Audit method and system based on operation log information of power network equipment

• Main Authors: MA LIANG, ZHANG DANQING, LI WENKAI, CHEN LUYAO, ZHANG QIAN, XI XINGUO, GUO YAN, TU MENGYA, LIU JIAXIU, HOU SUNING
• Format: Patent
• Language: Chinese; English
• Published: 01.12.2023
• Subjects: CALCULATING; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

The invention relates to the technical field of information security, in particular to an auditing system and method based on operation log information of power network equipment, and the system comprises an acquisition module which is used for carrying out the real-time acquisition of a power grid operation log according to a preset log acquisition rule; the analysis module is used for analyzing a relationship between device logs according to the power grid operation logs, and sending a first alarm signal to the monitoring module if an abnormal log exists; the self-inspection module is used for detecting whether feature elements in the power grid operation log conform to an auditing rule model or not, and if the feature elements do not conform to the auditing rule model, judging that the current event log is a violation event and sending a second alarm signal to the monitoring module; the problems that in the prior art, system abnormal events and auditing violation behaviors cannot be found in time, log info