| 配电自动化终端设备中信息安全加密模块设计 |
| |
| 引用本文: | 左高,方金国,向驰,于伟,石文娟. 配电自动化终端设备中信息安全加密模块设计[J]. 电力系统自动化, 2016, 40(19): 134-138 |
| |
| 作者姓名: | 左高 方金国 向驰 于伟 石文娟 |
| |
| 作者单位: | 南瑞集团公司(国网电力科学研究院)(北京), 北京市 102200,南瑞集团公司(国网电力科学研究院)(北京), 北京市 102200,南瑞集团公司(国网电力科学研究院)(北京), 北京市 102200,南瑞集团公司(国网电力科学研究院)(北京), 北京市 102200,南瑞集团公司(国网电力科学研究院)(北京), 北京市 102200 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 当前配电网自动化系统配电终端的安全防护、升级改造大都通过更换终端设备硬件板卡的方式实现,改造过程中需要对配电终端所在区域停电。设计了配电自动化终端设备信息安全加密模块,通过在配电终端前加装该模块,实现对终端设备的安全防护改造,且不需对改造区域断电,也无需对终端设备进行其他硬件改造和软件配置。介绍了加密模块的工作原理和硬件功能,描述了加密模块对遥控命令报文的信息完整性检测与时间戳校验过程,及对配电主站的身份认证过程。模块实现了对遥控报文的完整性保护和主站的身份鉴别,能满足对配电终端的信息安全防护要求。
|
| 关 键 词: | 加密模块 安全防护 身份认证 SM2加密算法 |
| 收稿时间: | 2015-06-11 |
| 修稿时间: | 2016-08-22 |
Design of Information Security Encryption Module for Remote Terminal Units in Distribution Automation |
| |
| ZUO Gao,FANG Jinguo,XIANG Chi,YU Wei and SHI Wenjuan. Design of Information Security Encryption Module for Remote Terminal Units in Distribution Automation[J]. Automation of Electric Power Systems, 2016, 40(19): 134-138 |
| |
| Authors: | ZUO Gao FANG Jinguo XIANG Chi YU Wei SHI Wenjuan |
| |
| Affiliation: | NARI Group Corporation(State Grid Electric Power Research InstituteBeijing), Beijing 102200, China,NARI Group Corporation(State Grid Electric Power Research InstituteBeijing), Beijing 102200, China,NARI Group Corporation(State Grid Electric Power Research InstituteBeijing), Beijing 102200, China,NARI Group Corporation(State Grid Electric Power Research InstituteBeijing), Beijing 102200, China and NARI Group Corporation(State Grid Electric Power Research InstituteBeijing), Beijing 102200, China |
| |
| Abstract: | Current security protection upgrade of remote terminal units in a distribution automation system is mostly realized by replacing the terminal device hardware board with electricity of the distribution terminal area cut off in the transformation process. An information security encryption module is designed for application by remote terminal units in the distribution automation system. By installing the encryption module in remote terminal units, security protection upgrade of remote terminal units can be carried out without interruption of power supply, nor is it necessary to do any hardware modification and software configuration to the remote terminal units. The operational principle and hardware functions are briefly treated, the validation of remote control message integrity and timeliness, and the authentication process of distribution master station emphasized. The module realizes the integrity protection of remote control message and the identity authentication of the master station, which meets the requirements of the information security protection of the distribution terminal. |
| |
| Keywords: | encryption module security protection authentication SM2 encryption algorithm |
| 本文献已被 CNKI 等数据库收录! |
| 点击此处可从《电力系统自动化》浏览原始摘要信息 |
|
点击此处可从《电力系统自动化》下载全文 |
|
