[go: up one dir, main page]

CN115484063A - A network security prevention and control method and system for industrial control systems - Google Patents

A network security prevention and control method and system for industrial control systems Download PDF

Info

Publication number
CN115484063A
CN115484063A CN202210968308.XA CN202210968308A CN115484063A CN 115484063 A CN115484063 A CN 115484063A CN 202210968308 A CN202210968308 A CN 202210968308A CN 115484063 A CN115484063 A CN 115484063A
Authority
CN
China
Prior art keywords
preset
user
level
network security
coefficient
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210968308.XA
Other languages
Chinese (zh)
Other versions
CN115484063B (en
Inventor
魏义昕
史威
张舒
陶冶
艾月乔
王宁
姜帅
潘志榆
董润清
赵天慧
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Oil and Gas Pipeline Network Corp
National Pipe Network Group North Pipeline Co Ltd
Original Assignee
National Pipe Network Group North Pipeline Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by National Pipe Network Group North Pipeline Co Ltd filed Critical National Pipe Network Group North Pipeline Co Ltd
Priority to CN202210968308.XA priority Critical patent/CN115484063B/en
Publication of CN115484063A publication Critical patent/CN115484063A/en
Application granted granted Critical
Publication of CN115484063B publication Critical patent/CN115484063B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/105Multiple levels of security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02PCLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
    • Y02P90/00Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
    • Y02P90/02Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Safety Devices In Control Systems (AREA)

Abstract

本发明涉及网络安全防控技术领域,公开了一种用于工业控制系统的网络安全防控方法及系统,包括:步骤S1:获取用户的登录账号信息和历史行为信息;步骤S2:根据步骤S1中获取的信息,确定用户的级别系数和网络安全防控等级;步骤S3:在确定用户的级别系数和网络安全防控等级后,根据用户的级别系数生成相应的访问权限,根据网络安全防控等级对工业控制系统进行防控,本申请根据用户的登录账号信息和历史行为信息,来确定用户的级别系数和网络安全防控等级,进而通过用户的级别系数生成相应的访问权限,同时不同的用户安全防控等级也不同,进而网络安全防控方式也不同,本申请在提高工业控制系统安全性的同时,还可以保障用户正常操作的稳定性。

Figure 202210968308

The present invention relates to the technical field of network security prevention and control, and discloses a network security prevention and control method and system for industrial control systems, including: step S1: obtaining user login account information and historical behavior information; step S2: according to step S1 Determine the user’s level factor and the network security prevention and control level based on the information obtained in ; Step S3: After determining the user’s level factor and network security Levels prevent and control industrial control systems. This application determines the user's level coefficient and network security prevention and control level based on the user's login account information and historical behavior information, and then generates corresponding access rights through the user's level coefficient. At the same time, different User security prevention and control levels are also different, and network security prevention and control methods are also different. This application can not only improve the security of industrial control systems, but also ensure the stability of users' normal operations.

Figure 202210968308

Description

一种用于工业控制系统的网络安全防控方法及系统A network security prevention and control method and system for industrial control systems

技术领域technical field

本发明涉及网络安全防控技术领域,特别是涉及一种用于工业控制系统的网络安全防控方法及系统。The invention relates to the technical field of network security prevention and control, in particular to a network security prevention and control method and system for industrial control systems.

背景技术Background technique

工业控制系统(简称工控系统),是由各种自动化组件,以及对数据进行实时采集的控制组件共同构成的系统。其核心组件包括数据采集与监控系统、分布式控制系统、可编程控制器、远程终端、人机交互界面设备,以及确保各组件通信的接口技术。但是随着工业化与信息化的融合,工业控制系统的网络安全问题也变得日益突出,一旦出现安全漏洞,工业控制系统就会遭到他人的攻击,进而使工业控制系统中的重要资料被窃取,特别地,出现网络安全问题会给工业控制系统造成不可估量的损失。Industrial control system (referred to as industrial control system) is a system composed of various automation components and control components for real-time data collection. Its core components include data acquisition and monitoring system, distributed control system, programmable controller, remote terminal, human-computer interaction interface equipment, and interface technology to ensure the communication of each component. However, with the integration of industrialization and informatization, the network security of industrial control systems has become increasingly prominent. Once a security breach occurs, the industrial control system will be attacked by others, and the important data in the industrial control system will be stolen. , especially, the emergence of network security problems will cause immeasurable losses to industrial control systems.

现有技术中,网络安全防控方法存在难以根据当前用户的实际情况对网络安全防控等级进行调整,导致安全性不足的问题。In the prior art, the network security prevention and control method has the problem that it is difficult to adjust the network security prevention and control level according to the actual situation of the current user, resulting in insufficient security.

因此,如何提供一种可以对工业控制系统的网络安全进行有效防控的方法,是目前有待解决的技术问题。Therefore, how to provide a method that can effectively prevent and control the network security of the industrial control system is a technical problem to be solved at present.

发明内容Contents of the invention

本发明实施例提供一种用于工业控制系统的网络安全防控方法及系统,用以解决现有技术中无法根据不同的用户制定不同的安全防控等级,无法保证网络安全的防控效果,且无法保证工业控制系统安全性的技术问题。Embodiments of the present invention provide a network security prevention and control method and system for industrial control systems to solve the problem that in the prior art, different security prevention and control levels cannot be formulated according to different users, and the network security prevention and control effect cannot be guaranteed. And the technical problems of industrial control system security cannot be guaranteed.

为了实现上述目的,本发明提供了一种用于工业控制系统的网络安全防控方法,所述方法包括:In order to achieve the above object, the present invention provides a network security prevention and control method for an industrial control system, the method comprising:

步骤S1:获取用户的登录账号信息和历史行为信息;Step S1: Obtain the user's login account information and historical behavior information;

步骤S2:根据所述步骤S1中获取的信息,确定用户的级别系数和工业控制系统的网络安全防控等级;Step S2: According to the information obtained in the step S1, determine the level factor of the user and the network security prevention and control level of the industrial control system;

步骤S3:在确定所述用户的级别系数和所述工业控制系统的网络安全防控等级后,根据所述用户的级别系数生成相应的访问权限,并根据所述工业控制系统的网络安全防控等级对所述工业控制系统进行防控;Step S3: After determining the level factor of the user and the network security prevention and control level of the industrial control system, generate corresponding access rights according to the level factor of the user, and generate corresponding access rights according to the network security prevention and control level of the industrial control system level to prevent and control the industrial control system;

在所述步骤S1中,所述用户的登录账号信息包括用户登录账号的注册天数A和用户登录账号的历史登录次数B;所述历史行为信息包括用户的历史危险操作次数C和用户的历史危险操作总时长D;In the step S1, the user's login account information includes the registration days A of the user's login account and the historical login times B of the user's login account; the historical behavior information includes the user's historical dangerous operation times C and the user's historical risk The total operation time D;

在所述步骤S2中,在确定用户的级别系数和工业控制系统的网络安全防控等级时,根据所述用户登录账号的注册天数A确定所述用户的级别系数,并根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正;在确定网络安全防控等级时,根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级,并根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正。In the step S2, when determining the user's level coefficient and the network security prevention and control level of the industrial control system, the user's level coefficient is determined according to the registration days A of the user's login account, and according to the user's login account The number of historical login times B to correct the user's level coefficient; when determining the network security prevention and control level, determine the network security prevention and control level of the industrial control system according to the user's historical dangerous operation times C, and according to the Correct the network security prevention and control level of the industrial control system based on the total duration D of historical dangerous operations of the user.

优选的,在根据所述用户登录账号的注册天数A确定所述用户的级别系数时,具体为:Preferably, when determining the user's level coefficient according to the registration days A of the user's login account, specifically:

预设用户登录账号的注册天数矩阵A0,设定A0(A1,A2,A3,A4),其中,A1为第一预设注册天数,A2为第二预设注册天数,A3为第三预设注册天数,A4为第四预设注册天数,且A1<A2<A3<A4;The registration days matrix A0 of the preset user login account, set A0 (A1, A2, A3, A4), where A1 is the first preset registration days, A2 is the second preset registration days, and A3 is the third preset Registration days, A4 is the fourth preset registration days, and A1<A2<A3<A4;

预设用户的级别系数矩阵E,设定E(E1,E2,E3,E4,E5),其中,E1为第一预设级别系数,E2为第二预设级别系数,E3为第三预设级别系数,E4为第四预设级别系数,E5为第五预设级别系数,且E1<E2<E3<E4<E5;Preset the user's level coefficient matrix E, set E (E1, E2, E3, E4, E5), where E1 is the first preset level coefficient, E2 is the second preset level coefficient, and E3 is the third preset Grade coefficient, E4 is the fourth preset grade coefficient, E5 is the fifth preset grade coefficient, and E1<E2<E3<E4<E5;

根据所述用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定所述用户的级别系数:According to the relationship between the registration days A of the user login account and the registration days of each preset user login account, the level coefficient of the user is set:

当A<A1时,选定所述第一预设级别系数E1作为所述用户的级别系数;When A<A1, select the first preset level coefficient E1 as the user's level coefficient;

当A1≤A<A2时,选定所述第二预设级别系数E2作为所述用户的级别系数;When A1≤A<A2, selecting the second preset level factor E2 as the level factor of the user;

当A2≤A<A3时,选定所述第三预设级别系数E3作为所述用户的级别系数;When A2≤A<A3, selecting the third preset level coefficient E3 as the user's level coefficient;

当A3≤A<A4时,选定所述第四预设级别系数E4作为所述用户的级别系数;When A3≤A<A4, selecting the fourth preset level coefficient E4 as the user's level coefficient;

当A≥A4时,选定所述第五预设级别系数E5作为所述用户的级别系数。When A≧A4, the fifth preset level coefficient E5 is selected as the user's level coefficient.

优选的,在根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正时,具体为:Preferably, when correcting the user's level coefficient according to the historical login times B of the user's login account, specifically:

预设用户登录账号的历史登录次数矩阵F0,设定F0(F1,F2,F3,F4),其中,F1为第一预设历史登录次数,F2为第二预设历史登录次数,F3为第三预设历史登录次数,F4为第四预设历史登录次数,且F1<F2<F3<F4;The historical login times matrix F0 of the preset user login account, set F0 (F1, F2, F3, F4), where F1 is the first preset historical login times, F2 is the second preset historical login times, and F3 is the second Three preset historical login times, F4 is the fourth preset historical login times, and F1<F2<F3<F4;

预设用户的级别系数修正系数矩阵h,设定h(h1,h2,h3,h4,h5),其中,h1为第一预设级别系数修正系数,h2为第二预设级别系数修正系数,h3为第三预设级别系数修正系数,h4为第四预设级别系数修正系数,h5为第五预设级别系数修正系数,且0.8<h1<h2<h3<h4<h5<1.2;Preset the user’s level coefficient correction coefficient matrix h, set h (h1, h2, h3, h4, h5), where h1 is the first preset level coefficient correction coefficient, h2 is the second preset level coefficient correction coefficient, h3 is the third preset level coefficient correction coefficient, h4 is the fourth preset level coefficient correction coefficient, h5 is the fifth preset level coefficient correction coefficient, and 0.8<h1<h2<h3<h4<h5<1.2;

将所述用户的级别系数设定为所述第i预设级别系数Ei时,i=1,2,3,4,5,根据所述用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对所述用户的级别系数进行修正:When the level coefficient of the user is set as the i-th preset level coefficient Ei, i=1, 2, 3, 4, 5, according to the historical login times B of the user login account and the login times of each preset user The relationship between the historical login times of the accounts is used to modify the user's level coefficient:

当B<F1时,选定所述第一预设级别系数修正系数h1对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h1;When B<F1, select the first preset level coefficient correction coefficient h1 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h1;

当F1≤B<F2时,选定所述第二预设级别系数修正系数h2对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h2;When F1≤B<F2, select the second preset level coefficient correction factor h2 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h2;

当F2≤B<F3时,选定所述第三预设级别系数修正系数h3对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h3;When F2≤B<F3, select the third preset level coefficient correction factor h3 to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h3;

当F3≤B<F4时,选定所述第四预设级别系数修正系数h4对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h4;When F3≤B<F4, select the fourth preset level coefficient correction factor h4 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h4;

当B≥F4时,选定所述第五预设级别系数修正系数h5对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h5。When B≥F4, the fifth preset level coefficient modification coefficient h5 is selected to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h5.

优选的,在根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级时,具体为:Preferably, when determining the network security prevention and control level of the industrial control system according to the historical number of dangerous operations C of the user, specifically:

预设用户的历史危险操作次数矩阵G0,设定G0(G1,G2,G3,G4),其中,G1为第一预设历史危险操作次数,G2为第二预设历史危险操作次数,G3为第三预设历史危险操作次数,G4为第四预设历史危险操作次数,且G1<G2<G3<G4;Preset the user's historical dangerous operation times matrix G0, set G0 (G1, G2, G3, G4), where G1 is the first preset historical dangerous operation times, G2 is the second preset historical dangerous operation times, and G3 is The third preset historical number of dangerous operations, G4 is the fourth preset historical number of dangerous operations, and G1<G2<G3<G4;

预设工业控制系统的网络安全防控等级矩阵K,设定K(K1,K2,K3,K4,K5),其中,K1为第一预设网络安全防控等级,K2为第二预设网络安全防控等级,K3为第三预设网络安全防控等级,K4为第四预设网络安全防控等级,K5为第五预设网络安全防控等级,且K1<K2<K3<K4<K5;Preset the network security prevention and control level matrix K of the industrial control system, set K (K1, K2, K3, K4, K5), where K1 is the first preset network security prevention and control level, and K2 is the second preset network Security prevention and control level, K3 is the third preset network security prevention and control level, K4 is the fourth preset network security prevention and control level, K5 is the fifth preset network security prevention and control level, and K1<K2<K3<K4< K5;

根据所述用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定所述工业控制系统的网络安全防控等级:The network security prevention and control level of the industrial control system is set according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:

当C<G1时,选定所述第一预设网络安全防控等级K1作为所述工业控制系统的网络安全防控等级;When C<G1, select the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;

当G1≤C<G2时,选定所述第二预设网络安全防控等级K2作为所述工业控制系统的网络安全防控等级;When G1≤C<G2, select the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;

当G2≤C<G3时,选定所述第三预设网络安全防控等级K3作为所述工业控制系统的网络安全防控等级;When G2≤C<G3, select the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;

当G3≤C<G4时,选定所述第四预设网络安全防控等级K4作为所述工业控制系统的网络安全防控等级;When G3≤C<G4, select the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;

当C≥G4时,选定所述第五预设网络安全防控等级K5作为所述工业控制系统的网络安全防控等级。When C≥G4, the fifth preset network security prevention and control level K5 is selected as the network security prevention and control level of the industrial control system.

优选的,在根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正时,具体为:Preferably, when modifying the network security prevention and control level of the industrial control system according to the total duration D of historical dangerous operations of the user, it is specifically:

预设用户的历史危险操作总时长矩阵M0,设定M0(M1,M2,M3,M4),其中,M1为第一预设历史危险操作总时长,M2为第二预设历史危险操作总时长,M3为第三预设历史危险操作总时长,M4为第四预设历史危险操作总时长,且M1<M2<M3<M4;Preset the user’s historical dangerous operation total duration matrix M0, set M0 (M1, M2, M3, M4), where M1 is the total duration of the first preset historical dangerous operation, and M2 is the total duration of the second preset historical dangerous operation , M3 is the total duration of the third preset historical dangerous operation, M4 is the total duration of the fourth preset historical dangerous operation, and M1<M2<M3<M4;

预设工业控制系统的网络安全防控等级修正系数矩阵n,设定n(n1,n2,n3,n4,n5),其中,n1为第一预设网络安全防控等级修正系数,n2为第二预设网络安全防控等级修正系数,n3为第三预设网络安全防控等级修正系数,n4为第四预设网络安全防控等级修正系数,n5为第五预设网络安全防控等级修正系数,且0.8<n1<n2<n3<n4<n5<1.2;Preset the network security prevention and control level correction coefficient matrix n of the industrial control system, set n (n1, n2, n3, n4, n5), where n1 is the first preset network security prevention and control level correction coefficient, n2 is the second The second preset network security prevention and control level correction coefficient, n3 is the third preset network security prevention and control level correction coefficient, n4 is the fourth preset network security prevention and control level correction coefficient, n5 is the fifth preset network security prevention and control level Correction coefficient, and 0.8<n1<n2<n3<n4<n5<1.2;

将所述工业控制系统的网络安全防控等级设定为所述第i预设网络安全防控等级Ki时,i=1,2,3,4,5,根据所述用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对所述工业控制系统的网络安全防控等级进行修正:When the network security prevention and control level of the industrial control system is set as the i-th preset network security prevention and control level Ki, i=1, 2, 3, 4, 5, according to the total number of historical dangerous operations of the user The relationship between the duration D and the total duration of historical dangerous operations of each preset user is used to modify the network security prevention and control level of the industrial control system:

当D<M1时,选定所述第一预设网络安全防控等级修正系数n1对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n1;When D<M1, the first preset network security prevention and control level correction coefficient n1 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n1;

当M1≤D<M2时,选定所述第二预设网络安全防控等级修正系数n2对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n2;When M1≤D<M2, select the second preset network security prevention and control level correction coefficient n2 to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control of the industrial control system after correction The level is Ki*n2;

当M2≤D<M3时,选定所述第三预设网络安全防控等级修正系数n3对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n3;When M2≤D<M3, select the third preset network security prevention and control level correction coefficient n3 to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n3;

当M3≤D<M4时,选定所述第四预设网络安全防控等级修正系数n4对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n4;When M3≤D<M4, select the correction coefficient n4 of the fourth preset network security prevention and control level to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n4;

当D≥M4时,选定所述第五预设网络安全防控等级修正系数n5对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n5。When D≥M4, the fifth preset network security prevention and control level correction coefficient n5 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n5.

为了实现上述目的,本发明提供了一种用于工业控制系统的网络安全防控系统,所述系统包括:In order to achieve the above object, the present invention provides a network security prevention and control system for industrial control systems, the system comprising:

获取模块,用于获取用户的登录账号信息和历史行为信息;The acquisition module is used to acquire the user's login account information and historical behavior information;

确定模块,用于根据所述获取模块中获取的信息,确定用户的级别系数和工业控制系统的网络安全防控等级;A determination module, configured to determine the user's level coefficient and the network security prevention and control level of the industrial control system according to the information obtained in the acquisition module;

控制模块,用于在确定所述用户的级别系数和所述工业控制系统的网络安全防控等级后,根据所述用户的级别系数生成相应的访问权限,并根据所述工业控制系统的网络安全防控等级对所述工业控制系统进行防控;A control module, configured to generate corresponding access rights according to the user's level coefficient after determining the user's level coefficient and the network security prevention and control level of the industrial control system, and according to the network security level of the industrial control system Prevention and control level to prevent and control the industrial control system;

在所述获取模块中,所述用户的登录账号信息包括用户登录账号的注册天数A和用户登录账号的历史登录次数B;所述历史行为信息包括用户的历史危险操作次数C和用户的历史危险操作总时长D;In the acquisition module, the user's login account information includes the registration days A of the user's login account and the historical login times B of the user's login account; the historical behavior information includes the user's historical dangerous operation times C and the user's historical dangerous The total operation time D;

在所述确定模块中,在确定用户的级别系数和工业控制系统的网络安全防控等级时,根据所述用户登录账号的注册天数A确定所述用户的级别系数,并根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正;在确定网络安全防控等级时,根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级,并根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正。In the determination module, when determining the user's level coefficient and the network security prevention and control level of the industrial control system, the user's level coefficient is determined according to the registration days A of the user's login account, and the user's level coefficient is determined according to the user's login account The number of historical login times B to correct the user's level coefficient; when determining the network security prevention and control level, determine the network security prevention and control level of the industrial control system according to the user's historical dangerous operation times C, and according to the Correct the network security prevention and control level of the industrial control system based on the total duration D of historical dangerous operations of the user.

优选的,在所述确定模块中,在根据所述用户登录账号的注册天数A确定所述用户的级别系数时,具体为:Preferably, in the determination module, when determining the user's level coefficient according to the registration days A of the user's login account, specifically:

所述确定模块用于预设用户登录账号的注册天数矩阵A0,设定A0(A1,A2,A3,A4),其中,A1为第一预设注册天数,A2为第二预设注册天数,A3为第三预设注册天数,A4为第四预设注册天数,且A1<A2<A3<A4;The determination module is used to preset the registration days matrix A0 of the user login account, and set A0 (A1, A2, A3, A4), where A1 is the first preset registration days, A2 is the second preset registration days, A3 is the third preset registration days, A4 is the fourth preset registration days, and A1<A2<A3<A4;

所述确定模块用于预设用户的级别系数矩阵E,设定E(E1,E2,E3,E4,E5),其中,E1为第一预设级别系数,E2为第二预设级别系数,E3为第三预设级别系数,E4为第四预设级别系数,E5为第五预设级别系数,且E1<E2<E3<E4<E5;The determination module is used to preset the user's level coefficient matrix E, and set E (E1, E2, E3, E4, E5), where E1 is the first preset level coefficient, E2 is the second preset level coefficient, E3 is the coefficient of the third preset level, E4 is the coefficient of the fourth preset level, E5 is the coefficient of the fifth preset level, and E1<E2<E3<E4<E5;

所述确定模块还用于根据所述用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定所述用户的级别系数:The determination module is also used to set the level coefficient of the user according to the relationship between the registration days A of the user login account and the registration days of each preset user login account:

当A<A1时,选定所述第一预设级别系数E1作为所述用户的级别系数;When A<A1, select the first preset level coefficient E1 as the user's level coefficient;

当A1≤A<A2时,选定所述第二预设级别系数E2作为所述用户的级别系数;When A1≤A<A2, selecting the second preset level factor E2 as the level factor of the user;

当A2≤A<A3时,选定所述第三预设级别系数E3作为所述用户的级别系数;When A2≤A<A3, selecting the third preset level coefficient E3 as the user's level coefficient;

当A3≤A<A4时,选定所述第四预设级别系数E4作为所述用户的级别系数;When A3≤A<A4, selecting the fourth preset level coefficient E4 as the user's level coefficient;

当A≥A4时,选定所述第五预设级别系数E5作为所述用户的级别系数。When A≧A4, the fifth preset level coefficient E5 is selected as the user's level coefficient.

优选的,在所述确定模块中,在根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正时,具体为:Preferably, in the determination module, when correcting the user's level coefficient according to the historical login times B of the user's login account, specifically:

所述确定模块用于预设用户登录账号的历史登录次数矩阵F0,设定F0(F1,F2,F3,F4),其中,F1为第一预设历史登录次数,F2为第二预设历史登录次数,F3为第三预设历史登录次数,F4为第四预设历史登录次数,且F1<F2<F3<F4;The determination module is used to preset the historical login times matrix F0 of the user login account, and set F0 (F1, F2, F3, F4), wherein, F1 is the first preset historical login times, and F2 is the second preset history Login times, F3 is the third preset historical login times, F4 is the fourth preset historical login times, and F1<F2<F3<F4;

所述确定模块用于预设用户的级别系数修正系数矩阵h,设定h(h1,h2,h3,h4,h5),其中,h1为第一预设级别系数修正系数,h2为第二预设级别系数修正系数,h3为第三预设级别系数修正系数,h4为第四预设级别系数修正系数,h5为第五预设级别系数修正系数,且0.8<h1<h2<h3<h4<h5<1.2;The determination module is used to preset the level coefficient correction coefficient matrix h of the user, and set h (h1, h2, h3, h4, h5), where h1 is the first preset level coefficient correction coefficient, h2 is the second preset Set level coefficient correction coefficient, h3 is the third preset level coefficient correction coefficient, h4 is the fourth preset level coefficient correction coefficient, h5 is the fifth preset level coefficient correction coefficient, and 0.8<h1<h2<h3<h4< h5<1.2;

所述确定模块还用于在将所述用户的级别系数设定为所述第i预设级别系数Ei时,i=1,2,3,4,5,根据所述用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对所述用户的级别系数进行修正:The determination module is also used to set the user's level coefficient as the i-th preset level coefficient Ei, i=1, 2, 3, 4, 5, according to the historical login history of the user's login account The relationship between the number of times B and the historical login times of each preset user login account is to modify the level coefficient of the user:

当B<F1时,选定所述第一预设级别系数修正系数h1对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h1;When B<F1, select the first preset level coefficient correction coefficient h1 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h1;

当F1≤B<F2时,选定所述第二预设级别系数修正系数h2对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h2;When F1≤B<F2, select the second preset level coefficient correction factor h2 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h2;

当F2≤B<F3时,选定所述第三预设级别系数修正系数h3对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h3;When F2≤B<F3, select the third preset level coefficient correction factor h3 to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h3;

当F3≤B<F4时,选定所述第四预设级别系数修正系数h4对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h4;When F3≤B<F4, select the fourth preset level coefficient correction factor h4 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h4;

当B≥F4时,选定所述第五预设级别系数修正系数h5对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h5。When B≥F4, the fifth preset level coefficient modification coefficient h5 is selected to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h5.

优选的,在所述确定模块中,在根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级时,具体为:Preferably, in the determining module, when determining the network security prevention and control level of the industrial control system according to the historical number of dangerous operations C of the user, specifically:

所述确定模块用于预设用户的历史危险操作次数矩阵G0,设定G0(G1,G2,G3,G4),其中,G1为第一预设历史危险操作次数,G2为第二预设历史危险操作次数,G3为第三预设历史危险操作次数,G4为第四预设历史危险操作次数,且G1<G2<G3<G4;The determination module is used to preset the user's historical dangerous operation times matrix G0, and set G0 (G1, G2, G3, G4), wherein G1 is the first preset historical dangerous operation times, and G2 is the second preset historical The number of dangerous operations, G3 is the third preset historical number of dangerous operations, G4 is the fourth preset historical number of dangerous operations, and G1<G2<G3<G4;

所述确定模块用于预设工业控制系统的网络安全防控等级矩阵K,设定K(K1,K2,K3,K4,K5),其中,K1为第一预设网络安全防控等级,K2为第二预设网络安全防控等级,K3为第三预设网络安全防控等级,K4为第四预设网络安全防控等级,K5为第五预设网络安全防控等级,且K1<K2<K3<K4<K5;The determination module is used to preset the network security prevention and control level matrix K of the industrial control system, and set K (K1, K2, K3, K4, K5), where K1 is the first preset network security prevention and control level, and K2 is the second preset network security prevention and control level, K3 is the third preset network security prevention and control level, K4 is the fourth preset network security prevention and control level, K5 is the fifth preset network security prevention and control level, and K1< K2<K3<K4<K5;

所述确定模块还用于根据所述用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定所述工业控制系统的网络安全防控等级:The determination module is also used to set the network security prevention and control level of the industrial control system according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:

当C<G1时,选定所述第一预设网络安全防控等级K1作为所述工业控制系统的网络安全防控等级;When C<G1, select the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;

当G1≤C<G2时,选定所述第二预设网络安全防控等级K2作为所述工业控制系统的网络安全防控等级;When G1≤C<G2, select the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;

当G2≤C<G3时,选定所述第三预设网络安全防控等级K3作为所述工业控制系统的网络安全防控等级;When G2≤C<G3, select the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;

当G3≤C<G4时,选定所述第四预设网络安全防控等级K4作为所述工业控制系统的网络安全防控等级;When G3≤C<G4, select the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;

当C≥G4时,选定所述第五预设网络安全防控等级K5作为所述工业控制系统的网络安全防控等级。When C≥G4, the fifth preset network security prevention and control level K5 is selected as the network security prevention and control level of the industrial control system.

优选的,在所述确定模块中,在根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正时,具体为:Preferably, in the determining module, when correcting the network security prevention and control level of the industrial control system according to the total duration D of historical dangerous operations of the user, specifically:

所述确定模块用于预设用户的历史危险操作总时长矩阵M0,设定M0(M1,M2,M3,M4),其中,M1为第一预设历史危险操作总时长,M2为第二预设历史危险操作总时长,M3为第三预设历史危险操作总时长,M4为第四预设历史危险操作总时长,且M1<M2<M3<M4;The determination module is used to preset the user's historical dangerous operation total duration matrix M0, and set M0 (M1, M2, M3, M4), where M1 is the first preset historical total duration of dangerous operations, and M2 is the second preset Set the total duration of historical dangerous operations, M3 is the total duration of the third preset historical dangerous operations, M4 is the total duration of the fourth preset historical dangerous operations, and M1<M2<M3<M4;

所述确定模块用于预设工业控制系统的网络安全防控等级修正系数矩阵n,设定n(n1,n2,n3,n4,n5),其中,n1为第一预设网络安全防控等级修正系数,n2为第二预设网络安全防控等级修正系数,n3为第三预设网络安全防控等级修正系数,n4为第四预设网络安全防控等级修正系数,n5为第五预设网络安全防控等级修正系数,且0.8<n1<n2<n3<n4<n5<1.2;The determination module is used to preset the network security prevention and control level correction coefficient matrix n of the industrial control system, and set n (n1, n2, n3, n4, n5), where n1 is the first preset network security prevention and control level The correction coefficient, n2 is the correction coefficient of the second preset network security prevention and control level, n3 is the correction coefficient of the third preset network security prevention and control level, n4 is the correction coefficient of the fourth preset network security prevention and control level, and n5 is the fifth preset network security prevention and control level correction coefficient. Set the network security prevention and control level correction coefficient, and 0.8<n1<n2<n3<n4<n5<1.2;

所述确定模块还用于在将所述工业控制系统的网络安全防控等级设定为所述第i预设网络安全防控等级Ki时,i=1,2,3,4,5,根据所述用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对所述工业控制系统的网络安全防控等级进行修正:The determination module is also used to set the network security prevention and control level of the industrial control system as the i-th preset network security prevention and control level Ki, i=1, 2, 3, 4, 5, according to The relationship between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user corrects the network security prevention and control level of the industrial control system:

当D<M1时,选定所述第一预设网络安全防控等级修正系数n1对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n1;When D<M1, the first preset network security prevention and control level correction coefficient n1 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n1;

当M1≤D<M2时,选定所述第二预设网络安全防控等级修正系数n2对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n2;When M1≤D<M2, select the second preset network security prevention and control level correction coefficient n2 to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control of the industrial control system after correction The level is Ki*n2;

当M2≤D<M3时,选定所述第三预设网络安全防控等级修正系数n3对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n3;When M2≤D<M3, select the third preset network security prevention and control level correction coefficient n3 to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n3;

当M3≤D<M4时,选定所述第四预设网络安全防控等级修正系数n4对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n4;When M3≤D<M4, select the correction coefficient n4 of the fourth preset network security prevention and control level to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n4;

当D≥M4时,选定所述第五预设网络安全防控等级修正系数n5对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n5。When D≥M4, the fifth preset network security prevention and control level correction coefficient n5 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n5.

本发明提供了一种用于工业控制系统的网络安全防控方法及系统,相较现有技术,具有以下有益效果:The present invention provides a network security prevention and control method and system for industrial control systems. Compared with the prior art, it has the following beneficial effects:

本申请包括:步骤S1:获取用户的登录账号信息和历史行为信息;步骤S2:根据步骤S1中获取的信息,确定用户的级别系数和网络安全防控等级;步骤S3:在确定用户的级别系数和网络安全防控等级后,根据用户的级别系数生成相应的访问权限,并根据网络安全防控等级对工业控制系统进行防控,本申请根据用户的登录账号信息和历史行为信息,来确定用户的级别系数和网络安全防控等级,进而通过用户的级别系数生成相应的访问权限,同时不同的用户安全防控等级也不同,进而网络安全防控方式也不同,本申请在提高工业控制系统安全性的同时,还可以保障用户正常操作的稳定性。This application includes: Step S1: Obtain the user's login account information and historical behavior information; Step S2: Determine the user's level coefficient and network security prevention and control level according to the information obtained in Step S1; Step S3: After determining the user's level coefficient After the network security prevention and control level, the corresponding access authority is generated according to the user's level coefficient, and the industrial control system is prevented and controlled according to the network security prevention and control level. This application determines the user's login account information and historical behavior information. The level coefficient and network security prevention and control level, and then generate the corresponding access rights through the user level coefficient. At the same time, different user security prevention and control levels are also different, and the network security prevention and control methods are also different. This application is improving the security of industrial control systems. At the same time, it can also guarantee the stability of the user's normal operation.

附图说明Description of drawings

图1示出了本发明实施例中一种用于工业控制系统的网络安全防控方法的流程示意图;Fig. 1 shows a schematic flow diagram of a network security prevention and control method for an industrial control system in an embodiment of the present invention;

图2示出了本发明实施例中一种用于工业控制系统的网络安全防控系统的结构示意图。Fig. 2 shows a schematic structural diagram of a network security prevention and control system for an industrial control system in an embodiment of the present invention.

具体实施方式detailed description

下面结合附图和实施例,对本发明的具体实施方式做进一步详细描述。以下实施例用于说明本发明,但不用来限制本发明的范围。The specific implementation manners of the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. The following examples are used to illustrate the present invention, but are not intended to limit the scope of the present invention.

在本申请的描述中,需要理解的是,术语“中心”、“上”、“下”、“前”、“后”、“左”、“右”、“竖直”、“水平”、“顶”、“底”、“内”、“外”等指示的方位或位置关系为基于附图所示的方位或位置关系,仅是为了便于描述本申请和简化描述,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本申请的限制。In the description of this application, it is to be understood that the terms "center", "upper", "lower", "front", "rear", "left", "right", "vertical", "horizontal", The orientations or positional relationships indicated by "top", "bottom", "inner", "outer", etc. are based on the orientations or positional relationships shown in the drawings, and are only for the convenience of describing the application and simplifying the description, rather than indicating or implying References to devices or elements must have a particular orientation, be constructed, and operate in a particular orientation and therefore should not be construed as limiting the application.

术语“第一”、“第二”仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括一个或者更多个该特征。在本申请的描述中,除非另有说明,“多个”的含义是两个或两个以上。The terms "first" and "second" are used for descriptive purposes only, and cannot be understood as indicating or implying relative importance or implicitly specifying the quantity of indicated technical features. Thus, a feature defined as "first" and "second" may explicitly or implicitly include one or more of these features. In the description of the present application, unless otherwise specified, "plurality" means two or more.

在本申请的描述中,需要说明的是,除非另有明确的规定和限定,术语“安装”、“相连”、“连接”应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或一体的连接;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,可以是两个元件内部的连通。对于本领域的普通技术人员而言,可以具体情况理解上述术语在本申请中的具体含义。In the description of this application, it should be noted that unless otherwise specified and limited, the terms "installation", "connection", and "connection" should be understood in a broad sense, for example, it can be a fixed connection or a detachable connection. Connection, or integral connection; it can be mechanical connection or electrical connection; it can be direct connection or indirect connection through an intermediary, and it can be the internal communication of two components. Those of ordinary skill in the art can understand the specific meanings of the above terms in this application in specific situations.

下文是结合附图对本发明的优选的实施例说明。The following is a description of preferred embodiments of the present invention in conjunction with the accompanying drawings.

如图1所示,本发明的实施例公开了一种用于工业控制系统的网络安全防控方法,所述方法包括:As shown in Figure 1, the embodiment of the present invention discloses a network security prevention and control method for an industrial control system, the method comprising:

步骤S1:获取用户的登录账号信息和历史行为信息;Step S1: Obtain the user's login account information and historical behavior information;

步骤S2:根据所述步骤S1中获取的信息,确定用户的级别系数和工业控制系统的网络安全防控等级;Step S2: According to the information obtained in the step S1, determine the level factor of the user and the network security prevention and control level of the industrial control system;

步骤S3:在确定所述用户的级别系数和所述工业控制系统的网络安全防控等级后,根据所述用户的级别系数生成相应的访问权限,并根据所述工业控制系统的网络安全防控等级对所述工业控制系统进行防控;Step S3: After determining the level factor of the user and the network security prevention and control level of the industrial control system, generate corresponding access rights according to the level factor of the user, and generate corresponding access rights according to the network security prevention and control level of the industrial control system level to prevent and control the industrial control system;

在所述步骤S1中,所述用户的登录账号信息包括用户登录账号的注册天数A和用户登录账号的历史登录次数B;所述历史行为信息包括用户的历史危险操作次数C和用户的历史危险操作总时长D;In the step S1, the user's login account information includes the registration days A of the user's login account and the historical login times B of the user's login account; the historical behavior information includes the user's historical dangerous operation times C and the user's historical risk The total operation time D;

在所述步骤S2中,在确定用户的级别系数和工业控制系统的网络安全防控等级时,根据所述用户登录账号的注册天数A确定所述用户的级别系数,并根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正;在确定网络安全防控等级时,根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级,并根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正。In the step S2, when determining the user's level coefficient and the network security prevention and control level of the industrial control system, the user's level coefficient is determined according to the registration days A of the user's login account, and according to the user's login account The number of historical login times B to correct the user's level coefficient; when determining the network security prevention and control level, determine the network security prevention and control level of the industrial control system according to the user's historical dangerous operation times C, and according to the Correct the network security prevention and control level of the industrial control system based on the total duration D of historical dangerous operations of the user.

需要说明的是,本申请包括:步骤S1:获取用户的登录账号信息和历史行为信息;步骤S2:根据步骤S1中获取的信息,确定用户的级别系数和网络安全防控等级;步骤S3:在确定用户的级别系数和网络安全防控等级后,根据用户的级别系数生成相应的访问权限,并根据网络安全防控等级对工业控制系统进行防控,本申请根据用户的登录账号信息和历史行为信息,来确定用户的级别系数和网络安全防控等级,进而通过用户的级别系数生成相应的访问权限,同时不同的用户安全防控等级也不同,进而网络安全防控方式也不同,本申请在提高工业控制系统安全性的同时,还可以保障用户正常操作的稳定性。It should be noted that this application includes: Step S1: Obtain the user's login account information and historical behavior information; Step S2: Determine the user's level coefficient and network security prevention and control level according to the information obtained in Step S1; Step S3: In After determining the user's level coefficient and network security prevention and control level, generate corresponding access rights according to the user's level coefficient, and prevent and control the industrial control system according to the network security prevention and control level. This application is based on the user's login account information and historical behavior information to determine the user's level coefficient and network security prevention and control level, and then generate corresponding access rights through the user's level coefficient. While improving the security of the industrial control system, it can also guarantee the stability of the normal operation of the user.

还需要说明的是,当用户需要访问工业控制系统的网站时,需要输入用户的登录账号以及登录密码,当用户验证通过后,获取用户登录账号的注册时间,以及用户自注册起到本次登录之间的历史登录次数。同时获取当前用户自注册登录账号起到本次登录之间的历史危险操作次数,以及历史危险操作总时长,其中,当用户在实际访问时,如用户在访问网页时,点击了安全性未知的链接,如在实际访问时,上传了违规文件等,这些行为都判断为危险操作,并进行计数,同时记录本次危险操作从开始到结束的时长,也就是用户从点击链接到防火墙检测到病毒并查杀的时间,或用户从点击链接到防火墙自动停止访问该链接的时间,将所有危险操作次数对应的时长求和得到历史危险操作总时长,应该理解的是,上述以举例示出,不做具体限定。It should also be noted that when the user needs to access the website of the industrial control system, the user needs to enter the user's login account number and login password. The number of historical logins between. At the same time, the number of historical dangerous operations and the total duration of historical dangerous operations of the current user from the registration of the login account to the current login are obtained. Among them, when the user actually visits, such as when the user visits a webpage, he clicks on a website with unknown security Links, such as uploading illegal files during actual access, these actions are judged as dangerous operations, and counted, and record the duration of this dangerous operation from the beginning to the end, that is, from when the user clicks the link to when the firewall detects the virus and the killing time, or the time from when the user clicks on the link to when the firewall automatically stops accessing the link, sum the durations corresponding to the times of all dangerous operations to obtain the total duration of historical dangerous operations. It should be understood that the above is shown by example, not Be specific.

在本申请的一些实施例中,在根据所述用户登录账号的注册天数A确定所述用户的级别系数时,具体为:In some embodiments of the present application, when determining the user's level coefficient according to the registration days A of the user's login account, specifically:

预设用户登录账号的注册天数矩阵A0,设定A0(A1,A2,A3,A4),其中,A1为第一预设注册天数,A2为第二预设注册天数,A3为第三预设注册天数,A4为第四预设注册天数,且A1<A2<A3<A4;The registration days matrix A0 of the preset user login account, set A0 (A1, A2, A3, A4), where A1 is the first preset registration days, A2 is the second preset registration days, and A3 is the third preset Registration days, A4 is the fourth preset registration days, and A1<A2<A3<A4;

预设用户的级别系数矩阵E,设定E(E1,E2,E3,E4,E5),其中,E1为第一预设级别系数,E2为第二预设级别系数,E3为第三预设级别系数,E4为第四预设级别系数,E5为第五预设级别系数,且E1<E2<E3<E4<E5;Preset the user's level coefficient matrix E, set E (E1, E2, E3, E4, E5), where E1 is the first preset level coefficient, E2 is the second preset level coefficient, and E3 is the third preset Grade coefficient, E4 is the fourth preset grade coefficient, E5 is the fifth preset grade coefficient, and E1<E2<E3<E4<E5;

根据所述用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定所述用户的级别系数:According to the relationship between the registration days A of the user login account and the registration days of each preset user login account, the level coefficient of the user is set:

当A<A1时,选定所述第一预设级别系数E1作为所述用户的级别系数;When A<A1, select the first preset level coefficient E1 as the user's level coefficient;

当A1≤A<A2时,选定所述第二预设级别系数E2作为所述用户的级别系数;When A1≤A<A2, selecting the second preset level factor E2 as the level factor of the user;

当A2≤A<A3时,选定所述第三预设级别系数E3作为所述用户的级别系数;When A2≤A<A3, selecting the third preset level coefficient E3 as the user's level coefficient;

当A3≤A<A4时,选定所述第四预设级别系数E4作为所述用户的级别系数;When A3≤A<A4, selecting the fourth preset level coefficient E4 as the user's level coefficient;

当A≥A4时,选定所述第五预设级别系数E5作为所述用户的级别系数。When A≧A4, the fifth preset level coefficient E5 is selected as the user's level coefficient.

需要说明的是,当用户的注册天数越长时,相对应的级别系数也就越高,相反,注册天数越短时,相对应的级别系数也就越低,It should be noted that when the user's registration days are longer, the corresponding level coefficient is higher. Conversely, when the registration days are shorter, the corresponding level coefficient is lower.

其中,用户登录账号的注册天数可以根据用户的登录账号来确定,用户的级别系数矩阵是根据实际需求来进行设定的,用户的级别系数矩阵也是根据实际需求来进行设定的,但是通过用户的注册天数是无法直接判断用户的具体级别系数的,因此本申请通过根据用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定用户的级别系数,可以准确地确定当前用户的级别系数。Among them, the number of registration days of the user's login account can be determined according to the user's login account, the user's level coefficient matrix is set according to actual needs, and the user's level coefficient matrix is also set according to actual needs, but through the user The number of days of registration cannot directly determine the user's specific level coefficient, so this application sets the user's level coefficient according to the relationship between the number of registration days A of the user's login account and the number of registration days of each preset user login account, which can accurately Determines the level factor for the current user.

在本申请的一些实施例中,在根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正时,具体为:In some embodiments of the present application, when correcting the user's level coefficient according to the historical login times B of the user's login account, specifically:

预设用户登录账号的历史登录次数矩阵F0,设定F0(F1,F2,F3,F4),其中,F1为第一预设历史登录次数,F2为第二预设历史登录次数,F3为第三预设历史登录次数,F4为第四预设历史登录次数,且F1<F2<F3<F4;The historical login times matrix F0 of the preset user login account, set F0 (F1, F2, F3, F4), where F1 is the first preset historical login times, F2 is the second preset historical login times, and F3 is the second Three preset historical login times, F4 is the fourth preset historical login times, and F1<F2<F3<F4;

预设用户的级别系数修正系数矩阵h,设定h(h1,h2,h3,h4,h5),其中,h1为第一预设级别系数修正系数,h2为第二预设级别系数修正系数,h3为第三预设级别系数修正系数,h4为第四预设级别系数修正系数,h5为第五预设级别系数修正系数,且0.8<h1<h2<h3<h4<h5<1.2;Preset the user’s level coefficient correction coefficient matrix h, set h (h1, h2, h3, h4, h5), where h1 is the first preset level coefficient correction coefficient, h2 is the second preset level coefficient correction coefficient, h3 is the third preset level coefficient correction coefficient, h4 is the fourth preset level coefficient correction coefficient, h5 is the fifth preset level coefficient correction coefficient, and 0.8<h1<h2<h3<h4<h5<1.2;

将所述用户的级别系数设定为所述第i预设级别系数Ei时,i=1,2,3,4,5,根据所述用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对所述用户的级别系数进行修正:When the level coefficient of the user is set as the i-th preset level coefficient Ei, i=1, 2, 3, 4, 5, according to the historical login times B of the user login account and the login times of each preset user The relationship between the historical login times of the accounts is used to modify the user's level coefficient:

当B<F1时,选定所述第一预设级别系数修正系数h1对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h1;When B<F1, select the first preset level coefficient correction coefficient h1 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h1;

当F1≤B<F2时,选定所述第二预设级别系数修正系数h2对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h2;When F1≤B<F2, select the second preset level coefficient correction factor h2 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h2;

当F2≤B<F3时,选定所述第三预设级别系数修正系数h3对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h3;When F2≤B<F3, select the third preset level coefficient correction factor h3 to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h3;

当F3≤B<F4时,选定所述第四预设级别系数修正系数h4对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h4;When F3≤B<F4, select the fourth preset level coefficient correction factor h4 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h4;

当B≥F4时,选定所述第五预设级别系数修正系数h5对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h5。When B≥F4, the fifth preset level coefficient modification coefficient h5 is selected to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h5.

需要说明的是,虽然用户的注册天数越长,用户的级别系数越高,但是在实际情况中,若用户注册天数很长,但是用户使用该登录账号登录工业控制系统的次数很少,此时,则不能直接根据登录账号的注册天数来决定用户的级别系数,需要根据用户登录账号的历史登录次数来对用户的级别系数进行修正调整,本申请根据用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对用户的级别系数进行修正,可以进一步提升用户级别系数判定的准确性。It should be noted that although the longer the user's registration period, the higher the user's level coefficient, but in actual situations, if the user's registration period is very long, but the number of times the user uses the login account to log in to the industrial control system is very small, at this time , then the user’s level coefficient cannot be determined directly based on the number of days of registration of the login account. It is necessary to correct and adjust the user’s level coefficient according to the historical login times of the user’s login account. This application is based on the historical login times B of the user’s login account and each preset Setting the relationship between the historical login times of the user's login account to modify the user's level coefficient can further improve the accuracy of determining the user's level coefficient.

还需要说明的是,当确定用户的级别系数后,根据用户的级别系数生成相应的访问权限,其中,用户的级别系数越高,用户的访问权限也就越大,访问权限可以是:只允许访问预设网页或所有网页都可以访问,或允许访问所有网页的同时还可以下载文件等等,在此不作具体限定,可以根据实际需求来设定。It should also be noted that after the user's level coefficient is determined, corresponding access rights are generated according to the user's level coefficient. The higher the user's level coefficient, the greater the user's access rights. The access rights can be: only allow Access to preset webpages or all webpages can be accessed, or all webpages can be accessed while downloading files, etc., are not specifically limited here, and can be set according to actual needs.

在本申请的一些实施例中,在根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级时,具体为:In some embodiments of the present application, when determining the network security prevention and control level of the industrial control system according to the historical number of dangerous operations C of the user, specifically:

预设用户的历史危险操作次数矩阵G0,设定G0(G1,G2,G3,G4),其中,G1为第一预设历史危险操作次数,G2为第二预设历史危险操作次数,G3为第三预设历史危险操作次数,G4为第四预设历史危险操作次数,且G1<G2<G3<G4;Preset the user's historical dangerous operation times matrix G0, set G0 (G1, G2, G3, G4), where G1 is the first preset historical dangerous operation times, G2 is the second preset historical dangerous operation times, and G3 is The third preset historical number of dangerous operations, G4 is the fourth preset historical number of dangerous operations, and G1<G2<G3<G4;

预设工业控制系统的网络安全防控等级矩阵K,设定K(K1,K2,K3,K4,K5),其中,K1为第一预设网络安全防控等级,K2为第二预设网络安全防控等级,K3为第三预设网络安全防控等级,K4为第四预设网络安全防控等级,K5为第五预设网络安全防控等级,且K1<K2<K3<K4<K5;Preset the network security prevention and control level matrix K of the industrial control system, set K (K1, K2, K3, K4, K5), where K1 is the first preset network security prevention and control level, and K2 is the second preset network Security prevention and control level, K3 is the third preset network security prevention and control level, K4 is the fourth preset network security prevention and control level, K5 is the fifth preset network security prevention and control level, and K1<K2<K3<K4< K5;

根据所述用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定所述工业控制系统的网络安全防控等级:The network security prevention and control level of the industrial control system is set according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:

当C<G1时,选定所述第一预设网络安全防控等级K1作为所述工业控制系统的网络安全防控等级;When C<G1, select the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;

当G1≤C<G2时,选定所述第二预设网络安全防控等级K2作为所述工业控制系统的网络安全防控等级;When G1≤C<G2, select the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;

当G2≤C<G3时,选定所述第三预设网络安全防控等级K3作为所述工业控制系统的网络安全防控等级;When G2≤C<G3, select the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;

当G3≤C<G4时,选定所述第四预设网络安全防控等级K4作为所述工业控制系统的网络安全防控等级;When G3≤C<G4, select the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;

当C≥G4时,选定所述第五预设网络安全防控等级K5作为所述工业控制系统的网络安全防控等级。When C≥G4, the fifth preset network security prevention and control level K5 is selected as the network security prevention and control level of the industrial control system.

需要说明的是,当用户的危险操作次数越多时,则需要提高工业控制系统的网络安全防控等级,当安全防控等级越高时,则当前的网络条件越危险,则需要持续禁止用户的危险操作行为,在此安全防控等级下,用户受到的危险诱引也就越少,特别地,当前用户在进行访问时,若该用户的危险操作次数过多时,会暂停该用户的访问,本申请通过根据用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定工业控制系统的网络安全防控等级,可以降低用户发生危险操作的次数,有效地提高了工业控制系统的安全性。It should be noted that when the number of dangerous operations performed by users increases, the network security prevention and control level of the industrial control system needs to be improved. Dangerous operation behavior, under this level of security prevention and control, the user will be less dangerously lured. In particular, when the current user accesses, if the user performs too many dangerous operations, the user's access will be suspended. This application sets the network security prevention and control level of the industrial control system according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user, which can reduce the number of dangerous operations of the user and effectively improve the Security of industrial control systems.

在本申请的一些实施例中,在根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正时,具体为:In some embodiments of the present application, when modifying the network security prevention and control level of the industrial control system according to the total duration D of historical dangerous operations of the user, it is specifically:

预设用户的历史危险操作总时长矩阵M0,设定M0(M1,M2,M3,M4),其中,M1为第一预设历史危险操作总时长,M2为第二预设历史危险操作总时长,M3为第三预设历史危险操作总时长,M4为第四预设历史危险操作总时长,且M1<M2<M3<M4;Preset the user’s historical dangerous operation total duration matrix M0, set M0 (M1, M2, M3, M4), where M1 is the total duration of the first preset historical dangerous operation, and M2 is the total duration of the second preset historical dangerous operation , M3 is the total duration of the third preset historical dangerous operation, M4 is the total duration of the fourth preset historical dangerous operation, and M1<M2<M3<M4;

预设工业控制系统的网络安全防控等级修正系数矩阵n,设定n(n1,n2,n3,n4,n5),其中,n1为第一预设网络安全防控等级修正系数,n2为第二预设网络安全防控等级修正系数,n3为第三预设网络安全防控等级修正系数,n4为第四预设网络安全防控等级修正系数,n5为第五预设网络安全防控等级修正系数,且0.8<n1<n2<n3<n4<n5<1.2;Preset the network security prevention and control level correction coefficient matrix n of the industrial control system, set n (n1, n2, n3, n4, n5), where n1 is the first preset network security prevention and control level correction coefficient, n2 is the second The second preset network security prevention and control level correction coefficient, n3 is the third preset network security prevention and control level correction coefficient, n4 is the fourth preset network security prevention and control level correction coefficient, n5 is the fifth preset network security prevention and control level Correction coefficient, and 0.8<n1<n2<n3<n4<n5<1.2;

将所述工业控制系统的网络安全防控等级设定为所述第i预设网络安全防控等级Ki时,i=1,2,3,4,5,根据所述用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对所述工业控制系统的网络安全防控等级进行修正:When the network security prevention and control level of the industrial control system is set as the i-th preset network security prevention and control level Ki, i=1, 2, 3, 4, 5, according to the total number of historical dangerous operations of the user The relationship between the duration D and the total duration of historical dangerous operations of each preset user is used to modify the network security prevention and control level of the industrial control system:

当D<M1时,选定所述第一预设网络安全防控等级修正系数n1对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n1;When D<M1, the first preset network security prevention and control level correction coefficient n1 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n1;

当M1≤D<M2时,选定所述第二预设网络安全防控等级修正系数n2对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n2;When M1≤D<M2, select the second preset network security prevention and control level correction coefficient n2 to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control of the industrial control system after correction The level is Ki*n2;

当M2≤D<M3时,选定所述第三预设网络安全防控等级修正系数n3对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n3;When M2≤D<M3, select the third preset network security prevention and control level correction coefficient n3 to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n3;

当M3≤D<M4时,选定所述第四预设网络安全防控等级修正系数n4对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n4;When M3≤D<M4, select the correction coefficient n4 of the fourth preset network security prevention and control level to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n4;

当D≥M4时,选定所述第五预设网络安全防控等级修正系数n5对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n5。When D≥M4, the fifth preset network security prevention and control level correction coefficient n5 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n5.

需要说明的是,用户在发生危险操作时,防火墙会检测病毒并进行查杀,或防火墙会直接自动停止访问该链接,则可以避免危险诱引的进一步发生,若防火墙发现病毒并查杀或直接停止访问所花费的时间越短,说明用户的危险操作程度较轻,若防火墙发现病毒并查杀或直接停止访问所花费的时间越长,说明用户的危险操作程度较重,因此,本申请通过根据用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对工业控制系统的网络安全防控等级进行修正,可以保障用户正常操作的稳定性,同时还进一步保证了工业控制系统的安全性。It should be noted that when a user performs a dangerous operation, the firewall will detect and kill the virus, or the firewall will directly and automatically stop accessing the link, which can avoid further occurrence of dangerous temptations. If the firewall finds a virus and kills it or directly The shorter the time it takes to stop access, the less dangerous the user is doing. If the firewall finds a virus and kills it, or the longer it takes to stop accessing, it means the user is more dangerous. Therefore, this application is approved According to the relationship between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user, the network security prevention and control level of the industrial control system is corrected, which can ensure the stability of the normal operation of the user and further guarantee security of industrial control systems.

还需要说明的是,用户在访问工业控制系统的相关网站时,只能在对应的访问权限下进行,如只允许访问预设网站,并且在实际访问时,通过相对应的网络安全防控等级对本次访问进行安全防控,网络安全防控等级所对应的网络安全防控方式也是不同的,如网络安全防控等级为一级时,此时网络安全防控方式可以为:点击安全性未知的链接时,进行页面等待,由防火墙判断安全性后,再进行展示,如网络安全防控等级较高时,此时的网络安全防控方式可以为:点击安全性未知的链接或者上传文件时,进行身份认证并进行相关的安全验证等。应该理解的是,上述以举例示出,不作具体限定,网络安全防控等级以及对应的网络安全防控方式可以根据实际需求来进行设定。通过对不同的用户生成不同的安全防控等级,并采用不同的安全防控方式,既可以保证用户的正常操作,又可以保证工业控制系统以及用户的安全性。It should also be noted that when users visit the relevant websites of the industrial control system, they can only do so under the corresponding access authority. For security prevention and control of this visit, the network security prevention and control methods corresponding to the network security prevention and control level are also different. For example, when the network security prevention and control level is level 1, the network security prevention and control method at this time can be: click For unknown links, wait for the page, and display after the firewall judges the security. For example, when the network security prevention and control level is high, the network security prevention and control method at this time can be: click on the link with unknown security or upload a file At the same time, identity authentication and relevant security verification are performed. It should be understood that, the foregoing is shown by way of example and not specifically limited, and the network security prevention and control level and the corresponding network security prevention and control method may be set according to actual requirements. By generating different security prevention and control levels for different users and adopting different security prevention and control methods, it can not only ensure the normal operation of users, but also ensure the security of industrial control systems and users.

如图2所示,本发明的实施例公开了一种用于工业控制系统的网络安全防控系统,所述系统包括:As shown in Figure 2, an embodiment of the present invention discloses a network security prevention and control system for an industrial control system, the system comprising:

获取模块,用于获取用户的登录账号信息和历史行为信息;The acquisition module is used to acquire the user's login account information and historical behavior information;

确定模块,用于根据所述获取模块中获取的信息,确定用户的级别系数和工业控制系统的网络安全防控等级;A determination module, configured to determine the user's level coefficient and the network security prevention and control level of the industrial control system according to the information obtained in the acquisition module;

控制模块,用于在确定所述用户的级别系数和所述工业控制系统的网络安全防控等级后,根据所述用户的级别系数生成相应的访问权限,并根据所述工业控制系统的网络安全防控等级对所述工业控制系统进行防控;A control module, configured to generate corresponding access rights according to the user's level coefficient after determining the user's level coefficient and the network security prevention and control level of the industrial control system, and according to the network security level of the industrial control system Prevention and control level to prevent and control the industrial control system;

在所述获取模块中,所述用户的登录账号信息包括用户登录账号的注册天数A和用户登录账号的历史登录次数B;所述历史行为信息包括用户的历史危险操作次数C和用户的历史危险操作总时长D;In the acquisition module, the user's login account information includes the registration days A of the user's login account and the historical login times B of the user's login account; the historical behavior information includes the user's historical dangerous operation times C and the user's historical dangerous The total operation time D;

在所述确定模块中,在确定用户的级别系数和工业控制系统的网络安全防控等级时,根据所述用户登录账号的注册天数A确定所述用户的级别系数,并根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正;在确定网络安全防控等级时,根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级,并根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正。In the determination module, when determining the user's level coefficient and the network security prevention and control level of the industrial control system, the user's level coefficient is determined according to the registration days A of the user's login account, and the user's level coefficient is determined according to the user's login account The number of historical login times B to correct the user's level coefficient; when determining the network security prevention and control level, determine the network security prevention and control level of the industrial control system according to the user's historical dangerous operation times C, and according to the Correct the network security prevention and control level of the industrial control system based on the total duration D of historical dangerous operations of the user.

需要说明的是,本申请包括:获取模块:获取用户的登录账号信息和历史行为信息;确定模块:根据获取模块中获取的信息,确定用户的级别系数和网络安全防控等级;控制模块:在确定用户的级别系数和网络安全防控等级后,根据用户的级别系数生成相应的访问权限,并根据网络安全防控等级对工业控制系统进行防控,本申请根据用户的登录账号信息和历史行为信息,来确定用户的级别系数和网络安全防控等级,进而通过用户的级别系数生成相应的访问权限,同时不同的用户安全防控等级也不同,进而网络安全防控方式也不同,本申请在提高工业控制系统安全性的同时,还可以保障用户正常操作的稳定性。It should be noted that this application includes: acquisition module: to obtain the user's login account information and historical behavior information; determination module: to determine the user's level coefficient and network security prevention and control level according to the information obtained in the acquisition module; control module: in After determining the user's level coefficient and network security prevention and control level, generate corresponding access rights according to the user's level coefficient, and prevent and control the industrial control system according to the network security prevention and control level. This application is based on the user's login account information and historical behavior information to determine the user's level coefficient and network security prevention and control level, and then generate corresponding access rights through the user's level coefficient. While improving the security of the industrial control system, it can also guarantee the stability of the normal operation of the user.

还需要说明的是,当用户需要访问工业控制系统的网站时,需要输入用户的登录账号以及登录密码,当用户验证通过后,获取用户登录账号的注册时间,以及用户自注册起到本次登录之间的历史登录次数。同时获取当前用户自注册登录账号起到本次登录之间的历史危险操作次数,以及历史危险操作总时长,其中,当用户在实际访问时,如用户在访问网页时,点击了安全性未知的链接,如在实际访问时,上传了违规文件等,这些行为都判断为危险操作,并进行计数,同时记录本次危险操作从开始到结束的时长,也就是用户从点击链接到防火墙检测到病毒并查杀的时间,或用户从点击链接到防火墙自动停止访问该链接的时间,将所有危险操作次数对应的时长求和得到历史危险操作总时长,应该理解的是,上述以举例示出,不做具体限定。It should also be noted that when the user needs to access the website of the industrial control system, the user needs to enter the user's login account number and login password. The number of historical logins between. At the same time, the number of historical dangerous operations and the total duration of historical dangerous operations of the current user from the registration of the login account to the current login are obtained. Among them, when the user actually visits, such as when the user visits a webpage, he clicks on a website with unknown security Links, such as uploading illegal files during actual access, these actions are judged as dangerous operations, and counted, and record the duration of this dangerous operation from the beginning to the end, that is, from when the user clicks the link to when the firewall detects the virus and the killing time, or the time from when the user clicks on the link to when the firewall automatically stops accessing the link, sum the durations corresponding to the times of all dangerous operations to obtain the total duration of historical dangerous operations. It should be understood that the above is shown by example, not Be specific.

在本申请的一些实施例中,在所述确定模块中,在根据所述用户登录账号的注册天数A确定所述用户的级别系数时,具体为:In some embodiments of the present application, in the determining module, when determining the user's level coefficient according to the number of days A of registration of the user's login account, specifically:

所述确定模块用于预设用户登录账号的注册天数矩阵A0,设定A0(A1,A2,A3,A4),其中,A1为第一预设注册天数,A2为第二预设注册天数,A3为第三预设注册天数,A4为第四预设注册天数,且A1<A2<A3<A4;The determination module is used to preset the registration days matrix A0 of the user login account, and set A0 (A1, A2, A3, A4), where A1 is the first preset registration days, A2 is the second preset registration days, A3 is the third preset registration days, A4 is the fourth preset registration days, and A1<A2<A3<A4;

所述确定模块用于预设用户的级别系数矩阵E,设定E(E1,E2,E3,E4,E5),其中,E1为第一预设级别系数,E2为第二预设级别系数,E3为第三预设级别系数,E4为第四预设级别系数,E5为第五预设级别系数,且E1<E2<E3<E4<E5;The determination module is used to preset the user's level coefficient matrix E, and set E (E1, E2, E3, E4, E5), where E1 is the first preset level coefficient, E2 is the second preset level coefficient, E3 is the coefficient of the third preset level, E4 is the coefficient of the fourth preset level, E5 is the coefficient of the fifth preset level, and E1<E2<E3<E4<E5;

所述确定模块还用于根据所述用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定所述用户的级别系数:The determination module is also used to set the level coefficient of the user according to the relationship between the registration days A of the user login account and the registration days of each preset user login account:

当A<A1时,选定所述第一预设级别系数E1作为所述用户的级别系数;When A<A1, select the first preset level coefficient E1 as the user's level coefficient;

当A1≤A<A2时,选定所述第二预设级别系数E2作为所述用户的级别系数;When A1≤A<A2, selecting the second preset level factor E2 as the level factor of the user;

当A2≤A<A3时,选定所述第三预设级别系数E3作为所述用户的级别系数;When A2≤A<A3, selecting the third preset level coefficient E3 as the user's level coefficient;

当A3≤A<A4时,选定所述第四预设级别系数E4作为所述用户的级别系数;When A3≤A<A4, selecting the fourth preset level coefficient E4 as the user's level coefficient;

当A≥A4时,选定所述第五预设级别系数E5作为所述用户的级别系数。When A≧A4, the fifth preset level coefficient E5 is selected as the user's level coefficient.

需要说明的是,当用户的注册天数越长时,相对应的级别系数也就越高,相反,注册天数越短时,相对应的级别系数也就越低,其中,用户登录账号的注册天数可以根据用户的登录账号来确定,用户的级别系数矩阵是根据实际需求来进行设定的,用户的级别系数矩阵也是根据实际需求来进行设定的,但是通过用户的注册天数是无法直接判断用户的具体级别系数的,因此本申请通过根据用户登录账号的注册天数A与各预设用户登录账号的注册天数之间的关系设定用户的级别系数,可以准确地确定当前用户的级别系数。It should be noted that the longer the user's registration days, the higher the corresponding level coefficient. On the contrary, the shorter the registration days, the lower the corresponding level coefficient. Among them, the registration days of the user's login account It can be determined according to the user's login account. The user's level coefficient matrix is set according to actual needs, and the user's level coefficient matrix is also set according to actual needs, but the user's registration days cannot be directly judged. Therefore, this application can accurately determine the current user's level coefficient by setting the user's level coefficient according to the relationship between the registration days A of the user's login account and the registration days of each preset user's login account.

在本申请的一些实施例中,在所述确定模块中,在根据所述用户登录账号的历史登录次数B对所述用户的级别系数进行修正时,具体为:In some embodiments of the present application, in the determining module, when correcting the user's level coefficient according to the historical login times B of the user's login account, specifically:

所述确定模块用于预设用户登录账号的历史登录次数矩阵F0,设定F0(F1,F2,F3,F4),其中,F1为第一预设历史登录次数,F2为第二预设历史登录次数,F3为第三预设历史登录次数,F4为第四预设历史登录次数,且F1<F2<F3<F4;The determination module is used to preset the historical login times matrix F0 of the user login account, and set F0 (F1, F2, F3, F4), wherein, F1 is the first preset historical login times, and F2 is the second preset history Login times, F3 is the third preset historical login times, F4 is the fourth preset historical login times, and F1<F2<F3<F4;

所述确定模块用于预设用户的级别系数修正系数矩阵h,设定h(h1,h2,h3,h4,h5),其中,h1为第一预设级别系数修正系数,h2为第二预设级别系数修正系数,h3为第三预设级别系数修正系数,h4为第四预设级别系数修正系数,h5为第五预设级别系数修正系数,且0.8<h1<h2<h3<h4<h5<1.2;The determination module is used to preset the level coefficient correction coefficient matrix h of the user, and set h (h1, h2, h3, h4, h5), where h1 is the first preset level coefficient correction coefficient, h2 is the second preset Set level coefficient correction coefficient, h3 is the third preset level coefficient correction coefficient, h4 is the fourth preset level coefficient correction coefficient, h5 is the fifth preset level coefficient correction coefficient, and 0.8<h1<h2<h3<h4< h5<1.2;

所述确定模块还用于在将所述用户的级别系数设定为所述第i预设级别系数Ei时,i=1,2,3,4,5,根据所述用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对所述用户的级别系数进行修正:The determination module is also used to set the user's level coefficient as the i-th preset level coefficient Ei, i=1, 2, 3, 4, 5, according to the historical login history of the user's login account The relationship between the number of times B and the historical login times of each preset user login account is to modify the level coefficient of the user:

当B<F1时,选定所述第一预设级别系数修正系数h1对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h1;When B<F1, select the first preset level coefficient correction coefficient h1 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h1;

当F1≤B<F2时,选定所述第二预设级别系数修正系数h2对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h2;When F1≤B<F2, select the second preset level coefficient correction factor h2 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h2;

当F2≤B<F3时,选定所述第三预设级别系数修正系数h3对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h3;When F2≤B<F3, select the third preset level coefficient correction factor h3 to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h3;

当F3≤B<F4时,选定所述第四预设级别系数修正系数h4对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h4;When F3≤B<F4, select the fourth preset level coefficient correction factor h4 to correct the i-th preset level coefficient Ei, and the user's level coefficient after correction is Ei*h4;

当B≥F4时,选定所述第五预设级别系数修正系数h5对所述第i预设级别系数Ei进行修正,修正后用户的级别系数为Ei*h5。When B≥F4, the fifth preset level coefficient modification coefficient h5 is selected to correct the ith preset level coefficient Ei, and the user's level coefficient after correction is Ei*h5.

需要说明的是,虽然用户的注册天数越长,用户的级别系数越高,但是在实际情况中,若用户注册天数很长,但是用户使用该登录账号登录工业控制系统的次数很少,此时,则不能直接根据登录账号的注册天数来决定用户的级别系数,需要根据用户登录账号的历史登录次数来对用户的级别系数进行修正调整,本申请根据用户登录账号的历史登录次数B和各预设用户登录账号的历史登录次数之间的关系对用户的级别系数进行修正,可以进一步提升用户级别系数判定的准确性。It should be noted that although the longer the user's registration period, the higher the user's level coefficient, but in actual situations, if the user's registration period is very long, but the number of times the user uses the login account to log in to the industrial control system is very small, at this time , then the user’s level coefficient cannot be determined directly based on the number of days of registration of the login account. It is necessary to correct and adjust the user’s level coefficient according to the historical login times of the user’s login account. This application is based on the historical login times B of the user’s login account and each preset Setting the relationship between the historical login times of the user's login account to modify the user's level coefficient can further improve the accuracy of determining the user's level coefficient.

还需要说明的是,当确定用户的级别系数后,根据用户的级别系数生成相应的访问权限,其中,用户的级别系数越高,用户的访问权限也就越大,访问权限可以是:只允许访问预设网页或所有网页都可以访问,或即允许访问所有网页又可以下载文件等等,在此不作具体限定,可以根据实际需求来设定。It should also be noted that after the user's level coefficient is determined, corresponding access rights are generated according to the user's level coefficient. The higher the user's level coefficient, the greater the user's access rights. The access rights can be: only allow Access to preset webpages or all webpages can be accessed, or all webpages can be accessed and files can be downloaded, etc., which are not specifically limited here, and can be set according to actual needs.

在本申请的一些实施例中,在所述确定模块中,在根据所述用户的历史危险操作次数C确定所述工业控制系统的网络安全防控等级时,具体为:In some embodiments of the present application, in the determination module, when determining the network security prevention and control level of the industrial control system according to the historical number of dangerous operations C of the user, specifically:

所述确定模块用于预设用户的历史危险操作次数矩阵G0,设定G0(G1,G2,G3,G4),其中,G1为第一预设历史危险操作次数,G2为第二预设历史危险操作次数,G3为第三预设历史危险操作次数,G4为第四预设历史危险操作次数,且G1<G2<G3<G4;The determination module is used to preset the user's historical dangerous operation times matrix G0, and set G0 (G1, G2, G3, G4), wherein G1 is the first preset historical dangerous operation times, and G2 is the second preset historical The number of dangerous operations, G3 is the third preset historical number of dangerous operations, G4 is the fourth preset historical number of dangerous operations, and G1<G2<G3<G4;

所述确定模块用于预设工业控制系统的网络安全防控等级矩阵K,设定K(K1,K2,K3,K4,K5),其中,K1为第一预设网络安全防控等级,K2为第二预设网络安全防控等级,K3为第三预设网络安全防控等级,K4为第四预设网络安全防控等级,K5为第五预设网络安全防控等级,且K1<K2<K3<K4<K5;The determination module is used to preset the network security prevention and control level matrix K of the industrial control system, and set K (K1, K2, K3, K4, K5), where K1 is the first preset network security prevention and control level, and K2 is the second preset network security prevention and control level, K3 is the third preset network security prevention and control level, K4 is the fourth preset network security prevention and control level, K5 is the fifth preset network security prevention and control level, and K1< K2<K3<K4<K5;

所述确定模块还用于根据所述用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定所述工业控制系统的网络安全防控等级:The determination module is also used to set the network security prevention and control level of the industrial control system according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:

当C<G1时,选定所述第一预设网络安全防控等级K1作为所述工业控制系统的网络安全防控等级;When C<G1, select the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;

当G1≤C<G2时,选定所述第二预设网络安全防控等级K2作为所述工业控制系统的网络安全防控等级;When G1≤C<G2, select the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;

当G2≤C<G3时,选定所述第三预设网络安全防控等级K3作为所述工业控制系统的网络安全防控等级;When G2≤C<G3, select the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;

当G3≤C<G4时,选定所述第四预设网络安全防控等级K4作为所述工业控制系统的网络安全防控等级;When G3≤C<G4, select the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;

当C≥G4时,选定所述第五预设网络安全防控等级K5作为所述工业控制系统的网络安全防控等级。When C≥G4, the fifth preset network security prevention and control level K5 is selected as the network security prevention and control level of the industrial control system.

需要说明的是,当用户的危险操作次数越多时,则需要提高工业控制系统的网络安全防控等级,当安全防控等级越高时,则当前的网络条件越危险,则需要持续禁止用户的危险操作行为,在此安全防控等级下,用户受到的危险诱引也就越少,特别地,当前用户在进行访问时,若该用户的危险操作次数过多时,会暂停该用户的访问,本申请通过根据用户的历史危险操作次数C与各预设用户的历史危险操作次数之间的关系设定工业控制系统的网络安全防控等级,可以降低用户发生危险操作的次数,有效地提高了工业控制系统的安全性。It should be noted that when the number of dangerous operations performed by users increases, the network security prevention and control level of the industrial control system needs to be improved. Dangerous operation behavior, under this level of security prevention and control, the user will be less dangerously lured. In particular, when the current user accesses, if the user performs too many dangerous operations, the user's access will be suspended. This application sets the network security prevention and control level of the industrial control system according to the relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user, which can reduce the number of dangerous operations of the user and effectively improve the Security of industrial control systems.

在本申请的一些实施例中,在所述确定模块中,在根据所述用户的历史危险操作总时长D对所述工业控制系统的网络安全防控等级进行修正时,具体为:In some embodiments of the present application, in the determination module, when correcting the network security prevention and control level of the industrial control system according to the total duration D of the user's historical dangerous operations, specifically:

所述确定模块用于预设用户的历史危险操作总时长矩阵M0,设定M0(M1,M2,M3,M4),其中,M1为第一预设历史危险操作总时长,M2为第二预设历史危险操作总时长,M3为第三预设历史危险操作总时长,M4为第四预设历史危险操作总时长,且M1<M2<M3<M4;The determination module is used to preset the user's historical dangerous operation total duration matrix M0, and set M0 (M1, M2, M3, M4), where M1 is the first preset historical total duration of dangerous operations, and M2 is the second preset Set the total duration of historical dangerous operations, M3 is the total duration of the third preset historical dangerous operations, M4 is the total duration of the fourth preset historical dangerous operations, and M1<M2<M3<M4;

所述确定模块用于预设工业控制系统的网络安全防控等级修正系数矩阵n,设定n(n1,n2,n3,n4,n5),其中,n1为第一预设网络安全防控等级修正系数,n2为第二预设网络安全防控等级修正系数,n3为第三预设网络安全防控等级修正系数,n4为第四预设网络安全防控等级修正系数,n5为第五预设网络安全防控等级修正系数,且0.8<n1<n2<n3<n4<n5<1.2;The determination module is used to preset the network security prevention and control level correction coefficient matrix n of the industrial control system, and set n (n1, n2, n3, n4, n5), where n1 is the first preset network security prevention and control level The correction coefficient, n2 is the correction coefficient of the second preset network security prevention and control level, n3 is the correction coefficient of the third preset network security prevention and control level, n4 is the correction coefficient of the fourth preset network security prevention and control level, and n5 is the fifth preset network security prevention and control level correction coefficient. Set the network security prevention and control level correction coefficient, and 0.8<n1<n2<n3<n4<n5<1.2;

所述确定模块还用于在将所述工业控制系统的网络安全防控等级设定为所述第i预设网络安全防控等级Ki时,i=1,2,3,4,5,根据所述用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对所述工业控制系统的网络安全防控等级进行修正:The determination module is also used to set the network security prevention and control level of the industrial control system as the i-th preset network security prevention and control level Ki, i=1, 2, 3, 4, 5, according to The relationship between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user corrects the network security prevention and control level of the industrial control system:

当D<M1时,选定所述第一预设网络安全防控等级修正系数n1对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n1;When D<M1, the first preset network security prevention and control level correction coefficient n1 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n1;

当M1≤D<M2时,选定所述第二预设网络安全防控等级修正系数n2对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n2;When M1≤D<M2, select the second preset network security prevention and control level correction coefficient n2 to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control of the industrial control system after correction The level is Ki*n2;

当M2≤D<M3时,选定所述第三预设网络安全防控等级修正系数n3对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n3;When M2≤D<M3, select the third preset network security prevention and control level correction coefficient n3 to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n3;

当M3≤D<M4时,选定所述第四预设网络安全防控等级修正系数n4对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n4;When M3≤D<M4, select the correction coefficient n4 of the fourth preset network security prevention and control level to modify the i-th preset network security prevention and control level Ki, and correct the network security prevention and control of the industrial control system The grade is Ki*n4;

当D≥M4时,选定所述第五预设网络安全防控等级修正系数n5对所述第i预设网络安全防控等级Ki进行修正,修正后工业控制系统的网络安全防控等级为Ki*n5。When D≥M4, the fifth preset network security prevention and control level correction coefficient n5 is selected to modify the i-th preset network security prevention and control level Ki, and the network security prevention and control level of the industrial control system after correction is Ki*n5.

需要说明的是,用户在发生危险操作时,防火墙会检测病毒并进行查杀,或防火墙会直接自动停止访问该链接,则可以避免危险诱引的进一步发生,若防火墙发现病毒并查杀或直接停止访问所花费的时间越短,说明用户的危险操作程度较轻,若防火墙发现病毒并查杀或直接停止访问所花费的时间越长,说明用户的危险操作程度较重,因此,本申请通过根据用户的历史危险操作总时长D和各预设用户的历史危险操作总时长之间的关系对工业控制系统的网络安全防控等级进行修正,可以保障用户正常操作的稳定性,同时还进一步保证了工业控制系统的安全性。It should be noted that when a user performs a dangerous operation, the firewall will detect and kill the virus, or the firewall will directly and automatically stop accessing the link, which can avoid further occurrence of dangerous temptations. If the firewall finds a virus and kills it or directly The shorter the time it takes to stop access, the less dangerous the user is doing. If the firewall finds a virus and kills it, or the longer it takes to stop accessing, it means the user is more dangerous. Therefore, this application is approved According to the relationship between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user, the network security prevention and control level of the industrial control system is corrected, which can ensure the stability of the normal operation of the user and further guarantee security of industrial control systems.

还需要说明的是,用户在访问工业控制系统的相关网站时,只能在对应的访问权限下进行,如只允许访问预设网站,并且在实际访问时,通过相对应的网络安全防控等级对本次访问进行安全防控,网络安全防控等级所对应的网络安全防控方式也是不同的,如网络安全防控等级为一级时,此时网络安全防控方式可以为:点击安全性未知的链接时,进行页面等待,由防火墙判断安全性后,再进行展示,如网络安全防控等级较高时,此时的网络安全防控方式可以为:点击安全性未知的链接或者上传文件时,进行身份认证并进行相关的安全验证等。应该理解的是,上述以举例示出,不作具体限定,网络安全防控等级以及对应的网络安全防控方式可以根据实际需求来进行设定。通过对不同的用户生成不同的安全防控等级,并采用不同的安全防控方式,既可以保证用户的正常操作,又可以保证工业控制系统以及用户的安全性。It should also be noted that when users visit the relevant websites of the industrial control system, they can only do so under the corresponding access authority. For security prevention and control of this visit, the network security prevention and control methods corresponding to the network security prevention and control level are also different. For example, when the network security prevention and control level is level 1, the network security prevention and control method at this time can be: click For unknown links, wait for the page, and display after the firewall judges the security. For example, when the network security prevention and control level is high, the network security prevention and control method at this time can be: click on the link with unknown security or upload a file At the same time, identity authentication and relevant security verification are performed. It should be understood that, the foregoing is shown by way of example and not specifically limited, and the network security prevention and control level and the corresponding network security prevention and control method may be set according to actual requirements. By generating different security prevention and control levels for different users and adopting different security prevention and control methods, it can not only ensure the normal operation of users, but also ensure the security of industrial control systems and users.

在上述实施方式的描述中,具体特征、结构、材料或者特点可以在任何的一个或多个实施例或示例中以合适的方式结合。In the description of the above embodiments, specific features, structures, materials or characteristics may be combined in any one or more embodiments or examples in an appropriate manner.

虽然在上文中已经参考实施例对本发明进行了描述,然而在不脱离本发明的范围的情况下,可以对其进行各种改进并且可以用等效物替换其中的部件。尤其是,只要不存在结构冲突,本发明所披露的实施例中的各项特征均可通过任意方式相互结合起来使用,在本说明书中未对这些组合的情况进行全部的描述仅仅是出于省略篇幅和节约资源的考虑。因此,本发明并不局限于文中公开的特定实施例,而是包括落入权利要求的范围内的所有技术方案。While the invention has been described above with reference to the embodiments, various modifications may be made thereto and equivalents may be substituted for elements thereof without departing from the scope of the invention. In particular, as long as there is no structural conflict, the various features in the embodiments disclosed in the present invention can be used in combination with each other in any manner, and all descriptions of these combinations are not described in this specification only for omission Space and resource conservation considerations. Therefore, the present invention is not limited to the specific embodiments disclosed herein, but includes all technical solutions falling within the scope of the claims.

本领域普通技术人员可以理解:以上仅为本发明的优选实施例而已,并不用于限制本发明,尽管参照前述实施例对本发明进行了详细的说明,对于本领域的技术人员来说,其依然可以对前述各实施例记载的技术方案进行修改,或者对其中部分技术特征进行等同替换。凡在本发明的精神和原则之内,所做的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。Those of ordinary skill in the art can understand that: the above are only preferred embodiments of the present invention, and are not intended to limit the present invention. Although the present invention has been described in detail with reference to the foregoing embodiments, for those skilled in the art, it still The technical solutions described in the foregoing embodiments may be modified, or some technical features thereof may be equivalently replaced. Any modifications, equivalent replacements, improvements, etc. made within the spirit and principles of the present invention shall be included within the protection scope of the present invention.

Claims (10)

1. A network security prevention and control method for an industrial control system, the method comprising:
step S1: acquiring login account information and historical behavior information of a user;
step S2: determining a grade coefficient of a user and a network security prevention and control grade of an industrial control system according to the information acquired in the step S1;
and step S3: after determining the grade coefficient of the user and the network security prevention and control grade of the industrial control system, generating corresponding access authority according to the grade coefficient of the user, and performing prevention and control on the industrial control system according to the network security prevention and control grade of the industrial control system;
in the step S1, the login account information of the user includes the registration days a of the user login account and the historical login times B of the user login account; the historical behavior information comprises historical dangerous operation times C of the user and the total historical dangerous operation duration D of the user;
in the step S2, when determining the level coefficient of the user and the network security prevention and control level of the industrial control system, determining the level coefficient of the user according to the registration days a of the user login account, and correcting the level coefficient of the user according to the historical login times B of the user login account; and when the network security prevention and control level is determined, determining the network security prevention and control level of the industrial control system according to the historical dangerous operation times C of the user, and correcting the network security prevention and control level of the industrial control system according to the total historical dangerous operation time D of the user.
2. The network security prevention and control method for the industrial control system according to claim 1, wherein when determining the level coefficient of the user according to the registration days a of the user login account, specifically:
presetting a registration day matrix A0 of a user login account, and setting A0 (A1, A2, A3, A4), wherein A1 is a first preset registration day, A2 is a second preset registration day, A3 is a third preset registration day, A4 is a fourth preset registration day, and A1 is more than A2 and more than A3 and less than A4;
presetting a level coefficient matrix E of a user, and setting E (E1, E2, E3, E4, E5), wherein E1 is a first preset level coefficient, E2 is a second preset level coefficient, E3 is a third preset level coefficient, E4 is a fourth preset level coefficient, E5 is a fifth preset level coefficient, and E1 is more than E2 and less than E3 and less than E4 and less than E5;
setting the grade coefficient of the user according to the relation between the registration days A of the user login account and the registration days of each preset user login account:
when A is less than A1, selecting the first preset level coefficient E1 as the level coefficient of the user;
when A1 is more than or equal to A and less than A2, selecting the second preset level coefficient E2 as the level coefficient of the user;
when A2 is more than or equal to A and less than A3, selecting the third preset level coefficient E3 as the level coefficient of the user;
when A3 is more than or equal to A and less than A4, selecting the fourth preset level coefficient E4 as the level coefficient of the user;
and when A is larger than or equal to A4, selecting the fifth preset level coefficient E5 as the level coefficient of the user.
3. The network security prevention and control method for the industrial control system according to claim 2, wherein when the level coefficient of the user is corrected according to the historical login times B of the login account of the user, the method specifically comprises the following steps:
presetting a historical login frequency matrix F0 of a user login account, and setting F0 (F1, F2, F3 and F4), wherein F1 is a first preset historical login frequency, F2 is a second preset historical login frequency, F3 is a third preset historical login frequency, F4 is a fourth preset historical login frequency, and F1 is more than F2 and less than F3 and less than F4;
presetting a level coefficient correction coefficient matrix h of a user, and setting h (h 1, h2, h3, h4, h 5), wherein h1 is a first preset level coefficient correction coefficient, h2 is a second preset level coefficient correction coefficient, h3 is a third preset level coefficient correction coefficient, h4 is a fourth preset level coefficient correction coefficient, h5 is a fifth preset level coefficient correction coefficient, and h1 is more than 0.8, more than h2, more than h3, more than h4, more than h5 and less than 1.2;
when the level coefficient of the user is set as the ith preset level coefficient Ei, i =1,2,3,4,5 corrects the level coefficient of the user according to the relation between the historical login times B of the user login account and the historical login times of each preset user login account:
when B is less than F1, selecting the first preset grade coefficient correction coefficient h1 to correct the ith preset grade coefficient Ei, wherein the grade coefficient of the corrected user is Ei x h1;
when F1 is not less than B and less than F2, selecting the second preset grade coefficient correction coefficient h2 to correct the ith preset grade coefficient Ei, wherein the grade coefficient of the corrected user is Ei x h2;
when F2 is not more than B and less than F3, selecting the third preset level coefficient correction coefficient h3 to correct the ith preset level coefficient Ei, wherein the corrected level coefficient of the user is Ei h3;
when F3 is not more than B and less than F4, selecting the fourth preset level coefficient correction coefficient h4 to correct the ith preset level coefficient Ei, wherein the corrected level coefficient of the user is Ei h4;
and when B is larger than or equal to F4, selecting the fifth preset grade coefficient correction coefficient h5 to correct the ith preset grade coefficient Ei, wherein the grade coefficient of the corrected user is Ei h5.
4. The network security prevention and control method for the industrial control system according to claim 1, wherein when determining the network security prevention and control level of the industrial control system according to the historical dangerous operation times C of the user, specifically:
presetting a historical dangerous operation frequency matrix G0 of a user, and setting G0 (G1, G2, G3 and G4), wherein G1 is a first preset historical dangerous operation frequency, G2 is a second preset historical dangerous operation frequency, G3 is a third preset historical dangerous operation frequency, G4 is a fourth preset historical dangerous operation frequency, and G1 is more than G2 and less than G3 and less than G4;
presetting a network security prevention and control level matrix K of the industrial control system, and setting K (K1, K2, K3, K4, K5), wherein K1 is a first preset network security prevention and control level, K2 is a second preset network security prevention and control level, K3 is a third preset network security prevention and control level, K4 is a fourth preset network security prevention and control level, K5 is a fifth preset network security prevention and control level, and K1 is more than K2 and less than K3 and less than K4 and less than K5;
setting the network security prevention and control level of the industrial control system according to the relation between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:
when C is less than G1, selecting the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;
when G1 is not more than C and less than G2, selecting the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;
when G2 is less than or equal to C and less than G3, selecting the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;
when G3 is more than or equal to C and less than G4, selecting the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;
and when C is larger than or equal to G4, selecting the fifth preset network security prevention and control level K5 as the network security prevention and control level of the industrial control system.
5. The network security prevention and control method for the industrial control system according to claim 4, wherein when the network security prevention and control level of the industrial control system is modified according to the total historical dangerous operation duration D of the user, the method comprises the following steps:
presetting a historical dangerous operation total time matrix M0 of a user, and setting M0 (M1, M2, M3, M4), wherein M1 is a first preset historical dangerous operation total time, M2 is a second preset historical dangerous operation total time, M3 is a third preset historical dangerous operation total time, M4 is a fourth preset historical dangerous operation total time, and M1 is more than M2 and more than M3 and more than M4;
presetting a network security prevention and control grade correction coefficient matrix n of an industrial control system, and setting n (n 1, n2, n3, n4, n 5), wherein n1 is a first preset network security prevention and control grade correction coefficient, n2 is a second preset network security prevention and control grade correction coefficient, n3 is a third preset network security prevention and control grade correction coefficient, n4 is a fourth preset network security prevention and control grade correction coefficient, n5 is a fifth preset network security prevention and control grade correction coefficient, and n1 is more than 0.8 and more than n2 and more than n3 and more than n4 and less than n5 and less than 1.2;
when the network security prevention and control level of the industrial control system is set as the ith preset network security prevention and control level Ki, i =1,2,3,4,5, and the network security prevention and control level of the industrial control system is corrected according to the relation between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user:
when D is less than M1, selecting the first preset network security prevention and control grade correction coefficient n1 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n1;
when M1 is not more than D and less than M2, selecting the second preset network security prevention and control grade correction coefficient n2 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n2;
when M2 is less than or equal to D and less than M3, selecting a third preset network security prevention and control grade correction coefficient n3 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n3;
when M3 is less than or equal to D and less than M4, selecting a fourth preset network security prevention and control grade correction coefficient n4 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n4;
and when D is larger than or equal to M4, selecting a fifth preset network security prevention and control grade correction coefficient n5 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n5.
6. A network security prevention and control system for an industrial control system, the system comprising:
the acquisition module is used for acquiring login account information and historical behavior information of a user;
the determining module is used for determining the grade coefficient of the user and the network security prevention and control grade of the industrial control system according to the information acquired in the acquiring module;
the control module is used for generating corresponding access authority according to the grade coefficient of the user after the grade coefficient of the user and the network security prevention and control grade of the industrial control system are determined, and performing prevention and control on the industrial control system according to the network security prevention and control grade of the industrial control system;
in the acquisition module, the login account information of the user comprises the registration days A of the login account of the user and the historical login times B of the login account of the user; the historical behavior information comprises historical dangerous operation times C of the user and the total historical dangerous operation duration D of the user;
in the determining module, when determining the level coefficient of a user and the network security prevention and control level of an industrial control system, determining the level coefficient of the user according to the registration days A of the user login account, and correcting the level coefficient of the user according to the historical login times B of the user login account; and when the network security prevention and control level is determined, determining the network security prevention and control level of the industrial control system according to the historical dangerous operation times C of the user, and correcting the network security prevention and control level of the industrial control system according to the total historical dangerous operation time D of the user.
7. The network security prevention and control system for an industrial control system according to claim 6, wherein in the determining module, when determining the level coefficient of the user according to the registration days a of the user logging in the account, specifically:
the determining module is used for presetting a registration day matrix A0 of a login account of a user and setting A0 (A1, A2, A3 and A4), wherein A1 is a first preset registration day, A2 is a second preset registration day, A3 is a third preset registration day, A4 is a fourth preset registration day, and A1 is more than A2 and is more than A3 and is more than A4;
the determining module is used for presetting a level coefficient matrix E of a user and setting E (E1, E2, E3, E4, E5), wherein E1 is a first preset level coefficient, E2 is a second preset level coefficient, E3 is a third preset level coefficient, E4 is a fourth preset level coefficient, E5 is a fifth preset level coefficient, and E1 is more than E2 and less than E3 and less than E4 and less than E5;
the determining module is further configured to set a level coefficient of the user according to a relationship between the registration days a of the user login account and the registration days of each preset user login account:
when A is less than A1, selecting the first preset level coefficient E1 as the level coefficient of the user;
when A1 is more than or equal to A and less than A2, selecting the second preset level coefficient E2 as the level coefficient of the user;
when A2 is more than or equal to A and less than A3, selecting the third preset level coefficient E3 as the level coefficient of the user;
when A3 is more than or equal to A and less than A4, selecting the fourth preset level coefficient E4 as the level coefficient of the user;
and when A is larger than or equal to A4, selecting the fifth preset level coefficient E5 as the level coefficient of the user.
8. The system according to claim 7, wherein in the determining module, when the level coefficient of the user is modified according to the historical login times B of the user login account, the modifying is specifically:
the determining module is used for presetting a historical login time matrix F0 of a user login account and setting F0 (F1, F2, F3 and F4), wherein F1 is a first preset historical login time, F2 is a second preset historical login time, F3 is a third preset historical login time, F4 is a fourth preset historical login time, and F1 is more than F2 and less than F3 and less than F4;
the determining module is used for presetting a level coefficient correction coefficient matrix h of a user and setting h (h 1, h2, h3, h4, h 5), wherein h1 is a first preset level coefficient correction coefficient, h2 is a second preset level coefficient correction coefficient, h3 is a third preset level coefficient correction coefficient, h4 is a fourth preset level coefficient correction coefficient, h5 is a fifth preset level coefficient correction coefficient, and h1 is more than 0.8, more than h2, more than h3, more than h4, more than h5 and less than 1.2;
the determining module is further configured to, when the level coefficient of the user is set as the i-th preset level coefficient Ei, i =1,2,3,4,5, correct the level coefficient of the user according to a relationship between the historical login number B of the user login account and the historical login number of each preset user login account:
when B is less than F1, selecting the first preset grade coefficient correction coefficient h1 to correct the ith preset grade coefficient Ei, wherein the grade coefficient of the corrected user is Ei x h1;
when F1 is not more than B and less than F2, selecting the second preset level coefficient correction coefficient h2 to correct the ith preset level coefficient Ei, wherein the corrected level coefficient of the user is Ei h2;
when F2 is not more than B and less than F3, selecting the third preset level coefficient correction coefficient h3 to correct the ith preset level coefficient Ei, wherein the corrected level coefficient of the user is Ei h3;
when F3 is not more than B and less than F4, selecting the fourth preset level coefficient correction coefficient h4 to correct the ith preset level coefficient Ei, wherein the corrected level coefficient of the user is Ei h4;
and when B is larger than or equal to F4, selecting the fifth preset grade coefficient correction coefficient h5 to correct the ith preset grade coefficient Ei, wherein the grade coefficient of the corrected user is Ei h5.
9. The cyber security and control system for an industrial control system according to claim 6, wherein in the determining module, when determining the cyber security and control level of the industrial control system according to the historical dangerous operation times C of the user, specifically:
the determining module is used for presetting a historical dangerous operation frequency matrix G0 of a user and setting G0 (G1, G2, G3 and G4), wherein G1 is a first preset historical dangerous operation frequency, G2 is a second preset historical dangerous operation frequency, G3 is a third preset historical dangerous operation frequency, G4 is a fourth preset historical dangerous operation frequency, and G1 is greater than G2 and is greater than G3 and is greater than G4;
the determining module is used for presetting a network security prevention and control level matrix K of the industrial control system and setting K (K1, K2, K3, K4 and K5), wherein K1 is a first preset network security prevention and control level, K2 is a second preset network security prevention and control level, K3 is a third preset network security prevention and control level, K4 is a fourth preset network security prevention and control level, K5 is a fifth preset network security prevention and control level, and K1 is greater than K2 and less than K3 and less than K4 and less than K5;
the determining module is further configured to set a network security prevention and control level of the industrial control system according to a relationship between the historical dangerous operation times C of the user and the historical dangerous operation times of each preset user:
when C is less than G1, selecting the first preset network security prevention and control level K1 as the network security prevention and control level of the industrial control system;
when G1 is not more than C and less than G2, selecting the second preset network security prevention and control level K2 as the network security prevention and control level of the industrial control system;
when G2 is more than or equal to C and less than G3, selecting the third preset network security prevention and control level K3 as the network security prevention and control level of the industrial control system;
when G3 is less than or equal to C and less than G4, selecting the fourth preset network security prevention and control level K4 as the network security prevention and control level of the industrial control system;
and when C is larger than or equal to G4, selecting the fifth preset network security prevention and control level K5 as the network security prevention and control level of the industrial control system.
10. The cyber security and control system for an industrial control system according to claim 9, wherein in the determination module, when the cyber security and control level of the industrial control system is modified according to the historical dangerous operation total duration D of the user, specifically:
the determining module is used for presetting a historical dangerous operation total time matrix M0 of a user and setting M0 (M1, M2, M3 and M4), wherein M1 is a first preset historical dangerous operation total time, M2 is a second preset historical dangerous operation total time, M3 is a third preset historical dangerous operation total time, M4 is a fourth preset historical dangerous operation total time, and M1 is more than M2 and more than M3 and more than M4;
the determining module is used for presetting a network security prevention and control grade correction coefficient matrix n of the industrial control system and setting n (n 1, n2, n3, n4, n 5), wherein n1 is a first preset network security prevention and control grade correction coefficient, n2 is a second preset network security prevention and control grade correction coefficient, n3 is a third preset network security prevention and control grade correction coefficient, n4 is a fourth preset network security prevention and control grade correction coefficient, n5 is a fifth preset network security prevention and control grade correction coefficient, and n1 is more than 0.8 and more than n2 and more than n3 and more than n4 and more than n5 and less than 1.2;
the determining module is further configured to, when the network security prevention and control level of the industrial control system is set to the ith preset network security prevention and control level Ki, i =1,2,3,4,5, modify the network security prevention and control level of the industrial control system according to a relationship between the total historical dangerous operation duration D of the user and the total historical dangerous operation duration of each preset user:
when D is less than M1, selecting the first preset network security prevention and control grade correction coefficient n1 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n1;
when M1 is not more than D and less than M2, selecting the second preset network security prevention and control grade correction coefficient n2 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n2;
when M2 is less than or equal to D and less than M3, selecting a third preset network security prevention and control grade correction coefficient n3 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n3;
when M3 is less than or equal to D and less than M4, selecting a fourth preset network security prevention and control grade correction coefficient n4 to correct the ith preset network security prevention and control grade Ki, wherein the corrected network security prevention and control grade of the industrial control system is Ki x n4;
and when D is larger than or equal to M4, selecting a fifth preset network safety prevention and control grade correction coefficient n5 to correct the ith preset network safety prevention and control grade Ki, wherein the corrected network safety prevention and control grade of the industrial control system is Ki x n5.
CN202210968308.XA 2022-08-12 2022-08-12 A network security prevention and control method and system for industrial control systems Active CN115484063B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210968308.XA CN115484063B (en) 2022-08-12 2022-08-12 A network security prevention and control method and system for industrial control systems

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210968308.XA CN115484063B (en) 2022-08-12 2022-08-12 A network security prevention and control method and system for industrial control systems

Publications (2)

Publication Number Publication Date
CN115484063A true CN115484063A (en) 2022-12-16
CN115484063B CN115484063B (en) 2023-05-30

Family

ID=84421965

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210968308.XA Active CN115484063B (en) 2022-08-12 2022-08-12 A network security prevention and control method and system for industrial control systems

Country Status (1)

Country Link
CN (1) CN115484063B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116248384A (en) * 2023-02-28 2023-06-09 华能信息技术有限公司 Terminal network access security isolation method and system

Citations (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004192205A (en) * 2002-12-10 2004-07-08 Fuerishimo:Kk User history data generation device, user history data generation method, and program therefor
WO2013097714A1 (en) * 2011-12-29 2013-07-04 北京网秦天下科技有限公司 Statistical analysis and prompting method and system for mobile terminal internet traffic
US20150020149A1 (en) * 2013-07-15 2015-01-15 University Of Florida Research Foundation, Inc. Adaptive identity rights management system for regulatory compliance and privacy protection
US9148424B1 (en) * 2015-03-13 2015-09-29 Snapchat, Inc. Systems and methods for IP-based intrusion detection
JP2016187166A (en) * 2015-03-27 2016-10-27 富士通株式会社 Nuisance call detection device, nuisance call detection method, and nuisance call detection program
JP2017010258A (en) * 2015-06-22 2017-01-12 富士通株式会社 Unauthorized operation monitor, unauthorized operation monitoring method, and unauthorized operation monitoring system
US20170142130A1 (en) * 2015-11-16 2017-05-18 Cal-Comp Electronics & Communications Company Limited Account registration and login method, and network attached storage system using the same
CN106888214A (en) * 2017-03-17 2017-06-23 北京潘达互娱科技有限公司 Dynamic rights collocation method and device
CN107516213A (en) * 2016-06-17 2017-12-26 阿里巴巴集团控股有限公司 risk identification method and device
CN108462615A (en) * 2018-02-05 2018-08-28 百川通联(北京)网络技术有限公司 A kind of network user's group technology and device
CN109639735A (en) * 2019-01-24 2019-04-16 重庆邮电大学 A kind of test method of IPv6 industry wireless network security level
WO2020010983A1 (en) * 2018-07-11 2020-01-16 阿里巴巴集团控股有限公司 Risk control method, risk control device, electronic device and storage medium
CN110718067A (en) * 2019-09-23 2020-01-21 浙江大华技术股份有限公司 Violation behavior warning method and related device
CN113205683A (en) * 2021-04-26 2021-08-03 青岛海信网络科技股份有限公司 Alarm data processing method, device, equipment and medium
CN113411353A (en) * 2021-08-03 2021-09-17 广州汇图计算机信息技术有限公司 Network security protection method and system
CN114003481A (en) * 2021-11-08 2022-02-01 湖南快乐阳光互动娱乐传媒有限公司 Risk determination method and device for user behavior
CN114385367A (en) * 2022-01-14 2022-04-22 黑龙江省政务大数据中心 Resource management system based on cloud management platform

Patent Citations (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004192205A (en) * 2002-12-10 2004-07-08 Fuerishimo:Kk User history data generation device, user history data generation method, and program therefor
WO2013097714A1 (en) * 2011-12-29 2013-07-04 北京网秦天下科技有限公司 Statistical analysis and prompting method and system for mobile terminal internet traffic
US20150020149A1 (en) * 2013-07-15 2015-01-15 University Of Florida Research Foundation, Inc. Adaptive identity rights management system for regulatory compliance and privacy protection
US9148424B1 (en) * 2015-03-13 2015-09-29 Snapchat, Inc. Systems and methods for IP-based intrusion detection
JP2016187166A (en) * 2015-03-27 2016-10-27 富士通株式会社 Nuisance call detection device, nuisance call detection method, and nuisance call detection program
JP2017010258A (en) * 2015-06-22 2017-01-12 富士通株式会社 Unauthorized operation monitor, unauthorized operation monitoring method, and unauthorized operation monitoring system
US20170142130A1 (en) * 2015-11-16 2017-05-18 Cal-Comp Electronics & Communications Company Limited Account registration and login method, and network attached storage system using the same
CN107516213A (en) * 2016-06-17 2017-12-26 阿里巴巴集团控股有限公司 risk identification method and device
CN106888214A (en) * 2017-03-17 2017-06-23 北京潘达互娱科技有限公司 Dynamic rights collocation method and device
CN108462615A (en) * 2018-02-05 2018-08-28 百川通联(北京)网络技术有限公司 A kind of network user's group technology and device
WO2020010983A1 (en) * 2018-07-11 2020-01-16 阿里巴巴集团控股有限公司 Risk control method, risk control device, electronic device and storage medium
CN109639735A (en) * 2019-01-24 2019-04-16 重庆邮电大学 A kind of test method of IPv6 industry wireless network security level
CN110718067A (en) * 2019-09-23 2020-01-21 浙江大华技术股份有限公司 Violation behavior warning method and related device
CN113205683A (en) * 2021-04-26 2021-08-03 青岛海信网络科技股份有限公司 Alarm data processing method, device, equipment and medium
CN113411353A (en) * 2021-08-03 2021-09-17 广州汇图计算机信息技术有限公司 Network security protection method and system
CN114003481A (en) * 2021-11-08 2022-02-01 湖南快乐阳光互动娱乐传媒有限公司 Risk determination method and device for user behavior
CN114385367A (en) * 2022-01-14 2022-04-22 黑龙江省政务大数据中心 Resource management system based on cloud management platform

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116248384A (en) * 2023-02-28 2023-06-09 华能信息技术有限公司 Terminal network access security isolation method and system

Also Published As

Publication number Publication date
CN115484063B (en) 2023-05-30

Similar Documents

Publication Publication Date Title
US10757103B2 (en) Single authentication portal for diverse industrial network protocols across multiple OSI layers
US11283803B2 (en) Incremental compliance remediation
US10158675B2 (en) Identity security and containment based on detected threat events
CN107508815B (en) Early warning method and device based on website traffic analysis
US10348739B2 (en) Automated data risk assessment
US9245145B2 (en) Methods and systems for regulating database activity
US9349014B1 (en) Determining an indicator of aggregate, online security fitness
US10432585B2 (en) Autonomous decentralization of centralized stateful security services with systematic tamper resistance
US10097667B2 (en) Methods and systems for regulating database activity
US9148435B2 (en) Establishment of a trust index to enable connections from unknown devices
EP2611102B1 (en) Providing a web application with measures against vulnerabilities
US8984010B2 (en) Build pooled data source based on hana SAML login
AU2016318602B2 (en) Secured user credential management
CN112087469A (en) Zero-trust dynamic access control method for power Internet of things equipment and users
CN115917541A (en) User interface for web server risk awareness
CN115484063B (en) A network security prevention and control method and system for industrial control systems
CN114389882A (en) Gateway flow control method and device, computer equipment and storage medium
CN113645217A (en) Method for adaptively adjusting access threshold
CN107623916A (en) A method and device for monitoring WiFi network security
CN115208671B (en) Firewall configuration method, device, electronic equipment and storage medium
TW202404315A (en) Systems and methods for single sign on (sso) redirecting in the presence of multiple service providers for a cloud service
US12363125B2 (en) Selective access to computing systems based on authentication mechanisms
US12254080B2 (en) Normalizing external application data
US20230082102A1 (en) Efficient initiation of automated processes
CN120238323A (en) Blacklist management method, device and medium for broadband network access authentication

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20241206

Address after: Room 08-10, 6 / F, block a, No. 5, Dongtucheng Road, Chaoyang District, Beijing 100013

Patentee after: National Petroleum and natural gas pipeline network Group Co.,Ltd.

Country or region after: China

Patentee after: National Pipe Network Group North Pipeline Co.,Ltd.

Address before: 065099 No. 408 Xinkai Road, Guangyang District, Langfang City, Hebei Province

Patentee before: National Pipe Network Group North Pipeline Co.,Ltd.

Country or region before: China