摘要
能源互联网条件下,电厂网络面临攻击隐蔽性增强与系统融合复杂的安全挑战。针对该问题,文中研究了面向电厂环境设计的网络安全检查工具箱结构与关键模块功能,实现了对工业协议数据的采集解析、异常指令的规则识别与事件联动响应机制配置,分析了工具箱在控制区、管理区与信息区的部署架构及典型攻击场景下的隔离策略,结合远程检测任务在风电中心的应用效果与误报场景,探讨了其在边缘节点资源受限条件下的规则执行效率与模型自适应能力。
Under the condition of the Internet plus,power plant networks face security challenges with enhanced concealment of attacks and complex system integration.To address this issue,this paper studies the structure and key module functions of a network security inspection toolbox designed for the power plant environment.It achieves the collection and parsing of industrial protocol data,rule recognition of abnormal instructions,and configuration of event linkage response mechanisms.It analyzes the deployment architecture of the toolbox in the control area,management area,and information area,as well as isolation strategies under typical attack scenarios.Combining the application effect and false alarm scenarios of remote detection tasks in the wind power center,it discusses the rule execution efficiency and model adaptability under the condition of limited resources at edge nodes.
作者
叶菊
邢会全
谷彩香
程天满
YE Ju;XING Huiquan;GU Caixiang;CHENG Tianman(China Yangtze Power Co.,Ltd.,Beijing 615421,China)
出处
《移动信息》
2026年第1期137-139,共3页
Mobile Information
关键词
电厂网络安全
安全检查工具箱
能源互联网
Power plant network security
Security inspection toolbox
Energy Internet
