中圖分類號：TP399
文獻標識碼：A
DOI： 10.19358/j.issn.2096-5133.2020.03.004
引用格式：張大松，姜洪朝，吳云峰.火電工控系統(tǒng)網絡安全防護方案設計［J］.信息技術與網絡安全，2020,39（3）：17-22.

Design of network security protection scheme for thermal power industrial control system

Abstract： The network security of thermal power industry control system is studied.The network architecture,security challenges,protection status and risk sources of thermal power industry control system are analyzed and summarized.According to the general principles and related standards of power system security protection,and in view of the characteristics and security requirements of power production network,the proposed security protection architecture is based on data probe component unit,covers all levels of the power plant industrial control network and is configured with a monitor center.It can deeply analyze various industrial control protocols,identify and learn known and unknown dangerous flows,and visualize the macro network situation.It realizes the multilevel,threedimensional and intelligent security protection of the power plant industrial control system with deep and effective protection for power plant production network system.

Key words : power plant security;industrial control security;security protection;flow identification;protocol analysis