CN-122027226-A - Portable operation and maintenance gateway centralized management system and method with real-time monitoring function

Abstract

The invention discloses a portable operation and maintenance gateway centralized management system and method with a real-time monitoring function, and relates to the technical field of operation and maintenance and safety management of power networks. The system is based on a four-zone network security architecture, wherein a first zone and a second zone are security production zones, a third zone and a fourth zone are information management zones, a network security platform is arranged in the second zone, a portable operation and maintenance gateway, a network security monitoring device and a centralized management and control platform are arranged in the third zone, and the first zone and the second zone are physically isolated from the third zone and the fourth zone through an isolating device. The invention ensures the safety of the safety production large area through partition deployment and physical isolation, realizes real-time monitoring by means of the network security monitoring device, centrally manages the portable operation and maintenance gateway by means of the centralized management and control platform, combines the convenience of operation and maintenance and network security, and is suitable for operation and maintenance scenes with high requirements on safety level.

Inventors

• LI JIA
• GAO QI
• SHI ZHE
• FU YUZE
• WANG YAFAN
• YAO ZHUOHONG
• ZHANG JIGUO
• ZHOU YUGUANG
• ZHOU HONGWEI
• ZHAO WEI
• LIU CHANG
• JIANG NAN
• WANG WEI

Assignees

• 吉林省电力科学研究院有限公司
• 国网吉林省电力有限公司电力科学研究院

Dates

Publication Date

20260512

Application Date

20260114

Claims (10)

1. 1. The portable operation and maintenance gateway centralized management system with the real-time monitoring function is characterized by comprising a network security platform, an isolating device, a network security monitoring device, a switch, a firewall, a centralized management and control platform and a portable operation and maintenance gateway, wherein the network security platform is deployed in the network security two areas, the portable operation and maintenance gateway, the network security monitoring device and the centralized management and control platform are deployed in the network security three areas, and the network security one area, the network security two area, the network security three area and the network security four area are physically isolated through the isolating device.
2. 2. The portable operation and maintenance gateway centralized management system with the real-time monitoring function according to claim 1, wherein the portable operation and maintenance gateway is connected with a firewall through a switch in a two-way communication manner, the centralized management and control platform is connected with the firewall through the switch in a two-way communication manner, the firewall is connected with a network security monitoring device through the switch in a two-way communication manner, and an isolation device is arranged between the network security platform and the network security monitoring device.
3. 3. The centralized management system of portable operation and maintenance gateway with real-time monitoring function according to claim 2, wherein the portable operation and maintenance gateway, the centralized management and control platform and the network security monitoring device are respectively independent communication links.
4. 4. The centralized management system of portable operation and maintenance gateway with real-time monitoring function according to claim 1, wherein the portable operation and maintenance gateway is provided with an encryption chip for generating a key and a corresponding certificate, the centralized management and control platform stores and manages the root certificate of the portable operation and maintenance gateway, and distributes unique identification for the portable operation and maintenance gateway based on manufacturer information and equipment serial number, and realizes access authentication and data transmission by adopting a one-machine-one-secret encryption communication mode.
5. 5. The portable operation and maintenance gateway centralized management system with the real-time monitoring function according to claim 1 is characterized in that the network security platform is used for receiving alarm data transmitted by the network security monitoring device and triggering an alarm, wherein the alarm data comprises illegal communication, high risk command, illegal external connection and secondary authorization related data, and the centralized management and control platform is used for receiving operation and maintenance operation videos and operation logs transmitted by the portable operation and maintenance gateway and realizing analysis audit and full life cycle management of the operation and maintenance data.
6. 6. A centralized management method of a portable operation and maintenance gateway with a real-time monitoring function, which is characterized by comprising the following steps based on the system of any one of claims 1-5: The method comprises the following steps that S1, a work order is pushed, and an operation and maintenance repair team fills the work order through a dispatching management system and a safety risk management and control supervision platform, wherein the work order is pushed to a centralized management and control platform; s2, after the equipment is registered and the portable operation and maintenance gateway is accessed to the system, a secret key and a corresponding certificate are generated through a built-in encryption chip, the root certificate, manufacturer information and an equipment serial number are uploaded to a centralized management and control platform, and unique identifiers are distributed after the centralized management and control platform verifies the information to finish registration; S3, accessing authentication, wherein the registered portable operation and maintenance gateway initiates an authentication request to the centralized management and control platform through a unique identifier, and accessing the system after authentication is passed; S4, operation and maintenance execution, wherein the portable operation and maintenance gateway downloads work orders from the centralized management and control platform and performs operation and maintenance operation, and in the operation and maintenance process, operation and maintenance data are synchronously transmitted to the centralized management and control platform and the network security monitoring device in real time; S5, real-time alarming, wherein the network security monitoring device analyzes the received operation data, identifies high-risk operation and generates alarming data, the alarming data is unidirectionally transmitted to the network security platform through the isolation device, and the network security platform triggers an alarm after receiving the alarming data; And S6, auditing management, namely analyzing the operation and maintenance operation video and the operation log by the centralized management and control platform, auditing the service condition of the portable operation and maintenance gateway, the execution condition of the operation and maintenance work ticket and session data, and realizing the longitudinal penetration of the service data.
7. 7. The centralized management method of portable operation and maintenance gateways with real-time monitoring function according to claim 6, wherein in step S2, the centralized management and control platform refuses the operation and maintenance data uploading and the work order downloading authority of the unregistered portable operation and maintenance gateways, and only allows the registered and authenticated portable operation and maintenance gateways to perform operation and maintenance operations.
8. 8. The method according to claim 6, wherein in step S4, the operation data includes operation instructions, device interaction data, session records, operation videos, and operation logs.
9. 9. The method for centralized management of portable operation and maintenance gateways with real-time monitoring function according to claim 6, wherein in step S5, the network security monitoring device monitors illegal communication behavior, high risk operation instruction, illegal external connection behavior and secondary authorization operation in operation and maintenance data in real time, generates corresponding alarm data and pushes the alarm data to the network security platform in real time.
10. 10. The method for centralized management of portable operation and maintenance gateways with real-time monitoring function according to claim 6, wherein in step S6, the centralized management and control platform supports multidimensional analysis of alarm data and operation and maintenance data from time dimension, site dimension and event type dimension, so as to realize problem location and operation and maintenance efficiency optimization; The operation and maintenance team is linked with the centralized management and control platform through the office network, operation and maintenance data and alarm information are acquired in real time, and unsafe behaviors in the operation and maintenance process are managed and controlled in time; And the centralized management and control platform performs unified access control, registration management and data audit on the multi-manufacturer portable operation and maintenance gateway and supports centralized management of operation and maintenance service data of a whole scene.

Description

Portable operation and maintenance gateway centralized management system and method with real-time monitoring function Technical Field The invention relates to the technical field of network operation and maintenance and safety management of an electric power monitoring system, in particular to a portable operation and maintenance gateway centralized management system and method with a real-time monitoring function. Background In recent years, risk events caused by lack of power operation and maintenance management are frequent at home and abroad, such as deletion of a key database and downtime of a server caused by deliberate destruction or unintentional misoperation of operation and maintenance personnel, direct influence on production and operation of a power monitoring system, override access of the database by personnel, sensitive data leakage, wide spread after malicious codes are infected by operation and maintenance terminals or storage media, serious economic loss and social influence are caused, safety risks caused by operation and maintenance actions are highlighted, risk prevention and control should be further enhanced, a safety foundation is tamped, mechanism construction and matched technical means construction are completed, operation and maintenance safety elements are mastered, and risks are managed and controlled in an important way, so that the operation and maintenance operation and management level and the operation and maintenance management and control quality effect are comprehensively improved. The portable operation and maintenance gateway can be used as a safety tool for field secondary operation to effectively solve the problems. The access control, the work ticket refinement, the custom rules and other multiple protection mechanisms are realized by constructing the portable operation and maintenance gateway centralized management system, so that the availability and the usability of the portable operation and maintenance gateway are ensured, and the centralized management and control safety defense system for the whole-field Jing Yunwei such as the station network port operation and maintenance, the serial port operation and maintenance, the USB operation and maintenance, the KVM operation and maintenance and the like is further constructed. The portable operation and maintenance gateway and the centralized management and control system thereof are organically combined and cooperatively used, the Ji Yunwei safety management short board is supplemented, misoperation and malicious operation in the operation and maintenance process are avoided, full scene management on a plurality of portable operation and maintenance gateways of a plurality of manufacturers is realized, but because the centralized management and control system is arranged in a region, a plurality of portable operation and maintenance gateways are arranged in four regions, real-time alarms are lacked, specific alarm conditions are judged by professional personnel for log analysis and operation video playback, and the portable operation and control system belongs to post audit and has certain hysteresis. The invention provides a portable operation and maintenance gateway centralized management system with a real-time monitoring function and a method thereof, which aim to realize real-time monitoring of operation and maintenance operation and integrally improve the safety operation and maintenance protection level of an electric power monitoring system. Disclosure of Invention Aiming at the problem of insufficient cooperation between isolation management and real-time monitoring in network safety partition operation and maintenance management of an electric power monitoring system, the invention provides a portable operation and maintenance gateway centralized management system and method with a real-time monitoring function, which solve the problems that the existing operation and maintenance scheme of the electric power management and control cross-network safety partition operation and maintenance scheme is difficult to consider physical isolation requirements and real-time monitoring requirements, and the problems that operation and maintenance equipment is difficult to disperse management and control, cross-region data interaction safety risk is high, operation and maintenance state cannot be mastered in real time and the like are solved, high-efficiency operation and maintenance management and control under the premise of physical isolation of a safety production area and an information management area are realized, real-time monitoring of operation and maintenance operation is realized, and safety and traceability of an operation and maintenance process are ensured. The technical scheme of the invention is as follows: The portable operation and maintenance gateway centralized management system with the real-time monitoring function is characterized by comprising a network security platform, an isolating devic