摘要
作为IEC 61850对等通信协议(实时通信)的安全规范,IEC 62351-6推荐采用认证保证变电站信息交换的安全性。文中基于IEC 61850数字化变电站报文和信息安全要求,提出了用扩展的安全报文实现身份认证的方法。该方法利用安全散列算法和数据加密标准(DES)加密获得扩展字段,能有效满足通信报文的保密性、完整性和有效性要求。进一步地,以D2-1型变电站全站统一星形网和环形网出现母线故障场景为例,对上述身份认证过程进行了OPNET仿真和计算,得到了2种网络结构使用扩展的安全报文进行通信的延时。实验证明,该变电站通信方案兼具良好的安全性和实时性。
As the security specifications for IEC 61850 P2P communication protocol (real-time communication), IEC 62351 6 recommends the adoption of authentication for ensuring the safety of data transmission. To meet the requirement for the data flow and data security objectives in IEC 61850 digital substations, a method of implementing identity authentication with extended safe message through SHA-1 and DES eneryption is put forward. Through the security analysis, it can meet the confidentiality, integrity and validity of the message. Further, by taking the bus fault on the unified star and the ring network in the whole D2 1 substation as an example, the OPNET network simulation and calculation are applied to the process of authentication. It is proved that the substation communication program has both good security and real-time character.
出处
《电力系统自动化》
EI
CSCD
北大核心
2011年第13期77-82,共6页
Automation of Electric Power Systems
基金
湖南省科技重大专项预研项目(2009FJ1014)~~
