[go: up one dir, main page]

CN106656564A - Automatic test method, device and system for industrial control network - Google Patents

Automatic test method, device and system for industrial control network Download PDF

Info

Publication number
CN106656564A
CN106656564A CN201610996209.7A CN201610996209A CN106656564A CN 106656564 A CN106656564 A CN 106656564A CN 201610996209 A CN201610996209 A CN 201610996209A CN 106656564 A CN106656564 A CN 106656564A
Authority
CN
China
Prior art keywords
industrial control
control equipment
test
equipment
service data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610996209.7A
Other languages
Chinese (zh)
Inventor
胡仁豪
叶峰
摆亮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Kuang En Network Technology Co Ltd
Original Assignee
Beijing Kuang En Network Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Kuang En Network Technology Co Ltd filed Critical Beijing Kuang En Network Technology Co Ltd
Priority to CN201610996209.7A priority Critical patent/CN106656564A/en
Publication of CN106656564A publication Critical patent/CN106656564A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications
    • H04L41/0654Management of faults, events, alarms or notifications using network fault recovery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0876Aspects of the degree of configuration automation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/08Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L43/00Arrangements for monitoring or testing data switching networks
    • H04L43/14Arrangements for monitoring or testing data switching networks using software, i.e. software packages

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Automation & Control Theory (AREA)
  • Environmental & Geological Engineering (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

本发明实施例公开了一种工控网络自动测试方法、装置及系统。该方法包括:在向工控网络中的工控设备发送测试用例测试所述工控设备的过程中,检测所述工控设备的运行数据;根据所述工控设备的运行数据判断所述工控设备的工作状态;若判断获知所述工控设备处于不可被测试的工作状态,则对所述工控设备进行自动复位处理,以使所述工控设备进入可被测试的工作状态。本发明实施例在对工控设备进行测试的过程中,通过监测工控设备的工作状态,以在工控设备发生故障而无法接受剩余的测试用例时,对工控设备进行自动复位处理,以继续对工控设备进行测试,避免出现由于工控设备故障导致测试中断的问题,实现自动完整地测试工控设备。

The embodiment of the invention discloses an automatic testing method, device and system for an industrial control network. The method includes: during the process of sending a test case to the industrial control device in the industrial control network to test the industrial control device, detecting the operation data of the industrial control device; judging the working state of the industrial control device according to the operation data of the industrial control device; If it is determined that the industrial control device is in an untestable working state, the industrial control device is automatically reset so that the industrial control device enters a testable working state. In the embodiment of the present invention, in the process of testing the industrial control equipment, by monitoring the working status of the industrial control equipment, when the industrial control equipment fails and cannot accept the remaining test cases, the industrial control equipment is automatically reset to continue to test the industrial control equipment. Conduct tests to avoid the problem of test interruption caused by industrial control equipment failures, and realize automatic and complete testing of industrial control equipment.

Description

一种工控网络自动测试方法、装置及系统A method, device and system for automatic testing of industrial control network

技术领域technical field

本发明实施例涉及计算机网络安全技术领域,具体涉及一种工控网络自动测试方法、装置及系统。The embodiment of the present invention relates to the technical field of computer network security, in particular to an automatic testing method, device and system for an industrial control network.

背景技术Background technique

在工控设备或系统进行漏洞检测时,有时需要根据被测设备情况选择大量的测试用例,每个测试用例通过测试平台向被测系统发送大量的合法和非法的输入组合。当某些组合正好触发了被测设备或系统中的脆弱性根源时,被测的工控设备或系统会出现异常状态,例如系统崩溃等。When performing vulnerability detection on industrial control equipment or systems, it is sometimes necessary to select a large number of test cases according to the conditions of the equipment under test, and each test case sends a large number of legal and illegal input combinations to the system under test through the test platform. When certain combinations just trigger the source of vulnerability in the tested equipment or system, the tested industrial control equipment or system will appear in an abnormal state, such as a system crash.

在实现本发明的过程中,发明人发现被测的工控设备出现异常后,由于剩余的测试用例不能继续,存在测试不完整的问题。In the process of realizing the present invention, the inventor finds that after the industrial control equipment under test is abnormal, there is a problem of incomplete testing because the remaining test cases cannot be continued.

发明内容Contents of the invention

本发明实施例的一个目的是解决现有技术无法解决在工控设备出现异常时,剩余的测试用例不能继续,导致测试不完整的问题。An object of the embodiments of the present invention is to solve the problem that the existing technology cannot solve the problem that when the industrial control equipment is abnormal, the remaining test cases cannot be continued, resulting in incomplete testing.

本发明实施例提出了一种工控网络自动测试方法,包括:An embodiment of the present invention proposes an automatic test method for an industrial control network, including:

在向工控网络中的工控设备发送测试用例测试所述工控设备的过程中,检测所述工控设备的运行数据;In the process of sending a test case to the industrial control equipment in the industrial control network to test the industrial control equipment, detecting the operation data of the industrial control equipment;

根据所述工控设备的运行数据判断所述工控设备的工作状态;judging the working state of the industrial control equipment according to the operation data of the industrial control equipment;

若判断获知所述工控设备处于不可被测试的工作状态,则对所述工控设备进行自动复位处理,以使所述工控设备进入可被测试的工作状态。If it is determined that the industrial control device is in an untestable working state, the industrial control device is automatically reset so that the industrial control device enters a testable working state.

可选的,所述检测所述工控设备的运行状态的步骤具体包括:Optionally, the step of detecting the operating state of the industrial control equipment specifically includes:

检测所述工控设备的目标参数的运行数据;Detecting the operation data of the target parameters of the industrial control equipment;

根据所述目标参数的运行数据,获取所述工控设备的运行状态。According to the operation data of the target parameter, the operation status of the industrial control equipment is acquired.

可选的,若根据所述工控设备的运行数据判断获知所述工控设备处于可被测试状态,则向所述工控设备发送下一测试用例,以测试所述工控设备是否存在漏洞。Optionally, if it is determined according to the operation data of the industrial control device that the industrial control device is in a testable state, then the next test case is sent to the industrial control device to test whether the industrial control device has a loophole.

可选的,该方法还包括:Optionally, the method also includes:

检测自动复位处理后的所述工控设备是否重新上电成功,若是,则向所述工控设备发送测试用例。Detect whether the industrial control device after the automatic reset process is powered on again successfully, and if so, send a test case to the industrial control device.

可选的,若检测获知自动复位处理后的所述工控设备重新上电失败,则再次对所述工控设备进行自动复位处理。Optionally, if it is detected that the industrial control device fails to be powered on again after the automatic reset processing, the automatic reset processing is performed on the industrial control device again.

本发明还提出了一种工控网络自动测试装置,包括:The present invention also proposes an industrial control network automatic testing device, comprising:

第一检测模块,用于在向工控网络中的工控设备发送测试用例测试所述工控设备的过程中,检测所述工控设备的运行数据;The first detection module is used to detect the operation data of the industrial control equipment during the process of sending test cases to the industrial control equipment in the industrial control network to test the industrial control equipment;

第一处理模块,用于根据所述工控设备的运行数据判断所述工控设备的工作状态;A first processing module, configured to judge the working state of the industrial control device according to the operation data of the industrial control device;

第二处理模块,用于若判断获知所述工控设备处于不可被测试的工作状态,则对所述工控设备进行自动复位处理,以使所述工控设备进入可被测试的工作状态。The second processing module is configured to automatically reset the industrial control device so that the industrial control device enters a testable working state if it is determined that the industrial control device is in an untestable working state.

可选的,所述检测模块,具体用于检测所述工控设备的目标参数的运行数据;根据所述目标参数的运行数据,获取所述工控设备的运行状态。Optionally, the detection module is specifically configured to detect the operation data of the target parameters of the industrial control equipment; and acquire the operation status of the industrial control equipment according to the operation data of the target parameters.

可选的,该装置还包括:第二检测装置;Optionally, the device also includes: a second detection device;

所述第二检测装置,用于检测自动复位处理后的所述工控设备是否重新上电成功,若是,则向所述工控设备发送测试用例。The second detection device is used to detect whether the industrial control device after the automatic reset process is powered on again successfully, and if so, send a test case to the industrial control device.

可选的,所述第二检测装置,还用于若检测获知自动复位处理后的所述工控设备重新上电失败,则再次对所述工控设备进行自动复位处理。Optionally, the second detection device is further configured to perform automatic reset processing on the industrial control device again if it is detected that the industrial control device fails to be powered on again after the automatic reset processing.

本发明还提出了一种工控网络自动测试系统,包括:监视器、中继电源、以及上述工控网络自动测试装置;The present invention also proposes an industrial control network automatic test system, including: a monitor, a relay power supply, and the above-mentioned industrial control network automatic test device;

所述工控网络自动测试装置分别与所述监视器和所述中继电源连接,所述中继电源与所述工控设备连接;The automatic test device for the industrial control network is respectively connected to the monitor and the relay power supply, and the relay power supply is connected to the industrial control equipment;

所述监视器,用于实时监视所述工控设备的运行数据,并将所述工控设备的运行数据发送至所述工控网络自动测试装置;The monitor is used to monitor the operation data of the industrial control equipment in real time, and send the operation data of the industrial control equipment to the automatic test device for the industrial control network;

所述工控网络自动测试装置,用于根据接收到的运行数据判断所述工控设备的工作状态;若判断获知所述工控设备处于不可被测试的工作状态,则向所述中继电源发送自动复位指令;The automatic test device for the industrial control network is used to judge the working state of the industrial control equipment according to the received operation data; if it is determined that the industrial control equipment is in a working state that cannot be tested, an automatic reset is sent to the relay power supply instruction;

所述中继电源,用于根据接收到的自动复位指令执行断电/导通电源动作,以重启所述工控设备。The relay power supply is used to perform power-off/power-on actions according to the received automatic reset instruction, so as to restart the industrial control equipment.

由上述技术方案可知,本发明实施例提出的一种工控网络自动测试方法、装置及系统在对工控设备进行测试的过程中,通过监测工控设备的工作状态,以在工控设备发生故障而无法接受剩余的测试用例时,对工控设备进行自动复位处理,以继续对工控设备进行测试,避免出现由于工控设备故障导致测试中断的问题,实现自动完整地测试工控设备。It can be seen from the above technical solutions that the automatic testing method, device and system of the industrial control network proposed by the embodiment of the present invention monitor the working status of the industrial control equipment in the process of testing the industrial control equipment, so as to prevent the failure of the industrial control equipment and make it unacceptable. For the remaining test cases, the industrial control equipment is automatically reset to continue testing the industrial control equipment, avoiding the problem of test interruption caused by the failure of the industrial control equipment, and realizing automatic and complete testing of the industrial control equipment.

附图说明Description of drawings

通过参考附图会更加清楚的理解本发明的特征和优点,附图是示意性的而不应理解为对本发明进行任何限制,在附图中:The features and advantages of the present invention will be more clearly understood by referring to the accompanying drawings, which are schematic and should not be construed as limiting the invention in any way. In the accompanying drawings:

图1示出了本发明一实施例提供的一种工控网络自动测试方法的流程示意图;FIG. 1 shows a schematic flow diagram of an automatic testing method for an industrial control network provided by an embodiment of the present invention;

图2示出了本发明一实施例提供的一种工控网络自动测试装置的结构示意图;Fig. 2 shows a schematic structural diagram of an automatic test device for an industrial control network provided by an embodiment of the present invention;

图3示出了本发明另一实施例提供的一种工控网络自动测试装置的结构示意图;Fig. 3 shows a schematic structural diagram of an industrial control network automatic test device provided by another embodiment of the present invention;

图4示出了本发明一实施例提供的一种工控网络自动测试系统的结构示意图。Fig. 4 shows a schematic structural diagram of an automatic test system for an industrial control network provided by an embodiment of the present invention.

具体实施方式detailed description

为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明的一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动的前提下所获得的所有其他实施例,都属于本发明保护的范围。In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of embodiments of the present invention, but not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

图1示出了本发明一实施例提供的一种工控网络自动测试方法的流程示意图,参见图1,该方法可由漏洞挖掘检测平台实现,具体包括:Fig. 1 shows a schematic flow chart of an automatic testing method for an industrial control network provided by an embodiment of the present invention. Referring to Fig. 1, the method can be implemented by a vulnerability mining and detection platform, and specifically includes:

110、在向工控网络中的工控设备发送测试用例测试所述工控设备的过程中,检测所述工控设备的运行数据;110. During the process of sending a test case to the industrial control device in the industrial control network to test the industrial control device, detect the operation data of the industrial control device;

需要说明的是,工控网络中存在多个工控设备,在对某一工控设备进行测试时,平台向该工控设备发送一测试用例,获取该工控设备响应测试用例的反应数据,并根据工控设备的反应数据判断该工控设备是否异常并记录,以及继续向该工控设备发送下一测试用例。It should be noted that there are multiple industrial control devices in the industrial control network. When testing a certain industrial control device, the platform sends a test case to the industrial control device, obtains the reaction data of the industrial control device in response to the test case, and according to the industrial control device's The reaction data judges whether the industrial control device is abnormal and records it, and continues to send the next test case to the industrial control device.

在上述过程中,检测工控设备的运行数据。另外,不难理解的是,检测工控设备的运行数据的方式有多种,例如,可通过设置监视器监视工控设备的方式。In the above process, the operation data of the industrial control equipment is detected. In addition, it is not difficult to understand that there are many ways to detect the operation data of the industrial control equipment, for example, the way of monitoring the industrial control equipment can be set by setting a monitor.

120、根据所述工控设备的运行数据判断所述工控设备的工作状态;120. Determine the working state of the industrial control device according to the operation data of the industrial control device;

需要说明的是,根据运行数据判断工作状态可举例为:在心跳时间内没有接收到信息,则判定为宕机。It should be noted that judging the working status based on the running data can be for example: if no information is received within the heartbeat time, it is judged as downtime.

130、若判断获知所述工控设备处于不可被测试的工作状态,则对所述工控设备进行自动复位处理,以使所述工控设备进入可被测试的工作状态。130. If it is determined that the industrial control device is in a working state that cannot be tested, perform automatic reset processing on the industrial control device, so that the industrial control device enters a working state that can be tested.

需要说明的是,若工控设备宕机或者系统崩溃,即工控设备处于不可被测试的工作状态,则平台无法使用剩余的测试用例继续进行测试,此时,平台为了保证自动继续测试,对工控设备进行自动复位处理,使得工控设备恢复到可被测试的工作状态,进而平台继续向工控设备发送测试用例。若根据所述工控设备的运行数据判断获知所述工控设备处于可被测试状态,则继续向所述工控设备发送下一测试用例。It should be noted that if the industrial control equipment is down or the system crashes, that is, the industrial control equipment is in a working state that cannot be tested, the platform cannot use the remaining test cases to continue testing. Perform automatic reset processing, so that the industrial control equipment can be restored to a working state that can be tested, and then the platform continues to send test cases to the industrial control equipment. If it is determined according to the operation data of the industrial control device that the industrial control device is in a testable state, continue to send the next test case to the industrial control device.

可见,本实施例在对工控设备进行测试的过程中,通过监测工控设备的工作状态,以在工控设备发生故障而无法接受剩余的测试用例时,对工控设备进行自动复位处理,以继续对工控设备进行测试,避免出现由于工控设备故障导致测试中断的问题,实现自动完整地测试工控设备。It can be seen that in the process of testing the industrial control equipment in this embodiment, by monitoring the working status of the industrial control equipment, when the industrial control equipment fails and cannot accept the remaining test cases, the industrial control equipment is automatically reset, so as to continue to test the industrial control equipment. The equipment is tested to avoid the problem of test interruption caused by the failure of industrial control equipment, and realize automatic and complete testing of industrial control equipment.

本实施例中,上述步骤S1具体包括:In this embodiment, the above step S1 specifically includes:

检测所述工控设备的目标参数的运行数据;Detecting the operation data of the target parameters of the industrial control equipment;

根据所述目标参数的运行数据,获取所述工控设备的运行状态。According to the operation data of the target parameter, the operation status of the industrial control equipment is obtained.

需要说明的是,对于工控设备不同的运行状态,需要检测不同的参数的运行数据,此处的运行状态包括:正常状态,非正常状态和宕机状态等;It should be noted that for different operating states of industrial control equipment, it is necessary to detect the operating data of different parameters. The operating states here include: normal state, abnormal state and downtime state, etc.;

对于上述宕机状态,在工程实践中,由于机器之间会进行时钟同步,假设A和B两台机器的本地时钟相差不大,比如相差不超过0.5秒。这样可以通过Lease机制进行宕机检测。For the above downtime state, in engineering practice, due to clock synchronization between machines, it is assumed that the local clocks of machines A and B are not much different, for example, the difference is not more than 0.5 seconds. In this way, downtime detection can be performed through the Lease mechanism.

对于上述非正常状态,可通过设置监视器的方式,监视工控设备的运行数据,如:ARP响应、ICMP响应、TCP端口等,以判断工控设备是否发生异常。For the above-mentioned abnormal state, you can monitor the operation data of the industrial control equipment by setting a monitor, such as: ARP response, ICMP response, TCP port, etc., to judge whether the industrial control equipment is abnormal.

在另一可行实施例中,为了进一步提高自动完整测试的效果,防止出现自动复位失败的情况,在对所述工控设备进行自动复位处理后,还需要对自动复位处理进行检测,具体包括:In another feasible embodiment, in order to further improve the effect of the automatic complete test and prevent automatic reset failure, after the automatic reset process is performed on the industrial control equipment, it is also necessary to detect the automatic reset process, specifically including:

检测自动复位处理后的所述工控设备是否重新上电成功,若是,则向所述工控设备发送测试用例。Detect whether the industrial control device after the automatic reset process is powered on again successfully, and if so, send a test case to the industrial control device.

若检测获知自动复位处理后的所述工控设备重新上电失败,则再次对所述工控设备进行自动复位处理。If it is detected that the industrial control device after the automatic reset process fails to be powered on again, the automatic reset process is performed on the industrial control device again.

不难理解的是,本实施例通过在自动复位处理后,监测工控设备是否上电成功,从而保证实现测试的完全自动化。It is not difficult to understand that, in this embodiment, after the automatic reset process, it is monitored whether the industrial control device is successfully powered on, so as to ensure the realization of complete automation of the test.

对于方法实施方式,为了简单描述,故将其都表述为一系列的动作组合,但是本领域技术人员应该知悉,本发明实施方式并不受所描述的动作顺序的限制,因为依据本发明实施方式,某些步骤可以采用其他顺序或者同时进行。其次,本领域技术人员也应该知悉,说明书中所描述的实施方式均属于优选实施方式,所涉及的动作并不一定是本发明实施方式所必须的。For the method implementation, for the sake of simple description, it is expressed as a series of action combinations, but those skilled in the art should know that the implementation of the present invention is not limited by the described action order, because according to the implementation of the present invention , certain steps may be performed in other order or simultaneously. Secondly, those skilled in the art should also know that the implementations described in the specification belong to preferred implementations, and the actions involved are not necessarily required by the implementations of the present invention.

图2示出了本发明一实施例提供的一种工控网络自动测试装置的结构示意图,参见图2,该装置包括:第一检测模块210、第一处理模块220、以及第二处理模块230,其中;FIG. 2 shows a schematic structural diagram of an automatic test device for an industrial control network provided by an embodiment of the present invention. Referring to FIG. 2 , the device includes: a first detection module 210, a first processing module 220, and a second processing module 230, in;

第一检测模块210,用于在向工控网络中的工控设备发送测试用例测试所述工控设备的过程中,检测所述工控设备的运行数据;The first detection module 210 is configured to detect the operation data of the industrial control device during the process of sending a test case to the industrial control device in the industrial control network to test the industrial control device;

第一处理模块220,用于根据所述工控设备的运行数据判断所述工控设备的工作状态;The first processing module 220 is configured to judge the working state of the industrial control device according to the operation data of the industrial control device;

第二处理模块230,用于若判断获知所述工控设备处于不可被测试的工作状态,则对所述工控设备进行自动复位处理,以使所述工控设备进入可被测试的工作状态。The second processing module 230 is configured to automatically reset the industrial control device so that the industrial control device enters a testable working state if it is determined that the industrial control device is in an untestable working state.

可见,本实施例在对工控设备进行测试的过程中,通过监测工控设备的工作状态,以在工控设备发生故障而无法接受剩余的测试用例时,对工控设备进行自动复位处理,以继续对工控设备进行测试,避免出现由于工控设备故障导致测试中断的问题,实现自动完整地测试工控设备。It can be seen that in the process of testing the industrial control equipment in this embodiment, by monitoring the working status of the industrial control equipment, when the industrial control equipment fails and cannot accept the remaining test cases, the industrial control equipment is automatically reset, so as to continue to test the industrial control equipment. The equipment is tested to avoid the problem of test interruption caused by the failure of industrial control equipment, and realize automatic and complete testing of industrial control equipment.

对于装置实施方式而言,由于其与方法实施方式基本相似,所以描述的比较简单,相关之处参见方法实施方式的部分说明即可。As for the device implementation, since it is basically similar to the method implementation, the description is relatively simple, and for related parts, please refer to the part of the description of the method implementation.

本实施例中,所述第一检测模块,具体用于检测所述工控设备的目标参数的运行数据;根据所述目标参数的运行数据,获取所述工控设备的运行状态。In this embodiment, the first detection module is specifically configured to detect the operation data of the target parameters of the industrial control equipment; and acquire the operation status of the industrial control equipment according to the operation data of the target parameters.

图3示出了本发明另一实施例提供的一种工控网络自动测试装置的结构示意图,所述装置包括:第一检测模块310、第一处理模块320、第二处理模块330以及第二检测装置340,其中;Fig. 3 shows a schematic structural diagram of an industrial control network automatic test device provided by another embodiment of the present invention, the device includes: a first detection module 310, a first processing module 320, a second processing module 330 and a second detection module means 340, wherein;

第一检测模块310、第一处理模块320、第二处理模块330分别与图2对应实施例中的第一检测模块210、第一处理模块220、第二处理模块230相对应,其工作原理相似,故,其具体内容请参照图2对应实施例中的陈述,此处不再赘述。The first detection module 310, the first processing module 320, and the second processing module 330 respectively correspond to the first detection module 210, the first processing module 220, and the second processing module 230 in the embodiment corresponding to FIG. 2 , and their working principles are similar. , therefore, for its specific content, please refer to the statement in the embodiment corresponding to FIG. 2 , and details will not be repeated here.

所述第二检测装置340,用于检测自动复位处理后的所述工控设备是否重新上电成功,若是,则向所述工控设备发送测试用例。The second detecting means 340 is used to detect whether the industrial control device after the automatic reset process is powered on successfully, and if so, send a test case to the industrial control device.

若检测获知自动复位处理后的所述工控设备重新上电失败,则再次对所述工控设备进行自动复位处理。If it is detected that the industrial control device after the automatic reset process fails to be powered on again, the automatic reset process is performed on the industrial control device again.

需要说明的是,本实施例通过在自动复位处理后,监测工控设备是否上电成功,进一步提高了自动完整测试的效果,防止出现自动复位失败的情况。It should be noted that, in this embodiment, after the automatic reset process, monitoring whether the industrial control device is successfully powered on further improves the effect of the automatic complete test and prevents automatic reset from failing.

对于装置实施方式而言,由于其与方法实施方式基本相似,所以描述的比较简单,相关之处参见方法实施方式的部分说明即可。As for the device implementation, since it is basically similar to the method implementation, the description is relatively simple, and for related parts, please refer to the part of the description of the method implementation.

应当注意的是,在本发明的装置的各个部件中,根据其要实现的功能而对其中的部件进行了逻辑划分,但是,本发明不受限于此,可以根据需要对各个部件进行重新划分或者组合。It should be noted that among the various components of the device of the present invention, the components are logically divided according to the functions to be realized, but the present invention is not limited thereto, and each component can be re-divided as required or a combination.

图4示出了本发明一实施例提供的一种工控网络自动测试系统的结构示意图,参见图4,所述系统设置在工业控制网络安全漏洞挖掘检测平台上,包括:监视器、中继电源、以及工控网络自动测试装置;Fig. 4 shows a schematic structural diagram of an industrial control network automatic test system provided by an embodiment of the present invention. Referring to Fig. 4, the system is set on an industrial control network security loophole detection platform, including: a monitor, a relay power supply , and industrial control network automatic test device;

所述工控网络自动测试装置分别与所述监视器和所述中继电源连接,所述中继电源作为供电电源与所述工控设备(被测设备)连接;The automatic test device for the industrial control network is respectively connected to the monitor and the relay power supply, and the relay power supply is connected to the industrial control equipment (device under test) as a power supply;

所述工控网络自动测试装置,用于向工控网络中的工控设备发送测试用例,以测试所述工控设备是否存在漏洞;The automatic test device for the industrial control network is used to send test cases to the industrial control equipment in the industrial control network to test whether the industrial control equipment has loopholes;

所述监视器,用于实时监视所述工控设备的运行数据,并将所述工控设备的运行数据发送至所述工控网络自动测试装置,由所述工控网络自动测试装置根据接收到的运行数据判断所述工控设备的工作状态;若判断获知所述工控设备处于不可被测试的工作状态,则向所述中继电源发送自动复位指令;The monitor is used to monitor the operation data of the industrial control equipment in real time, and send the operation data of the industrial control equipment to the automatic test device of the industrial control network, and the automatic test device of the industrial control network will Judging the working state of the industrial control device; if it is determined that the industrial control device is in an untestable working state, then sending an automatic reset command to the relay power supply;

所述中继电源,用于根据接收到的自动复位指令执行断电/导通电源动作,以重启所述工控设备。The relay power supply is used to perform power-off/power-on actions according to the received automatic reset instruction, so as to restart the industrial control equipment.

需要说明的是,工控网络自动测试装置还可以从平台上独立出来,作为一个功能模块单独存在,其具备的功能包括:根据接收到的运行数据判断所述工控设备的工作状态;若判断获知所述工控设备处于不可被测试的工作状态,则向所述中继电源发送自动复位指令。It should be noted that the industrial control network automatic test device can also be independent from the platform and exist independently as a functional module. Its functions include: judging the working status of the industrial control equipment according to the received operating data; If the industrial control device is in a working state that cannot be tested, an automatic reset command is sent to the relay power supply.

不难理解的是,向被测的工控设备发送测试用例以测试的功能由平台上的其他功能模块实现,工控网络自动测试装置仅用于根据根据被测工控设备的运行状态控制中继电源。It is not difficult to understand that the function of sending test cases to the tested industrial control equipment for testing is realized by other functional modules on the platform, and the industrial control network automatic test device is only used to control the relay power supply according to the operating status of the tested industrial control equipment.

本发明的各个部件实施方式可以以硬件实现,或者以在一个或者多个处理器上运行的软件模块实现,或者以它们的组合实现。本装置中,PC通过实现因特网对设备或者装置远程控制,精准的控制设备或者装置每个操作的步骤。本发明还可以实现为用于执行这里所描述的方法的一部分或者全部的设备或者装置程序(例如,计算机程序和计算机程序产品)。这样实现本发明的程序可以存储在计算机可读介质上,并且程序产生的文件或文档具有可统计性,产生数据报告和cpk报告等,能对功放进行批量测试并统计。应该注意的是上述实施方式对本发明进行说明而不是对本发明进行限制,并且本领域技术人员在不脱离所附权利要求的范围的情况下可设计出替换实施方式。在权利要求中,不应将位于括号之间的任何参考符号构造成对权利要求的限制。单词“包含”不排除存在未列在权利要求中的元件或步骤。位于元件之前的单词“一”或“一个”不排除存在多个这样的元件。本发明可以借助于包括有若干不同元件的硬件以及借助于适当编程的计算机来实现。在列举了若干装置的单元权利要求中,这些装置中的若干个可以是通过同一个硬件项来具体体现。单词第一、第二、以及第三等的使用不表示任何顺序。可将这些单词解释为名称。The various component implementations of the present invention can be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. In this device, the PC realizes the remote control of the equipment or device through the Internet, and precisely controls each operation step of the device or device. The present invention can also be implemented as an apparatus or an apparatus program (for example, a computer program and a computer program product) for performing a part or all of the methods described herein. In this way, the program for realizing the present invention can be stored on a computer-readable medium, and the files or documents generated by the program can be counted, and can generate data reports and cpk reports, etc., and can perform batch testing and statistics on power amplifiers. It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention can be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In a unit claim enumerating several means, several of these means can be embodied by one and the same item of hardware. The use of the words first, second, and third, etc. does not indicate any order. These words can be interpreted as names.

虽然结合附图描述了本发明的实施方式,但是本领域技术人员可以在不脱离本发明的精神和范围的情况下做出各种修改和变型,这样的修改和变型均落入由所附权利要求所限定的范围之内。Although the embodiments of the present invention have been described in conjunction with the accompanying drawings, those skilled in the art can make various modifications and variations without departing from the spirit and scope of the present invention. within the bounds of the requirements.

Claims (10)

1. a kind of industry control network automatic test approach, it is characterised in that include:
During industrial control equipment described in testing case is sent to the industrial control equipment in industry control network, the industry control is detected The service data of equipment;
The working condition of the industrial control equipment is judged according to the service data of the industrial control equipment;
If judgement knows the industrial control equipment in being test for working condition, the industrial control equipment is carried out automatically multiple Position is processed, so that the industrial control equipment entrance can be test for working condition.
2. method according to claim 1, it is characterised in that the step of the running status of the detection industrial control equipment Specifically include:
Detect the service data of the target component of the industrial control equipment;
According to the service data of the target component, the running status of the industrial control equipment is obtained.
3. method according to claim 1, it is characterised in that if being judged to know according to the service data of the industrial control equipment The industrial control equipment in can tested state, then next test case is sent to the industrial control equipment, to test the industry control Equipment whether there is leak.
4. the method according to any one of claim 1-3, it is characterised in that the method also includes:
Detect whether the industrial control equipment after processing that automatically resets re-powers successfully, if so, then to the industrial control equipment Send test case.
5. method according to claim 4, it is characterised in that if detection knows that the industry control after processing that automatically resets sets It is standby to re-power failure, then again the process that automatically resets is carried out to the industrial control equipment.
6. a kind of industry control network automatic testing equipment, it is characterised in that include:
First detection module, in the mistake that industrial control equipment described in testing case is sent to the industrial control equipment in industry control network Cheng Zhong, detects the service data of the industrial control equipment;
First processing module, for judging the working condition of the industrial control equipment according to the service data of the industrial control equipment;
Second processing module, if for judging to know the industrial control equipment in working condition can not be test for, to described Industrial control equipment carries out the process that automatically resets, so that the industrial control equipment entrance can be test for working condition.
7. device according to claim 6, it is characterised in that the detection module, specifically for detecting that the industry control sets The service data of standby target component;According to the service data of the target component, the running status of the industrial control equipment is obtained.
8. the device according to any one of claim 6 or 7, it is characterised in that the device also includes:Second detection device;
Whether the second detection device, the industrial control equipment after the process that automatically resets for detection re-powers successfully, if It is then to send test case to the industrial control equipment.
9. device according to claim 8, it is characterised in that the second detection device, if be additionally operable to detection know from The industrial control equipment after dynamic reset processing re-powers failure, then to the industrial control equipment carry out the process that automatically resets again.
10. a kind of industry control network Auto-Test System, it is characterised in that include:Monitor, relaying power supply and aforesaid right Require the industry control network automatic testing equipment described in any one of 6-9;
The industry control network automatic testing equipment is connected respectively with the monitor and the relaying power supply, it is described relaying power supply with The industrial control equipment connection;
The monitor, for monitoring the service data of the industrial control equipment in real time, and by the service data of the industrial control equipment Send to the industry control network automatic testing equipment;
The industry control network automatic testing equipment, for the work shape for judging the industrial control equipment according to the service data for receiving State;If judgement knows that the industrial control equipment, in being test for working condition, sends automatically multiple to the relaying power supply Bit instruction;
The relaying power supply, it is described to restart for performing power-off/turn-on power action according to the instruction that automatically resets for receiving Industrial control equipment.
CN201610996209.7A 2016-11-11 2016-11-11 Automatic test method, device and system for industrial control network Pending CN106656564A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610996209.7A CN106656564A (en) 2016-11-11 2016-11-11 Automatic test method, device and system for industrial control network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610996209.7A CN106656564A (en) 2016-11-11 2016-11-11 Automatic test method, device and system for industrial control network

Publications (1)

Publication Number Publication Date
CN106656564A true CN106656564A (en) 2017-05-10

Family

ID=58805338

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610996209.7A Pending CN106656564A (en) 2016-11-11 2016-11-11 Automatic test method, device and system for industrial control network

Country Status (1)

Country Link
CN (1) CN106656564A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107395573A (en) * 2017-06-30 2017-11-24 北京航空航天大学 The detection method and device of a kind of industrial control system
CN108833214A (en) * 2018-08-29 2018-11-16 杭州安恒信息技术股份有限公司 Method, device and system for industrial control network detection
CN120315429A (en) * 2025-06-17 2025-07-15 无锡卓海科技股份有限公司 A semiconductor controller testing system and testing method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN201751855U (en) * 2009-12-23 2011-02-23 中兴通讯股份有限公司 Testing device and testing control device of transmission chip
CN103530225A (en) * 2013-09-10 2014-01-22 武汉烽火网络有限责任公司 Automatic compilation testing method and automatic compilation testing platform for realizing same
WO2015142234A1 (en) * 2014-03-20 2015-09-24 Telefonaktiebolaget L M Ericsson (Publ) Testing of electronic devices
CN105763392A (en) * 2016-02-19 2016-07-13 中国人民解放军理工大学 Industrial control protocol fuzzing test method based on protocol state

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN201751855U (en) * 2009-12-23 2011-02-23 中兴通讯股份有限公司 Testing device and testing control device of transmission chip
CN103530225A (en) * 2013-09-10 2014-01-22 武汉烽火网络有限责任公司 Automatic compilation testing method and automatic compilation testing platform for realizing same
WO2015142234A1 (en) * 2014-03-20 2015-09-24 Telefonaktiebolaget L M Ericsson (Publ) Testing of electronic devices
CN105763392A (en) * 2016-02-19 2016-07-13 中国人民解放军理工大学 Industrial control protocol fuzzing test method based on protocol state

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107395573A (en) * 2017-06-30 2017-11-24 北京航空航天大学 The detection method and device of a kind of industrial control system
CN108833214A (en) * 2018-08-29 2018-11-16 杭州安恒信息技术股份有限公司 Method, device and system for industrial control network detection
CN120315429A (en) * 2025-06-17 2025-07-15 无锡卓海科技股份有限公司 A semiconductor controller testing system and testing method

Similar Documents

Publication Publication Date Title
US20190205233A1 (en) Fault injection testing apparatus and method
WO2017063505A1 (en) Method for detecting hardware fault of server, apparatus thereof, and server
CN105095001B (en) Virtual machine abnormal restoring method under distributed environment
TWI632462B (en) Switching device and method for detecting i2c bus
CN102055615B (en) Server monitoring method
JP2017517060A (en) Fault processing method, related apparatus, and computer
TWI598819B (en) Computer system and method for testing hardware device based on virtual machine
CN103970661A (en) Method for batched server memory fault detection through IPMI tool
TW201423385A (en) Test system and method for computer
CN104850475B (en) A kind of test method and device of equipment
US11055416B2 (en) Detecting vulnerabilities in applications during execution
CN104809044A (en) Method and system for detecting starting state of baseplate management controller
CN111078484A (en) Power-off test method, device, equipment and storage medium for system upgrading
CN106656564A (en) Automatic test method, device and system for industrial control network
WO2024250776A1 (en) Fault detection method and apparatus for external device
CN113868058A (en) Method, device and server for fault detection of peripheral component high-speed interconnection equipment
TW201428487A (en) Testing system and testing method thereof
CN105933176A (en) Method and device for detecting states of host
CN104239174A (en) BMC (baseboard management controller) remote debugging system and method
CN110445932A (en) Exception falls card processing method, device, storage medium and terminal
CN111975766B (en) Abnormal monitoring device
CN105955864B (en) Power failure processing method, power module, monitoring management module and server
JP2016167107A (en) Control device, bus circuit, method, and program
CN108965053B (en) Method, device and system for testing software pressure of upper computer
CN110532151A (en) A kind of automatic operation method of monitoring instrument, device, equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170510