Search

CN-117877134-B - Rail transit signal system data security analysis method, device, equipment and medium

CN117877134BCN 117877134 BCN117877134 BCN 117877134BCN-117877134-B

Abstract

The invention provides a method, a device, equipment and a medium for analyzing data security of a rail transit signal system, which relate to the technical field of rail transit and comprise the steps of determining a subsystem, an interface and a peripheral system to be analyzed, establishing a first association relation among functions of the subsystem, functions of the interface and functions of the peripheral system, establishing a second association relation among functions of the subsystem, functions of the interface, functions of the peripheral system, data of the subsystem and data of the interface, determining a top-level accident of the rail transit, establishing a third association relation among a top-level accident of the rail transit, a preset guide word of the top-level accident and the functions of the subsystem, and carrying out data security analysis based on the first association relation, the second association relation and the third association relation. The invention effectively realizes the automatic analysis of the data security of the rail transit signal system, and improves the data security analysis efficiency and accuracy.

Inventors

  • DING YI
  • Xiong Yujiao
  • ZHU HAIXIA
  • LI YAN
  • XUE WEIQING

Assignees

  • 交控科技股份有限公司

Dates

Publication Date
20260505
Application Date
20231130

Claims (10)

  1. 1. The method for analyzing the data security of the rail transit signal system is characterized by comprising the following steps of: Determining a subsystem, an interface and a peripheral system to be analyzed, which are included in a signal system of the rail transit; Establishing a first association relationship among the functions of the subsystem, the functions of the interface and the functions of the peripheral system, and establishing a second association relationship among the functions of the subsystem, the functions of the interface, the functions of the peripheral system, the data of the subsystem and the data of the interface; Determining a top-level accident of the track traffic, and establishing a third association relationship among the top-level accident of the track traffic, a preset guide word of the top-level accident and the function of the subsystem; performing data security analysis based on the first association, the second association and the third association; The top-level accidents of the rail transit comprise a train-to-train collision accident, a train-to-rail boundary internal obstacle collision accident, a train derailment accident, an injury accident, an electric shock accident and a poisoning accident caused by a vehicle door and a shielding door to passengers; The preset guidance words of the top-level accident comprise early, late, lack, error, overlarge, undershort, open and close.
  2. 2. The method for analyzing data security of a rail transit signal system according to claim 1, wherein the performing data security analysis based on the first association relationship, the second association relationship, and the third association relationship includes: Based on the third association relationship, a dangerous source subset is established, and a first combination capable of causing a top-level accident of the track traffic is stored in the dangerous source subset, wherein the first combination comprises the top-level accident of the track traffic, a guide word capable of causing the top-level accident and the function of the subsystem; Determining target data related to rail traffic safety based on the first association relationship, the second association relationship and the dangerous source subset; Determining a guide word of the top-level accident associated with the target data, and judging whether the target data is security-side data based on the guide word of the top-level accident associated with the target data.
  3. 3. The method of claim 2, wherein the determining the guidance word of the top-level accident associated with the target data and determining whether the target data is security-side data based on the guidance word of the top-level accident associated with the target data comprises: Establishing a target data subset, wherein a second combination capable of causing a top-level accident of the track traffic is stored in the target data subset, and the second combination comprises the top-level accident of the track traffic, a guide word of the top-level accident associated with the target data and the target data; And judging whether the target data is safety side data or not based on the target data subset.
  4. 4. The method for analyzing the security of the rail transit signal system data according to claim 3, wherein the determining whether the target data is security side data based on the target data subset comprises: Determining the data type of each target data; and judging whether the target data is safety side data or not based on the data type of each target data and the target data subset.
  5. 5. The method of claim 4, wherein the data types include a function switch parameter type, a time and distance parameter type, and a mode switch parameter type.
  6. 6. The method for analyzing the data security of the rail transit signal system according to claim 1, wherein the subsystem comprises at least one of a vehicle-mounted subsystem VOBC, an interlocking subsystem CI, a zone controller subsystem ZC, a data communication subsystem DCS, a train automatic monitoring subsystem ATS and a transponder subsystem; The interface comprises at least one of an interface between a vehicle-mounted subsystem VOBC and a vehicle, an interface between the vehicle-mounted subsystem VOBC and a driving operation terminal of a train driver, an interface between a zone controller subsystem ZC and an interlocking subsystem CI, and an interface between the vehicle-mounted subsystem VOBC and a transponder subsystem; the peripheral system comprises at least one of an information security system, a driving operation terminal of a train driver, a dispatch terminal, a vehicle door and a platform door.
  7. 7. A rail transit signal system data security analysis device, comprising: The determining module is used for determining a subsystem, an interface and a peripheral system to be analyzed, which are included in the signal system of the rail transit; A first establishing module, configured to establish a first association relationship between a function of the subsystem, a function of the interface, and a function of the peripheral system, and establish a second association relationship between the function of the subsystem, the function of the interface, the function of the peripheral system, data of the subsystem, and data of the interface; The second building module is used for determining a top-level accident of the track traffic and building a third association relationship among the top-level accident of the track traffic, a preset guide word of the top-level accident and the function of the subsystem; The security analysis module is used for carrying out data security analysis based on the first association relationship, the second association relationship and the third association relationship; The top-level accidents of the rail transit comprise a train-to-train collision accident, a train-to-rail boundary internal obstacle collision accident, a train derailment accident, an injury accident, an electric shock accident and a poisoning accident caused by a vehicle door and a shielding door to passengers; The preset guidance words of the top-level accident comprise early, late, lack, error, overlarge, undershort, open and close.
  8. 8. An electronic device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the rail transit signal system data security analysis method of any one of claims 1 to 6 when the program is executed by the processor.
  9. 9. A non-transitory computer readable storage medium having stored thereon a computer program, wherein the computer program when executed by a processor implements the rail transit signal system data security analysis method of any of claims 1 to 6.
  10. 10. A computer program product comprising a computer program, characterized in that the computer program, when executed by a processor, implements the rail traffic signal system data security analysis method according to any one of claims 1 to 6.

Description

Rail transit signal system data security analysis method, device, equipment and medium Technical Field The present invention relates to the field of rail transit technologies, and in particular, to a method, an apparatus, a device, and a medium for data security analysis of a rail transit signal system. Background The data information quantity transmitted among all subsystems in the rail traffic signal system is huge, and the realization of the data and the system functions is closely related, so that the safe realization of the system functions is related, and therefore, the safety analysis of the rail traffic signal system data is an important link for ensuring the train running safety. In the related art, the data in the track traffic signal system is usually manually analyzed safely, and the data volume of the track traffic signal system is very large, so that the workload of manually analyzing the data safety is huge, the efficiency is low, and the omission of the data safety analysis is easy to cause. Therefore, how to realize the automatic analysis of the data security of the rail transit signal system and improve the data security analysis efficiency and accuracy becomes a technical problem to be solved in the industry. Disclosure of Invention Aiming at the problems existing in the prior art, the invention provides a method, a device, equipment and a medium for safely analyzing data of a rail transit signal system. In a first aspect, the present invention provides a method for analyzing data security of a rail transit signal system, including: Determining a subsystem, an interface and a peripheral system to be analyzed, which are included in a signal system of the rail transit; Establishing a first association relationship among the functions of the subsystem, the functions of the interface and the functions of the peripheral system, and establishing a second association relationship among the functions of the subsystem, the functions of the interface, the functions of the peripheral system, the data of the subsystem and the data of the interface; Determining a top-level accident of the track traffic, and establishing a third association relationship among the top-level accident of the track traffic, a preset guide word of the top-level accident and the function of the subsystem; performing data security analysis based on the first association, the second association and the third association; The top-level accidents of the rail transit comprise a train-to-train collision accident, a train-to-rail boundary internal obstacle collision accident, a train derailment accident, an injury accident, an electric shock accident and a poisoning accident caused by a vehicle door and a shielding door to passengers; The preset guidance words of the top-level accident comprise early, late, lack, error, overlarge, undershort, open and close. Optionally, according to the method for analyzing data security of a rail transit signal system provided by the present invention, the data security analysis based on the first association relationship, the second association relationship and the third association relationship includes: Based on the third association relationship, a dangerous source subset is established, and a first combination capable of causing a top-level accident of the track traffic is stored in the dangerous source subset, wherein the first combination comprises the top-level accident of the track traffic, a guide word capable of causing the top-level accident and the function of the subsystem; Determining target data related to rail traffic safety based on the first association relationship, the second association relationship and the dangerous source subset; Determining a guide word of the top-level accident associated with the target data, and judging whether the target data is security-side data based on the guide word of the top-level accident associated with the target data. Optionally, according to the method for analyzing the security of the track traffic signal system data provided by the present invention, the determining the guide word of the top-level accident associated with the target data, and judging whether the target data is security side data based on the guide word of the top-level accident associated with the target data includes: Establishing a target data subset, wherein a second combination capable of causing a top-level accident of the track traffic is stored in the target data subset, and the second combination comprises the top-level accident of the track traffic, a guide word of the top-level accident associated with the target data and the target data; And judging whether the target data is safety side data or not based on the target data subset. Optionally, according to the method for analyzing the security of the track traffic signal system data provided by the present invention, the determining whether the target data is security side data based on the target data subset i