摘要
新能源发电场站已按照“安全分区、网络专用、横向隔离、纵向认证”的网络安全防护基本原则,建立了以纵向安全设备防范和横向三道防线为主体的电力监控系统网络安全防护体系。该体系对常规网络入侵攻击具有一定的“免疫力”。但由于光伏、风力等新能源发电场站具有生产占地区域广、兼有涉网和非涉网两大功能网络且非涉网区存在大量互联网接入、企业生产控制大区缺少流量检测和日志审计手段等特点,现有防护体系难以对生产控制大区内的网络异常行为进行监测和预警。本次实践拟在新能发电场站集控中心侧建设工业控制系统网络安全态势感知与预警平台,构建网络安全监测与预警体系,实现电力监控系统网络安全态势感知、发现和响应。
The new energy power station has established a network security protection system for the power monitoring system based on the basic principles of“security zoning,network dedicated,horizontal isolation,and vertical authentication”,with vertical security equipment prevention and horizontal three lines of defense as the main body.This system has a certain“immunity”against conventional network intrusion attacks.However,due to the wide production area of new energy power plants such as photovoltaic and wind power,as well as the dual functional networks of both grid and non grid related areas,as well as the large amount of internet access in non grid related areas,and the lack of traffic detection and log auditing in enterprise production control areas,the existing protection system is difficult to monitor and warn of abnormal network behavior in production control areas.This practice plans to build an industrial control system network security situation awareness and early warning platform on the centralized control center side of the Xinneng Power Plant station,construct a network security monitoring and early warning system,and achieve network security situation awareness,discovery,and response of the power monitoring system.
作者
韩硕
戚红建
李宏亮
Han Shuo;Qi Hongjian;Li Hongliang(Huaneng Information Technology Co.,Ltd,QingDao Shandong,266000)
出处
《工业信息安全》
2023年第3期69-75,共7页
Industry Information Security
