电气技术2024,Vol.25Issue(7):32-38,7.
策略动态更新的变电站安全通信体系研究
Research of substation communication security system based on dynamic negotiation of security policy
摘要
Abstract
In view of the inadequate response of single fixed encryption and decryption algorithm in substations to third-party interceptions and brute-force attacks,this paper analyzes the characteristics of substation network and proposes a secure system scheme with dynamic negotiation of security policy.First,a unified security policy library is established,which is managed through certificate authority and secret key agent,and a subset of the policy library matching with each device is made.In the communication progress,the security policy that adapt to the communication devices is dynamically selected,the device characteristics information is added to the secret key data in the distribution process,and a time-effective management is performed.This mechanism can realize the adaptive select of the security policy,and improve the ability to cope with third-party interception and brute-force cracking.Through the design of a test platform,it is confirmed that the policy dynamic update mechanism does not affect the normal operation of the key functions of the equipments,and has a slight impact on the real-time communication of the equipment.关键词
变电站信息安全/安全策略动态更新/加解密算法/证书授权机/密钥代理机Key words
substation information security/dynamic negotiation of security policy/encryption and decryption algorithm/certificate authority/secret key agent引用本文复制引用
徐广辉,高诗航,马玉龙,滕春涛,刘汝华..策略动态更新的变电站安全通信体系研究[J].电气技术,2024,25(7):32-38,7.基金项目
国电南瑞/南瑞控制科技项目(524608210209) (524608210209)
