摘要
为了解决开放互联环境中配电自动化终端通信安全问题,针对配电自动化终端通信系统的安全需求展开研究,设计出符合我国国情的配电自动化终端安全通信架构。该安全架构基于国密算法,在不影响通信效率的前提下,对规约进行改造设计,实现了应用层和网络层的双重加密和认证功能,并应用到配电网终端通信中。RFC(请求注解)标准和国密标准分析、安全性分析、方案比较、测试验证的结果均表明,该配电网终端通信架构具有加密和认证能力,可有效解决终端协议的脆弱性问题,降低算法复杂度并提高通信效率。
The security requirements of a terminal communication system for distribution automation are studied.Moreover,a communication security architecture for distribution automation terminal conforming to the actual situa⁃tions of China is designed to solve the security problem in distribution automation terminal communication in an open interconnection environment.The security architecture is based on cryptographic algorithm standards.The pro⁃tocol is modified and designed without affecting communication efficiency.The double encryption and authentication functions of the application layer and the network layer are realized and applied to the communication of the distribu⁃tion network terminal.The analysis of the RFC(request for comments)standard and cryptographic algorithm stan⁃dard,security analysis,scheme comparison,and test verification confirm that the communication architecture is eli⁃gible for encryption and authentication capabilities.Besides,it can overcome the vulnerability of the terminal proto⁃cols and reduce the algorithm′s complexity while improving communication efficiency.
作者
李露
谢映宏
李蔚凡
丁凯
李峰
LI Lu;XIE Yinghong;LI Weifan;DING Kai;LI Feng(CYG SUNRI Co.,Ltd.,Shenzhen Guangdong 518057,China;FengYong Technology Co.,Ltd.,Shenzhen Guangdong 518115,China)
出处
《浙江电力》
2022年第12期79-87,共9页
Zhejiang Electric Power
基金
国家重点研发计划资助项目(2018YFB0904903)。
关键词
配电网
PRS-3351
国密算法
通信技术
加密认证
distribution networks
PRS-3351
cryptographic algorithm
communication technology
encryption and authentication
