CN103473626A - Security protection method based on integrated dispatching data network operation and maintenance system - Google Patents
Security protection method based on integrated dispatching data network operation and maintenance systemDownload PDFInfo
- Publication number
- CN103473626A CN103473626ACN2013103646887ACN201310364688ACN103473626ACN 103473626 ACN103473626 ACN 103473626ACN 2013103646887 ACN2013103646887 ACN 2013103646887ACN 201310364688 ACN201310364688 ACN 201310364688ACN 103473626 ACN103473626 ACN 103473626A
- Authority
- CN
- China
- Prior art keywords
- dispatching
- maintenance
- security
- safety
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
Translated fromChineseDescription
Translated fromChinese技术领域technical field
本发明涉及电力系统领域的一种安全防护方法,具体涉及一种基于调度数据网集中运维系统的安全防护方法。The invention relates to a safety protection method in the field of power systems, in particular to a safety protection method based on a centralized operation and maintenance system of a dispatching data network.
背景技术Background technique
随着特高压交流示范工程正式投运,我国电网迈进了特高压、大电网运行的新时代,电网运行的特性更加复杂,驾驭大电网的难度急剧增加,这使得调度业务对调度技术支持系统的依赖程度进一步提高,也对调度技术支持系统安全防护系统提出了更多的要求。目前安全防护系统存在独立运行,且系统间缺乏安全网络配置、系统内部没有统一规范管理流程、安全事故缺少安全预案、无法进行安全事故反演和预演等问题;安全防护系统对系统安全防护信息监视也存在监视死角,这对系统安全稳定运行造成隐患;没有专门针对安全防护工作搭建系统和开发相应软件也是影响调度系统安全稳定运行的一个主要问题。目前这种各自为营、独立运行的安全防护系统已经无法满足国家电网快速发展对调度系统安全防护工作提出的要求。With the UHV AC demonstration project officially put into operation, my country's power grid has entered a new era of UHV and large power grid operation. The characteristics of power grid operation are more complex, and the difficulty of controlling large power grids has increased sharply. The further increase in the degree of dependence also puts forward more requirements on the security protection system of the dispatching technical support system. At present, there are problems such as independent operation of the security protection system, lack of security network configuration between systems, no unified and standardized management process within the system, lack of safety plan for security incidents, inversion and rehearsal of security incidents, etc.; the security protection system monitors system security protection information There are also monitoring dead angles, which pose hidden dangers to the safe and stable operation of the system; the failure to build a system and develop corresponding software specifically for security protection work is also a major problem affecting the safe and stable operation of the dispatching system. At present, this kind of safety protection system operating independently and independently can no longer meet the requirements of the rapid development of the State Grid for the safety protection work of the dispatching system.
发明内容Contents of the invention
针对现有技术的不足,本发明的目的是提供一种基于调度数据网集中运维系统的安全防护方法,制定了集中运维系统接入调度数据网的安全网络硬件配置方式;实现对国调、分调及省调的智能电网调度技术支持系统的软、硬件集中进行安全防护监视、故障处理,并制定相应的管理措施;提供高效的远程安全防护技术手段,协助各地调度自动化部门快速诊断并处理系统安全防护应用软件的异常和故障,与各地调度系统形成互备的关系,提高系统的安全稳定性。Aiming at the deficiencies of the prior art, the purpose of the present invention is to provide a security protection method based on the centralized operation and maintenance system of the dispatching data network, and formulate a safe network hardware configuration method for the centralized operation and maintenance system to access the dispatching data network; The software and hardware of the smart grid dispatching technical support system for independent, sub-dispatching and provincial dispatching are centralized for safety protection monitoring and fault handling, and corresponding management measures are formulated; efficient remote safety protection technical means are provided to assist local dispatching automation departments to quickly diagnose and Handle abnormalities and failures of system security protection application software, form a mutual backup relationship with local dispatching systems, and improve system security and stability.
本发明的目的是采用下述技术方案实现的:The object of the present invention is to adopt following technical scheme to realize:
本发明提供一种基于调度数据网集中运维系统的安全防护方法,其改进之处在于,所述方法用的安全防护系统包括数据监视远程浏览模块、安全监视与告警模块、故障诊断与处理模块、数据统计与分析模块、维护日志管理措施模块和功能扩展模块;The present invention provides a security protection method based on the centralized operation and maintenance system of dispatching data network. The improvement is that the security protection system used in the method includes a data monitoring remote browsing module, a security monitoring and alarm module, and a fault diagnosis and processing module. , data statistics and analysis module, maintenance log management measures module and function expansion module;
所述方法包括下述步骤:The method comprises the steps of:
(1)对接入调度数据网的安全网络硬件进行配置;(1) Configure the security network hardware connected to the dispatching data network;
(2)确定安全防护的范围和内容;(2) Determine the scope and content of security protection;
(3)确定安全防护软件开发方案;(3) Determine the security protection software development plan;
(4)确定运维系统安全防护管理措施;(4) Determine the safety protection management measures of the operation and maintenance system;
(5)确定安全防护方案。(5) Determine the security protection plan.
优选的,所述数据监视远程浏览模块用于整体信息、局部信息和分层扩展信息(整体信息指电网整体情况的描述比如北京地区的总发电量是200MW,局部信息指整体信息中某一项信息的详细介绍,如北京地区200MW的发电量由什么组成,比如150MW来自火电,50MW来自水电,分层扩展信息指对局部信息进行更细致的分层展示)的显示;Preferably, the data monitoring remote browsing module is used for overall information, partial information and layered extended information (the overall information refers to the description of the overall situation of the power grid, such as the total power generation in the Beijing area is 200MW, and the partial information refers to a certain item in the overall information Detailed introduction of information, such as what constitutes the 200MW power generation in Beijing area, for example, 150MW comes from thermal power, 50MW comes from hydropower, hierarchical expansion information refers to the display of more detailed hierarchical display of local information);
所述安全监视与告警模块用于故障分级和告警分级;The safety monitoring and warning module is used for fault classification and warning classification;
所述故障诊断与处理模块用于应急预案的处理,包括热线电话请求、日常维护和故障分级处理预案;The fault diagnosis and processing module is used for the processing of emergency plans, including hotline requests, daily maintenance and fault classification processing plans;
所述数据统计与分析模块用于出具故障分析报告;The data statistics and analysis module is used to issue a failure analysis report;
所述维护日志管理措施模块用于对集中运维系统的管理,包括日常维护日志的管理、故障维护记录的管理和管理措施的管理;The maintenance log management measures module is used to manage the centralized operation and maintenance system, including the management of daily maintenance logs, the management of fault maintenance records and the management of management measures;
所述功能扩展模块用于应用功能的扩展。The function expansion module is used for the expansion of application functions.
优选的,所述步骤(1)中,将集中运维系统的本地网络接入调度数据网,Preferably, in the step (1), the local network of the centralized operation and maintenance system is connected to the dispatching data network,
所述集中运维系统的本地网络包括安全I区、安全II区和安全III区;分别对应国调系统、分调系统和省调系统调度数据网的I区、II区和III区;The local network of the centralized operation and maintenance system includes a safe area I, a safe II area and a safe III area; respectively corresponding to the I area, II area and III area of the dispatching data network of the national dispatching system, the sub-dispatching system and the provincial dispatching system;
其中集中运维系统的本地网络安全I区和安全II区通过一路光纤分别接入国调系统、分调系统和省调系统I区和II区的调度数据网;集中运维系统的本地网络安全III区通过另一路光纤分别接入国调系统、分调系统和省调系统III区的调度数据网。Among them, the local network security zone I and security zone II of the centralized operation and maintenance system are respectively connected to the dispatching data network of the national dispatching system, the sub-dispatching system, and the provincial dispatching system zone I and II through one optical fiber; the local network security of the centralized operation and maintenance system Area III is respectively connected to the dispatching data network of the national dispatching system, the sub-dispatching system and the provincial dispatching system through another optical fiber.
较优选的,所述本地网络安全I区、安全II区通过国调路由器分别接入国调系统调度数据网的I区和II区;所述本地网络安全I区、安全II区通过分调(调控分中心,即以前的网调,现在网调都叫国家电网XX调控分中心)路由器分别接入分调系统调度数据网的I区和II区;所述本地网络安全I区、安全II区通过省调路由器分别接入省调系统调度数据网I区和II区;More preferably, the local network security zone I and security zone II are respectively connected to zone I and zone II of the national dispatching system dispatching data network through the national dispatch router; The control sub-center, that is, the former network adjustment, and now the network adjustment is called the State Grid XX control sub-center) The routers are respectively connected to the I area and II area of the dispatching system dispatching data network; the local network security area I, security II area Connect to District I and District II of the dispatching data network of the provincial dispatching system through the provincial dispatching router;
本地网络与国调系统的调度数据网络之间、本地网络与分调系统的调度数据网络之间以及本地网络与省调系统的调度数据网络之间均采用纵向加密装置保证网络连接的安全性,本地网络安全III区和安全II区通过正向隔离设备和反向隔离设备实现与外部网络安全隔离。Between the local network and the dispatching data network of the national dispatching system, between the local network and the dispatching data network of the sub-dispatching system, and between the local network and the dispatching data network of the provincial dispatching system, vertical encryption devices are used to ensure the security of network connections. The security zone III and security zone II of the local network realize security isolation from the external network through the forward isolation device and the reverse isolation device.
优选的,所述步骤(2)中,安全防护的范围和内容包括:Preferably, in the step (2), the scope and content of security protection include:
1)网络状态信息:对链路连接情况,网络设备状态进行监视并报警;监视的参数包括:1) Network status information: monitor and alarm the link connection status and network device status; the monitored parameters include:
a、节点网卡状态;a. Node NIC status;
b、磁盘总容量、已使用容量和使用率;b. Total disk capacity, used capacity and usage rate;
c、CPU及内存负荷:内存使用、内存空闲、系统CPU使用率、用户CPU使用率、CPU告警极限和CPU空闲率;c. CPU and memory load: memory usage, memory idle, system CPU usage, user CPU usage, CPU alarm limit and CPU idle rate;
2)系统状态信息:包括系统工况信息、主要进程工况和节点运行工况系统状态信息;监视的参数包括:2) System status information: including system status information, main process status information and node operating status system status information; monitored parameters include:
i、系统关键常驻进程:进程最后活动时间;i. The key resident process of the system: the last activity time of the process;
ii、应用情况:应用上下文和最后刷新时间;ii. Application status: application context and last refresh time;
iii、链路及通道:主/备通道、运行状态和误码率;iii. Links and channels: main/standby channel, operating status and bit error rate;
3)内网安全防护系统:包括防火墙,入侵检测系统、横向隔离装置、纵向加密认证和防病毒系统;监视的参数包括:3) Intranet security protection system: including firewall, intrusion detection system, horizontal isolation device, vertical encryption authentication and anti-virus system; monitoring parameters include:
①内网安全防护防火墙:在线运行率、离线次数和离线时间;①Intranet security protection firewall: online operation rate, offline times and offline time;
②内网安全防护入侵检测系统:在线运行率、离线次数和离线时间;②Intranet security protection intrusion detection system: online operation rate, offline times and offline time;
③内网安全防护横向隔离装置:在线运行率、离线次数和离线时间;③Intranet security protection horizontal isolation device: online operation rate, offline times and offline time;
④内网安全防护纵向加密认证装置:在线运行率、离线次数和离线时间;④Intranet security protection vertical encryption authentication device: online operation rate, offline times and offline time;
⑤内网安全防护防病毒系统:在线运行率、离线次数和离线时间。⑤Intranet security protection and anti-virus system: online operation rate, offline times and offline time.
优选的,所述步骤(3)中,安全防护软件开发方案包括:Preferably, in the step (3), the security protection software development plan includes:
A、集中运维系统运行安全监视:A. Centralized operation and maintenance system operation safety monitoring:
用于对国调、分调和省调的智能电网调度技术支持系统平台及应用安全信息的采集,并通过安全信息自动诊断分析系统状态,对异常状态实现自动告警;It is used to collect the smart grid dispatching technical support system platform and application security information for national, sub- and provincial dispatching, and automatically diagnose and analyze the system status through the security information, and realize automatic alarm for abnormal status;
B、安全防护信息管理:B. Safety protection information management:
集中运维系统对安全防护信息进行存储和分析,并配备完善的数据库系统,实现对安全问题的集中管理和预案管理;The centralized operation and maintenance system stores and analyzes security protection information, and is equipped with a complete database system to realize centralized management and pre-plan management of security issues;
C、安全运维工作站常用软件:包括安全远程登录软件、病毒查杀网络安全防护软件,保证运维环境的安全与可靠;C. Commonly used software for safe operation and maintenance workstations: including safe remote login software, virus scanning and killing network security protection software, to ensure the safety and reliability of the operation and maintenance environment;
D、安全防护信息可视化综合展:D. Security protection information visualization comprehensive exhibition:
利用可视化技术,将运行维护中心的各种安全信息进行综合展示,并提供运行管理和工作使用的交互界面,使安全防护工作的管理、操作和维护直观、方便,提高运维系统安全防护工作的效率;Use visualization technology to comprehensively display various safety information of the operation and maintenance center, and provide an interactive interface for operation management and work use, making the management, operation and maintenance of safety protection work intuitive and convenient, and improving the safety protection work of the operation and maintenance system efficiency;
E、值班日志系统:E. On-duty log system:
值班日志系统分为日常定时巡检信息、故障处理信息和厂家维护信息三部分内容。The duty log system is divided into three parts: daily regular inspection information, fault handling information and manufacturer maintenance information.
优选的,所述步骤(4)中,运维系统安全防护管理措施包括:Preferably, in the step (4), the operation and maintenance system safety protection management measures include:
I、运维场所保障措施:I. Guarantee measures for operation and maintenance sites:
集中运维系统安装双向控制的电子门禁系统,安装监控摄像头并保证全部范围覆盖,重要设备(重要设备包括系统的服务器、路由器、纵向加密装置这些属于重要设备)放置在电磁屏蔽装置中;为机房设备配置不间断电源UPS;安装带湿度调节功能的空调系统,配置温湿度检测装置;采用防静电工作台、静电消除剂和静电消除器;使用防火材料装修,重要区域(重要区域主要是机房还有机房相关设备(UPS和电源等))使用防火玻璃隔断。The centralized operation and maintenance system is equipped with a two-way controlled electronic access control system, and surveillance cameras are installed to ensure full coverage. Important equipment (important equipment including system servers, routers, and longitudinal encryption devices are important equipment) are placed in electromagnetic shielding devices; The equipment is equipped with uninterruptible power supply UPS; the air conditioning system with humidity adjustment function is installed, and the temperature and humidity detection device is equipped; anti-static workbench, static eliminator and static eliminator are used; Equipment related to the machine room (UPS and power supply, etc.) are partitioned by fire-resistant glass.
II、人员管理制度;II. Personnel management system;
III、设备管理制度;III. Equipment management system;
IV、应用软件安全故障维护;IV. Application software safety fault maintenance;
V、通过基础平台提供的日志服务功能对值班日志中的安全故障处理信息,为安全防护技术的进度开发提供基础数据和历史记录;V. Through the log service function provided by the basic platform, the safety fault processing information in the on-duty log provides basic data and historical records for the progress development of safety protection technology;
VI、针对系统安全故障问题,并通知该系统的自动化专职,协调厂家联动及时处理;VI. Aiming at the problem of system safety failure, notify the full-time automation professional of the system, and coordinate with the manufacturer to deal with it in a timely manner;
VII、通过基础平台提供的报表功能,将各应用的安全防护结果、评估结果、辅助决策信息,故障分析导出报表,上传给各级电网调度自动化系统。VII. Through the reporting function provided by the basic platform, the security protection results, evaluation results, auxiliary decision-making information and fault analysis export reports of each application are uploaded to the power grid dispatching automation system at all levels.
优选的,所述步骤(5)中,安全防护方案包括:Preferably, in the step (5), the safety protection scheme includes:
<1>搭建大屏幕集中控制系统,分屏显示国调系统、分调系统和省调系统的系统安全状态;<1> Build a large-screen centralized control system to display the system security status of the national dispatching system, sub-dispatching system and provincial dispatching system on separate screens;
<2>开发监控系统,使用该系统对自身系统设备和数据进行实时在线监测,同时监测各级电网调度自动化系统的软件和硬件情况;<2> Develop a monitoring system, use the system to monitor its own system equipment and data online in real time, and at the same time monitor the software and hardware of the power grid dispatching automation system at all levels;
<3>使用远程登录、远程浏览方法监视各地系统设备的运行状态及数据,及时发现系统出现的各种问题;<3> Use remote login and remote browsing methods to monitor the operating status and data of system equipment in various places, and discover various problems in the system in time;
<4>提供24小时值班工作;<4> Provide 24-hour on-duty work;
<5>针对电网运行中出现的安全故障问题进行告警,通过软件可视化功能监控告警信息,对告警信息及时通过电话通知该系统安全专责;<5> Alert the safety faults that occur during the operation of the power grid, monitor the alarm information through the software visualization function, and notify the system security specialist of the alarm information by phone in time;
<6>系统发生应用软件故障时,及时在值班日志系统中按要求进行详细记录,并通知该系统的安全专责,协调厂家进行远程维护,并在值班日志系统中完成维护记录,对各级电网调度自动化系统通报故障处理结果;<6> When the application software failure occurs in the system, timely record it in detail in the on-duty log system as required, and notify the special security officer of the system, coordinate with the manufacturer to carry out remote maintenance, and complete the maintenance record in the on-duty log system. The scheduling automation system reports the fault handling results;
<7>对电网运行中监测到的重大问题和系统运行过程中软件出现的重大问题(重大问题指电力系统出现事故、设备越限或者监视系统发现异常数据,软件重大问题主要包括软件结果的BUG,软件无法正常运行等问题),及时启动应急预案,同时及时向国调系统和分调系统或省调系统进行通报,展开处理工作;<7> For the major problems monitored during the operation of the power grid and the major problems in the software during the system operation (major problems refer to accidents in the power system, equipment overruns or abnormal data found in the monitoring system, major software problems mainly include BUG in software results , the software cannot run normally, etc.), start the emergency plan in time, and at the same time report to the national dispatching system, the sub-dispatching system or the provincial dispatching system in time, and start processing;
<8>导出值班日志中的故障处理信息,将其交给检测中心和其软件开发厂家分析,为系统维护提供可靠依据;<8> Export the fault handling information in the on-duty log, and submit it to the testing center and its software development manufacturer for analysis, so as to provide a reliable basis for system maintenance;
<9>厂家使用安全防护系统进行工作时,要按照运维流程来进行申请和操作,记录操作过程;<9> When the manufacturer uses the safety protection system to work, it must apply and operate according to the operation and maintenance process, and record the operation process;
<10>通过基础平台提供的报表功能,将安全防护评估结果和故障分析结果导出报表,上传给各级电网调度自动化部门。<10> Through the report function provided by the basic platform, the safety protection evaluation results and fault analysis results are exported to the reports and uploaded to the power grid dispatching automation departments at all levels.
与现有技术比,本发明达到的有益效果是:Compared with prior art, the beneficial effect that the present invention reaches is:
(1)本发明提供的基于调度数据网集中运维系统的安全防护方法,加强智能电网调度技术支持系统的统一安全管理,规范调度技术支持系统运维安全防护流程,保障调度技术支持系统安全可靠运行,提高调度技术支持系统整体安全水平,统一监视调度自动化系统运行的关键设备、数据和软件功能,能及时发现系统安全防护问题,减少问题造成的影响,为各级调度中心提供更好的安全防护技术服务;(1) The security protection method based on the centralized operation and maintenance system of the dispatching data network provided by the present invention strengthens the unified security management of the dispatching technical support system of the smart grid, standardizes the operation and maintenance security protection process of the dispatching technical support system, and ensures the safety and reliability of the dispatching technical support system Operation, improve the overall security level of the dispatching technical support system, uniformly monitor the key equipment, data and software functions of the dispatching automation system operation, timely discover system security protection problems, reduce the impact of problems, and provide better security for dispatching centers at all levels Protection technical services;
(2)制定了接入调度数据网的一种安全网络硬件配置方法;(2) Formulate a safe network hardware configuration method for accessing the dispatching data network;
(3)通过接入调度数据网的方式开展集中运维系统的安全防护工作,为集中运维体系建设提供必备的安全技术基础;(3) Carry out the security protection work of the centralized operation and maintenance system by accessing the dispatching data network, and provide the necessary security technical foundation for the construction of the centralized operation and maintenance system;
(4)制定了集中运维安全防护工作规范和流程,明确了安全防护人员的工作内容,保障了系统安全稳定运行;(4) Work specifications and procedures for centralized operation and maintenance security protection have been formulated, and the work content of security protection personnel has been clarified to ensure the safe and stable operation of the system;
(5)开发专业安全防护监控软件,明确系统安全防护监控的功能,规范工作流程,为系统安全提供保障。(5) Develop professional safety protection monitoring software, clarify the functions of system safety protection monitoring, standardize the work process, and provide guarantee for system safety.
附图说明Description of drawings
图1是本发明提供的一种安全网络硬件配置的结构示意图;Fig. 1 is a schematic structural diagram of a security network hardware configuration provided by the present invention;
图2是本发明提供的安全防护系统结构体系图;Fig. 2 is a structural diagram of the safety protection system provided by the present invention;
图3是本发明提供的运维申请流程图;Fig. 3 is the operation and maintenance application flowchart provided by the present invention;
图4是本发明提供的基于调度数据网集中运维系统的安全防护方法的流程图。Fig. 4 is a flow chart of the security protection method based on the centralized operation and maintenance system of the dispatching data network provided by the present invention.
具体实施方式Detailed ways
下面结合附图对本发明的具体实施方式作进一步的详细说明。The specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings.
本方法基于调度数据网特点制定了集中运维系统安全网络硬件接入方式;安全防护软件监控通过整合、分析基础平台和应用软件的基础关键数据,研究各种应用之间数据间的关联性的关系,形成统一的安全防护监控系统,并根据各应用的分析结果给出综合分析报告,并开发专业监控软件对安全防护工作进行统一的管理;通过安全防护管理措施,落实安全制度,预防安全事故的发生。Based on the characteristics of the dispatching data network, this method formulates the access mode of the centralized operation and maintenance system security network hardware; the security protection software monitoring integrates and analyzes the basic key data of the basic platform and application software, and studies the correlation between data between various applications. relationship, form a unified security protection monitoring system, and give a comprehensive analysis report based on the analysis results of each application, and develop professional monitoring software for unified management of security protection work; through security protection management measures, implement security systems and prevent security accidents happened.
本发明方法用的安全防护系统体系图如图2所示,包括数据监视远程浏览模块、安全监视与告警模块、故障诊断与处理模块、数据统计与分析模块、维护日志管理措施模块和功能扩展模块;The system diagram of the safety protection system used by the method of the present invention is as shown in Figure 2, including a data monitoring remote browsing module, a safety monitoring and alarm module, a fault diagnosis and processing module, a data statistics and analysis module, a maintenance log management measure module and a function expansion module ;
所述数据监视远程浏览模块用于整体信息、局部信息和分层扩展信息(这三种信息指的都是什么,举例说明一下,整体信息指电网整体情况的描述比如北京地区的总发电量是200MW,局部信息指整体信息中某一项信息的详细介绍,如北京地区200MW的发电量由什么组成,比如150MW来自火电,50MW来自水电,分层扩展信息指对局部信息进行更细致的分层展示,如北京海淀区发电火电发电多少,水电多少,丰台区的发电是什么情况)的显示;安全监视与告警模块用于故障分级和告警分级;故障诊断与处理模块用于应急预案的处理,包括热线电话请求、日常维护和故障分级处理预案;数据统计与分析模块用于出具故障分析报告;维护日志管理措施模块用于对集中运维系统的管理,包括日常维护日志的管理、故障维护记录的管理和管理措施的管理;功能扩展模块用于应用功能的扩展。The data monitoring remote browsing module is used for overall information, partial information and layered extended information (what do these three kinds of information refer to? For example, the overall information refers to the description of the overall situation of the power grid. For example, the total power generation in Beijing is 200MW, local information refers to the detailed introduction of a certain item of information in the overall information, such as what is the composition of the 200MW power generation in the Beijing area, for example, 150MW comes from thermal power, 50MW comes from hydropower, layered expansion information refers to the more detailed layering of local information Display, such as the display of how much thermal power and hydropower are generated in Haidian District, Beijing, and what is the power generation in Fengtai District); the safety monitoring and alarm module is used for fault classification and alarm classification; the fault diagnosis and processing module is used for the processing of emergency plans, Including hotline requests, daily maintenance and fault classification processing plans; the data statistics and analysis module is used to issue fault analysis reports; the maintenance log management measures module is used to manage the centralized operation and maintenance system, including the management of daily maintenance logs and fault maintenance records The management and management of management measures; the function expansion module is used for the expansion of application functions.
集中运维系统的功能包括:The functions of the centralized operation and maintenance system include:
硬件部署:包括调度数据网介入和集中运维业务;Hardware deployment: including scheduling data network intervention and centralized operation and maintenance services;
软件应用:包括系统运行监视、维护信息管理、工作站常用软件的安装和可视化综合展示;Software application: including system operation monitoring, maintenance information management, installation and visual comprehensive display of commonly used software on workstations;
人员组织:包括运维工作人员组织和厂家维护人员组织,其中运维工作人员包括管理人员、值班人员和维护人员;Personnel organization: including the organization of operation and maintenance personnel and the organization of factory maintenance personnel, among which the operation and maintenance personnel include management personnel, on-duty personnel and maintenance personnel;
运维流程:包括日常监视、常规维护、故障处理、紧急响应以及统计分析报告;Operation and maintenance process: including daily monitoring, routine maintenance, troubleshooting, emergency response, and statistical analysis reports;
安全保障:包括安全管理制度和安全技术措施,其中安全管理制度包括人员管理制度和设备管理制度;其中设备安全措施和操作安全措施。Safety guarantee: including safety management system and safety technical measures, among which safety management system includes personnel management system and equipment management system; among them, equipment safety measures and operation safety measures.
本发明提供的基于调度数据网集中运维系统的安全防护方法的流程图如图4所示,包括下述步骤:The flow chart of the safety protection method based on the dispatching data network centralized operation and maintenance system provided by the present invention is shown in Figure 4, including the following steps:
(1)对接入调度数据网的安全网络硬件进行配置:(1) Configure the security network hardware connected to the dispatching data network:
指标遵循国家电网《电力二次系统安全防护总体方案》“安全分区、网络专用、横向隔离、纵向认证”的要求。通过使用网络安全隔离设备、调度证书系统、加密认证装置和纵向加密认证网关等方法,将集中运维系统分为安全I区、安全II区和安全III区,实现上下级控制系统间数据传输的机密性、完整性保护,并对集中运维系统和调度系统进行端对端的选择性保护。The indicators follow the requirements of “Security Partitioning, Network Dedication, Horizontal Isolation, and Vertical Authentication” in the State Grid’s “Overall Plan for Safety Protection of Secondary Power Systems”. Through the use of network security isolation equipment, scheduling certificate system, encryption authentication device, and vertical encryption authentication gateway, the centralized operation and maintenance system is divided into security I area, security II area and security III area to realize the data transmission between the upper and lower control systems. Confidentiality, integrity protection, and end-to-end selective protection for centralized operation and maintenance systems and scheduling systems.
集中运维系统的本地网络接入调度数据网,对各级调度机构智能电网调度技术支持系统在安全I、II、III区的全部功能实现远程监视与维护,使用国产工作站,采用配置安全内核的国产操作系统。The local network of the centralized operation and maintenance system is connected to the dispatching data network, and realizes remote monitoring and maintenance of all functions of the smart grid dispatching technical support system of dispatching agencies at all levels in safety areas I, II, and III. domestic operating system.
集中运维系统的本地网络安全I区和安全II区通过一路光纤分别接入国调系统、分调系统和省调系统I区和II区的调度数据网;集中运维系统的本地网络安全III区通过另一路光纤分别接入国调系统、分调系统和省调系统III区的调度数据网。The local network security zone I and security zone II of the centralized operation and maintenance system are respectively connected to the dispatching data network of the national dispatching system, the sub-dispatching system, and the provincial dispatching system zone I and II through an optical fiber; the local network security III of the centralized operation and maintenance system The area is respectively connected to the dispatching data network of the national dispatching system, the sub-dispatching system and the dispatching data network of the provincial dispatching system through another optical fiber.
本地网络安全I区、安全II区通过国调路由器分别接入国调系统调度数据网的I区和II区;所述本地网络安全I区、安全II区通过分调(调控分中心,即网调)路由器分别接入分调系统调度数据网的I区和II区;所述本地网络安全I区、安全II区通过省调路由器分别接入省调系统调度数据网I区和II区;本地网络与国调系统的调度数据网络之间、本地网络与分调系统的调度数据网络之间以及本地网络与省调系统的调度数据网络之间均采用纵向加密装置保证网络连接的安全性,本地网络安全III区和安全II区通过正向隔离设备和反向隔离设备实现与外部网络安全隔离。本发明提供的一种安全网络硬件配置的结构示意图如图1所示。The local network security zone I and security zone II are respectively connected to zone I and zone II of the dispatching data network of the national survey system through the national survey router; dispatching) routers are respectively connected to District I and District II of the dispatching data network of the sub-dispatching system; the local network safety district I and safe district II are respectively connected to District I and District II of the dispatching data network of the provincial dispatching system through the provincial dispatching router; Between the network and the dispatching data network of the national dispatching system, between the local network and the dispatching data network of the sub-dispatching system, and between the local network and the dispatching data network of the provincial dispatching system, longitudinal encryption devices are used to ensure the security of network connections. The network security zone III and the security zone II realize the security isolation from the external network through the forward isolation device and the reverse isolation device. A schematic structural diagram of a secure network hardware configuration provided by the present invention is shown in FIG. 1 .
(2)确定安全防护的范围和内容:包括:(2) Determine the scope and content of security protection: including:
1)网络状态信息:对链路连接情况,网络设备状态进行监视并报警;监视的参数包括:1) Network status information: monitor and alarm the link connection status and network device status; the monitored parameters include:
a、节点网卡状态;a. Node NIC status;
b、磁盘总容量、已使用容量和使用率;b. Total disk capacity, used capacity and usage rate;
c、CPU及内存负荷:内存使用、内存空闲、系统CPU使用率、用户CPU使用率、CPU告警极限和CPU空闲率;c. CPU and memory load: memory usage, memory idle, system CPU usage, user CPU usage, CPU alarm limit and CPU idle rate;
2)系统状态信息:包括系统工况信息、主要进程工况和节点运行工况系统状态信息;监视的参数包括:2) System status information: including system status information, main process status information and node operating status system status information; monitored parameters include:
i、系统关键常驻进程:进程最后活动时间;i. The key resident process of the system: the last activity time of the process;
ii、应用情况:应用上下文和最后刷新时间;ii. Application status: application context and last refresh time;
iii、链路及通道:主/备通道、运行状态和误码率;iii. Links and channels: main/standby channel, operating status and bit error rate;
3)内网安全防护系统:包括防火墙,入侵检测系统、横向隔离装置、纵向加密认证和防病毒系统;监视的参数包括:3) Intranet security protection system: including firewall, intrusion detection system, horizontal isolation device, vertical encryption authentication and anti-virus system; monitoring parameters include:
①内网安全防护防火墙:在线运行率、离线次数和离线时间;①Intranet security protection firewall: online operation rate, offline times and offline time;
②内网安全防护入侵检测系统:在线运行率、离线次数和离线时间;②Intranet security protection intrusion detection system: online operation rate, offline times and offline time;
③内网安全防护横向隔离装置:在线运行率、离线次数和离线时间;③Intranet security protection horizontal isolation device: online operation rate, offline times and offline time;
④内网安全防护纵向加密认证装置:在线运行率、离线次数和离线时间;④Intranet security protection vertical encryption authentication device: online operation rate, offline times and offline time;
⑤内网安全防护防病毒系统:在线运行率、离线次数和离线时间。本发明提供的安全防护监视内容如下表1所示。⑤Intranet security protection and anti-virus system: online operation rate, offline times and offline time. The safety protection monitoring content provided by the present invention is shown in Table 1 below.
表1安全防护监视内容表Table 1 Safety protection monitoring content table
(3)确定安全防护软件开发方案:(3) Determine the security protection software development plan:
运维中心需要开展安全防护相关的软件研发工作,研制一套安全防护支持工具,其中的软件应用主要包括以下四类:The operation and maintenance center needs to carry out security protection-related software research and development work, and develop a set of security protection support tools. The software applications mainly include the following four categories:
A、系统运行安全监视:A. System operation safety monitoring:
实现对国调、分调和省调的智能电网调度技术支持系统平台及应用安全信息的采集,并通过安全信息自动诊断分析系统状态,对异常状态实现自动告警。Realize the collection of smart grid dispatching technical support system platform and application safety information for national, sub-division and provincial dispatching, and automatically diagnose and analyze the system status through safety information, and realize automatic alarm for abnormal status.
运维中心需要被监视的技术支持系统功能可以正常运行,以便运维中心进行采集和处理。The operation and maintenance center needs the monitored technical support system function to be able to operate normally, so that the operation and maintenance center can collect and process.
B、安全防护信息管理:B. Safety protection information management:
运维中心应对重要的安全防护信息进行存储和分析,需要配备完善的数据库系统,实现对安全问题的集中管理和预案管理。The operation and maintenance center should store and analyze important security protection information, and needs to be equipped with a complete database system to realize centralized management and pre-plan management of security issues.
数据库系统中建立各个厂家的相关信息,出现问题时可以及时准确地联系相关应用的负责人。并对问题及处理情况进行记录,便于查询和统计分析。The relevant information of each manufacturer is established in the database system, and when a problem occurs, the person in charge of the relevant application can be contacted in a timely and accurate manner. And record the problems and processing conditions, which is convenient for query and statistical analysis.
开发预案管理工具,使预案的制定和执行达到规范化、可视化、智能化,提升运维中心处理突发系统故障的能力。Develop contingency plan management tools to make the formulation and execution of contingency plans standardized, visualized, and intelligent, and improve the ability of the operation and maintenance center to deal with sudden system failures.
C、安全运维工作站常用软件:C. Commonly used software for security operation and maintenance workstations:
包括常用的安全远程登录软件、病毒查杀等网络安全防护软件,保证运维环境的安全与可靠。Including commonly used secure remote login software, virus scanning and other network security protection software to ensure the safety and reliability of the operation and maintenance environment.
D、安全防护信息可视化综合展示:D. Visual comprehensive display of security protection information:
利用可视化技术,将运行维护中心的各种安全信息进行综合展示,并提供运行管理和工作使用的交互界面,使安全防护工作的管理、操作和维护直观、方便,提高运维中心安全防护工作的效率。Use visualization technology to comprehensively display various safety information of the operation and maintenance center, and provide an interactive interface for operation management and work use, so that the management, operation and maintenance of safety protection work are intuitive and convenient, and improve the safety protection work of the operation and maintenance center. efficiency.
E、值班日志系统:E. On-duty log system:
值班日志系统可以记录各应用安全故障的详细信息,分为日常定时巡检信息、故障处理信息和厂家维护信息三部份内容。The on-duty log system can record the detailed information of each application safety fault, which is divided into three parts: daily regular inspection information, fault handling information and manufacturer maintenance information.
日常定时巡检信息主要针对硬件安全防护,要求值班员定时巡视查看工作站和网络防护设备工作是否正常,按时填写巡检信息。The daily scheduled inspection information is mainly aimed at hardware security protection, and the on-duty personnel are required to regularly inspect whether the workstations and network protection equipment are working normally, and fill in the inspection information on time.
故障处理信息针对应用软件,如果某系统的某个应用软件在监视过程中出现安全问题,需要填写该问题的详细描述,并提交运维中心主要负责人,由负责人根据具体情况给相关软件厂家下发《安全故障处理任务单》,故障消除后,由厂家填写《安全故障处理任务单》说明具体故障的原因和处理方法,对整体安全防护的影响,经由运维中心负责人确认后,统一给各级电网调度自动化专责上传该《安全故障处理任务单》备案。Troubleshooting information is for application software. If a certain application software of a certain system has a security problem during the monitoring process, you need to fill in a detailed description of the problem and submit it to the main person in charge of the operation and maintenance center. The person in charge will send it to the relevant software manufacturer according to the specific situation. Issue the "Security Fault Handling Task Sheet". After the fault is eliminated, the manufacturer will fill in the "Safety Fault Handling Task Sheet" to explain the cause and treatment method of the specific fault, and the impact on the overall security protection. After confirmation by the person in charge of the operation and maintenance center, the unified Upload the "Security Fault Handling Task Sheet" to the power grid dispatching automation at all levels for record.
厂家维护信息是针对在运维中心通过远程登录处理某系统某软件的相关问题,包括对软件的更新、日常维护、故障处理等操作的详细说明,为安全责任问题追溯提供依据。The manufacturer's maintenance information is aimed at dealing with certain software-related issues of a certain system through remote login in the operation and maintenance center, including detailed descriptions of software updates, daily maintenance, troubleshooting, etc., and provides a basis for tracing security responsibility issues.
(4)确定运维系统安全防护管理措施:(4) Determine the security protection management measures of the operation and maintenance system:
I、运维场所保障措施:I. Guarantee measures for operation and maintenance sites:
中心安装双向控制的电子门禁系统,安装监控摄像头并保证全部范围覆盖,重要设备放置在电磁屏蔽装置中;为机房设备配置UPS;安装带湿度调节功能的精密空调系统,配置温湿度检测装置;采用防静电工作台、静电消除剂和静电消除器等;使用防火材料装修,重要区域使用防火玻璃隔断。The center installs a two-way controlled electronic access control system, installs surveillance cameras to ensure full coverage, and places important equipment in electromagnetic shielding devices; configures UPS for equipment in the computer room; installs a precision air-conditioning system with humidity adjustment function, and configures temperature and humidity detection devices; Anti-static workbenches, static eliminators and static eliminators, etc.; use fire-resistant materials for decoration, and use fire-resistant glass to partition important areas.
II、人员管理制度:;II. Personnel management system:;
II-1.运维中心安排值班人员负责日常维护人员及外来维护人员的身份确认,并做好进出检查记录。II-1. The operation and maintenance center arranges on-duty personnel to be responsible for the identity confirmation of daily maintenance personnel and external maintenance personnel, and makes entry and exit inspection records.
II-2.值班人员要遵守劳动纪律,不迟到早退,上班时间不从事与工作无关的活动,不得擅自离岗。II-2. Personnel on duty must abide by labor discipline, do not arrive late and leave early, do not engage in activities unrelated to work during working hours, and are not allowed to leave their posts without authorization.
II-3.任何需要登陆系统的维护人员,必须填写运维中心登陆任务书(附件1),说明事由,并由所在单位/部门的责任人签字确认;经中心值班人员审核后,分配相应的工作站。II-3. Any maintenance personnel who need to log in to the system must fill in the operation and maintenance center login task statement (Appendix 1), explain the reasons, and be signed by the person in charge of the unit/department for confirmation; after being reviewed by the center on duty, the corresponding workstation will be assigned.
II-4.特殊情况需紧急登陆维护时,由相关责任人通过电话向运维中心负责人说明情况,运维中心同意后,可进行相关维护工作,事后必须补签运维中心登陆任务书。II-4. When special circumstances require emergency login maintenance, the relevant person in charge will explain the situation to the person in charge of the operation and maintenance center by phone. After the operation and maintenance center agrees, the relevant maintenance work can be carried out, and the operation and maintenance center login task letter must be signed afterwards.
II-5.维护人员登陆结束后,在“运维中心登陆任务书”中填写任务完成情况,说明对系统执行过的操作及改动。II-5. After the maintenance personnel log in, fill in the task completion status in the "Operation and Maintenance Center Login Task Book", explaining the operations and changes performed on the system.
II-6.对于所有人员的远方运维操作行为(如进程启停、主备切换等)要进行记录,并永久保存。II-6. The remote operation and maintenance operations of all personnel (such as process start and stop, master-standby switchover, etc.) should be recorded and stored permanently.
II-7.运维中心的值班人员要经由国调中心认可,持有国调的调度证书才可上岗。II-7. The on-duty personnel of the operation and maintenance center must be approved by the National Investigation Center and hold the dispatching certificate of the National Investigation Center before they can start work.
II-8.对新上岗的值班员必须进行安全培训,必要时对人员的安全常识进行抽测检查。II-8. Safety training must be given to the new on-duty staff, and if necessary, random testing and inspection of the staff's safety knowledge is carried out.
II-9.机房内严禁吸烟,严禁动用明火;机房内的防火设施不得任意触动或移动。不得在机房内用餐、存放其他与生产无关的物品。II-9. Smoking is strictly prohibited in the computer room, and open flames are strictly prohibited; the fire prevention facilities in the computer room must not be touched or moved arbitrarily. Meals and other items unrelated to production are not allowed to be stored in the machine room.
II-10.严禁携带易燃易爆及其它与工作无关的物品进入机房,注意保持机房环境整洁,工作结束后,应整理现场。II-10. It is strictly forbidden to bring inflammable and explosive items and other items not related to work into the computer room. Pay attention to keep the environment of the computer room clean and tidy. After the work is over, the site should be tidied up.
III、设备管理制度:III. Equipment management system:
III-1.为防止外部对网络的入侵和内部信息的泄漏,运维中心的I、II区网络与外界实现物理隔离;对于需要外网数据的特殊应用,需配备专用的外网计算机,接入运维中心的III区网络,并通过反向隔离设备实现与I、II区网络的物理隔离。III-1. In order to prevent external intrusion into the network and leakage of internal information, the networks of Zones I and II of the operation and maintenance center are physically isolated from the outside world; for special applications that require external network data, a dedicated external network computer is required to connect to the operation and maintenance center The network in Zone III is physically isolated from the network in Zones I and II through reverse isolation equipment.
III-2.USB存储设备在接入系统之前,必须进行相关安全检查,确认无病毒后方可使用。III-2. Before the USB storage device is connected to the system, relevant security checks must be carried out, and it can be used only after it is confirmed that it is virus-free.
III-3.USB存储设备在带出中心之前,必须进行相关内容检查,确认无涉密资料后方可带走。III-3. Before the USB storage device is taken out of the center, relevant content checks must be carried out, and only after it is confirmed that there is no confidential information can it be taken away.
III-4.运维中心禁止使用个人笔记本电脑等设备接入系统。III-4. The operation and maintenance center prohibits the use of personal laptops and other devices to access the system.
III-5.维护人员只允许使用运维中心配备的工作站进行维护工作,每台工作站配有操作记录设备,实时记录维护人员的输入操作。III-5. Maintenance personnel are only allowed to use the workstations equipped in the operation and maintenance center for maintenance work. Each workstation is equipped with an operation recording device to record the input operations of maintenance personnel in real time.
III-6.建立完善的数据备份机制。对于关键数据和信息,日常维护人员应该定期进行全备份并进行差分或增量备份。III-6. Establish a sound data backup mechanism. For key data and information, daily maintenance personnel should perform regular full backups and differential or incremental backups.
III-7.中心的每台计算机工作站应设置不同的计算机的密码及屏幕保护程序密码;为保密需要,应定期或不定期地更换密码口令。III-7. Each computer workstation in the center should have a different computer password and screen saver password; for the sake of confidentiality, the password should be changed regularly or irregularly.
III-8.不得在计算机上摆放物品,切忌让细小物件落入机器缝隙内。III-8. Do not place objects on the computer, and do not let small objects fall into the gaps of the machine.
III-9.严禁随意搬动机器、打开机箱盖以及接插各种未获授权的设备。不得随意更换计算机硬件和软件,禁止使用来历不明的软件。未经批准不得在机房内拉接网线、电源和连接设备。III-9. It is strictly forbidden to move the machine at will, open the case cover and plug in various unauthorized devices. It is not allowed to change computer hardware and software at will, and it is forbidden to use software of unknown origin. It is not allowed to connect the network cable, power supply and connection equipment in the computer room without approval.
III-10.机房内的设施、资料及工具仅供机房内使用,用后应及时放回原处,未经许可,不得带离机房。III-10. The facilities, materials and tools in the computer room are only for use in the computer room, and should be returned to the original place in time after use, and should not be taken out of the computer room without permission.
III-11.运维中心的管理人员应定期检查中心设备和各项安全措施落实情况,发现隐患及时排除,重大安全隐患和安全事故及时报告有关部门,并做好相应记录。III-11. The management personnel of the operation and maintenance center should regularly check the center's equipment and the implementation of various safety measures, find hidden dangers and eliminate them in time, and report major safety hazards and safety accidents to relevant departments in a timely manner, and make corresponding records.
IV、对应用软件安全故障,及时在值班日志系统中按要求进行详细记录,并通知该系统的自动化专职,同时联系厂家在运维中心进行远程维护,并在值班日志系统中完成维护记录,并对各级电网调度自动化系统通报安全故障处理结果;IV. For application software security failures, record in detail in the on-duty log system in a timely manner as required, and notify the automation professional of the system, and at the same time contact the manufacturer for remote maintenance in the operation and maintenance center, and complete the maintenance records in the on-duty log system, and Notify the safety fault handling results to the power grid dispatching automation system at all levels;
V、通过基础平台提供的日志服务功能对值班日志中的安全故障处理信息,可以按要求导出给检测中心和其软件开发厂家,为系统维护提供可靠依据,为安全防护技术的进度开发提供基础数据和历史记录;V. Through the log service function provided by the basic platform, the security failure processing information in the on-duty log can be exported to the testing center and its software development manufacturers as required, providing a reliable basis for system maintenance and providing basic data for the progress and development of security protection technology and history;
VI、针对系统安全故障问题,并通知该系统的自动化专职,协调厂家联动及时处理;VI. Aiming at the problem of system safety failure, notify the full-time automation professional of the system, and coordinate with the manufacturer to deal with it in a timely manner;
VII、通过基础平台提供的报表功能,可以将各应用的安全防护结果、评估结果、辅助决策信息,故障分析导出报表,上传给各级电网调度自动化系统。VII. Through the reporting function provided by the basic platform, the security protection results, evaluation results, auxiliary decision-making information, and fault analysis export reports of each application can be uploaded to the power grid dispatching automation system at all levels.
(5)确定安全防护方案:(5) Determine the security protection plan:
<1>搭建大屏幕集中控制系统,分屏显示国调、分调和省调的系统安全状态,便于维护人员集中实施安全防护监视工作。<1> Build a large-screen centralized control system to display the system security status of national, sub- and provincial dispatches on separate screens, which is convenient for maintenance personnel to carry out safety protection and monitoring work in a centralized manner.
<2>开发综合专业监控软件系统,使用该系统对自身系统设备和数据进行实时在线监测,同时可以监测各级电网调度自动化系统的软件和硬件情况。<2> Develop a comprehensive professional monitoring software system, use the system to monitor its own system equipment and data online in real time, and at the same time monitor the software and hardware of the power grid dispatching automation system at all levels.
<3>使用远程登录、远程浏览等方法监视各地系统设备的运行状态及重要数据,及时发现系统出现的各种问题。<3> Use methods such as remote login and remote browsing to monitor the operating status and important data of system equipment in various places, and find various problems in the system in time.
<4>集中专业人员,组建专业的安全防护团队,提供24小时值班工作。<4> Concentrate professionals, set up a professional security protection team, and provide 24-hour on-duty work.
<5>针对电网运行中出现的安全故障问题进行告警,通过软件可视化功能监控告警信息,对重要的告警信息及时通过电话通知该系统安全专责。<5> Alarms are issued for safety faults that occur during the operation of the power grid, and the alarm information is monitored through the software visualization function, and the system security specialist is notified of important alarm information by phone in a timely manner.
<6>系统发生应用软件故障时,及时在值班日志系统中按要求进行详细记录,并通知该系统的安全专责,协调厂家进行远程维护,并在值班日志系统中完成维护记录,对各级电网调度自动化系统通报故障处理结果。<6> When the application software failure occurs in the system, timely record it in detail in the on-duty log system as required, and notify the special security officer of the system, coordinate with the manufacturer to carry out remote maintenance, and complete the maintenance record in the on-duty log system. The dispatching automation system notifies the fault handling result.
<7>对电网运行中监测到的重大问题和系统运行过程中软件出现的重大问题,及时启动应急预案,同时及时向国调和相关的分调或省调进行通报,快速展开工作。<7> For the major problems detected in the operation of the power grid and the major problems in the software during the operation of the system, the emergency plan will be launched in time, and at the same time, the national dispatch and related sub-dispatches or provincial dispatches will be notified in time to start the work quickly.
<8>可以按要求导出值班日志中的故障处理信息,将其交给检测中心和其软件开发厂家分析,为系统维护提供可靠依据。<8> The fault handling information in the on-duty log can be exported as required, and handed over to the testing center and its software development manufacturers for analysis, providing a reliable basis for system maintenance.
<9>厂家需要使用安全防护系统进行工作时,要按照运维流程来进行相关申请和操作,记录操作过程,杜绝人为因素引起的安全隐患,流程详见图3。<9> When the manufacturer needs to use the safety protection system for work, it must follow the operation and maintenance process to carry out relevant applications and operations, record the operation process, and eliminate potential safety hazards caused by human factors. The process is shown in Figure 3.
<10>通过基础平台提供的报表功能,可以将安全防护评估结果、故障分析结果导出报表,上传给各级电网调度自动化部门。<10>Through the report function provided by the basic platform, the safety protection evaluation results and fault analysis results can be exported to reports and uploaded to the power grid dispatching automation departments at all levels.
本发明提公的一种基于调度数据网集中运维系统的安全防护方法,可以基于接入调度数据网通过远程登录和实时远程监视的方式在运维中心本地实现对国调、分调和省调电网调度技术支持系统的安全防护系统的监视工作。安全防护系统主要负责对采集国调、分调及省调的智能电网调度技术支持系统运行工况和重要数据安防设备实时运行状态进行监控,本方法通过安全的网络硬件配置方法、安全防护监视、安全防护软件和安全防护管理措施实现对运维中心硬件,国调、分调和省调调度中心关键设备统一进行安全防护工作。The invention discloses a security protection method based on the centralized operation and maintenance system of the dispatching data network, which can realize national dispatching, sub-dispatching and provincial dispatching in the local operation and maintenance center through remote login and real-time remote monitoring based on accessing the dispatching data network The monitoring work of the safety protection system of the power grid dispatching technical support system. The safety protection system is mainly responsible for monitoring the operating conditions of the smart grid dispatching technical support system and the real-time operation status of important data security equipment for collecting national, sub- and provincial dispatches. This method uses a secure network hardware configuration method, security protection monitoring, The safety protection software and safety protection management measures realize the unified safety protection of the hardware of the operation and maintenance center, and the key equipment of the national dispatching, sub-dispatching and provincial dispatching centers.
最后应当说明的是:以上实施例仅用以说明本发明的技术方案而非对其限制,尽管参照上述实施例对本发明进行了详细的说明,所属领域的普通技术人员应当理解:依然可以对本发明的具体实施方式进行修改或者等同替换,而未脱离本发明精神和范围的任何修改或者等同替换,其均应涵盖在本发明的权利要求范围当中。Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present invention and not to limit them. Although the present invention has been described in detail with reference to the above embodiments, those of ordinary skill in the art should understand that: the present invention can still be Any modification or equivalent replacement that does not depart from the spirit and scope of the present invention shall be covered by the scope of the claims of the present invention.
Claims (8)
Translated fromChinesePriority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013103646887ACN103473626A (en) | 2013-08-20 | 2013-08-20 | Security protection method based on integrated dispatching data network operation and maintenance system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013103646887ACN103473626A (en) | 2013-08-20 | 2013-08-20 | Security protection method based on integrated dispatching data network operation and maintenance system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103473626Atrue CN103473626A (en) | 2013-12-25 |
Family
ID=49798468
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013103646887APendingCN103473626A (en) | 2013-08-20 | 2013-08-20 | Security protection method based on integrated dispatching data network operation and maintenance system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103473626A (en) |
Cited By (25)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103869740A (en)* | 2014-03-24 | 2014-06-18 | 成都卫士通信息产业股份有限公司 | Cipher equipment monitoring method based on hierarchical graph form |
| CN104048660A (en)* | 2014-06-24 | 2014-09-17 | 国家电网公司 | Positioning and navigation device for power grid inspection and overhaul site |
| CN104678962A (en)* | 2015-02-02 | 2015-06-03 | 天柱供电局 | Safety monitoring system used in power lines repairing operation and operating method based on safety monitoring system |
| CN104993970A (en)* | 2014-12-22 | 2015-10-21 | 国家电网公司 | Centralized monitoring method of distributed system key operation index data |
| CN105354614A (en)* | 2015-10-21 | 2016-02-24 | 国家电网公司 | Big data based power grid information operation and maintenance active early-warning method |
| CN105515897A (en)* | 2015-12-01 | 2016-04-20 | 国网内蒙古东部电力有限公司兴安供电公司 | Integrated monitoring and intelligent alarm system for dispatching automation |
| CN105530136A (en)* | 2016-01-30 | 2016-04-27 | 山东大学 | Service monitoring method and system for power dispatching system |
| CN105847021A (en)* | 2015-01-13 | 2016-08-10 | 国家电网公司 | Concentrated operation and maintenance safety audit system in intelligent power grid dispatching control system |
| CN106096804A (en)* | 2016-04-28 | 2016-11-09 | 北京科东电力控制系统有限责任公司 | A kind of supervision method of intelligent grid Dispatching Control System model maintenance overall process |
| CN106534110A (en)* | 2016-11-08 | 2017-03-22 | 南京南瑞继保电气有限公司 | Three-in-one security protection system architecture for substation secondary system |
| CN107831452A (en)* | 2017-10-31 | 2018-03-23 | 国网上海市电力公司 | DC control and protection system hostdown diagnoses and life appraisal equipment |
| CN107908691A (en)* | 2017-11-01 | 2018-04-13 | 南京欣网互联网络科技有限公司 | A kind of big data via operation analytic system |
| CN108259240A (en)* | 2018-01-11 | 2018-07-06 | 国电南瑞科技股份有限公司 | A kind of log collection and transmission method of dispatching of power netwoks control system physical examination information |
| CN108390846A (en)* | 2017-12-29 | 2018-08-10 | 国网浙江武义县供电有限公司 | A kind of Organization of African Unity's tune power plant aut omation information access safety management system and method |
| CN109034521A (en)* | 2018-06-07 | 2018-12-18 | 国电南瑞科技股份有限公司 | A kind of intelligent O&M architecture design method of dispatching of power netwoks control system |
| CN109359098A (en)* | 2018-10-31 | 2019-02-19 | 云南电网有限责任公司 | A kind of dispatch data net behavior monitoring system and method |
| CN109858776A (en)* | 2019-01-11 | 2019-06-07 | 平安科技(深圳)有限公司 | A kind of intelligence based on big data is relieved management method and relevant device |
| CN110351113A (en)* | 2019-05-17 | 2019-10-18 | 国家工业信息安全发展研究中心 | Network security emergency information pooled analysis system |
| CN110782370A (en)* | 2019-10-31 | 2020-02-11 | 国网重庆市电力公司北碚供电分公司 | Comprehensive operation and maintenance management platform for power dispatching data network |
| CN112117756A (en)* | 2019-06-20 | 2020-12-22 | 中国电力科学研究院有限公司 | Integrated operation and maintenance method and system for scheduling control system |
| CN112363442A (en)* | 2020-10-19 | 2021-02-12 | 云南电网有限责任公司 | Method for predicting, detecting and disposing machine room equipment fault alarm |
| CN112383150A (en)* | 2020-11-27 | 2021-02-19 | 中能电力科技开发有限公司 | New forms of energy electric power monitored control system safety monitoring device |
| CN112434028A (en)* | 2020-10-30 | 2021-03-02 | 中国南方电网有限责任公司 | Panoramic monitoring system and method considering whole-network standby information of power plant management unit |
| CN113641977A (en)* | 2021-10-18 | 2021-11-12 | 成都派沃特科技股份有限公司 | Method and server for sending operation and maintenance answering information |
| CN114546658A (en)* | 2022-02-25 | 2022-05-27 | 中国电力科学研究院有限公司 | Method, system, device and medium for configuring communication service gateway machine container resource |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102122374A (en)* | 2011-03-03 | 2011-07-13 | 江苏方天电力技术有限公司 | Intelligent analysis system for flow abnormity of power automation system |
| EP2535994A2 (en)* | 2011-06-14 | 2012-12-19 | General Electric Company | Fault processing system |
| CN103036727A (en)* | 2012-12-25 | 2013-04-10 | 广东电网公司电力调度控制中心 | Electric power communication network regional security warning method and system thereof |
- 2013
- 2013-08-20CNCN2013103646887Apatent/CN103473626A/enactivePending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102122374A (en)* | 2011-03-03 | 2011-07-13 | 江苏方天电力技术有限公司 | Intelligent analysis system for flow abnormity of power automation system |
| EP2535994A2 (en)* | 2011-06-14 | 2012-12-19 | General Electric Company | Fault processing system |
| CN103036727A (en)* | 2012-12-25 | 2013-04-10 | 广东电网公司电力调度控制中心 | Electric power communication network regional security warning method and system thereof |
Non-Patent Citations (2)
| Title |
|---|
| 徐红泉: "电力调度自动化系统综合运维平台设计方案", 《中国优秀硕士学位论文全文数据库 工程科技Ⅱ辑》* |
| 杨贤等: "智能电站控制-维护-管理系统集成中的", 《电网技术》* |
Cited By (34)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103869740A (en)* | 2014-03-24 | 2014-06-18 | 成都卫士通信息产业股份有限公司 | Cipher equipment monitoring method based on hierarchical graph form |
| CN104048660A (en)* | 2014-06-24 | 2014-09-17 | 国家电网公司 | Positioning and navigation device for power grid inspection and overhaul site |
| CN104993970A (en)* | 2014-12-22 | 2015-10-21 | 国家电网公司 | Centralized monitoring method of distributed system key operation index data |
| CN105847021A (en)* | 2015-01-13 | 2016-08-10 | 国家电网公司 | Concentrated operation and maintenance safety audit system in intelligent power grid dispatching control system |
| CN105847021B (en)* | 2015-01-13 | 2019-06-14 | 国家电网公司 | A Smart Grid Dispatching Control System Centralized Operation and Maintenance Safety Audit System |
| CN104678962A (en)* | 2015-02-02 | 2015-06-03 | 天柱供电局 | Safety monitoring system used in power lines repairing operation and operating method based on safety monitoring system |
| CN105354614A (en)* | 2015-10-21 | 2016-02-24 | 国家电网公司 | Big data based power grid information operation and maintenance active early-warning method |
| CN105354614B (en)* | 2015-10-21 | 2019-03-26 | 国家电网公司 | A kind of electric network information O&M active forewarning method based on big data |
| CN105515897A (en)* | 2015-12-01 | 2016-04-20 | 国网内蒙古东部电力有限公司兴安供电公司 | Integrated monitoring and intelligent alarm system for dispatching automation |
| CN105515897B (en)* | 2015-12-01 | 2018-10-30 | 国网内蒙古东部电力有限公司兴安供电公司 | Dispatching automation comprehensively monitoring and intelligent warning system |
| CN105530136B (en)* | 2016-01-30 | 2018-10-12 | 山东大学 | A kind of electric power dispatching system business monitoring method and system |
| CN105530136A (en)* | 2016-01-30 | 2016-04-27 | 山东大学 | Service monitoring method and system for power dispatching system |
| CN106096804A (en)* | 2016-04-28 | 2016-11-09 | 北京科东电力控制系统有限责任公司 | A kind of supervision method of intelligent grid Dispatching Control System model maintenance overall process |
| CN106096804B (en)* | 2016-04-28 | 2023-06-06 | 北京科东电力控制系统有限责任公司 | Monitoring method for whole maintenance process of intelligent power grid dispatching control system model |
| CN106534110A (en)* | 2016-11-08 | 2017-03-22 | 南京南瑞继保电气有限公司 | Three-in-one security protection system architecture for substation secondary system |
| CN107831452A (en)* | 2017-10-31 | 2018-03-23 | 国网上海市电力公司 | DC control and protection system hostdown diagnoses and life appraisal equipment |
| CN107908691A (en)* | 2017-11-01 | 2018-04-13 | 南京欣网互联网络科技有限公司 | A kind of big data via operation analytic system |
| CN108390846A (en)* | 2017-12-29 | 2018-08-10 | 国网浙江武义县供电有限公司 | A kind of Organization of African Unity's tune power plant aut omation information access safety management system and method |
| CN108259240A (en)* | 2018-01-11 | 2018-07-06 | 国电南瑞科技股份有限公司 | A kind of log collection and transmission method of dispatching of power netwoks control system physical examination information |
| CN109034521A (en)* | 2018-06-07 | 2018-12-18 | 国电南瑞科技股份有限公司 | A kind of intelligent O&M architecture design method of dispatching of power netwoks control system |
| CN109034521B (en)* | 2018-06-07 | 2021-11-16 | 国电南瑞科技股份有限公司 | Intelligent operation and maintenance architecture design method of power grid dispatching control system |
| CN109359098B (en)* | 2018-10-31 | 2023-04-11 | 云南电网有限责任公司 | System and method for monitoring scheduling data network behaviors |
| CN109359098A (en)* | 2018-10-31 | 2019-02-19 | 云南电网有限责任公司 | A kind of dispatch data net behavior monitoring system and method |
| CN109858776B (en)* | 2019-01-11 | 2024-05-10 | 平安科技(深圳)有限公司 | Intelligent shift-exchange management method based on big data and related equipment |
| CN109858776A (en)* | 2019-01-11 | 2019-06-07 | 平安科技(深圳)有限公司 | A kind of intelligence based on big data is relieved management method and relevant device |
| CN110351113A (en)* | 2019-05-17 | 2019-10-18 | 国家工业信息安全发展研究中心 | Network security emergency information pooled analysis system |
| CN112117756A (en)* | 2019-06-20 | 2020-12-22 | 中国电力科学研究院有限公司 | Integrated operation and maintenance method and system for scheduling control system |
| CN110782370A (en)* | 2019-10-31 | 2020-02-11 | 国网重庆市电力公司北碚供电分公司 | Comprehensive operation and maintenance management platform for power dispatching data network |
| CN112363442A (en)* | 2020-10-19 | 2021-02-12 | 云南电网有限责任公司 | Method for predicting, detecting and disposing machine room equipment fault alarm |
| CN112434028A (en)* | 2020-10-30 | 2021-03-02 | 中国南方电网有限责任公司 | Panoramic monitoring system and method considering whole-network standby information of power plant management unit |
| CN112434028B (en)* | 2020-10-30 | 2023-06-30 | 中国南方电网有限责任公司 | Panoramic monitoring system and method considering whole network standby information of power plant management unit |
| CN112383150A (en)* | 2020-11-27 | 2021-02-19 | 中能电力科技开发有限公司 | New forms of energy electric power monitored control system safety monitoring device |
| CN113641977A (en)* | 2021-10-18 | 2021-11-12 | 成都派沃特科技股份有限公司 | Method and server for sending operation and maintenance answering information |
| CN114546658A (en)* | 2022-02-25 | 2022-05-27 | 中国电力科学研究院有限公司 | Method, system, device and medium for configuring communication service gateway machine container resource |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103473626A (en) | Security protection method based on integrated dispatching data network operation and maintenance system | |
| CN108960456A (en) | Private clound secure, integral operation platform | |
| CN105553097B (en) | A kind of working method of the remote-control system of unattended substation automated system | |
| CN108847953A (en) | A kind of O&M service system and method | |
| CN103606024A (en) | Centralized operation and maintenance system and method thereof based on dispatching data network | |
| CN102882969A (en) | Safety production cloud service platform for industrial and mining enterprises | |
| CN106936858A (en) | A kind of cloud platform monitoring system and method | |
| CN107689954A (en) | Power information system monitoring method and device | |
| CN115375172A (en) | BIM-based intelligent operation and maintenance method and system | |
| Jiang et al. | System hazard analysis of tower crane in different phases on construction site | |
| CN114240116A (en) | An artificial intelligence risk monitoring and early warning system | |
| CN115239144A (en) | Dual prevention mechanism information system based on regional risk management | |
| CN118095823A (en) | A factor-correlated security risk assessment method for power Internet of Things | |
| CN117595511A (en) | An intelligent electrochemical energy storage power station operation and maintenance monitoring information platform | |
| CN103295164A (en) | Power grid safety monitoring management information system and management method | |
| Li et al. | Research on near-miss incidents monitoring and early warning system for building construction sites based on blockchain technology | |
| CN107601187A (en) | A kind of lift management system and method | |
| CN118332641B (en) | Mining machinery complete set application analysis system based on BIM technology | |
| CN114629677A (en) | Safety protection system and method for thermal power generating unit electric quantity charging system | |
| CN118886061A (en) | A database dynamic rights management system | |
| Fan et al. | Representation, mining and analysis of unsafe behaviour based on pan-scene data | |
| CN118171903A (en) | A method for building a safety risk assessment and intelligent management and control platform for environmental protection facilities | |
| Zhang et al. | Security evaluation of coal mine industrial control systems based on CVSS v4. 0 | |
| US20230118891A1 (en) | Device for controlling a plurality of nuclear reactors in clusters | |
| CN115619212A (en) | Intelligent chemical industry park big data analysis method based on block chain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication | Application publication date:20131225 |