摘要
现有的配电终端缺乏有效的保护机制,存在诸多安全问题,因此将可信计算的思想引入到配电终端,设计适用于配电终端的电力可信模块ETM,针对配电终端设备的特点,结合当前国家电网的CA架构,提出一套基于可信计算的配电终端密钥管理方案。引入可信计算的配电终端可以实现平台的完整性保护、安全的数据加解密以及有效的身份验证,可与现有的电力CA系统做到无缝结合。
Because of the lack of effective protection mechanism, existing distribution terminals face many security problems. Therefore, the trusted computing was introduced into distribution terminals and the ETM (electrical trusted module) suitable for terminals was designed. According to the characteristics of distribution terminals, combining the state grid CA system, a key management system for distribution terminals based on the trusted computing was put forward. Distribution terminals based on the trusted computing can realize the integrity protection, the security of data encryption and decryption, and effective identity authentication. Also they can be combined with the existing power CA system seamlessly.
出处
《计算机工程与设计》
CSCD
北大核心
2014年第11期3717-3722,共6页
Computer Engineering and Design
基金
国家电网公司科技基金项目(XX17201200048)
中国科学院先导专项子课题基金项目(XDA06010701
XDA06040502)
国家青年自然科学基金项目(61003228)
中国科学院信息工程研究所课题基金项目(Y3Z0071802)
关键词
可信计算
配电终端
电力可信模块
密钥管理
电力CA系统
trusted computing
distribution terminals
electrical trusted module
key management
state grid CA system