技术领域Technical Field
本发明涉及信息安全防护领域,具体涉及一种城市轨道交通自动化设备信息安全防护系统。The present invention relates to the field of information security protection, and in particular to an information security protection system for urban rail transit automation equipment.
背景技术Background Art
城市轨道交通自动化设备是指用于城市轨道交通系统中,通过自动化技术和信息技术实现轨道交通车辆运行、信号控制、乘客服务、设备监控和管理等功能的一系列设备和系统。这些设备和系统的应用旨在提高城市轨道交通的运营效率、安全性、可靠性和乘客体验;Urban rail transit automation equipment refers to a series of equipment and systems used in urban rail transit systems to achieve rail transit vehicle operation, signal control, passenger service, equipment monitoring and management through automation technology and information technology. The application of these equipment and systems is aimed at improving the operational efficiency, safety, reliability and passenger experience of urban rail transit;
城市轨道交通自动化设备在实际使用过程中需要进行信息安全防护,在进行信息安全防护过程中,即会使用到信息安全防护系统。Urban rail transit automation equipment needs to be protected for information security during actual use. During the information security protection process, the information security protection system will be used.
现有的信息安全防护系统,防护类型单一,导致防护效果较差,给信息安全防护系统的使用带来了一定的影响,因此,提出一种城市轨道交通自动化设备信息安全防护系统。The existing information security protection system has a single protection type, resulting in poor protection effect, which has a certain impact on the use of the information security protection system. Therefore, an information security protection system for urban rail transit automation equipment is proposed.
发明内容Summary of the invention
本发明所要解决的技术问题在于:如何解决现有的信息安全防护系统,防护类型单一,导致防护效果较差,给信息安全防护系统的使用带来了一定的影响的问题,提供了一种城市轨道交通自动化设备信息安全防护系统。The technical problem to be solved by the present invention is: how to solve the problem that the existing information security protection system has a single protection type, resulting in poor protection effect and bringing certain impacts on the use of the information security protection system, and provides an information security protection system for urban rail transit automation equipment.
本发明是通过以下技术方案解决上述技术问题的,本发明包括设备登录验证模块、设备硬件监测模块、设备通信监测模块、设备环境监测模块、设备影像采集模块、数据处理模块与信息发送模块;The present invention solves the above technical problems through the following technical solutions, which include a device login verification module, a device hardware monitoring module, a device communication monitoring module, a device environment monitoring module, a device image acquisition module, a data processing module and an information sending module;
所述设备登录验证模块用于城市轨道交通自动化设备的管理人员使用设备时进行用户身份验证,获取到身份验证信息;The device login verification module is used for the administrator of the urban rail transit automation equipment to perform user identity verification when using the equipment and obtain identity verification information;
所述设备硬件监测信息用于进行城市轨道交通自动化设备的监测,获取到设备信息;The equipment hardware monitoring information is used to monitor urban rail transit automation equipment and obtain equipment information;
所述设备通信监测模块用于进行城市轨道交通自动化设备的通信监测,获取到通信监测信息;The equipment communication monitoring module is used to perform communication monitoring of urban rail transit automation equipment and obtain communication monitoring information;
所述设备环境监测模块用于进行城市轨道交通自动化设备的设备环境监测,获取到设备环境信息;The equipment environment monitoring module is used to monitor the equipment environment of urban rail transit automation equipment and obtain equipment environment information;
所述设备影像采集模块用于进行城市轨道交通自动化设备的设备影像采集,获取到设备影像信息;The device image acquisition module is used to acquire device image information of urban rail transit automation equipment;
所述数据处理模块用于对身份验证信息、设备信息、通信监测信息、设备环境信息与设备影像信息进行处理获取到设备安防管控信息、设备状态管控信息、通信安全管控信息、设备环境管控信息与辅助管控信息;The data processing module is used to process identity authentication information, device information, communication monitoring information, device environment information and device image information to obtain device security control information, device status control information, communication security control information, device environment control information and auxiliary control information;
所述信息发送模块用于在设备安防管控信息、设备状态管控信息、通信安全管控信息、设备环境管控信息与设备管控信息生成后,将上述信息发送到预设接收终端。The information sending module is used to send the equipment security control information, equipment status control information, communication security control information, equipment environment control information and equipment control information to a preset receiving terminal after the above information is generated.
进一步在于,所述设备安防管控信息的具体处理过程如下:提取出采集到的身份验证信息,在预设时长内连续采集x次身份验证信息,身份验证信息包括身份验证通过信息与身份验证失败信息,提取出x次身份验证信息中身份验证通过信息出现的次数将其标记为Z1,将x次身份验证信息中验证失败信息出现的次数将其标记为Z2,计算出通过公式Z1/x-Z2/x*α=Zz,获取到评估参数Zz,当评估Zz小于预设值时,即生成设备安防管控信息。Furthermore, the specific processing process of the equipment security management and control information is as follows: extract the collected identity authentication information, continuously collect x times of identity authentication information within a preset time period, the identity authentication information includes identity authentication pass information and identity authentication failure information, extract the number of times the identity authentication pass information appears in the x times of identity authentication information and mark it as Z1, mark the number of times the authentication failure information appears in the x times of identity authentication information and mark it as Z2, calculate through the formula Z1/x-Z2/x*α=Zz, obtain the evaluation parameter Zz, and when the evaluation Zz is less than the preset value, the equipment security management and control information is generated.
进一步在于,所述设备状态管控信息的具体处理过程如下:提取出采集到的设备信息,设备信息包括城市轨道交通自动化设备的安装时长信息、城市轨道交通自动化设备的检修维护记录信息、软件故障频率信息、设备数据录入速度和设备数据导出速度;Furthermore, the specific processing process of the equipment status control information is as follows: extracting the collected equipment information, the equipment information including installation time information of urban rail transit automation equipment, repair and maintenance record information of urban rail transit automation equipment, software fault frequency information, equipment data input speed and equipment data export speed;
从城市轨道交通自动化设备的安装的检修维护记录信息中提取出城市轨道交通自动化设备的检修次数信息;Extracting the maintenance frequency information of the urban rail transit automation equipment from the installation maintenance record information of the urban rail transit automation equipment;
计算出城市轨道交通自动化设备的检修维护次数与城市轨道交通自动化设备的安装时长信息的比值,获取到单位时长的检修维护次数;Calculate the ratio of the number of inspection and maintenance of urban rail transit automation equipment to the installation time information of urban rail transit automation equipment, and obtain the number of inspection and maintenance per unit time;
当城市轨道交通自动化设备的安装时长信息大于预设值,但单位时长的检修维护次数小于预设值a1时,即生成设备状态管控信息;When the installation time information of the urban rail transit automation equipment is greater than the preset value, but the number of inspection and maintenance times per unit time is less than the preset value a1, the equipment status control information is generated;
当城市轨道交通自动化设备的安装时长信息小于预设值,但单位时长的检修维护次数小于预设值a2时,即生成设备状态管控信息,a1>a2;When the installation time information of the urban rail transit automation equipment is less than the preset value, but the number of inspection and maintenance times per unit time is less than the preset value a2, the equipment status control information is generated, a1>a2;
当城市轨道交通自动化设备的安装时长信息大于预设值,软件故障频率信息也大于预设值时,即生成设备状态管控信息;When the installation time information of the urban rail transit automation equipment is greater than the preset value and the software failure frequency information is also greater than the preset value, the equipment status control information is generated;
提取出设备数据录入速度和设备数据导出速度,当城市轨道交通自动化设备的安装时长信息大于预设值,设备数据录入速度和设备数据导出速度中任意一个小于预设值m1时,即生成设备状态管控信息;The equipment data input speed and the equipment data export speed are extracted. When the installation time information of the urban rail transit automation equipment is greater than the preset value, and either the equipment data input speed or the equipment data export speed is less than the preset value m1, the equipment status control information is generated;
城市轨道交通自动化设备的安装时长信息小于预设值设备数据录入速度和设备数据导出速度中任意一个小于预设值m2时,即生成设备状态管控信息,m1<m2;When the installation time information of the urban rail transit automation equipment is less than the preset value, and either the equipment data input speed or the equipment data export speed is less than the preset value m2, the equipment status control information is generated, m1<m2;
同时连续采集设备数据录入速度和设备数据导出速度,并将采集到的实时监测设备数据录入速度和设备数据导出速度制作成折线图进行趋势分析,当实时监测设备数据录入速度和设备数据导出速度的趋势出现大幅度的下降时,即生成设备状态管控信息;At the same time, the equipment data input speed and equipment data export speed are continuously collected, and the collected real-time monitoring equipment data input speed and equipment data export speed are made into a line chart for trend analysis. When the trend of the real-time monitoring equipment data input speed and equipment data export speed drops significantly, the equipment status control information is generated;
所述设备信息还包括设备自动切换信息,对设备自动切换信息进行处理获取到自动切换评估参数;The device information also includes device automatic switching information, and the device automatic switching information is processed to obtain automatic switching evaluation parameters;
当自动切换评估参数的异常时,也生成设备状态管控信息。When the automatic switching evaluation parameters are abnormal, the equipment status control information is also generated.
进一步在于,所述自动切换评估参数的具体处理过程如下:提取出采集到的设备自动切换信息,设备自动切换信息为城市轨道交通自动化设备自动切换备用设备的速度,进行切换测试,连续进行至少w次测试,记录下w次切换测试的切换完成速度,即城市轨道交通自动化设备自动切换备用设备的速度,获取到w个切换完成速度,之后去除掉w个切换完成速度中的最大值和最小值后,计算出剩余的切换完成速度的均值,即获取到自动切换评估参数,当自动切换评估参数大于预设值时,即表示其存在异常。Furthermore, the specific processing process of the automatic switching evaluation parameter is as follows: extract the collected equipment automatic switching information, the equipment automatic switching information is the speed at which the urban rail transit automation equipment automatically switches to the backup equipment, perform a switching test, perform at least w tests in succession, record the switching completion speed of the w switching tests, that is, the speed at which the urban rail transit automation equipment automatically switches to the backup equipment, obtain w switching completion speeds, then remove the maximum and minimum values of the w switching completion speeds, calculate the average of the remaining switching completion speeds, that is, obtain the automatic switching evaluation parameter, and when the automatic switching evaluation parameter is greater than the preset value, it indicates that there is an abnormality.
进一步在于,所述通信安全管控信息的具体处理过程如下:提取出采集到的通信监测信息,通信监测信息包括通信信号强度信息、通信信息传输速度信息、干扰信号强度、与模拟测试信息;Furthermore, the specific processing process of the communication security management and control information is as follows: extracting the collected communication monitoring information, the communication monitoring information including communication signal strength information, communication information transmission speed information, interference signal strength, and simulation test information;
提取出通信信息强度,连续次采集m次通信信息强度,之后计算出m次通信信息强度的均值,获取到信号强度评估参数,当信号强度评估参数小于预设值时,即生成通信安全管控信息;The communication information strength is extracted, the communication information strength is collected m times continuously, and then the average of the communication information strength is calculated to obtain the signal strength evaluation parameter. When the signal strength evaluation parameter is less than the preset value, the communication security control information is generated;
提取出通信信息传输速度信息,当通信信息传输速度信息小于预设值超过预设时长时,即生成通信安全管控信息;Extracting the communication information transmission speed information, when the communication information transmission speed information is less than a preset value for more than a preset time, generating communication security control information;
提取出采集到的模拟测试信息,当模拟测试信息大于预设值时,即生成通信安全管控信息;Extract the collected simulation test information, and when the simulation test information is greater than a preset value, generate communication security control information;
模拟测试信息的获取过程如下:对城市轨道交通自动化设备进行模拟攻击,连续攻击预设次数,之后提取出攻破次数与预设次数的比值,即获取的模拟测试信息。The process of obtaining the simulation test information is as follows: conduct a simulated attack on the urban rail transit automation equipment, attack continuously for a preset number of times, and then extract the ratio of the number of attacks to the preset number, which is the obtained simulation test information.
进一步在于,所述设备环境管控信息的具体处理过程如下:提取出采集到的设备环境信息,设备环境信息包括环境温度信息、环境湿度信息、环境震动力大小、环境粉尘浓度与环境电磁强度信息;Furthermore, the specific processing process of the equipment environment control information is as follows: extracting the collected equipment environment information, the equipment environment information includes environmental temperature information, environmental humidity information, environmental vibration force, environmental dust concentration and environmental electromagnetic intensity information;
提取出环境温度信息,实时监测环境温度信息,当环境温度信息大于预设预设温度h1或者小于预设温度h2超过预设时长时,即生成设备环境管控信息;Extract the ambient temperature information and monitor the ambient temperature information in real time. When the ambient temperature information is greater than the preset temperature h1 or less than the preset temperature h2 for more than the preset time, the equipment environment control information is generated;
提取出采集的环境湿度信息,当环境湿度信息大于预设值超过预设时长,即生成设备环境管控信息;The collected environmental humidity information is extracted. When the environmental humidity information is greater than the preset value for a preset period of time, the equipment environment control information is generated;
提取出环境震动力大小,当环境震动力大小大于预设值超过预设时长,即生成设备环境管控信息;The magnitude of the environmental vibration force is extracted. When the magnitude of the environmental vibration force is greater than a preset value for a preset period of time, the equipment environment control information is generated;
提取出环境粉尘浓度,当环境粉尘浓度大于预设浓度超过预设时长,即生成设备环境管控信息;The ambient dust concentration is extracted. When the ambient dust concentration is greater than the preset concentration for a preset period of time, the equipment environment control information is generated;
提取出环境电磁强度信息,当环境电磁强度信息大于预设值超过预设时长,即生成设备环境管控信息。The environmental electromagnetic intensity information is extracted. When the environmental electromagnetic intensity information is greater than the preset value for a preset period of time, the equipment environment control information is generated.
进一步在于,所述辅助管控信息的具体处理过程如下:提取出采集到的设备影像信息,对设备影像信息进行清晰化处理,获取到清晰设备影像信息;Furthermore, the specific processing process of the auxiliary control information is as follows: extracting the collected equipment image information, clarifying the equipment image information, and obtaining clear equipment image information;
之后对清晰设备影像信息进行实时分析,导入人体识别模型,当识别出人体模型时,监测人体模型与城市轨道交通自动化设备的距离信息;After that, the clear equipment image information is analyzed in real time and the human body recognition model is imported. When the human body model is recognized, the distance information between the human body model and the urban rail transit automation equipment is monitored;
当城市轨道交通自动化设备的距离信息小于预设值时,再采集当前是否为城市轨道交通自动化设备维护时间段以及城市轨道交通自动化设备是否接收到维护指令;When the distance information of the urban rail transit automation equipment is less than the preset value, it is collected whether it is the maintenance time period of the urban rail transit automation equipment and whether the urban rail transit automation equipment has received the maintenance instruction;
当前为非城市轨道交通自动化设备维护时间段或者城市轨道交通自动化设备是未接收到维护指令时,即生成辅助管控信息。When the current period is not a maintenance period for the urban rail transit automation equipment or the urban rail transit automation equipment has not received a maintenance instruction, auxiliary control information is generated.
进一步在于,所述设备影像信息还包括城市轨道交通自动化设备的接入线缆的影像信息;Furthermore, the device image information also includes image information of access cables of urban rail transit automation equipment;
对接入线缆的影像信息进行线缆弯折角度分析,获取到接入线缆弯折角度信息,当接入线缆弯折角度信息小于预设值时,即生成辅助管控信息;Perform cable bending angle analysis on the image information of the access cable to obtain the access cable bending angle information. When the access cable bending angle information is less than a preset value, auxiliary control information is generated.
同时对接入线缆进行位置识别,识别其是否处在预设的标准位置上,当接入线缆处在非标准位置上时,即生成辅助管控信息;At the same time, the access cable is identified to determine whether it is in the preset standard position. When the access cable is in a non-standard position, auxiliary control information is generated.
导入预设模型信息到接入线缆的影像信息中,进行预设模型的识别,当识别出预设模型,且预设模型与接入线缆之间的距离小于预设值超过预设次数时,即生成辅助管控信息。Import the preset model information into the image information of the access cable to identify the preset model. When the preset model is identified and the distance between the preset model and the access cable is less than the preset value for more than the preset number of times, auxiliary management and control information is generated.
本发明相比现有技术具有以下优点:该城市轨道交通自动化设备信息安全防护系统,对城市轨道交通自动化设备的使用者进行了相关身份验证,能够及时的发现用户异常,当频繁出现用户身份验证失败时即生成的设备安防管控信息,进行城市轨道交通自动化设备的防护升级,进而更好的保护城市轨道交通自动化设备即提升了城市轨道交通自动化设备的信息安全防护,通过对城市轨道交通自动化设备自身状态进行监测,发现异常时,即及时的生成设备状态管控信息来进行设备本身的调控,进而保证城市轨道交通自动化设备能够稳定运行,继续进行稳定的信息发送,稳定的信息发送即是更好保证了信息安全,对城市轨道交通自动化设备的通信状态进行评估,在其异常时即生成通信安全管控信息进行通信安全管控,实现了更加直接的信息安全防护,再配合着设备环境管控信息与辅助管控信息的设置,使得该系统更加全面化的进行了城市轨道交通自动化设备信息安全,更进一步保证了城市轨道交通自动化设备的信息安全,让该系统更加值得推广使用。Compared with the prior art, the present invention has the following advantages: the information security protection system for urban rail transit automation equipment performs relevant identity authentication on users of urban rail transit automation equipment, can timely detect user anomalies, and when user identity authentication fails frequently, generates equipment security control information to upgrade the protection of urban rail transit automation equipment, thereby better protecting urban rail transit automation equipment, that is, improving the information security protection of urban rail transit automation equipment. By monitoring the state of the urban rail transit automation equipment itself, when anomalies are found, timely generates equipment state control information to regulate the equipment itself, thereby ensuring that the urban rail transit automation equipment can operate stably and continue to send stable information. Stable information sending is to better ensure information security. The communication state of the urban rail transit automation equipment is evaluated, and when it is abnormal, communication security control information is generated for communication security control, thereby achieving more direct information security protection. In combination with the setting of equipment environment control information and auxiliary control information, the system performs more comprehensive information security of urban rail transit automation equipment, further ensures the information security of urban rail transit automation equipment, and makes the system more worthy of popularization and use.
附图说明BRIEF DESCRIPTION OF THE DRAWINGS
图1是本发明的系统框图。FIG1 is a system block diagram of the present invention.
具体实施方式DETAILED DESCRIPTION
下面对本发明的实施例作详细说明,本实施例在以本发明技术方案为前提下进行实施,给出了详细的实施方式和具体的操作过程,但本发明的保护范围不限于下述的实施例。The following is a detailed description of an embodiment of the present invention. This embodiment is implemented on the premise of the technical solution of the present invention, and a detailed implementation method and a specific operation process are given, but the protection scope of the present invention is not limited to the following embodiment.
如图1所示,本实施例提供一种技术方案:一种城市轨道交通自动化设备信息安全防护系统,包括设备登录验证模块、设备硬件监测模块、设备通信监测模块、设备环境监测模块、设备影像采集模块、数据处理模块与信息发送模块;As shown in FIG1 , this embodiment provides a technical solution: an information security protection system for urban rail transit automation equipment, including an equipment login verification module, an equipment hardware monitoring module, an equipment communication monitoring module, an equipment environment monitoring module, an equipment image acquisition module, a data processing module and an information sending module;
设备登录验证模块用于城市轨道交通自动化设备的管理人员使用设备时进行用户身份验证,获取到身份验证信息;The device login verification module is used by managers of urban rail transit automation equipment to perform user identity authentication when using the equipment and obtain identity authentication information;
设备硬件监测信息用于进行城市轨道交通自动化设备的监测,获取到设备信息;Equipment hardware monitoring information is used to monitor urban rail transit automation equipment and obtain equipment information;
设备通信监测模块用于进行城市轨道交通自动化设备的通信监测,获取到通信监测信息;The equipment communication monitoring module is used to monitor the communication of urban rail transit automation equipment and obtain communication monitoring information;
设备环境监测模块用于进行城市轨道交通自动化设备的设备环境监测,获取到设备环境信息;The equipment environment monitoring module is used to monitor the equipment environment of urban rail transit automation equipment and obtain equipment environment information;
设备影像采集模块用于进行城市轨道交通自动化设备的设备影像采集,获取到设备影像信息;The equipment image acquisition module is used to acquire equipment images of urban rail transit automation equipment and obtain equipment image information;
数据处理模块用于对身份验证信息、设备信息、通信监测信息、设备环境信息与设备影像信息进行处理获取到设备安防管控信息、设备状态管控信息、通信安全管控信息、设备环境管控信息与辅助管控信息;The data processing module is used to process identity authentication information, equipment information, communication monitoring information, equipment environment information and equipment image information to obtain equipment security control information, equipment status control information, communication security control information, equipment environment control information and auxiliary control information;
信息发送模块用于在设备安防管控信息、设备状态管控信息、通信安全管控信息、设备环境管控信息与设备管控信息生成后,将上述信息发送到预设接收终端;The information sending module is used to send the equipment security control information, equipment status control information, communication security control information, equipment environment control information and equipment control information to a preset receiving terminal after the above information is generated;
本发明对城市轨道交通自动化设备的使用者进行了相关身份验证,能够及时的发现用户异常,当频繁出现用户身份验证失败时即生成的设备安防管控信息,进行城市轨道交通自动化设备的防护升级,进而更好的保护城市轨道交通自动化设备即提升了城市轨道交通自动化设备的信息安全防护,通过对城市轨道交通自动化设备自身状态进行监测,发现异常时,即及时的生成设备状态管控信息来进行设备本身的调控,进而保证城市轨道交通自动化设备能够稳定运行,继续进行稳定的信息发送,稳定的信息发送即是更好保证了信息安全,对城市轨道交通自动化设备的通信状态进行评估,在其异常时即生成通信安全管控信息进行通信安全管控,实现了更加直接的信息安全防护,再配合着设备环境管控信息与辅助管控信息的设置,使得该系统更加全面化的进行了城市轨道交通自动化设备信息安全,更进一步保证了城市轨道交通自动化设备的信息安全,让该系统更加值得推广使用。The present invention performs relevant identity authentication on users of urban rail transit automation equipment, and can timely discover user anomalies. When user identity authentication fails frequently, the device security control information is generated, and the protection of the urban rail transit automation equipment is upgraded, thereby better protecting the urban rail transit automation equipment, that is, improving the information security protection of the urban rail transit automation equipment. By monitoring the status of the urban rail transit automation equipment itself, when anomalies are found, the device status control information is timely generated to regulate the equipment itself, thereby ensuring that the urban rail transit automation equipment can operate stably and continue to send stable information. Stable information sending is to better ensure information security. The communication status of the urban rail transit automation equipment is evaluated, and when it is abnormal, communication security control information is generated to perform communication security control, thereby achieving more direct information security protection. In combination with the setting of equipment environment control information and auxiliary control information, the system performs more comprehensive information security of urban rail transit automation equipment, further ensures the information security of urban rail transit automation equipment, and makes the system more worthy of popularization and use.
设备安防管控信息的具体处理过程如下:提取出采集到的身份验证信息,在预设时长内连续采集x次身份验证信息,身份验证信息包括身份验证通过信息与身份验证失败信息,提取出x次身份验证信息中身份验证通过信息出现的次数将其标记为Z1,将x次身份验证信息中验证失败信息出现的次数将其标记为Z2,计算出通过公式Z1/x-Z2/x*α=Zz,获取到评估参数Zz,当评估Zz小于预设值时,即生成设备安防管控信息,此时设备安防管控信息的具体内容为,需要加强城市轨道交通自动化设备的安全防护,来防止异常人员盗用数据的状况发生,x≥10。The specific processing process of equipment security control information is as follows: extract the collected identity authentication information, continuously collect x times of identity authentication information within the preset time, the identity authentication information includes identity authentication pass information and identity authentication failure information, extract the number of times the identity authentication pass information appears in the x times of identity authentication information and mark it as Z1, and mark the number of times the authentication failure information appears in the x times of identity authentication information as Z2, calculate the evaluation parameter Zz through the formula Z1/x-Z2/x*α=Zz, and obtain the evaluation parameter Zz. When the evaluation Zz is less than the preset value, the equipment security control information is generated. At this time, the specific content of the equipment security control information is that it is necessary to strengthen the security protection of urban rail transit automation equipment to prevent abnormal personnel from stealing data, x≥10.
设备状态管控信息的具体处理过程如下:提取出采集到的设备信息,设备信息包括城市轨道交通自动化设备的安装时长信息、城市轨道交通自动化设备的检修维护记录信息、软件故障频率信息、设备数据录入速度和设备数据导出速度;The specific processing process of the equipment status control information is as follows: extract the collected equipment information, which includes the installation time information of urban rail transit automation equipment, the inspection and maintenance record information of urban rail transit automation equipment, the software failure frequency information, the equipment data input speed and the equipment data export speed;
从城市轨道交通自动化设备的安装的检修维护记录信息中提取出城市轨道交通自动化设备的检修次数信息;Extracting the maintenance frequency information of the urban rail transit automation equipment from the installation maintenance record information of the urban rail transit automation equipment;
计算出城市轨道交通自动化设备的检修维护次数与城市轨道交通自动化设备的安装时长信息的比值,获取到单位时长的检修维护次数;Calculate the ratio of the number of inspection and maintenance of urban rail transit automation equipment to the installation time information of urban rail transit automation equipment, and obtain the number of inspection and maintenance per unit time;
当城市轨道交通自动化设备的安装时长信息大于预设值,但单位时长的检修维护次数小于预设值a1时,即生成设备状态管控信息;当城市轨道交通自动化设备的安装时长信息小于预设值,但单位时长的检修维护次数小于预设值a2时,即生成设备状态管控信息,a1>a2;When the installation time information of the urban rail transit automation equipment is greater than the preset value, but the number of inspection and maintenance per unit time is less than the preset value a1, the equipment status control information is generated; when the installation time information of the urban rail transit automation equipment is less than the preset value, but the number of inspection and maintenance per unit time is less than the preset value a2, the equipment status control information is generated, a1>a2;
当城市轨道交通自动化设备的安装时长信息大于预设值,软件故障频率信息也大于预设值时,即生成设备状态管控信息;When the installation time information of the urban rail transit automation equipment is greater than the preset value and the software failure frequency information is also greater than the preset value, the equipment status control information is generated;
提取出设备数据录入速度和设备数据导出速度,当城市轨道交通自动化设备的安装时长信息大于预设值,设备数据录入速度和设备数据导出速度中任意一个小于预设值m1时,即生成设备状态管控信息;The equipment data input speed and the equipment data export speed are extracted. When the installation time information of the urban rail transit automation equipment is greater than the preset value, and either the equipment data input speed or the equipment data export speed is less than the preset value m1, the equipment status control information is generated;
城市轨道交通自动化设备的安装时长信息小于预设值设备数据录入速度和设备数据导出速度中任意一个小于预设值m2时,即生成设备状态管控信息,m1<m2;When the installation time information of the urban rail transit automation equipment is less than the preset value, and either the equipment data input speed or the equipment data export speed is less than the preset value m2, the equipment status control information is generated, m1<m2;
同时连续采集设备数据录入速度和设备数据导出速度,并将采集到的实时监测设备数据录入速度和设备数据导出速度制作成折线图进行趋势分析,当实时监测设备数据录入速度和设备数据导出速度的趋势出现大幅度的下降时,即生成设备状态管控信息。At the same time, the equipment data input speed and equipment data export speed are continuously collected, and the collected real-time monitoring equipment data input speed and equipment data export speed are made into a line graph for trend analysis. When the trend of the real-time monitoring equipment data input speed and equipment data export speed shows a substantial decline, the equipment status control information is generated.
上述过程下的设备状态管控信息的具体内容为,需要增加检修维护频率来更好的保证城市轨道交通自动化设备能够稳定运行,更加稳定的运行即保证了信息发送的稳定,进而实现了更好的信息安全的防护;The specific content of the equipment status control information in the above process is that the inspection and maintenance frequency needs to be increased to better ensure the stable operation of urban rail transit automation equipment. More stable operation ensures the stability of information transmission, thereby achieving better information security protection;
设备信息还包括设备自动切换信息,对设备自动切换信息进行处理获取到自动切换评估参数;The device information also includes device automatic switching information, and the device automatic switching information is processed to obtain automatic switching evaluation parameters;
当自动切换评估参数的异常时,也生成设备状态管控信息,此时设备状态管控信息的具体内容为,需要立即进行设备的检修维护。When the automatic switching evaluation parameters are abnormal, equipment status control information is also generated. At this time, the specific content of the equipment status control information is that the equipment needs to be inspected and maintained immediately.
自动切换评估参数的具体处理过程如下:提取出采集到的设备自动切换信息,设备自动切换信息为城市轨道交通自动化设备自动切换备用设备的速度,进行切换测试,连续进行至少w次测试,记录下w次切换测试的切换完成速度,即城市轨道交通自动化设备自动切换备用设备的速度,获取到w个切换完成速度,之后去除掉w个切换完成速度中的最大值和最小值后,计算出剩余的切换完成速度的均值,即获取到自动切换评估参数,当自动切换评估参数大于预设值时,即表示其存在异常,w≥5。The specific processing process of the automatic switching evaluation parameters is as follows: extract the collected equipment automatic switching information, the equipment automatic switching information is the speed at which the urban rail transit automation equipment automatically switches to the backup equipment, perform a switching test, perform at least w tests in succession, and record the switching completion speed of the w switching tests, that is, the speed at which the urban rail transit automation equipment automatically switches to the backup equipment, and obtain w switching completion speeds. After removing the maximum and minimum values of the w switching completion speeds, calculate the average of the remaining switching completion speeds, that is, obtain the automatic switching evaluation parameters. When the automatic switching evaluation parameters are greater than the preset value, it indicates that there is an abnormality, w≥5.
通信安全管控信息的具体处理过程如下:提取出采集到的通信监测信息,通信监测信息包括通信信号强度信息、通信信息传输速度信息、干扰信号强度、与模拟测试信息;The specific processing process of communication security control information is as follows: extract the collected communication monitoring information, which includes communication signal strength information, communication information transmission speed information, interference signal strength, and simulation test information;
提取出通信信息强度,连续次采集m次通信信息强度,之后计算出m次通信信息强度的均值,获取到信号强度评估参数,当信号强度评估参数小于预设值时,即生成通信安全管控信息,此时通信安全管控信息的具体内容为信号强度异常,需要进行异常排除,保证通信信息强度稳定;The communication information strength is extracted, the communication information strength is collected m times continuously, and then the average of the communication information strength is calculated to obtain the signal strength evaluation parameter. When the signal strength evaluation parameter is less than the preset value, the communication security control information is generated. At this time, the specific content of the communication security control information is that the signal strength is abnormal, and the abnormality needs to be eliminated to ensure the stability of the communication information strength;
提取出通信信息传输速度信息,当通信信息传输速度信息小于预设值超过预设时长时,即生成通信安全管控信息,此时通信安全管控信息的具体内容为通信速度异常,需要进行通信速度异常排除;The communication information transmission speed information is extracted. When the communication information transmission speed information is less than the preset value for more than the preset time, the communication security control information is generated. At this time, the specific content of the communication security control information is that the communication speed is abnormal, and the communication speed abnormality needs to be eliminated;
提取出采集到的模拟测试信息,当模拟测试信息大于预设值时,即生成通信安全管控信息,此时通信安全管控信息的具体内容为,设备的防护工具防护效果较差,需要进行设备防护工具的升级更新;The collected simulation test information is extracted. When the simulation test information is greater than the preset value, communication security control information is generated. At this time, the specific content of the communication security control information is that the protection effect of the equipment's protection tool is poor and the equipment protection tool needs to be upgraded;
模拟测试信息的获取过程如下:对城市轨道交通自动化设备进行模拟攻击,连续攻击预设次数,之后提取出攻破次数与预设次数的比值,即获取的模拟测试信息。The process of obtaining the simulation test information is as follows: conduct a simulated attack on the urban rail transit automation equipment, attack continuously for a preset number of times, and then extract the ratio of the number of attacks to the preset number, which is the obtained simulation test information.
设备环境管控信息的具体处理过程如下:提取出采集到的设备环境信息,设备环境信息包括环境温度信息、环境湿度信息、环境震动力大小、环境粉尘浓度与环境电磁强度信息;The specific processing process of the equipment environment control information is as follows: extract the collected equipment environment information, which includes environmental temperature information, environmental humidity information, environmental vibration force, environmental dust concentration and environmental electromagnetic intensity information;
提取出环境温度信息,实时监测环境温度信息,当环境温度信息大于预设预设温度h1或者小于预设温度h2超过预设时长时,即生成设备环境管控信息h1>h2,此时设备环境管控信息的具体内容为,环境温度异常,需要进行环境温度调控;Extract the ambient temperature information and monitor the ambient temperature information in real time. When the ambient temperature information is greater than the preset temperature h1 or less than the preset temperature h2 for more than the preset time, the equipment environment control information h1>h2 is generated. At this time, the specific content of the equipment environment control information is that the ambient temperature is abnormal and the ambient temperature needs to be controlled.
提取出采集的环境湿度信息,当环境湿度信息大于预设值超过预设时长,即生成设备环境管控信息,此时设备环境管控信息的具体内容为,环境湿度异常,需要进行环境湿度调控;The collected environmental humidity information is extracted. When the environmental humidity information is greater than the preset value for a preset period of time, the equipment environment control information is generated. At this time, the specific content of the equipment environment control information is that the environmental humidity is abnormal and environmental humidity control is required;
提取出环境震动力大小,当环境震动力大小大于预设值超过预设时长,即生成设备环境管控信息,此时设备环境管控信息的具体内容为,环境震动力异常,需要进行设备抗震效果增强;The magnitude of the environmental vibration force is extracted. When the magnitude of the environmental vibration force is greater than the preset value for a preset period of time, the equipment environment control information is generated. At this time, the specific content of the equipment environment control information is that the environmental vibration force is abnormal and the equipment seismic resistance effect needs to be enhanced;
提取出环境粉尘浓度,当环境粉尘浓度大于预设浓度超过预设时长,即生成设备环境管控信息,此时设备环境管控信息的具体内容为,环境粉尘浓度异常,需要进行环境蜂巢浓度调控;The ambient dust concentration is extracted. When the ambient dust concentration is greater than the preset concentration for a preset period of time, the equipment environment control information is generated. At this time, the specific content of the equipment environment control information is that the ambient dust concentration is abnormal and the ambient honeycomb concentration needs to be regulated;
提取出环境电磁强度信息,当环境电磁强度信息大于预设值超过预设时长,即生成设备环境管控信息,此时设备环境管控信息的具体内容为,环境电磁强度异常,需要进行设备抗电磁效果增强;The environmental electromagnetic intensity information is extracted. When the environmental electromagnetic intensity information is greater than the preset value for a preset period of time, the equipment environment control information is generated. At this time, the specific content of the equipment environment control information is that the environmental electromagnetic intensity is abnormal and the equipment anti-electromagnetic effect needs to be enhanced;
上述过程对环境要求旨在确保城市轨道交通自动化设备能够在安全、稳定、高效的环境下运行,从而实现设备稳定信息的传输,进而实现了信息安全的防护。The environmental requirements of the above process are aimed at ensuring that urban rail transit automation equipment can operate in a safe, stable and efficient environment, thereby achieving stable information transmission of the equipment and further realizing information security protection.
辅助管控信息的具体处理过程如下:提取出采集到的设备影像信息,对设备影像信息进行清晰化处理,获取到清晰设备影像信息;The specific processing process of the auxiliary control information is as follows: extracting the collected equipment image information, clarifying the equipment image information, and obtaining clear equipment image information;
之后对清晰设备影像信息进行实时分析,导入人体识别模型,当识别出人体模型时,监测人体模型与城市轨道交通自动化设备的距离信息;After that, the clear equipment image information is analyzed in real time and the human body recognition model is imported. When the human body model is recognized, the distance information between the human body model and the urban rail transit automation equipment is monitored;
当城市轨道交通自动化设备的距离信息小于预设值时,再采集当前是否为城市轨道交通自动化设备维护时间段以及城市轨道交通自动化设备是否接收到维护指令;When the distance information of the urban rail transit automation equipment is less than the preset value, it is collected whether it is the maintenance time period of the urban rail transit automation equipment and whether the urban rail transit automation equipment has received the maintenance instruction;
当前为非城市轨道交通自动化设备维护时间段或者城市轨道交通自动化设备是未接收到维护指令时,即生成辅助管控信息;When the current period is not the maintenance period for the urban rail transit automation equipment or the urban rail transit automation equipment has not received a maintenance instruction, auxiliary control information is generated;
此时辅助管控信息的具体内容为,存在异常人员靠近城市轨道交通自动化设备,需要对城市轨道交通自动化设备进行安全巡查。At this time, the specific content of the auxiliary control information is that there are abnormal people approaching the urban rail transit automation equipment, and safety inspections of the urban rail transit automation equipment are required.
设备影像信息还包括城市轨道交通自动化设备的接入线缆的影像信息;The equipment image information also includes the image information of the access cables of the urban rail transit automation equipment;
对接入线缆的影像信息进行线缆弯折角度分析,获取到接入线缆弯折角度信息,当接入线缆弯折角度信息小于预设值时,即生成辅助管控信息,同时对接入线缆进行位置识别,识别其是否处在预设的标准位置上,当接入线缆处在非标准位置上时,即生成辅助管控信息;Perform cable bending angle analysis on the image information of the access cable to obtain the access cable bending angle information. When the access cable bending angle information is less than the preset value, auxiliary control information is generated. At the same time, the position of the access cable is identified to identify whether it is in the preset standard position. When the access cable is in a non-standard position, auxiliary control information is generated.
此时辅助管控信息的具体内容为城市轨道交通自动化设备的接入线缆存在异常,需要进行调整;At this time, the specific content of the auxiliary control information is that the access cable of the urban rail transit automation equipment is abnormal and needs to be adjusted;
导入预设模型信息到接入线缆的影像信息中,进行预设模型的识别,当识别出预设模型,且预设模型与接入线缆之间的距离小于预设值超过预设次数时,即生成辅助管控信息,预设模型的种类包括老鼠与虫类,老鼠与虫类可能啃咬线缆导致其信息传输异常,此时辅助管控信息的具体内容为线缆可能存在异常,需要进行检修;Import the preset model information into the image information of the access cable to identify the preset model. When the preset model is identified and the distance between the preset model and the access cable is less than the preset value for more than the preset number of times, auxiliary control information is generated. The types of preset models include rats and insects. Rats and insects may gnaw the cable, causing abnormal information transmission. At this time, the specific content of the auxiliary control information is that the cable may be abnormal and needs to be repaired.
通过上述过程,对城市轨道交通自动化设备进行了异常发现,及时发现是否有异常人员靠近城市轨道交通自动化设备和城市轨道交通自动化设备接入线缆是否异常,从而保证城市轨道交通自动化设备能够安全稳定的进行信息传输,从而实现了城市轨道交通自动化设备的信息安全防护。Through the above process, abnormalities of urban rail transit automation equipment are discovered, and it is timely discovered whether there are abnormal people approaching the urban rail transit automation equipment and whether the access cables of the urban rail transit automation equipment are abnormal, thereby ensuring that the urban rail transit automation equipment can transmit information safely and stably, thereby realizing information security protection of urban rail transit automation equipment.
此外,术语“第一”、“第二”仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括至少一个该特征。在本发明的描述中,“多个”的含义是至少两个,例如两个,三个等,除非另有明确具体的限定。In addition, the terms "first" and "second" are used for descriptive purposes only and should not be understood as indicating or implying relative importance or implicitly indicating the number of the indicated technical features. Therefore, the features defined as "first" and "second" may explicitly or implicitly include at least one of the features. In the description of the present invention, the meaning of "plurality" is at least two, such as two, three, etc., unless otherwise clearly and specifically defined.
在本说明书的描述中,参考术语“一个实施例”、“一些实施例”、“示例”、“具体示例”、或“一些示例”等的描述意指结合该实施例或示例描述的具体特征、结构、材料或者特点包含于本发明的至少一个实施例或示例中。在本说明书中,对上述术语的示意性表述不必须针对的是相同的实施例或示例。而且,描述的具体特征、结构、材料或者特点可以在任一个或多个实施例或示例中以合适的方式结合。此外,在不相互矛盾的情况下,本领域的技术人员可以将本说明书中描述的不同实施例或示例以及不同实施例或示例的特征进行结合和组合。In the description of this specification, the description with reference to the terms "one embodiment", "some embodiments", "example", "specific example", or "some examples" etc. means that the specific features, structures, materials or characteristics described in conjunction with the embodiment or example are included in at least one embodiment or example of the present invention. In this specification, the schematic representations of the above terms do not necessarily refer to the same embodiment or example. Moreover, the specific features, structures, materials or characteristics described may be combined in any one or more embodiments or examples in a suitable manner. In addition, those skilled in the art may combine and combine the different embodiments or examples described in this specification and the features of the different embodiments or examples, without contradiction.
尽管上面已经示出和描述了本发明的实施例,可以理解的是,上述实施例是示例性的,不能理解为对本发明的限制,本领域的普通技术人员在本发明的范围内可以对上述实施例进行变化、修改、替换和变型。Although the embodiments of the present invention have been shown and described above, it is to be understood that the above embodiments are exemplary and are not to be construed as limitations of the present invention. A person skilled in the art may change, modify, replace and vary the above embodiments within the scope of the present invention.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410870905.8ACN118822497A (en) | 2024-07-01 | 2024-07-01 | An information security protection system for urban rail transit automation equipment |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410870905.8ACN118822497A (en) | 2024-07-01 | 2024-07-01 | An information security protection system for urban rail transit automation equipment |
| Publication Number | Publication Date |
|---|---|
| CN118822497Atrue CN118822497A (en) | 2024-10-22 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410870905.8APendingCN118822497A (en) | 2024-07-01 | 2024-07-01 | An information security protection system for urban rail transit automation equipment |
| Country | Link |
|---|---|
| CN (1) | CN118822497A (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN119168386A (en)* | 2024-11-18 | 2024-12-20 | 上海伊世智能科技有限公司 | A method and system for protecting information security of urban rail transit |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN119168386A (en)* | 2024-11-18 | 2024-12-20 | 上海伊世智能科技有限公司 | A method and system for protecting information security of urban rail transit |
| Publication | Publication Date | Title |
|---|---|---|
| CN107328465B (en) | Submarine Cable Vibration Monitoring System | |
| CN108199922B (en) | System and method for diagnosing and repairing network equipment and server faults | |
| CN112799358B (en) | Industrial control safety defense system | |
| EP3254928A1 (en) | System and method for the asset management of railway trains | |
| CN106428115A (en) | Fault detection method and device for railway vehicle system | |
| CN108520187A (en) | Physical intrusion attack detection method for industrial control system based on serial communication bus signal analysis | |
| CN103178615A (en) | Method and system for monitoring power equipment failures | |
| CN101789160B (en) | Spacing false-entering prevention system for intelligent video transformer substation | |
| CN118822497A (en) | An information security protection system for urban rail transit automation equipment | |
| CN110516941A (en) | One kind producing hidden danger method and device based on big data analysis enterprise | |
| CN108880901A (en) | System and method for diagnosing and repairing network equipment and server fault | |
| CN118777794B (en) | A monitoring and alarm system for power lines | |
| CN110543658A (en) | Power plant equipment diagnosis method based on big data | |
| CN107276823A (en) | O&M safety operation supervising device and method based on message scheduling monitoring system | |
| WO2024119983A1 (en) | Anomality detection method and apparatus for cable terminal of rail vehicle | |
| CN117688490A (en) | Intelligent optimization energy-saving system based on AI intelligent recognition | |
| CN105572623A (en) | Remote electricity stealing inspection device | |
| CN115795339A (en) | Pipeline safety risk early warning method, system, medium and equipment | |
| CN118138285A (en) | Power equipment network safety protection system for data analysis | |
| CN206187050U (en) | Detection apparatus for rail vehicle system failure | |
| CN101692291A (en) | Method for inspecting substation equipment | |
| CN103325021A (en) | Real-time tracking and recording method for operation process of special device | |
| CN115987621A (en) | A blockchain-based shore power network shooting range system | |
| CN114784977B (en) | Power distribution terminal safety monitoring system and method based on machine learning | |
| CN111146863A (en) | Power safety detection method for transformer substation |
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |