信息安全研究2024,Vol.10Issue(1):67-74,8.DOI:10.12379/j.issn.2096-1057.2024.01.11
电力物联网零信任架构下的分布式认证模型
Distributed Authentication Model Under Power IoT Zero Trust Architecture
摘要
Abstract
Addressing the new network security challenges brought to the power system by the changing trend of a large number of distributed heterogeneous terminals such as unlimited public network access,new power interactive services,and new information technology application in the power system.This paper proposes a distributed authentication model based on the zero trust security architecture,giving full play to the advantages of zero trust security concept and technology under the overall security architecture of the power Internet of Things(IoT).The model integrates the trusted root of trust technology provided by the trusted computing module of the power terminal hardware.It also expands and extends the active security protection capabilities of power intelligent terminals and accesses networks to meet new cybersecurity challenges faced by intelligent grids.The distributed authentication model proposed in this paper sinks the dynamic trust evaluation and southbound terminal authentication module in the zero trust security architecture to the edge intelligent device,and subdivides and expands the trust and access control based on the trusted root provided by the terminal trusted module,and gives full play to the specific advantages of zero trust security concept and technology in terminal security access,security monitoring,and fine-grained business protection on the basis of compatibility with the existing power IoT authentication model,so as to improve the overall network security protection capability of the power IoT system.关键词
电力物联网/零信任/可信计算/分布式认证/软件定义边界Key words
power IoT/zero trust/trust computing/distributed authentication/SDP分类
信息技术与安全科学引用本文复制引用
唐大圆,曹翔,林青,胡绍谦,汤震宇..电力物联网零信任架构下的分布式认证模型[J].信息安全研究,2024,10(1):67-74,8.基金项目
国家重点研发计划项目(2021YFB2401002) (2021YFB2401002)
