| 基于VPN的电力调度数据网络安全方案 |
| |
| 引用本文: | 皮建勇,刘心松,廖东颖,吴艾.基于VPN的电力调度数据网络安全方案[J].电力系统自动化,2007,31(14):94-97. |
| |
| 作者姓名: | 皮建勇 刘心松 廖东颖 吴艾 |
| |
| 作者单位: | 电子科技大学计算机科学与工程学院,四川省成都市610054;贵阳市北供电局信息中心,贵州省贵阳市550002 |
| |
| 基金项目: | 四川省应用基础研究计划,国家科技型中小企业技术创新基金 |
| |
| 摘 要: | 在分析电力调度数据网络现有的基于公钥数字证书的公钥基础设施/认证中心(PKI/CA)的安全系统基础上,针对调度数据网络中实时性与安全性需求之间的矛盾,提出了新的身份认证和密钥协商安全方案,通过改进基于有限域上离散对数的数字签名和密钥协商算法,将身份认证和密钥协商融合在一次会话中,并且使安全方案不依赖于第三方的在线证书系统,同时在现有的虚拟专用网(VPN)安全框架内对冗余功能进行了裁剪,取代了传统的PKI/CA体制,在保证电力调度数据网络安全性需求的同时满足了实时性需求.
|
| 关 键 词: | 电力调度数据网 安全性 实时性 身份认证 密钥协商 VPN |
| 收稿时间: | 2006/12/3 0:00:00 |
| 修稿时间: | 2006-12-032007-03-12 |
A Security Scheme for Power Dispatching Data Network Based on VPN |
| |
| PI Jianyong,LIU Xinsong,LIAO Dongying,WU Ai.A Security Scheme for Power Dispatching Data Network Based on VPN[J].Automation of Electric Power Systems,2007,31(14):94-97. |
| |
| Authors: | PI Jianyong LIU Xinsong LIAO Dongying WU Ai |
| |
| Affiliation: | 1. University of Electronic Science and Technology of China, Chengdu 610054, China;2. Guiyang North Power Supply Bureau, Guiyang 550002, China |
| |
| Abstract: | Based on an analysis of the current security scheme for public key infrastructure and certification authorities (PKI/CA) in the power dispatching data network and focusing on the contradiction between real time and security, a novel security scheme for identity authentication and key agreement is proposed. By improving the digital signature and key agreement algorithm based on discrete logarithm in a finite field, the identity authentication and key agreement are merged into one session, and the security scheme is made independent of the third party on-line certificate system. Meanwhile, the redundant functions of the current virtual private network (VPN) framework are cut down to replace the traditional PKI/CA system. The proposed security scheme for the power dispatching data network guarantees both security and real time. |
| |
| Keywords: | VPN |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《电力系统自动化》浏览原始摘要信息 |
|
点击此处可从《电力系统自动化》下载全文 |
|
