The Research On Key Information Security Technology Of The Supervisory Information System In Plant Level

With the widespread application of the information technology to industrial enterprises, Supervisory Information System (SIS) in the plant level, as the basis of the information construction of the industrial enterprises, has been widely popularized, and meanwhile safety problems of SIS should be paid much attention by business administrator. To build safe, reliable, stable and efficient SIS not only improves the administrative efficiency of enterprises, but also brings them the economic benefitsAccording to the on-site experience and the information security system and regulations at home and abroad, this paper probes into the safeguard of the SIS from two aspects of the system safety and the network security. This paper aims to suggest the safety goal of the SIS, to design the network transmission interface software and to choose the safer Elliptic Curve Cryptosystem(ECC) for enhancing the safety performance of the SIS from inside to outside. What’s more, this research plays an exemplary role in the construction of safety of the SIS, which promotes the development of the safety research on the SIS.Firstly, from the aspect of the system safety, this thesis introduces the safety secrecy system of PHD and Workcenter, and proposes the access allocating strategies of the system through a deep analysis of the safety secrecy system and the practical needs of the program. Also, this thesis achieves the access security system of the SIS through the access control technology.Secondly, from the aspect of the network security, the paper devises the safety framework of the intranet and the external network connections of the enterprises, and this framework is intended to achieve the information exchanges between the intranet and the external network through the application of the firewall, Intrusion Detection System (IDS) and VPN. Therefore, this safety framework makes sure that the particular user in the environment of the external network has access to the intranet resources, and the illegal and unauthorized user will be excluded. Meanwhile, some disruptive behaviors, like the illegal invasion and the attack of the external network, can be intercepted and tracked and this framework can take the active defense to make the intranet SIS and other applied systems work in a safe, stable and effective manner.Thirdly, the thesis makes a research into the interface software of the packet transmission through the isolation gateway and the corresponding secure strategies, which achieves the secure transmission of the data from the Distributed Control System (DCS) engineer station to the Interface Message Processor (IMP) and Transmission of data security and stability through a comprehensive performance comparison of two classic interface softwares.Finally, the thesis introduces the common VLAN and the data secrecy technology of ECC and the dongle technology. These network security technologies play a decisive role in the safe functioning of SIS, enhance the safe guarding of the whole SIS from the intranet to the external network and from the hardware to the software, and the network transmission to its application. So security and stability can be guaranteed by the SIS.