CN110337105A - Electric power monitoring system based on wireless public network VPN - Google Patents
Electric power monitoring system based on wireless public network VPN Download PDFInfo
- Publication number
- CN110337105A CN110337105A CN201910592946.4A CN201910592946A CN110337105A CN 110337105 A CN110337105 A CN 110337105A CN 201910592946 A CN201910592946 A CN 201910592946A CN 110337105 A CN110337105 A CN 110337105A
- Authority
- CN
- China
- Prior art keywords
- wireless
- electric power
- power monitoring
- vpn
- monitoring system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/46—Interconnection of networks
- H04L12/4641—Virtual LANs, VLANs, e.g. virtual private networks [VPN]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/02—Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The present invention relates to a kind of electric power monitoring systems based on wireless public network VPN, including the first front server, the second front server, the network switch, longitudinal encryption authentication gateway, wireless router and full Wireless VPN networking, first front server, the second front server are connect by the network switch with longitudinal encryption authentication gateway, and longitudinal encryption authentication gateway is connect by wireless router with full Wireless VPN networking.The electric power monitoring system based on wireless public network VPN small, remote location distributed generation resource data access electric power monitoring system suitable for great amount of investment, convenient for electric dispatching department for the load management of distributed generation resource and area power grid, the present invention is on the basis of the full Wireless networking mode provided using network operator is convenient flexible, security protection for electric power monitoring system requires to have done special consideration, meets security protection requirement of the country for electric power monitoring system.
Description
Technical field:
The present invention relates to smart grid field more particularly to a kind of electric power monitoring systems based on wireless public network VPN.
Background technique:
VPN/VPDN(is virtual/dialing dedicated network) it is that Virtual Private Network is established in common network, and carry out coded communication
Network technology needs network operator to complete VPN on backbone network logical due to the importance of power generation data and system safety
The foundation in road, vpn gateway realize remote access by tunnel and to the encryption of data packet and the conversion of data packet destination address.
The tunnel protocol of VPN/VPDN mainly has several, PPTP(point-to-point tunneling protocol), the second tunnel protocol of L2TP(),
IPSee(Internet protocol safety) and GRE(Generic Routing Encapsulation) etc..
The VPDN implementation that wireless carriers provide is that VPN is used to rent one to the application of local networks operator
Special line is inserted into subscriber data center from nearest GGSN node, and operator configures VPDN on gateway and user's couple in router
Tunnel protocol realizes VPDN mode.Since user needs to set up and rents special line, construction period and cost all compare which
It is high.
Summary of the invention:
It is an object of the invention to solve defect in the prior art, provide it is a kind of invest it is small, convenient for management, safe and reliable base
In the electric power monitoring system of wireless public network VPN.
The present invention is achieved through the following technical solutions: a kind of electric power monitoring system based on wireless public network VPN, including
First front server, the second front server, the network switch, longitudinal encryption authentication gateway, wireless router and full Wireless
VPN networking, first front server, the second front server pass through the network switch and longitudinal encryption certificate web connection
It connects, longitudinal encryption authentication gateway is connect by wireless router with full Wireless VPN networking.
In a preferred embodiment of the present invention, the electric power monitoring system based on wireless public network VPN further includes being safely
System, the security system include lateral isolation device, SCADA system and Energy Management System, first front server,
Second front server passes through lateral isolation device respectively and connect with SCADA system, Energy Management System.
In a preferred embodiment of the present invention, the full Wireless VPN networking include acquisition communication module, wireless router,
Carrier authorization system and Certificate for Power Dispatching System, the acquisition communication module pass through wireless router and carrier authorization system
System connection, the carrier authorization system are connect with Certificate for Power Dispatching System, and the Certificate for Power Dispatching System is genuinely convinced in
Business device connection.
Preferably, the acquisition communication module is connect by encrypting authentication gateway with wireless router.
The beneficial effects of the present invention are: should be suitable for that great amount of investment is small, position based on electric power monitoring system of wireless public network VPN
Remote distributed generation resource data access electric power monitoring system is set, convenient for electric dispatching department for distributed generation resource and area electricity
The load management of net, the present invention on the basis of full Wireless networking mode provided using network operator is convenient flexible, for
The security protection of electric power monitoring system requires to have done special consideration, meets country and the security protection of electric power monitoring system is wanted
It asks.
Detailed description of the invention:
Fig. 1 is the structural schematic diagram of the electric power monitoring system of the invention based on wireless public network VPN;
Fig. 2 is the structural schematic diagram of security system of the invention;
Fig. 3 is the structural schematic diagram of full Wireless VPN networking of the invention.
Specific embodiment:
The preferred embodiments of the present invention will be described in detail with reference to the accompanying drawing, so that advantages and features of the invention can be easier to
Understood by those skilled in the art, so as to make a clearer definition of the protection scope of the present invention.
As shown in Figure 1, the electric power monitoring system of the invention based on wireless public network VPN, including it is front server A, preposition
Server B, the network switch, longitudinal encryption authentication gateway, wireless router and full Wireless VPN networking, it is front server A, preceding
It sets server B and is connect by the network switch with longitudinal encryption authentication gateway, longitudinal authentication gateway that encrypts passes through wireless router
It is connect with full Wireless VPN networking.
The present invention establishes a kind of novel networking mode of full Wireless, same at power monitoring center and distributed generation resource station
Sample use wireless mode, networking mode as shown in figure 3, include acquisition communication module, wireless router, carrier authorization system and
Certificate for Power Dispatching System, the acquisition communication module are connect by wireless router with carrier authorization system, the operation
Quotient's Verification System is connect with Certificate for Power Dispatching System, and the Certificate for Power Dispatching System is connect with central server, described to adopt
Collection communication module is connect by encrypting authentication gateway with wireless router.The private network IP address of all APN is fixed, being capable of both conducts
Client can also support the dedicated all kinds of communication protocols of all kinds of applications based on IP agreement, especially electric power as server-side
(101 102 103 104 MODBUS etc.).
Mobile Network Operator provides dedicated APN(access point name) SIM card of access VPDN network, every SIM card makees
GGSN is connected for VPDN network access point, in operator's HLR(home location register) or platform AAA in configure each APN solid
Determine IP address, get through the tunnel between APN, each APN configures the wireless router of a support tunnel protocol as LNS, GGSN
It is responsible for establishing LNS between the tunnel L2PT forwarding IP packet as LAC, and closes in GGSN that IP address is counter to cheat function, pass
Terminal isolation is closed, allows to exchange visits between APN.
For the safety for guaranteeing SIM card, the unique IMEI(mobile equipment identity in SIM card and the access terminal equipment whole world of APN
Code) binding, once SIM card, which leaves terminal device, enters other equipment, the SIM is unavailable.
Power monitoring center can guarantee the special line bandwidth of application using traditional private-line mode, but need network operator
Special line is laid to power grid enterprises' power monitoring center, monitoring center user also needs to lay cable according to server decorating position,
Construction and use cost are relatively high.And full Wireless mode networking flexibility of the invention, monitoring center can build control centre's machine in
Room or other any positions, and move and shift convenience.The theoretical peak rate of operator 4G network can achieve at present
Row 50Mbps, 100 Mbps of downlink.
The present invention passes through longitudinal direction in monitoring center and dedicated longitudinal encryption authentication device (gateway) of monitoring station deployment electric power
Encryption device establishes tunnel, and the tunnel of longitudinal encryption device is equally based on VPDN third layer IPSee agreement, but Encryption Algorithm uses
Be the authorization approval of national Password Management office electric power special purpose system algorithm, support identity to identify, information encryption, digital signature and
Key generates and protection.
The secure accessing area and distributed generation resource station for being deployed in electric power enterprise dispatching terminal are using full Wireless VPDN networking.
The L2PT agreement that the Level 2 Tunnel Protocol of VPDN uses operator to provide, the encryption certification that IP layers of third layer is using longitudinal encryption
The self-built IPSee tunnel protocol of authentication device realizes the encrypted transmission of user identity, equipment certification and data, distributed electrical
The communication of source station side uses private network of electric power system network communication protocol IEC-60870-104.
The collected distributed generation resource in secure accessing area and network data need to be forwarded to every business system of dispatching automation
In system, such as SCADA system, Energy Management System.It, can be by the business number of acquisition according to the different security partitionings of operation system
Operation system is forwarded to according to according to different security partitionings.According to electric power monitoring system security protection requirement, the peace of wireless access
Full access area belongs to outer net, and the junction that secure accessing area and production control other parts in great Qu must be provided with specified through country
The dedicated lateral one-way safety isolating device (abbreviation lateral isolation device) of the electric power of department's detection certification, security system such as Fig. 2
Shown, front server A, front server B pass through lateral isolation device 1, lateral isolation device 2 and SCADA system, electricity respectively
Energy Management System connection.
The electric power monitoring system based on wireless public network VPN small, remote location distributed generation resource suitable for great amount of investment
Data access electric power monitoring system, convenient for electric dispatching department for the load management of distributed generation resource and area power grid, this hair
It is bright on the basis of the full Wireless networking mode provided using network operator is convenient flexible, for the safety of electric power monitoring system
Requirement of shelter has done special consideration, meets security protection requirement of the country for electric power monitoring system.
Finally, it should be noted that above embodiments, only a specific embodiment of the invention, to illustrate skill of the invention
Art scheme, rather than its limitations, scope of protection of the present invention is not limited thereto, although with reference to the foregoing embodiments to the present invention into
Go detailed description, those skilled in the art should understand that: anyone skilled in the art is at this
It invents in the technical scope disclosed, can still modify or can be thought easily to technical solution documented by previous embodiment
To variation or equivalent replacement of some of the technical features;And these modifications, variation or replacement, do not make corresponding
The essence of technical solution is detached from the spirit and scope of technical solution of the embodiment of the present invention, should all cover in protection scope of the present invention
Within.Therefore, protection scope of the present invention should be subject to the protection scope in claims.
Claims (4)
1. a kind of electric power monitoring system based on wireless public network VPN, it is characterised in that: before the first front server, second
Set server, the network switch, longitudinal encryption authentication gateway, wireless router and full Wireless VPN networking, the first preposition clothes
Business device, the second front server are connect by the network switch with longitudinal encryption authentication gateway, longitudinal encryption authentication gateway
It is connect by wireless router with full Wireless VPN networking.
2. the electric power monitoring system according to claim 1 based on wireless public network VPN, it is characterised in that: described to be based on nothing
The electric power monitoring system of line public network VPN further includes security system, and the security system includes lateral isolation device, SCADA system
And Energy Management System, first front server, the second front server pass through lateral isolation device and SCADA respectively
System, Energy Management System connection.
3. the electric power monitoring system according to claim 1 based on wireless public network VPN, it is characterised in that: the full Wireless
VPN networking includes acquisition communication module, wireless router, carrier authorization system and Certificate for Power Dispatching System, the acquisition
Communication module is connect by wireless router with carrier authorization system, the carrier authorization system and power scheduling certificate system
System connection, the Certificate for Power Dispatching System are connect with central server.
4. the electric power monitoring system according to claim 1 based on wireless public network VPN, it is characterised in that: the acquisition is logical
Letter module is connect by encrypting authentication gateway with wireless router.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910592946.4A CN110337105A (en) | 2019-07-03 | 2019-07-03 | Electric power monitoring system based on wireless public network VPN |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910592946.4A CN110337105A (en) | 2019-07-03 | 2019-07-03 | Electric power monitoring system based on wireless public network VPN |
Publications (1)
Publication Number | Publication Date |
---|---|
CN110337105A true CN110337105A (en) | 2019-10-15 |
Family
ID=68143861
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910592946.4A Pending CN110337105A (en) | 2019-07-03 | 2019-07-03 | Electric power monitoring system based on wireless public network VPN |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN110337105A (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112118550A (en) * | 2020-08-25 | 2020-12-22 | 山东钢铁集团日照有限公司 | Wireless transmission method of equipment state monitoring information |
CN113094729A (en) * | 2021-04-15 | 2021-07-09 | 华电(福建)风电有限公司 | Data security access method of offshore wind power integrated system |
CN113115310A (en) * | 2021-04-08 | 2021-07-13 | 武汉极意网络科技有限公司 | Method for calling non-inductive authentication gateway |
CN113517940A (en) * | 2021-04-25 | 2021-10-19 | 海南电网有限责任公司 | Intelligent switching system for electric power optical fiber private network and 5G public network |
CN113809775A (en) * | 2021-09-28 | 2021-12-17 | 国网伊犁伊河供电有限责任公司 | Distributed energy grid-connected data secure access system and secure access method |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN207853931U (en) * | 2017-12-29 | 2018-09-11 | 国网浙江武义县供电有限公司 | A kind of Organization of African Unity's tune power plant aut omation information access safety management system |
-
2019
- 2019-07-03 CN CN201910592946.4A patent/CN110337105A/en active Pending
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN207853931U (en) * | 2017-12-29 | 2018-09-11 | 国网浙江武义县供电有限公司 | A kind of Organization of African Unity's tune power plant aut omation information access safety management system |
Non-Patent Citations (1)
Title |
---|
程栩,黄太贵: "分布式电源信息安全采集技术研究与实践", 《安徽电气工程职业技术学院学报》 * |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112118550A (en) * | 2020-08-25 | 2020-12-22 | 山东钢铁集团日照有限公司 | Wireless transmission method of equipment state monitoring information |
CN112118550B (en) * | 2020-08-25 | 2022-06-17 | 山东钢铁集团日照有限公司 | Wireless transmission method of equipment state monitoring information |
CN113115310A (en) * | 2021-04-08 | 2021-07-13 | 武汉极意网络科技有限公司 | Method for calling non-inductive authentication gateway |
CN113094729A (en) * | 2021-04-15 | 2021-07-09 | 华电(福建)风电有限公司 | Data security access method of offshore wind power integrated system |
CN113517940A (en) * | 2021-04-25 | 2021-10-19 | 海南电网有限责任公司 | Intelligent switching system for electric power optical fiber private network and 5G public network |
CN113809775A (en) * | 2021-09-28 | 2021-12-17 | 国网伊犁伊河供电有限责任公司 | Distributed energy grid-connected data secure access system and secure access method |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN110337105A (en) | Electric power monitoring system based on wireless public network VPN | |
CN104113915B (en) | A kind of WLAN and its sharing method, Wireless Local Area Network Gateway | |
CN111107141A (en) | Electric power wireless private network system based on LTE230MHz | |
CN101578828A (en) | Roaming Wi-Fi access in fixed network architectures | |
CN205847326U (en) | The electric power monitoring system safety access device that layering is disposed | |
CN107241454B (en) | A kind of method, apparatus that realizing address administration, aaa server and SDN controller | |
Zhou et al. | Efficient application of GPRS and CDMA networks in SCADA system | |
CN102710649A (en) | Network security architecture for power information acquiring system | |
CN106385404A (en) | Construction method for power information system based on mobile terminal | |
CN101521878A (en) | Method for realizing the public wireless broadband network access and wireless network access equipment | |
CN102307161A (en) | Distribution network embedded telecontrol communication security gateway | |
CN101442749B (en) | Authentication method for wireless netted network based on WAPI | |
CN109842442B (en) | Quantum key service method taking airport as regional center | |
CN104954339A (en) | Electric power emergency repair remote communication method and system | |
CN1192565C (en) | Internet access method based on radio block network gateway | |
Jia et al. | Research and applications of key technologies of quantum secure communication in energy Internet | |
WO2010124569A1 (en) | Method and system for user access control | |
WO2014032518A1 (en) | Method and system for establishing l2tp tunnel | |
CN113809775A (en) | Distributed energy grid-connected data secure access system and secure access method | |
CN206712789U (en) | A kind of relay system in the transmission for bandwidth carrier | |
Ying et al. | Study of network architecture and IP address allocation of wireless VPN for power grid | |
CN109362072A (en) | A kind of distributed new method that simultaneously network data wireless security accesses | |
CN101540946A (en) | Finance website terminal wireless long range automatic on and off-line system and method | |
CN103945379A (en) | Method of realizing access authentication and data communication in access network | |
CN105898720B (en) | A kind of processing method of short message, apparatus and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20191015 |