摘要
随着工业化与信息化进程的不断交叉融合,越来越多的信息技术被应用到了工业领域,变电站控制系统面临传统的网络安全威胁。然而,变电站控制系统对业务的连续性、高实时性等特殊要求,使得传统的网络安全技术难以直接应用到变电站控制网络。因此,需要有针对性的开展基于DPI技术的变电站网络通信协议分析,及时发现潜在的网络异常检测,产生实时告警,并通过应用测试有效地验证了运用DPI技术可实现变电站网络异常检测。
With the continuous integration of industrialization and informatization,more and more information technology has been applied to the industrial field,and substation control systems are facing traditional network security threats. However,the special requirements of the substation control system for business continuity and high real-time performance make it difficult to apply traditional network security technology directly to the substation control network. Therefore,it is necessary to carry out targeted analysis of substation network communication protocols based on DPI technology,detect potential network anomaly detection in time,and generate real-time alarms. And through the application test,it is valid to verify that the substation network anomaly detection can be realized by using DPI technology.
作者
吴克河
李梦雪
张晓良
李为
WU Kehe;LI Mengxue;ZHANG Xiaoliang;LI Wei(School of Control and Computer Engineering,North China Electric Power University,Beijing 102206)
出处
《计算机与数字工程》
2020年第2期467-473,共7页
Computer & Digital Engineering
基金
国家电网公司科技项目“适应源网荷互动的工控系统多层协同防御技术研究及应用”(编号:52100218000U)资助。
关键词
DPI技术
变电站控制系统
异常检测
DPI technology
substation control system
anomaly detection
