|国家科技期刊平台
| 注册
首页|期刊导航|计算机技术与发展|电力数据中台安全自动化响应方案研究

电力数据中台安全自动化响应方案研究

周小明 齐俊 王磊 罗晨 郑福宇 张文杰

计算机技术与发展2025,Vol.35Issue(7):32-40,9.
计算机技术与发展2025,Vol.35Issue(7):32-40,9.DOI:10.20165/j.cnki.ISSN1673-629X.2025.0050

电力数据中台安全自动化响应方案研究

Research on Security Orchestration Automation and Response System for Power Data Center

周小明 1齐俊 2王磊 1罗晨 3郑福宇 4张文杰5

作者信息

  • 1. 国网辽宁省电力有限公司,辽宁沈阳 110004
  • 2. 国网辽宁省电力有限公司 信息通信分公司,辽宁 沈阳 110006||沈阳工业大学电气工程学院,辽宁沈阳 110870
  • 3. 中国电力科学研究院有限公司/电力网络安全防护与监测技术实验室,江苏南京 210000
  • 4. 北京邮电大学,北京 100876
  • 5. 国网辽宁省电力有限公司 信息通信分公司,辽宁 沈阳 110006
  • 折叠

摘要

Abstract

The power data center contains data related to national security and people's safety,and needs to respond to anomalies in a timely manner and be handled effectively after they are recognized.The existing response process of power data center is multi-person,multi-system,and multi-interface,which needs to be improved in terms of abnormality handling efficiency and automation.For this type of security task scenario that requires collaborative handling,security orchestration automation and response(SOAR)technology is a solution.Currently,SOAR technology has more practical applications in cloud platforms,healthcare,IoT and other application scenarios,and related products are more mature.However,the current research and application of SOAR technology has not taken into account the characteristics of multiple anomaly sources,multiple anomaly types,and complex correlation between anomalies in power data.Based on the SOAR technology and the characteristics of power data center,we propose a security automation response scheme for power data center,which aims to standardize and unify all the anomalies by combining the correlation between the anomalies.The scheme abstractly describes the processing flow of anomalies in the data center,proposes a standardized power data protection process,designs the system ar-chitecture accordingly,and compares it with the existing response methods.Experiments show that the proposed security automation response scheme improves in timeliness,accuracy,and flexibility.It is proved that this scheme can improve the processing efficiency of the security protection system,and provides a solution for the power data center to respond to and automate the abnormalities in a timely manner.

关键词

电力数据中台/安全编排自动化与响应/自动化响应/安全防护/脚本编排

Key words

power data center/security orchestration automation and response/automated response/security protection/scripting

分类

信息技术与安全科学

引用本文复制引用

周小明,齐俊,王磊,罗晨,郑福宇,张文杰..电力数据中台安全自动化响应方案研究[J].计算机技术与发展,2025,35(7):32-40,9.

基金项目

国家电网公司总部科技项目(5700-202328293A-1-1-ZN) (5700-202328293A-1-1-ZN)

计算机技术与发展

1673-629X

访问量0
|
下载量0
段落导航相关论文