计算机与现代化

• 信息安全 • 上一篇    下一篇

泛在电力物联网可信安全接入方案

  

  1. (1.中国南方电网有限责任公司电力调度控制中心,广东广州510000;
    2.鼎信信息科技有限责任公司创新孵化事业部,广东广州510623)
  • 收稿日期:2019-07-18 出版日期:2020-04-22 发布日期:2020-04-24
  • 作者简介:吴金宇(1984-),男,广东广州人,高级工程师,博士,研究方向:网络安全,计算机安全,E-mail: 981578497@qq.com; 张丽娟(1980-),女,高级工程师,硕士,研究方向:加密芯片,E-mail: zhanglj1@csg.cn; 孙宏棣(1993-),男,工程师,硕士,研究方向:通信与信息系统,E-mail: ahchengrui@126.com; 赖宇阳(1987-),男,高级工程师,硕士,研究方向:模式识别与智能系统,E-mail: askye0407@163.com。

Trusted Secure Access Scheme of Ubiquitous Power IoT

  1. (1. Power Dispatching and Control Center, China Southern Power Grid Co. Ltd., Guangzhou 510000, China;
    2. Innovation Incubation Division, Dingxin Information Technology Co. Ltd., Guangzhou 510623, China)
  • Received:2019-07-18 Online:2020-04-22 Published:2020-04-24

摘要: 为全面提高全业务泛在电力物联网安全综合防御能力,解决目前全业务泛在电力物联网安全防护指导和终端认证机制的缺失和不足,本文提出一种泛在电力物联网可信安全接入方案。首先给电力物联网终端层设备确定一个唯一标识的指纹信息;然后结合该指纹信息,采用身份标识密码技术实现终端层设备的接入认证,阻断非法终端的接入;最后设计合法终端的身份信息安全传递机制,根据身份信息对合法终端的异常行为进行溯源。

关键词: 泛在电力物联网, 可信安全接入, 终端身份认证

Abstract: In order to comprehensively improve the comprehensive security defense capability of all-service ubiquitous power Internet of Things(IoT), and solve the lack and deficiency of the security protection guidance and terminal authentication mechanism of all-service ubiquitous power IoT, this  paper proposes a trusted secure access scheme of ubiquitous power IoT. Firstly, a unique fingerprint information is determined for the power IoT terminal layer equipment. Then, combined with the fingerprint information, the identification and password technology is used to realize the access authentication of terminal layer equipment and block the access of illegal terminals. Finally, the security transfer mechanism of legal terminal identity information is designed to trace the abnormal behavior of legal terminal according to the identity information.

Key words: ubiquitous power IoT, trusted secure access, terminal authentication

中图分类号: