described above.
And the control terminal is used for sending an operation instruction to the operation terminal. Specifically, all automatic processing processes can send out operation instructions through the control terminal, and when manual intervention is needed, the control terminal can also control the sending of instructions of all modules in the system.
And the operation terminal is used for receiving the operation instruction of the control terminal and executing the control operation. Specifically, the operation terminal can execute control operations on the log management module 9, the network maintenance module 5, the update module 6 and the defense module 7, so that the operation terminal is convenient for workers to use.
Although the embodiments of the present invention have been described in conjunction with the accompanying drawings, those skilled in the art may make various modifications and variations without departing from the spirit and scope of the invention, and such modifications and variations fall within the scope defined by the appended claims.
Claims (10)
1. A power network security monitoring system, comprising: a safety monitoring module, a data analysis module, a risk judgment module and a central server, wherein,
the safety monitoring module is used for carrying out safety monitoring on the power network of the target area to obtain safety monitoring data;
the data analysis module is used for analyzing the safety monitoring data to obtain a safety monitoring result;
the risk judgment module is used for carrying out risk judgment on the safety monitoring result according to a preset safety threat level, generating warning information if a safety risk exists, and sending the warning information and the safety monitoring result to the central server;
and the central server is used for visually displaying the safety risk according to the received warning information and the safety monitoring result.
2. The power network security monitoring system of claim 1, wherein the system further comprises: and the network maintenance module is used for determining a safety problem according to the safety monitoring result when a safety risk exists, and screening corresponding maintenance measures from a preset safety database according to the safety problem to perform safety maintenance on the power network.
3. The power network security monitoring system of claim 2, wherein the system further comprises: and the updating module is used for repairing the system based on the safety problem and updating the system according to the repaired data in the process of carrying out safety maintenance on the power network by the network maintenance module.
4. The power network security monitoring system of claim 1, wherein the system further comprises: and the defense module is used for generating a firewall according to a preset security defense strategy, and blocking access with security threats when the risk judgment module determines that the security risks exist.
5. The power network security monitoring system of claim 1, wherein the system further comprises: the safety transmission module is used for encrypting the warning information and the safety monitoring result before the risk judgment module sends the warning information and the safety monitoring result to the central server; and after the warning information and the safety monitoring result are sent to the central server, decrypting the warning information and the safety monitoring result.
6. The power network security monitoring system of claim 1, wherein the system further comprises: the log management module comprises an acquisition unit, a processing unit and a storage unit;
the acquisition unit is used for acquiring a network security log;
the processing unit is used for filtering the network security log according to a preset filtering rule;
the storage unit is used for storing the network security log after the filtering processing.
7. The power network security monitoring system of claim 6, wherein the log management module further comprises: and the log analysis module is used for carrying out fault positioning and safety identification on the network safety log to obtain a fault position and a safety problem and sending the fault position and the safety problem to the central server.
8. The power network security monitoring system of claim 6, wherein the log management module further comprises: and the query module is used for acquiring a query requirement, performing keyword identification on the query requirement to obtain keyword information, and searching a corresponding network security log in the storage unit according to the keyword information for feedback.
9. The power network security monitoring system of claim 1, the system further comprising: and the alarm module is used for carrying out alarm reminding when the risk judgment module judges that the safety monitoring result has risks.
10. The power network security monitoring system of claim 1, wherein the system further comprises: a storage module, a control terminal and an operation terminal,
the storage module is used for storing the warning information and the safety monitoring result;
the control terminal is used for sending an operation instruction to the operation terminal;
and the operation terminal is used for receiving the operation instruction of the control terminal and executing the control operation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210975566.0A CN115276234A (en) | 2022-08-15 | 2022-08-15 | Power network safety monitoring system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210975566.0A CN115276234A (en) | 2022-08-15 | 2022-08-15 | Power network safety monitoring system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115276234A true CN115276234A (en) | 2022-11-01 |
Family
ID=83750266
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210975566.0A Pending CN115276234A (en) | 2022-08-15 | 2022-08-15 | Power network safety monitoring system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115276234A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117613904A (en) * | 2024-01-23 | 2024-02-27 | 国网天津市电力公司信息通信公司 | Power grid dispatching system and power grid dispatching method |
-
2022
- 2022-08-15 CN CN202210975566.0A patent/CN115276234A/en active Pending
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117613904A (en) * | 2024-01-23 | 2024-02-27 | 国网天津市电力公司信息通信公司 | Power grid dispatching system and power grid dispatching method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108763957B (en) | Database security audit system, method and server | |
| CN108933791B (en) | Intelligent optimization method and device based on power information network safety protection strategy | |
| CN104022904A (en) | Unified management platform for IT devices in distributed computer rooms | |
| CN113157994A (en) | Multi-source heterogeneous platform data processing method | |
| CN112612669A (en) | Infrastructure monitoring and early warning method and system based on situation awareness | |
| CN111431754A (en) | Fault analysis method and system for power distribution and utilization communication network | |
| CN112799358A (en) | Industrial control safety defense system | |
| CN109462621A (en) | Network safety protective method, device and electronic equipment | |
| CN115276234A (en) | Power network safety monitoring system | |
| CN107809321B (en) | Method for realizing safety risk evaluation and alarm generation | |
| CN111244806B (en) | Power equipment safety debugging monitoring system and processing method | |
| CN115941317A (en) | Network security comprehensive analysis and situation awareness platform | |
| CN110049015B (en) | Network security situation awareness system | |
| CN113225342B (en) | Communication abnormality detection method and device, electronic equipment and storage medium | |
| CN105632248A (en) | Safety monitoring system and data processing method therefor | |
| WO2021130897A1 (en) | Analysis device, analysis method, and non-transitory computer-readable medium storing analysis program | |
| CN113760634A (en) | Data processing method and device | |
| CN105530136A (en) | Electric power scheduling system and business monitoring method for the same | |
| CN114143160A (en) | Cloud platform automation operation and maintenance system | |
| CN113064890A (en) | Quality evaluation method, device, server and medium for operator data | |
| CN103248505A (en) | View-based network monitoring method and device | |
| CN112383417A (en) | Terminal security external connection detection method, system, equipment and readable storage medium | |
| CN112887303A (en) | Serial threat access control system and method | |
| CN116112295B (en) | Method and device for researching and judging external connection type attack result | |
| CN113824592B (en) | Quantum network management system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |