摘要
阐述了国际背景下网络攻击及内部人员恶意破坏事件对电网调度机构的警示。为深入贯彻落实国家对电力安全风险管控工作的总体部署,提出电网运行监控系统(以下简称OCS系统)权限管控提升研究的必要性。依托于某网级OCS系统,首先提出基于PCS9000可扩展因子服务框架及某网安全专业统一身份认证系统的双因子登录方案,接着提出一种全新的权限管控授权机制,对系统中账户的异常登录行为进行授权管控,并对系统运维中的关键操作采用多人授权、多次确认等方式进行管控。
This paper expounds the warning significance of network attacks and malicious sabotage by insiders to power grid dispatching institutions in the international context. In order to thoroughly implement the overall deployment of the state for power security risk management and control, it is necessary to study the authority management and control improvement of power grid operation monitoring system(hereinafter referred to as OCS system). Relying on a network level OCS system,this paper proposes a two factor login scheme based on pcs9000 extensible factor service framework and a network security professional unified identity authentication system, and proposes a new authority control authorization mechanism to authorize and control the abnormal login behavior of accounts in the system, and control the key operations in the system operation and maintenance by means of multiple authorization and multiple confirmation.
出处
《工业控制计算机》
2023年第2期122-124,共3页
Industrial Control Computer
关键词
OCS
双因子
权限管控
授权机制
OCS
two factor
authority control
authorization mechanism
