CN111181956A - Wireless multi-service data encryption system and method applied to relay protection device - Google Patents
Wireless multi-service data encryption system and method applied to relay protection device Download PDFInfo
- Publication number
- CN111181956A CN111181956A CN201911372003.7A CN201911372003A CN111181956A CN 111181956 A CN111181956 A CN 111181956A CN 201911372003 A CN201911372003 A CN 201911372003A CN 111181956 A CN111181956 A CN 111181956A
- Authority
- CN
- China
- Prior art keywords
- module
- service data
- data
- relay protection
- protection device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0457—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply dynamic encryption, e.g. stream encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
- H04W12/033—Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/40—Security arrangements using identity modules
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
- Radio Relay Systems (AREA)
Abstract
The invention discloses a wireless multi-service data encryption system applied to a relay protection device. The system comprises a sending part data signal sending module, an encryption module, an identity authorization module, a multi-service data framing module and a wireless sending module; the invention also provides a wireless multi-service data encryption and decryption method applied to the relay protection device, different encryption and decryption strategies can be used according to the types of the multi-service data, the scheduling method is used for scheduling, adjusting and sending sequences of the multi-service data, and the problems of data scheduling and data safety of the multi-service data under a wireless module are solved.
Description
Technical Field
The invention relates to the technical field of relay protection of transformer substations, in particular to a wireless multi-service data encryption system and method applied to a relay protection device.
Background
With the great demand of wireless technology in power systems, a great number of relay protection products will communicate by using wireless technology in the future, and wireless technology will play a significant role in power systems. Currently, relay protection generally has various service data, such as non-real-time status information sent to a monitoring system, real-time trigger information of mutual communication between devices, and periodic sampling information of mutual transmission between longitudinal differential protection devices. After the wireless technology is used, the wireless receiving and transmitting module is used for uniformly receiving and transmitting data, and for the relay protection device, different service data have different requirements on timeliness and safety, so that the safety of the existing relay protection multi-service data is low.
Disclosure of Invention
Aiming at the defects of the prior art, the invention aims to provide a wireless multi-service data encryption system and method applied to a relay protection device so as to solve the problem of data security in the prior art.
The technical purpose is achieved, and the invention is realized by the following technical scheme:
a wireless multi-service data encryption system applied to a relay protection device comprises a main control module, a data signal sending module and an encryption module; the main control module is used for acquiring service data of the relay protection device; the data signal sending module is used for sending the service data to the encryption module; the encryption module is used for encrypting the received service data.
Further, the encryption module is connected with an identity authorization module; and the identity authorization module is used for carrying out identity authorization processing on the service data received by the encryption module.
Further, the identity authorization module comprises an SD card; the SD card is connected with the encryption module through a communication bus.
Furthermore, the system also comprises a multi-service data framing module and a wireless sending module; the multi-service framing module is used for framing the encrypted service data; the wireless sending module is used for sending the framed service data in a wireless mode.
Further, the multi-service framing module includes an FPGA chip.
Further, the data signal sending module comprises a photoelectric isolation chip and a data communication chip which are connected in series.
Further, the encryption module comprises an FPGA chip.
A wireless multi-service data encryption method applied to a relay protection device comprises the following steps:
the main control module acquires service data of the relay protection device and transmits the service data to the data signal sending module;
the data signal sending module sends the service data to the encryption module;
and the encryption module encrypts the service data according to different service data types.
Further, the service data includes real-time data, periodic data and non-real-time data of the relay protection device.
Compared with the prior art, the invention has the following beneficial effects:
the encryption module can encrypt according to the type of the service data, and different algorithms are adopted by the encryption module, so that data security protection measures are enhanced; by using the identity authorization function in the encryption process, the data security protection measures are effectively enhanced; the problems of data safety and scheduling in the process of sending and receiving relay protection multi-service data are effectively solved.
Drawings
FIG. 1 is a schematic structural diagram of an embodiment of the present invention;
FIG. 2 is a flow chart illustrating a process for encrypting data transmitted wirelessly according to the present invention;
fig. 3 is a flow chart illustrating a wireless data receiving and decrypting process according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is further described in detail with reference to the following embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
As shown in fig. 1, a wireless multi-service data encryption system applied to a relay protection device includes a main control module, a data signal sending module, an encryption module, an identity authorization module, a multi-service data framing module, and a wireless sending module; the main control module is used for acquiring service data of the relay protection device; the data signal sending module is used for sending the service data generated by the relay protection device to the encryption module; the encryption module is connected with the data signal sending module and used for encrypting the received service data, and the identity authorization module is connected with the encryption module and used for adding the identity authorization information generated by the identity authorization module into the service data; the multi-service framing module is connected with the encryption module and used for scheduling and sequencing the service data and framing in sequence according to the sending sequence; the wireless sending module is connected with the multi-service framing module and used for sending the framing signals in a wireless mode.
The main control module comprises an independent processor, a bus and necessary interfaces for connecting other modules, wherein the bus is divided into an address bus, a data bus, a control bus, a communication bus and a power supply bus and is used for carrying out unified management and control on all the modules in the device. The main control module can be a CPU plug-in unit and an HMI plug-in unit of the relay protection device and is a core component for processing data of the relay protection device.
The data signal sending module comprises a photoelectric isolation chip and a data communication chip, the photoelectric isolation chip and the data communication chip are connected in series, the data signal sending module is connected with the main control module through a bus, and the data communication chip is connected with the bus.
The encryption module comprises an FPGA chip and a static random access memory and is used for an encryption process, a two-stage flow control method is used for managing encrypted data flow, and the encryption module can add identity authorization information into the encrypted information flow according to the identity authorization chip. The two-stage flow control method is a service rapid identification and distribution method and a service rapid encryption method.
The identity authorization module comprises an SD card and an SD card communication bus, the SD card communication bus uses an SPI bus mode, the SD card is connected with the encryption module through the SD card communication bus, the SD card is used for storing identity authorization information of the local relay protection device, and the SD card is managed by a substation maintainer in a unified mode, can be plugged and pulled, and is convenient and flexible to configure.
The multi-service framing module comprises an FPGA chip and a static random access memory, the FPGA chip is used for executing a scheduling algorithm of a wireless signal sending sequence and packaging frame data, and the static cache memory is used for queue caching of encrypted data.
The wireless sending module comprises a wireless special chip and a wireless transmitting antenna, the wireless sending module is used for sending wireless signals, and the wireless sending module converts the digital signals of the framing messages into the wireless signals according to the rules in the wireless protocol.
The service data comprises real-time data, periodic data and non-real-time data of the relay protection device.
As shown in fig. 1, the present invention further discloses a wireless multi-service data decryption system applied to a relay protection device, which includes a data signal receiving module, a decryption module, an identity authentication module, a multi-service data deframing module, and a wireless receiving module. The wireless receiving module is used for converting the received wireless signals into digital electric signals which can be processed by relay protection; the multi-service data de-framing module is connected with the wireless receiving module and is used for sequentially de-framing the received data; the decryption module is connected with the multi-service data de-framing module, the decryption module decrypts corresponding service data according to different types of the service data, the identity authentication module is connected with the decryption module, the decryption module acquires identity authentication information from the identity authentication module, and the data validity is further checked according to the identity authentication information; the data signal receiving module is connected with the decryption module and used for receiving the service data processed by the decryption module, and the service data is processed by the relay protection main control unit according to a program flow defined in advance.
The data signal receiving module comprises a photoelectric isolation chip and a data communication chip, the photoelectric isolation chip and the data communication chip are connected in series, the data signal sending module is connected with the main control module through a bus, and the data communication chip is connected with the bus.
The decryption module comprises an FPGA chip and a static random access memory and is used for decryption, and the decryption module can perform identity authentication verification according to identity authentication information provided by the identity authentication module, so that information safety is enhanced.
The identity authentication module comprises an SD card and an SD card communication bus, the SD card communication bus uses an SPI bus mode, the SD card is connected with the decryption module through the SD card communication bus, the SD card is used for storing identity authentication information of an external relay protection device, and the SD card is managed by a substation maintainer in a unified mode, can be plugged and pulled and is convenient and flexible to configure.
The multi-service data de-framing module comprises an FPGA chip and a static random access memory, wherein the FPGA chip is used for de-packaging the data of the wireless signal frame, and the static cache memory is used for queue caching of the data to be de-framed.
The wireless receiving module comprises a wireless special chip and a wireless receiving antenna, the wireless receiving module is used for receiving wireless signals, and the wireless sending module converts the wireless signals into electric signals to be deframed according to the provisions in a wireless protocol.
As shown in fig. 2, the multi-service data sending and encrypting method applied to a relay protection device according to the present invention includes the following steps:
(a) the main control module of the relay protection device generates service data and transmits the service data to the data signal sending module through a bus;
(b) the service data is sent to an encryption module from the bus, the encryption module encrypts corresponding service data according to different types of the service data, and identity authorization information is added into the corresponding service data;
(c) the method comprises the steps that service data are sent to a multi-service data framing module from a bus, the multi-service data framing module sorts the service data according to service data priority and a waiting time weighted scheduling algorithm, and frames are sequentially formed according to a sending sequence;
(d) the wireless sending module sends out the framing signal in a wireless mode.
As shown in fig. 3, the method for decrypting wireless multi-service data applied to a relay protection device provided by the present invention includes the following steps:
(e) the wireless receiving module converts the received wireless signal into a digital electric signal, wherein the digital electric signal is service data to be deframed;
(f) the multi-service de-framing module is used for sequentially de-framing the received electrical signal data to be de-framed into service data to be decrypted;
(g) the service data to be decrypted is sent to a decryption module from the bus, the decryption module decrypts the corresponding service data according to different types of the service data to obtain plaintext service data, and meanwhile, the validity of the service data is further checked according to the identity authentication information;
(h) the plaintext service data is sent to the data signal receiving module from the bus, and the plaintext service data is processed by the relay protection device main control module according to a program flow defined in advance.
The multi-service data comprises different types of multi-service data such as real-time data, periodic data, non-real-time data and the like of the relay protection device.
The invention provides a multi-service data encryption and decryption security scheme which can be scheduled and can flexibly configure an encryption and decryption algorithm. By adopting the method and the system provided by the invention, the wireless communication of the relay protection device can ensure the timeliness of data and effectively improve the safety of the relay protection device when the relay protection device adopts a wireless technology and has multi-service data requirements.
The foregoing shows and describes the general principles and broad features of the present invention and advantages thereof. It will be understood by those skilled in the art that the present invention is not limited to the embodiments described above, which are described in the specification and illustrated only to illustrate the principle of the present invention, but that various changes and modifications may be made therein without departing from the spirit and scope of the present invention, which fall within the scope of the invention as claimed. The scope of the invention is defined by the appended claims and equivalents thereof.
Claims (9)
1. A wireless multi-service data encryption system applied to a relay protection device is characterized by comprising a main control module, a data signal sending module and an encryption module; the main control module is used for acquiring service data of the relay protection device; the data signal sending module is used for sending the service data to the encryption module; the encryption module is used for encrypting the received service data.
2. The system for encrypting the wireless multi-service data applied to the relay protection device according to claim 1, wherein the encryption module is connected with an identity authorization module; and the identity authorization module is used for carrying out identity authorization processing on the service data received by the encryption module.
3. The system for encrypting the wireless multi-service data applied to the relay protection device according to claim 2, wherein the identity authorization module comprises an SD card; the SD card is connected with the encryption module through a communication bus.
4. The system of claim 1, further comprising a multi-service data framing module and a wireless transmitting module; the multi-service framing module is used for framing the encrypted service data; the wireless sending module is used for sending the framed service data in a wireless mode.
5. The system according to claim 4, wherein the multi-service framing module comprises an FPGA chip.
6. The system according to claim 1, wherein the data signal transmission module comprises a serial optoelectronic isolation chip and a serial data communication chip.
7. The system for encrypting the wireless multi-service data applied to the relay protection device according to claim 1, wherein the encryption module comprises an FPGA chip.
8. A wireless multi-service data encryption method applied to a relay protection device is characterized by comprising the following steps:
the main control module acquires service data of the relay protection device and transmits the service data to the data signal sending module;
the data signal sending module sends the service data to the encryption module;
and the encryption module encrypts the service data according to different service data types.
9. The method as claimed in claim 8, wherein the service data includes real-time data, periodic data and non-real-time data of the relay protection device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911372003.7A CN111181956A (en) | 2019-12-27 | 2019-12-27 | Wireless multi-service data encryption system and method applied to relay protection device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911372003.7A CN111181956A (en) | 2019-12-27 | 2019-12-27 | Wireless multi-service data encryption system and method applied to relay protection device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111181956A true CN111181956A (en) | 2020-05-19 |
Family
ID=70655655
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201911372003.7A Pending CN111181956A (en) | 2019-12-27 | 2019-12-27 | Wireless multi-service data encryption system and method applied to relay protection device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111181956A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112422277A (en) * | 2020-11-04 | 2021-02-26 | 郑州信大捷安信息技术股份有限公司 | Encrypted data transmission system and method between differential units in differential protection group |
| CN112491535A (en) * | 2020-11-04 | 2021-03-12 | 郑州信大捷安信息技术股份有限公司 | Encryption key cooperation system and method between differential units in differential protection group |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN201207657Y (en) * | 2008-05-23 | 2009-03-11 | 北京瀚海新创科技有限公司 | Electric data transmission system |
| CN102185382A (en) * | 2011-05-16 | 2011-09-14 | 广东电网公司深圳供电局 | System and method for data communication between power distribution master station system and power distribution terminal |
| CN102761350A (en) * | 2012-07-19 | 2012-10-31 | 清华大学 | Power line and wireless mixed communication method and device thereof |
| CN103078665A (en) * | 2012-12-20 | 2013-05-01 | 四川长虹电器股份有限公司 | Combined transmission method based on power line communication and wireless communication |
| CN103679062A (en) * | 2013-12-23 | 2014-03-26 | 上海贝岭股份有限公司 | Intelligent electric meter main control chip and security encryption method |
| CN108809642A (en) * | 2018-06-14 | 2018-11-13 | 南瑞集团有限公司 | A kind of encryption certification high-speed transfer implementation method of multi-channel data 10,000,000,000 based on FPGA |
| CN109510840A (en) * | 2018-12-24 | 2019-03-22 | 中国南方电网有限责任公司 | Sharing method, device, computer equipment and the storage medium of unstructured data |
| CN110535653A (en) * | 2019-07-15 | 2019-12-03 | 中国电力科学研究院有限公司 | A kind of safe distribution terminal and its means of communication |
-
2019
- 2019-12-27 CN CN201911372003.7A patent/CN111181956A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN201207657Y (en) * | 2008-05-23 | 2009-03-11 | 北京瀚海新创科技有限公司 | Electric data transmission system |
| CN102185382A (en) * | 2011-05-16 | 2011-09-14 | 广东电网公司深圳供电局 | System and method for data communication between power distribution master station system and power distribution terminal |
| CN102761350A (en) * | 2012-07-19 | 2012-10-31 | 清华大学 | Power line and wireless mixed communication method and device thereof |
| CN103078665A (en) * | 2012-12-20 | 2013-05-01 | 四川长虹电器股份有限公司 | Combined transmission method based on power line communication and wireless communication |
| CN103679062A (en) * | 2013-12-23 | 2014-03-26 | 上海贝岭股份有限公司 | Intelligent electric meter main control chip and security encryption method |
| CN108809642A (en) * | 2018-06-14 | 2018-11-13 | 南瑞集团有限公司 | A kind of encryption certification high-speed transfer implementation method of multi-channel data 10,000,000,000 based on FPGA |
| CN109510840A (en) * | 2018-12-24 | 2019-03-22 | 中国南方电网有限责任公司 | Sharing method, device, computer equipment and the storage medium of unstructured data |
| CN110535653A (en) * | 2019-07-15 | 2019-12-03 | 中国电力科学研究院有限公司 | A kind of safe distribution terminal and its means of communication |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112422277A (en) * | 2020-11-04 | 2021-02-26 | 郑州信大捷安信息技术股份有限公司 | Encrypted data transmission system and method between differential units in differential protection group |
| CN112491535A (en) * | 2020-11-04 | 2021-03-12 | 郑州信大捷安信息技术股份有限公司 | Encryption key cooperation system and method between differential units in differential protection group |
| CN112422277B (en) * | 2020-11-04 | 2022-03-25 | 郑州信大捷安信息技术股份有限公司 | Encrypted data transmission system and method between differential units in differential protection group |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN205490665U (en) | Thing networking systems's communication device | |
| CN210719302U (en) | Safety communication system of gas meter | |
| CN105260250A (en) | Linux system and Android system dual-system communication device | |
| CN110636052B (en) | Power consumption data transmission system | |
| CN103986582A (en) | Data encryption transmission method, device and system based on dynamic encryption technology | |
| KR101133378B1 (en) | Remote communication apparatus comprising security fuction and electric power metering system using the same | |
| CN111181956A (en) | Wireless multi-service data encryption system and method applied to relay protection device | |
| CN113127914A (en) | Electric power Internet of things data security protection method | |
| CN112270020B (en) | Terminal equipment safety encryption device based on safety chip | |
| CN111811666A (en) | Electric power Internet of things infrared switch temperature measurement method and device | |
| CN101408756A (en) | Remote monitoring and anglicizing system and method of nuclear power steam turbine regulation system | |
| CN111541698B (en) | Data acquisition system and data acquisition method based on power distribution | |
| CN109104401B (en) | Secure real-time based data transmission | |
| CN105187453A (en) | Security encryption communication method of fault indicator | |
| CN110321724A (en) | A kind of communication of ciphering type and telemechanical managing device | |
| CN211630190U (en) | Terminal equipment safety encryption and decryption system based on safety chip | |
| CN104378383A (en) | Online distribution line monitoring data terminal and safe and encrypted communication method of distribution lines | |
| CN113542254A (en) | System and method for fusing terminal security access | |
| CN111065091B (en) | Wireless data acquisition system and data transmission method based on lora | |
| CN203193631U (en) | Electric power carrier communication system | |
| CN114268642A (en) | Multi-protocol wireless data collection device | |
| CN111935120A (en) | Universal encryption and decryption device for power system protocol and encryption and decryption method thereof | |
| CN110191152B (en) | Safe and reliable communication method for intelligent meter | |
| CN107819788B (en) | Safety encryption system based on power production control and monitoring data | |
| CN116320272A (en) | Image video security access method and device for power system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200519 |