中图分类号：TP399
文献标识码：A
DOI：10.19358/j.issn.2096-5133.2020.03.004
引用格式：张大松，姜洪朝，吴云峰.火电工控系统网络安全防护方案设计［J］.信息技术与网络安全，2020,39（3）：17-22.

Design of network security protection scheme for thermal power industrial control system

Abstract：The network security of thermal power industry control system is studied.The network architecture,security challenges,protection status and risk sources of thermal power industry control system are analyzed and summarized.According to the general principles and related standards of power system security protection,and in view of the characteristics and security requirements of power production network,the proposed security protection architecture is based on data probe component unit,covers all levels of the power plant industrial control network and is configured with a monitor center.It can deeply analyze various industrial control protocols,identify and learn known and unknown dangerous flows,and visualize the macro network situation.It realizes the multilevel,threedimensional and intelligent security protection of the power plant industrial control system with deep and effective protection for power plant production network system.

Key words :power plant security;industrial control security;security protection;flow identification;protocol analysis