检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]武汉大学电气工程学院,湖北省武汉市430072 [2]武汉大学计算中心,湖北省武汉市430072
出 处:《电网技术》2004年第23期71-75,共5页Power System Technology
摘 要:针对目前各级电力系统计算机网络中存在的安全隐患,作者提出了一种比较安全的网络构建方案。该方案能有效地保障电力实时生产系统与各级管理网络免受网络攻击。文章首先对可能产生的各种攻击手段按照其发起网段和原理进行了分类与分析,然后以电力实时应用系统,如SCADA、MIS和办公自动化(Office Automation,OA)的安全为出发点,给出了在电力生产、管理的各级网络上综合运用软件隔离技术和硬件物理隔离技术来构建电力网络的具体方案,即通过严格隔离实时系统和局域网、隔离各个实时系统、隔离局域网和Internet三项举措来全面保障网络安全。对计算机网络安全中的防火墙、数据加密以及指纹身份认证等技术也给出了具体应用策略。To eliminate the potential insecure hazard in computer networks for power systems, a project to construct a more secure computer network, which can protect the real-time electric power production system and management networks in different levels from possible outside attacks, is proposed. According to the initiate meshwork and principle of various attacks which maybe take place are classified and analyzed; then taking the security of real-time application systems such as the SCADA, MIS and Office Automation (OA) in power network as the start point, a concrete project consisting of three measures, i.e., strict isolation of real-time systems from LAN, isolating the real-time systems each other, isolating the LAN from Internet, are given to construct a secure computer network for power system by comprehensive use of both software isolation and hardware based physical isolation in different levels of computer network for power production and administration; finally, in this project the application of advanced technologies such as the firewall, data encryption, private gateway and finger-print based identity authentication in network security is also described.
关 键 词:计算机网络安全 实时系统 局域网 实时应用系统 网段 物理隔离技术 网络攻击 统计 构建方案 电力
分 类 号:TM712[电气工程—电力系统及自动化] TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.36