| 基于零信任框架的能源互联网安全防护架构设计 |
| |
| 引用本文: | 刘增明,崔雪璐,马靖,蔡昊. 基于零信任框架的能源互联网安全防护架构设计[J]. 电力信息与通信技术, 2020, 0(3): 15-20 |
| |
| 作者姓名: | 刘增明 崔雪璐 马靖 蔡昊 |
| |
| 作者单位: | 国网思极网安科技(北京)有限公司 |
| |
| 摘 要: | 能源互联网应用大数据、云计算、物联网和人工智能等现代化信息技术,实现电力系统各个环节的万物互联、人机交互。能源互联网建设导致各类终端大规模接入企业网络,企业内外部的业务交互和数据交换更加广泛。为适应这种场景需要,文章通过分析零信任框架,结合能源互联网安全防护的内在性要求,设计了基于零信任的能源互联网安全防护架构,重点从终端接入控制、动态授权管理、统一身份管理、安全作为服务4个方面进行研究,为能源互联网安全防护体系设计提供了新思路、新方法。
|
| 关 键 词: | 能源互联网 零信任框架 终端接入管控 动态策略管理 安全作为服务 |
Design of Security Framework for Energy Interconnection Based on Zero Trust |
| |
| LIU Zengming,CUI Xuelu,MA Jing,CAI Hao. Design of Security Framework for Energy Interconnection Based on Zero Trust[J]. Electric Power Information and Communication Technology, 2020, 0(3): 15-20 |
| |
| Authors: | LIU Zengming CUI Xuelu MA Jing CAI Hao |
| |
| Affiliation: | (State Grid Cyber Security Technology(Beijing)Co.,Ltd.,Beijing 102211,China) |
| |
| Abstract: | Energy interconnection utilizes modern information technologies such as big data,cloud computing,IoT and AI to realize the interconnection of all things and human-computer interaction in all aspects of the power system.The construction of energy interconnection has led to the large-scale access of various terminals to the enterprise network.Business interaction and data exchange within and outside the enterprise will be more extensive.In order to meet the needs of this scenario,this paper analyzes the zero-trust framework,combined with the inherent requirements of energy interconnection security protection,designs a zero-trust energy interconnection security protection architecture,which focuses on four aspects,including terminal access control,dynamic authorization management,unified identity management and security as service,providing new ideas and methods for the design of energy interconnection security protection system. |
| |
| Keywords: | energy interconnection zero-trust architecture terminal access control dynamic policy management security as service |
| 本文献已被 维普 等数据库收录! |
|
