CN110661771A - Secure smart power grid access control method and system for resisting differential attack - Google Patents

Abstract

The invention relates to a safe smart grid access control method and system for resisting differential attack, wherein a trusted authority is responsible for managing and distributing secret information of the system; the control center is responsible for integrating, processing and analyzing the electricity consumption data; the transmission center is responsible for managing the transmission network; the power distribution center is responsible for managing a power distribution network; the electric power supplier is responsible for providing a competitive electric power retail market; the gateway is responsible for connecting the control center and the electric energy consumption side and aggregating the electricity consumption; the sensing network is responsible for collecting power consumption data in real time and reporting the data to the control center, and the specific steps comprise a system initialization stage; a data encryption stage; a data aggregation stage; data re-encryption and access control stage; and a data decryption and data recovery stage. The invention researches and designs a fine-grained security data access control mechanism suitable for the application requirements of multiple receivers of the smart grid, and can effectively eliminate and resist potential network hidden dangers, collusion attacks and differential attacks from the inside and the outside of the smart grid.

Description

Secure smart power grid access control method and system for resisting differential attack

Technical Field

The invention relates to a secure smart grid access control method and system for resisting differential attack.

Background

Relevant scholars propose various solutions based on data aggregation aiming at privacy protection of a smart grid communication system. Mohammed et al use blind factors to mask individual power consumption data of users, and when data aggregation is performed, the blind factors cancel each other and obtain aggregated data of all users. The alssharif et al designs a homomorphic encryption privacy protection system based on a Paillier cipher mechanism, and each user encrypts the power consumption of the user and performs related operations in a ciphertext domain to decrypt the aggregated power consumption of the user. The existing data aggregation scheme can only support a single-receiver smart grid communication architecture. In order to meet the application requirements of multiple receivers, each user needs to encrypt for 2 times by using public keys of a power distribution center and a power supplier, and a control center groups and aggregates ciphertexts of the same power supplier or the power distribution center. However, this simple and straightforward theoretical assumption requires high communication overhead and is not highly practical. Because encryption operations multiply and the aggregate ciphertext linearly increases with the number of recipients in the network; furthermore, the aggregator must know the customer distribution status of each power provider to implement multi-recipient based data packet encryption operations. Therefore, the data aggregation demand of different user sets on the electricity consumption side cannot be satisfied, and a competitive electricity retail market cannot be provided. Very few existing schemes can support the data aggregation application needs with multiple recipients. In the multi-receiver data aggregation scheme designed by Mustafa et al, the gateway must correspondingly group received ciphertexts according to the identity information of each power provider, aggregate each group of ciphertexts together, then send each group of aggregated ciphertexts to each power distribution center, finally decrypt each group of received aggregated ciphertexts by each power distribution center, and redistribute the aggregated information to the power providers. Ruj et al attempt to implement a data aggregation system with multiple recipients based on attribute-based encryption and the Paillier cryptosystem. Each user encrypts the power consumption of the user by using the public key of the trusted authority, sets an access strategy to determine which entities can access the data of the user, performs data aggregation on ciphertexts with the same attribute in the access strategy, decrypts all received ciphertexts by the trusted authority, and re-encrypts each aggregated data according to the access strategy to ensure access control. The existing scheme has the following defects: (1) since the control center is allowed to classify the ciphertexts, the gateway controlled by the control center can know the customer distribution condition of each power provider in each area, thereby destroying the market environment of fair competition; (2) sending ciphertext information for multiple aggregated data (for each vendor or for each subset of attributes) can significantly increase communication overhead; (3) the potential network hidden danger that a system entity and a control center are communicated with each other to carry out collusion attack exists, and a power supplier pays false power distribution cost to a power distribution center; (4) potential differential attack of the smart grid communication system cannot be effectively resisted, and the effectiveness of differential privacy is low. Therefore, a fine-grained security data access control mechanism suitable for the application requirements of multiple receivers is lacked, each receiver can only access own exclusive data, and a safe and efficient smart power grid data aggregation solution and an application system capable of effectively eliminating and resisting potential network hidden dangers, collusion attacks and differential attacks from the inside and the outside can be effectively achieved.

Disclosure of Invention

Aiming at the problems in the prior art, the invention aims to provide a method and a system for controlling access to a secure smart grid, which resist differential attacks.

The new generation smart grid communication system collects information of fine-grained power consumption data of users by introducing an advanced metering infrastructure network so as to perform real-time monitoring and energy management. However, frequent collection of user power usage presents a security risk of revealing user privacy. Many theoretical research and engineering application personnel have designed numerous security data collection schemes aiming at various privacy protection problems in the smart grid communication system, and allow a power grid control center to perform data analysis based on the aggregated power consumption of users so as to protect the privacy information of the users. However, all of the schemes are based on a network architecture of a single receiver, and cannot be effectively applied to a smart grid application scenario of multiple receivers; the requirement that multiple entities freely access the aggregated information of different user groups according to needs cannot be met so as to analyze fine-grained security data; the data aggregation requirements of different user sets at the power consumption side cannot be met, and competitive safe power retail service cannot be provided; potential network hidden dangers and collusion attacks from the inside and the outside of the smart grid cannot be effectively eliminated and resisted.

The invention is realized by the following technical scheme:

the secure smart grid access control method for resisting differential attack is characterized in that a trusted authority is responsible for managing and distributing secret information of all other entities in the system based on an application scene of a smart grid communication system; the control center is responsible for integrating, processing and analyzing the periodic time sequence electricity consumption data of all users in the electric energy consumption side network, and comprehensive and reliable intelligent service is provided; the transmission center manages a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side; from the electricity distribution center

The management power distribution network is responsible for aggregating power consumption information based on different user sets of the power consumption side and ensuring that the power is efficiently transmitted to each user of the consumption side from each power distribution station; by the electricity supplier:

the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side; the gateway is connected with the control center and the electric energy consumption side and is responsible for aggregating the electricity consumption data submitted by each user and forwarding communication data between each user and the control center; by the awareness network:namely N on electric energy consumption side of smart grid_uEach user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway, and the specific steps are as follows:

(1) system initialization phase

The trusted authority performs the following operations to perform system initialization:

1) entity public and private key generation

a) According to the input safety parameter rho, operating zeta (rho), outputting system parameters (G, G, p, q), wherein p and q are safety large prime numbers, q | (p-1), G is a cyclic group with the order of q, the discrete logarithm problem on the group G is difficult (the recalcitrance is met), and randomly selecting a generator G of the group G to belong to G;

b) random selection of N_uAn

Wherein, i is 1,2, …, N_uCalculating

Respectively combine s with_iAnd S_iAs U_i(the identity information thereof is ID)_i) The private key and the public key of (c);

c) random selection

Computing

Respectively combine s with_gAnd S_gAs a control center (ID is the identity information of the control center)_c) The private key and the public key of (c);

d) randomly selecting a secure hash function H:

e) randomly selecting a v-dimensional row vector S, where v is N_dN_sAnd randomly setting elements in S to 0 and 1, generating 2 system master keys, MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄}，MK₁And MK₂Each element in (a) is a randomly selected v × v invertible matrix;

2) user encryption key generation

Trusted authority utilization of MK₁For each user U_iGenerating an encryption keyKey:

calculating K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄In which a_i,b_i,c_i,d_iAre all randomly chosen v x v invertible matrices, and a_i+b_i＝M₁，c_i+d_i＝M₂；

3) Re-encryption key generation

Trusted authority executes the following algorithm, utilizing MK₁And MK₂For each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) And generating a re-encryption key and sending the re-encryption key to the control center. Without loss of generality, the trusted authority generates S by performing the following operations_kThe re-encryption key of (2):

a) generating an access control binary vector Q_k: for all corresponding S_kOf binary digits, i.e. for all D_j(where j is 1,2, … N_d) And S_kSet up Q_kIs 1; set Q_kThe other binary bit of (a) is 0;

b) will Q_kSplitting into 2 vectors q_k' and q_k": random resolution of Q against a binary digit of 1 in s (z) (where z is 1,2, … v)_k(z) satisfies q_k′(z)+q_k″(z)＝Q_k(z); comparing the binary digit of 0 in s (z) (where z is 1,2, … v), q is set_k′(z)＝q_k″(z)＝Q_k(z)；

c) Q is to be_k' and q_k"extended to 2 diagonal matrices respectivelyAnd

d)S_kre-encryption and access control key RK of_kThe calculation is as follows:

RK_kcomprising 8 parts RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8Each part is a v × v square matrix;

e) performing similar operations with the trusted authority generating each D_jRe-encryption and access control key RK of_jRelative to generating RK_kOnly the difference is that the access control binary vector Q_jThe generation method of (1): for all correspondences D_jOf binary bits, i.e. for all S_k(wherein k is 1,2, … N_s) And D_jSet up Q_jIs 1; set Q_jThe other binary bit of (a) is 0;

f) trusted authority will N_dA distribution center and N_sThe re-encryption key secret of each power supplier is sent to the control center;

4) decryption key generation

Trusted authority utilization of MK₂For each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) A decryption key is generated. Without loss of generality, the trusted authority generates S by performing the following operations_kThe decryption key of (2):

a) like Q_kGenerating a decrypted binary vector R_k；

b) R is to be_kSplit into 2 vectors r_k' and r_k": randomly splitting R against a bin of 1 in s (z) (where z 1, 2.. v)_k(z) satisfies r_k′(z)+r_k″(z)＝R_k(z); r is set against the binary digit of 0 in s (z) (where z is 1,2, … v)_k′(z)＝r_k″(z)＝R_k(z)；

c) Will r is_k' and r_k"extended to 2 diagonal matrices respectivelyAnd

d)S_kdecryption key DK of_kThe calculation is as follows:

DK_kcomprising 4 parts DK_k1,DK_k2,DK_k3,DK_k4Each part is a v × v square matrix; e.g. of the type_k,f_k,g_k,h_kAll are invertible matrices of v x v and satisfy e_k+f_k＝X₁ ^-1And g_k+h_k＝X₂ ^-1；

e) Performing similar operations with the trusted authority using the decrypted binary vector R_jCalculate each D_jDecryption key DK of_j；

f) The credible authority sends the secret of each decryption key to each D_j(where j is 1,2, … N_d) And S_k(wherein k is 1,2, … N_s)；

(2) Data encryption phase

At each data reporting time point t_τEach user U_iPerforming the following operation to use the electricity r_i ^j,kReporting to a gateway:

1) computing session keys shared with a control center in a non-interactive manner

2) Constructing a v-dimensional plaintext data vector P_iWhich corresponds to D_jAnd S_kIs set as the power consumption

The noisy ciphertext of (2):

P_iis set to 0. Wherein: k_i,cIs U_iA session key shared with the control center;

and

for 2 obedient gamma distributions

The independent and uniformly distributed random variables of (1) are provided, x is more than or equal to 0, and gamma function is a function value of point 1/n; according to the Laplace distribution Lap (λ) (which has probability density)

Infinite decomposable property: for any n ≧ 1,

the total number of users of the system is N_uWhen each user U_iAt the real power consumption m_iIn (1) adding

Noise information of magnitude, total aggregate power consumption

Satisfying the ε _ DP differential privacy security attribute (for 2 datasets D differing by only 1 element)₁And D₂If Pr (A (D) is satisfied₁)∈S)≤e^ε·Pr(A(D₂)∈S)，

Then the random algorithm a satisfies the epsilon _ DP differential privacy security attribute);

3) will P_iSplitting into 2 vectors p_i' and p_i": random splitting of P against a binary digit of 1 in s (z) (where z is 1,2, … v)_i(z) satisfies p_i′(z)+p_i″(z)＝P_i(z); for a binary bit of 0 in s (z) (where z is 1,2, … v), p is set_i′(z)＝p_i″(z)＝P_i(z); 4) by p_i′,p_i"and encryption Key K_iGenerating a ciphertext C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]，C_iIs a 4 v-dimensional row vector;

(3) data aggregation phase

After receiving the report data cryptographs of all users, the gateway executes the following operation to all C_iCarrying out polymerization:

computing aggregate ciphertext for all users

C_aggIs a 4 v-dimensional row vector;

(4) data re-encryption and access control phase

The control center performs the following operations of carrying out re-encryption operation on the aggregated information and realizing the access control function, namely each power distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) Only the information to which each belongs can be accessed:

1) without loss of generality, the control center utilizes a re-encryption and access control key RK_kTo C_aggPerforming re-encryption to generate

Wherein

To send to S_kAll of D_jElectricity consumption for the aggregated ciphertext:

wherein

Is a 4 v-dimensional row vector;

the calculation process of (2) is as follows:

2) performing similar operation to obtain

The remainder of (a);

(5) data decryption and data recovery phases

Each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1, 2.. N.)_s) And executing the following operation, decrypting the received ciphertexts respectively, and recovering the noise-caused aggregated electricity consumption of the ciphertexts respectively. Without loss of generality, S_kUsing decryption key DK_kPerforming the following operations on the received

Decrypting to obtain

1) Computing

Calculated v-dimensional row vectorWith N_dThe value of each position is not 0, N_dEach position corresponds to a two-dimensional position serial number<S_k,D_j>(where k is fixed, j is 1, 2.., N)_d) (ii) a This N_dEach value not equal to 0 represents a corresponding two-dimensional position number<S_k,D_j>(where k is fixed, j is 1,2, …, N_d) Of all users of (1) a group of noisy ciphertext

Wherein Lap (λ) is Laplace noise with parameter λ;

2) calculating and calculating U of each user in a non-interactive mode_iShared session key

Wherein i is 1,2, …, N_uAnd calculate

3)S_kBy calculation ofObtaining N_dNoise-reduced electricity consumption

(where k is fixed, j is 1,2, … N)_d)；

4)S_kBy calculation of

Can obtain the corresponding S_kAll of D_j(where k is fixed, j is 1,2, … N)_d) The total noise of (1) and (2) is aggregated into electricity consumption;

5)D_jperform similar operations, N can be calculated_sNoise-reduced electricity consumption

(where j is fixed, k is 1,2, …, N_s)；

6) In the same way, D_jBy calculation of

Can obtain a correspondence D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) The total noise of (1) and (2) is aggregated into electricity consumption;

7) finally, the transmission center passes through the calculationObtaining all D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) Total noise-reduced electricity consumption

The secure smart grid access control system for resisting differential attack is characterized by comprising:

a trusted authority: the system is responsible for managing and distributing secret information of all other entities in the system, and has high credibility and super computing capability;

the control center: the system is responsible for integrating, processing and analyzing the periodic time series power consumption data of all users in the electric energy consumption side network and providing comprehensive and reliable intelligent service;

a power transmission center: the system is used for managing a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side;

the power distribution center:

the system is used for managing a power distribution network and is responsible for ensuring that electric energy is efficiently transmitted to each user on a consumption side from each power distribution station based on aggregated electricity consumption information of different user sets on the electric energy consumption side;

the power supplier:

the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side;

a gateway: the system is used for connecting the control center and the electric energy consumption side, and is responsible for aggregating the electricity consumption data submitted by each user and forwarding communication data between each user and the control center;

the perception network:

the electric energy consumption side of the smart grid is aware of the network and has N_uAnd each user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway.

The secure smart grid access control system for resisting differential attack is characterized by further comprising:

(1) system initialization module

1) User U is calculated and distributed based on discrete logarithm difficulty problem by credible authority_iAnd public and private keys of the control center, selecting and initializingv＝N_dN_sMaintain the row vector S, generate the system master key MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄The technology of (1) is used for a method for safely generating and distributing system network nodes and interactive entity secret information;

2) trusted authority utilizes system master key MK₁For each user U_iGenerating an encryption key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology of (1), a method for encrypting user data and ensuring confidentiality of communication data;

3) trusted authority for each power supplier

And a power distribution center

Generating an access control binary vector Q_kAnd Q_jSplitting vector q_k′、q_k"and q_j′、q_j", diagonal matrixAnd

a method for generating a re-encryption and access control key;

4) trusted authority utilizes system master key MK₁And MK₂For each power supplier

And a power distribution centerGenerating a re-encryption and access control key RK_k＝{RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8} and RK_j＝{RK_j1,RK_j2,RK_j3,RK_j4,RK_j5,RK_j6,RK_j7,RK_j8The technology of (1) is used for carrying out proxy re-encryption on user aggregated data to realize a method for controlling secure data access with multiple recipients;

5) trusted authority for each power supplier

And a power distribution centerGenerating a decrypted binary vector R_kAnd R_jSplit vector r_k′、r_k"and r_j′、r_j", diagonal matrix

Anda method for generating a decryption key;

6) trusted authority utilizes system master key MK₂For each power supplier

And a power distribution center

Generating a decryption key DK_k＝{DK_k1,DK_k2,DK_k3,DK_k4} and DK_j＝{DK_j1,DK_j2,DK_j3,DK_j4The technology of { is used for carrying on the declassification to the users 'aggregate heavy enciphered data, realize the method with many recipients' access control of safe data;

(2) data encryption module

1) Each user U_iThe technology of fusing the information of the identity, public and private keys, reporting time point, etc. of both communication parties is used for calculating the session key shared with the control center in a non-interactive way

The method of (1);

2) by fusing a secure data access control technology based on multi-user permission, a non-interactive session key generation and sharing mechanism and an infinite decomposition characteristic of Laplace distribution, a high-efficiency and light-weight modulo addition technology is designed

A method for implementing secure data aggregation and distributed differential privacy security;

3) construction of a plaintext data vector P_iFor each user U_iFor reporting power consumptionCarry out noise encryption

To satisfy the power supplier

And a power distribution center

A method of secure access control;

4) by having a probability density

The infinite resolvable property of the laplace distribution Lap (λ):

G₁(n, lambda) and G₂(n, λ) is 2 obedient gamma distributions

Is the function value of gamma function at point 1/n, and each user U_iIn a distributed mode, the real electricity consumption m_iIn (1) adding

Information of large and small noises, and total electricity consumption The technology meeting the epsilon _ DP differential privacy security attribute is a method for resisting differential attack and protecting the privacy of a user;

5) generating a split vector p from a v-dimensional row vector s (z) (where z ═ 1,2, … v)_i′、p_i"for user U_iThe method for encrypting the electricity consumption;

6) by p_i′,p_i"and encryption Key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology for generating 4 v-dimensional row vectors for users U_iThe electricity consumption is encrypted C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]The method of (1);

(3) data aggregation module

Gateway pairAll users

Report cipher text C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]Techniques for performing security processing to generate 4 v-dimensional row vectors for

Secure aggregation of reporting data for all users

The method of (1);

(4) data re-encryption and access control module

Control center using re-encryption and access control key RK_kAnd RK_jTo C_aggPerforming re-encryption for each power supplier

And a power distribution center

Generating a re-encrypted ciphertextAnd

the technique of (1) is used for carrying out proxy re-encryption on user aggregated data, and is realized bySecure data access control of multiple recipients, a method to ensure that each recipient can only access own proprietary data;

(5) data decryption and data recovery module

1) Each power supplier

And a power distribution center

Using decryption key DK_kAnd DK_jTo be received

And

decrypting to recover the noise-aggregated electricity consumption of each

And

the method of (1);

2) each power supplier

And a power distribution center

A technique for analyzing information of noise-caused aggregated power consumption to which each of the two-dimensional position numbers belongs<S_k,D_j>Aggregate noisy ciphertext for all users

The method of (1);

3) the control center integrates the information of the identity, public and private keys, reporting time point and the like of the two communication parties, and calculates the information with each user U in a non-interactive mode_iShared session key

For obtaining a noised aggregated electric power consumption

The method of (1);

4) each power supplierAnd a power distribution center

ComputingAnd

obtain a correspondence S_kAll of D_jTotal noise ofElectric power consumption for chemical polymerization, and corresponding D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) The total noise-based electricity consumption aggregation technology is used for ensuring that each receiver can only access own exclusive data, and realizing a method for safely sharing and controlling access of mixed information of a physical layer and an information layer of the smart grid;

5) calculation of transmission centerOrObtaining all power suppliers

And a power distribution center

Total noise-reduced electricity consumption

The technology of the intelligent power grid is used for ensuring that each receiver can only access own exclusive data, and the method for realizing the safe sharing and access control of the mixed information of the physical layer and the information layer of the intelligent power grid is realized.

On the basis of the existing research results of the in-depth research and analysis of the data aggregation technology in the field of smart grid application, the invention realizes a safe and efficient smart grid safe data communication and access control solution and application system. The invention researches and designs a fine-grained security data access control mechanism suitable for the application requirements of multiple receivers of the smart grid, and ensures that each receiver can only access own exclusive data; meanwhile, the method can effectively eliminate and resist potential network hidden dangers, collusion attacks and differential attacks from the inside and the outside of the smart power grid. The main innovation points comprise: (1) by carrying out concept modeling and bionic design on the smart grid communication system in a physical-information fusion environment and extracting the smart grid communication system into network nodes and interaction entities such as a power transmission center, a power distribution center, a power supplier, a gateway, a sensing network, a control center and the like, communication information flow, energy flow and control flow are effectively simulated, and the safety sharing and access control of mixed information of a physical layer and an information layer of the smart grid are realized; (2) by utilizing technologies such as differential privacy, data aggregation, access control, proxy re-encryption and the like, a secure data access control method with multiple receivers is designed, so that the individual power consumption of each user is hidden, the individual privacy of the user is protected, and an access control mechanism with secure data authorization is designed, so that the client distribution privacy information of each power provider is effectively hidden and protected; (3) by fusing the infinite resolvable characteristics of Laplace distribution, a non-interactive session key generation and sharing mechanism and a secure data access control technology based on multi-user permission, a secure data aggregation and distributed differential security model based on a lightweight high-efficiency 'modulo addition' technology is innovated and designed, and differential attack is effectively resisted; (4) an agent re-encryption mechanism is innovated and designed, data aggregation is allowed to be carried out before the power consumption of a re-encryption user, the re-encrypted aggregated data can be completely or partially accessed in a controllable manner according to actual needs, fine-grained safety data access control with multiple receivers is realized, and each receiver can only access own exclusive data; (5) by designing a lightweight security algorithm and a system model in the stages of key distribution and management, data encryption, information aggregation, data re-encryption and access control, data decryption, data recovery and the like, potential network hidden dangers and collusion attacks from the inside and the outside of the smart grid are effectively eliminated and resisted, and indexes such as communication cost, calculation expense and the like are better than those of the existing independent subsystems and solutions.

Drawings

FIG. 1 is a system architecture diagram of the present invention;

FIG. 2 is an algorithm block diagram and a dataflow diagram.

Detailed Description

The invention is further described in detail and specific embodiments are given below with reference to the accompanying drawings.

A secure smart grid access control method for resisting differential attack is based on a typical smart grid communication system application fieldThe overall system architecture is shown in fig. 1, and includes the following 7 participants: a trusted authority: the system is responsible for managing and distributing secret information of all other entities in the system, and has high credibility and super computing capability; the control center: the system is responsible for integrating, processing and analyzing the periodic time series power consumption data of all users in the electric energy consumption side network and providing comprehensive and reliable intelligent service; a power transmission center: the system is used for managing a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side; the power distribution center:

the system is used for managing a power distribution network and is responsible for ensuring that electric energy is efficiently transmitted to each user on a consumption side from each power distribution station based on aggregated electricity consumption information of different user sets on the electric energy consumption side; the power supplier:

the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side; a gateway: the system is used for connecting the control center and the electric energy consumption side, and is responsible for aggregating the electricity consumption data submitted by each user and forwarding communication data between each user and the control center; the perception network:

the electric energy consumption side of the smart grid is aware of the network and has N_uAnd each user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway.

The method specifically comprises the following steps:

(1) system initialization phase

The trusted authority performs the following operations to perform system initialization:

1) entity public and private key generation

a) According to the input safety parameter rho, operating zeta (rho), outputting system parameters (G, G, p, q), wherein p and q are safety large prime numbers, q | (p-1), G is a cyclic group with the order of q, the discrete logarithm problem on the group G is difficult (the recalcitrance is met), and randomly selecting a generator G of the group G to belong to G;

b) random selection of N_uAn

Wherein, i is 1,2, …, N_uCalculating

Respectively combine s with_iAnd S_iAs U_i(the identity information thereof is ID)_i) The private key and the public key of (c);

c) random selection

Computing

Respectively combine s with_gAnd S_gAs a control center (ID is the identity information of the control center)_c) The private key and the public key of (c);

d) randomly selecting a secure hash function H:

e) randomly selecting a v-dimensional row vector S, where v is N_dN_sAnd randomly setting elements in S to 0 and 1, generating 2 system master keys, MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄}，MK₁And MK₂Each element in (a) is a randomly selected v × v invertible matrix;

2) user encryption key generation

Trusted authority utilization of MK₁For each user U_iGenerating an encryption key:

calculating K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄In which a_i,b_i,c_i,d_iAre all randomly chosen v x v invertible matrices, and a_i+b_i＝M₁，c_i+d_i＝M₂；

3) Re-encryption key generation

Trusted authority executes the following algorithm, utilizing MK₁And MK₂For each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1, 2.. N.)_s) And generating a re-encryption key and sending the re-encryption key to the control center. Without loss of generality, the trusted authority generates S by performing the following operations_kThe re-encryption key of (2):

a) generating an access control binary vector Q_k: for all corresponding S_kOf binary digits, i.e. for all D_j(wherein j ═ 1, 2.. N_d) And S_kSet up Q_kIs 1; set Q_kThe other binary bit of (a) is 0;

b) will Q_kSplitting into 2 vectors q_k' and q_k": random resolution of Q against a binary digit of 1 in s (z) (where z is 1,2, … v)_k(z) satisfies q_k′(z)+q_k″(z)＝Q_k(z); comparing the binary digit of 0 in s (z) (where z is 1,2, … v), q is set_k′(z)＝q_k″(z)＝Q_k(z)；

c) Q is to be_k' and q_k"extended to 2 diagonal matrices respectively

And

d)S_kre-encryption and access control key RK of_kThe calculation is as follows:

RK_kcomprising 8 parts RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8Each part is a v × v square matrix;

e) performing similar operations with the trusted authority generating each D_jRe-encryption and access control key RK of_jRelative to generating RK_kOnly the difference is that the access control binary vector Q_jThe generation method of (1): for all correspondences D_jOf binary bits, i.e. for all S_k(wherein k is 1,2, … N_s) And D_jSet up Q_jIs 1; set Q_jThe other binary bit of (a) is 0;

f) trusted authority will N_dA distribution center and N_sThe re-encryption key secret of each power supplier is sent to the control center;

4) decryption key generation

Trusted authority utilization of MK₂For each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) A decryption key is generated. Without loss of generality, the trusted authority generates S by performing the following operations_kThe decryption key of (2):

a) like Q_kGenerating a decrypted binary vector R_k；

b) R is to be_kSplit into 2 vectors r_k' and r_k": random splitting R against a binary digit of 1 in s (z) (where z is 1,2, … v)_k(z) satisfies r_k′(z)+r_k″(z)＝R_k(z); r is set against the binary digit of 0 in s (z) (where z is 1,2, … v)_k′(z)＝r_k″(z)＝R_k(z)；

c) Will r is_k' and r_k"extended to 2 diagonal matrices respectively

And

d)S_kdecryption key DK of_kThe calculation is as follows:

DK_kcomprising 4 parts DK_k1,DK_k2,DK_k3,DK_k4Each part is a v × v square matrix; e.g. of the type_k,f_k,g_k,h_kAll are invertible matrices of v x v and satisfy e_k+f_k＝X₁ ^-1And g_k+h_k＝X₂ ^-1；

e) Performing similar operations with the trusted authority using the decrypted binary vector R_jCalculate each D_jDecryption key DK of_j；

f) The credible authority sends the secret of each decryption key to each D_j(where j is 1,2, … N_d) And S_k(wherein k is 1,2, … N_s)；

(2) Data encryption phase

At each data reporting time point t_τEach user U_iPerforming the following operation to use the electricity r_i ^j,kReporting to a gateway:

1) computing session keys shared with a control center in a non-interactive manner

2) Constructing a v-dimensional plaintext data vector P_iWhich corresponds to D_jAnd S_kIs set as the power consumptionThe noisy ciphertext of (2):P_iis set to 0. Wherein: k_i,cIs U_iA session key shared with the control center;

and

for 2 obedient gamma distributionsThe independent and uniformly distributed random variables of (1) are provided, x is more than or equal to 0, and gamma function is a function value of point 1/n; according to the Laplace distribution Lap (λ) (which has probability density)

Infinite decomposable property: for any n ≧ 1,the total number of users of the system is N_uWhen each user U_iAt the real power consumption m_iIn (1) adding

Noise information of magnitude, total aggregate power consumption

Satisfying the ε _ DP differential privacy security attribute (for 2 datasets D differing by only 1 element)₁And D₂If Pr (A (D) is satisfied₁)∈S)≤e^ε·Pr(A(D₂)∈S)，

Then the random algorithm a satisfies the epsilon _ DP differential privacy security attribute);

3) will P_iSplitting into 2 vectors p_i' and p_i": randomly splitting P against a bin of 1 in s (z) (where z 1, 2.. v)_i(z) satisfies p_i′(z)+p_i″(z)＝P_i(z); for a binary bit of 0 in s (z) (where z is 1,2, … v), p is set_i′(z)＝p_i″(z)＝P_i(z)；

4) By p_i′,p_i"and encryption Key K_iGenerating a ciphertext C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]，C_iIs a 4 v-dimensional row vector;

(3) data aggregation phase

After receiving the report data cryptographs of all users, the gateway executes the following operation to all C_iCarrying out polymerization:

computing aggregate ciphertext for all users

C_aggIs a 4 v-dimensional row vector;

(4) data re-encryption and access control phase

The control center performs the following operations of carrying out re-encryption operation on the aggregated information and realizing the access control function, namely each power distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1, 2.. N.)_s) Only the information to which each belongs can be accessed:

1) without loss of generality, the control center utilizes a re-encryption and access control key RK_kTo C_aggPerforming re-encryption to generate

Wherein

To send to S_kAll of D_jElectricity consumption for the aggregated ciphertext:

wherein

Is a 4 v-dimensional row vector;

the calculation process of (2) is as follows:

2) performing similar operation to obtain

The remainder of (a);

(5) data decryption and data recovery phases

Each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) And executing the following operation, decrypting the received ciphertexts respectively, and recovering the noise-caused aggregated electricity consumption of the ciphertexts respectively. Without loss of generality, S_kUsing decryption key DK_kPerforming the following operations on the received

Decrypting to obtain

1) Computing

Calculated v-dimensional row vector

With N_dThe value of each position is not 0, N_dEach position corresponds to a two-dimensional position serial number<S_k,D_j>(where k is fixed, j is 1,2, …, N_d) (ii) a This N_dEach value not equal to 0 represents a corresponding two-dimensional position number<S_k,D_j>(where k is fixed, j is 1, 2.., N)_d) Of all users of (1) a group of noisy ciphertext

Wherein Lap (λ) is Laplace noise with parameter λ;

2) calculating and calculating U of each user in a non-interactive mode_iShared session key

Wherein i is 1,2, …, N_uAnd calculate

3)S_kBy calculation of

Obtaining N_dNoise-reduced electricity consumption

(where k is fixed, j is 1,2, … N)_d)；

4)S_kBy calculation of

Can obtain the corresponding S_kAll of D_j(where k is fixed, j is 1,2, … N)_d) The total noise of (1) and (2) is aggregated into electricity consumption;

5)D_jperform similar operations, N can be calculated_sNoise-reduced electricity consumption

(where j is fixed, k is 1,2, …, N_s)；

6) In the same way, D_jBy calculation of

Can obtain a correspondence D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) The total noise of (1) and (2) is aggregated into electricity consumption;

7) finally, the transmission center passes through the calculationObtaining all D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) Total noise-reduced electricity consumption

A secure smart grid access control system that resists differential attacks, comprising: a trusted authority: the system is responsible for managing and distributing secret information of all other entities in the system, and has high credibility and super computing capability; the control center: the system is responsible for integrating, processing and analyzing the periodic time series power consumption data of all users in the electric energy consumption side network and providing comprehensive and reliable intelligent service; a power transmission center:the system is used for managing a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side; the power distribution center:

the system is used for managing a power distribution network and is responsible for ensuring that electric energy is efficiently transmitted to each user on a consumption side from each power distribution station based on aggregated electricity consumption information of different user sets on the electric energy consumption side; the power supplier:

the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side; a gateway: the system is used for connecting the control center and the electric energy consumption side, and is responsible for aggregating the electricity consumption data submitted by each user and forwarding communication data between each user and the control center; the perception network:

the electric energy consumption side of the smart grid is aware of the network and has N_uAnd each user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway. The system also comprises the following 5 modules, and an algorithm block diagram and a data flow diagram are shown in FIG. 2:

(1) system initialization module

1) User U is calculated and distributed based on discrete logarithm difficulty problem by credible authority_iAnd a public and private key of the control center, and selecting and initializing v as N_dN_sMaintain the row vector S, generate the system master key MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄The technology of (1) is used for a method for safely generating and distributing system network nodes and interactive entity secret information;

2) trusted authority utilizes system master key MK₁For each user U_iGenerating an encryption key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology of (1), a method for encrypting user data and ensuring confidentiality of communication data;

3) trusted authority for each power supplier

And a power distribution center

Generating an access control binary vector Q_kAnd Q_jSplitting vector q_k′、q_k"and q_j′、q_j", diagonal matrix

And

a method for generating a re-encryption and access control key;

4) trusted authority utilizes system master key MK₁And MK₂For each power supplier

And a power distribution center

Generating a re-encryption and access control key RK_k＝{RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8} and RK_j＝{RK_j1,RK_j2,RK_j3,RK_j4,RK_j5,RK_j6,RK_j7,RK_j8The technology of the method is used for carrying out proxy re-encryption on the user aggregated data to realize the multi-receiverThe method of secure data access control of (1);

5) trusted authority for each power supplier

And a power distribution center

Generating a decrypted binary vector R_kAnd R_jSplit vector r_k′、r_k"and r_j′、r_j", diagonal matrix

And

a method for generating a decryption key;

6) trusted authority utilizes system master key MK₂For each power supplier

And a power distribution center

Generating a decryption key DK_k＝{DK_k1,DK_k2,DK_k3,DK_k4} and DK_j＝{DK_j1,DK_j2,DK_j3,DK_j4The technology of { is used for carrying on the declassification to the users 'aggregate heavy enciphered data, realize the method with many recipients' access control of safe data;

(2) data encryption module

1) Each user U_iTechnology for fusing identity, public and private keys, reporting time point and other information of two communication parties and calculating session key shared with control center in non-interactive mode

The method of (1);

2) by fusing a secure data access control technology based on multi-user permission, a non-interactive session key generation and sharing mechanism and an infinite decomposition characteristic of Laplace distribution, a high-efficiency and light-weight modulo addition technology is designed

A method for implementing secure data aggregation and distributed differential privacy security;

3) construction of a plaintext data vector P_iFor each user U_iFor reporting power consumptionCarry out noise encryption

Satisfy the power supplier

And a power distribution centerA method of secure access control;

4) by having a probability densityThe infinite resolvable property of the laplace distribution Lap (λ):

g1(n, λ) and G₂(n, λ) is 2 obedient gamma distributions

Is an independent and identically distributed random variable of (1/n), wherein gamma function is a function of point 1/nNumerical value, each user U_iIn a distributed mode, the real electricity consumption m_iIn (1) adding

Information of large and small noises, and total electricity consumption

The technology meeting the epsilon _ DP differential privacy security attribute is a method for resisting differential attack and protecting the privacy of a user;

5) generating a split vector p from a v-dimensional row vector s (z) (where z ═ 1,2, … v)_i′、p_i"for user U_iThe method for encrypting the electricity consumption;

6) by p_i′,p_i"and encryption Key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology for generating 4 v-dimensional row vectors for users U_iThe electricity consumption is encrypted C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]The method of (1);

(3) data aggregation module

Gateway for all users

Report cipher text C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]Techniques for performing security processing to generate 4 v-dimensional row vectors for

Secure aggregation of reporting data for all users

The method of (1);

(4) data re-encryption and access control module

Control center using re-encryption and access control key RK_kAnd RK_jTo C_aggPerforming re-encryption for each power supplierAnd a power distribution center

Generating a re-encrypted ciphertext

And

the technology of (1) is used for carrying out proxy re-encryption on user aggregated data, realizing secure data access control with multiple receivers and ensuring that each receiver can only access own exclusive data;

(5) data decryption and data recovery module

1) Each power supplier

And a power distribution center

Using decryption key DK_kAnd DK_jTo be received

And

decryption technique for recovering respective noise-reduced aggregated power consumption

And

the method of (1);

2) each power supplier

And a power distribution center

A technique for analyzing information of noise-caused aggregated power consumption to which each of the two-dimensional position numbers belongs<S_k,D_j>Aggregate noisy ciphertext for all users

The method of (1);

3) in control ofThe identity, public and private keys, reporting time point and other information of the two communication parties are integrated, and the information is calculated and transmitted to each user U in a non-interactive mode_iShared session key

For obtaining a noised aggregated electric power consumption

The method of (1);

4) each power supplier

And a power distribution center

Computing

And

obtain a correspondence S_kAll of D_jTotal noise-reduced aggregate power consumption, and corresponding D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) The total noise-based electricity consumption aggregation technology is used for ensuring that each receiver can only access own exclusive data, and realizing a method for safely sharing and controlling access of mixed information of a physical layer and an information layer of the smart grid;

5) calculation of transmission center

Or

Obtaining all power suppliers

And a power distribution centerTotal noise-reduced electricity consumption

The technology of the intelligent power grid is used for ensuring that each receiver can only access own exclusive data, and the method for realizing the safe sharing and access control of the mixed information of the physical layer and the information layer of the intelligent power grid is realized.

The system of the invention has the following technical characteristics:

(1) by carrying out concept modeling and bionic design on the smart grid communication system in a physical-information fusion environment, the smart grid communication system is extracted into network nodes and interaction entities such as a power transmission center, a power distribution center, a power supplier, a gateway, a sensing network, a control center and the like, the information flow, the energy flow and the control flow of the smart grid communication system are effectively simulated, and the safe sharing and the access control of mixed information of a physical layer and an information layer of the smart grid are realized;

(2) compared with the existing similar scheme, the method not only hides the personal power consumption of each user so as to strictly protect the personal privacy of the user, but also effectively hides and protects the client distribution privacy information of each power supplier by designing an access control mechanism with secure data authorization;

(3) by fusing the infinite resolvable characteristics of Laplace distribution, a non-interactive session key generation and sharing mechanism and a secure data access control technology based on multi-user permission, a secure data aggregation and distributed differential security model based on an efficient and lightweight modular addition technology is innovated, and differential attack is effectively resisted;

(4) an agent re-encryption mechanism is innovated and designed, data aggregation operation is allowed to be carried out before re-encryption is carried out on the power consumption of a user, and the re-encrypted aggregated data can be completely or partially accessed according to actual needs, so that fine-grained safety data access control of multiple receivers in intelligent power grid communication is realized, and each receiver can only access own exclusive data;

(5) by designing a lightweight security algorithm and a system model in the stages of key distribution and management, data encryption, information aggregation, data re-encryption and access control, data decryption, data recovery and the like, potential network hidden dangers and collusion attacks from the inside and the outside of the smart grid are effectively eliminated and resisted, and indexes such as communication cost, calculation expense and the like are better than those of the existing independent subsystems and solutions.

Claims (3)

1. A safe smart grid access control method for resisting differential attack is characterized in that a trusted authority is responsible for managing and distributing secret information of all other entities in a system based on an application scene of a smart grid communication system; the control center is responsible for integrating, processing and analyzing the periodic time sequence electricity consumption data of all users in the electric energy consumption side network, and comprehensive and reliable intelligent service is provided; the transmission center manages a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side; from the electricity distribution center

The management power distribution network is responsible for aggregating power consumption information based on different user sets of the power consumption side and ensuring that the power is efficiently transmitted to each user of the consumption side from each power distribution station; by the electricity supplier:

the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side; connecting control center and electricity by gatewayThe energy consumption side is responsible for aggregating the power consumption data submitted by each user and forwarding communication data between each user and the control center; by the awareness network:

namely N on electric energy consumption side of smart grid_uEach user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway, and the specific steps are as follows:

(1) system initialization phase

The trusted authority performs the following operations to perform system initialization:

1) entity public and private key generation

a) According to the input safety parameter rho, operating zeta (rho), outputting system parameters (G, G, p, q), wherein p and q are safety large prime numbers, q | (p-1), G is a cyclic group with the order of q, the discrete logarithm problem on the group G is difficult (the recalcitrance is met), and randomly selecting a generator G of the group G to belong to G;

b) random selection of N_uAn

Wherein, i is 1,2_uCalculating

Respectively combine s with_iAnd S_iAs U_i(the identity information thereof is ID)_i) The private key and the public key of (c);

c) random selection

Computing

Respectively combine s with_gAnd S_gAs a control center (ID is the identity information of the control center)_c) The private key and the public key of (c);

d) randomly selecting a secure hash function H:

e) randomly selecting a v-dimensional row vector S, where v is N_dN_sAnd randomly setting elements in S to 0 and 1, generating 2 system master keys, MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄}，MK₁And MK₂Each element in (a) is a randomly selected v × v invertible matrix;

2) user encryption key generation

Trusted authority utilization of MK₁For each user U_iGenerating an encryption key: calculating K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄In which a_i,b_i,c_i,d_iAre all randomly chosen v x v invertible matrices, and a_i+b_i＝M₁，c_i+d_i＝M₂；

3) Re-encryption key generation

Trusted authority executes the following algorithm, utilizing MK₁And MK₂For each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) And generating a re-encryption key and sending the re-encryption key to the control center. Without loss of generality, the trusted authority generates S by performing the following operations_kThe re-encryption key of (2):

a) generating an access control binary vector Q_k: for all corresponding S_kOf binary digits, i.e. for all D_j(where j is 1,2, … N_d) And S_kSet up Q_kIs 1; set Q_kThe other binary bit of (a) is 0;

b) will Q_kSplitting into 2 vectors q_k' and q_k": random resolution of Q against a binary digit of 1 in s (z) (where z is 1,2, … v)_k(z) satisfies q_k′(z)+q_k″(z)＝Q_k(z); comparing the binary digit of 0 in s (z) (where z is 1,2, … v), q is set_k′(z)＝q_k″(z)＝Q_k(z)；

c) Q is to be_k' and q_k"extended to 2 diagonal matrices respectively

And

d)S_kre-encryption and access control key RK of_kThe calculation is as follows:

RK_kcomprising 8 parts RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8Each part is a v × v square matrix;

e) performing similar operations with the trusted authority generating each D_jRe-encryption and access control key RK of_jRelative to generating RK_kOnly the difference is that the access control binary vector Q_jThe generation method of (1): for all correspondences D_jOf binary bits, i.e. for all S_k(wherein k is 1, 2.. N.)_s) And D_jSet up Q_jIs 1; set Q_jThe other binary bit of (a) is 0;

f) trusted authority will N_dA distribution center and N_sThe re-encryption key secret of each power supplier is sent to the control center;

4) decryption key generation

Trusted authority utilization of MK₂For each distribution center D_j(wherein j ═ 1, 2.. N_d) And the power supplier S_k(wherein k is 1,2, … N_s) A decryption key is generated. Without loss of generality, the trusted authority generates S by performing the following operations_kThe decryption key of (2):

a) like Q_kGenerating a decrypted binary vector R_k；

b) R is to be_kSplit into 2 vectors r_k' and r_k": randomly splitting R against a bin of 1 in s (z) (where z 1, 2.. v)_k(z) satisfies r_k′(z)+r_k″(z)＝R_k(z); r is set against the binary digit of 0 in s (z) (where z is 1,2, … v)_k′(z)＝r_k″(z)＝R_k(z)；

c) Will r is_k' and r_k"extended to 2 diagonal matrices respectivelyAnd

d)S_kdecryption key DK of_kThe calculation is as follows:

DK_kcomprising 4 parts DK_k1,DK_k2,DK_k3,DK_k4Each part is a v × v square matrix; e.g. of the type_k,f_k,g_k,h_kAll are invertible matrices of v x v and satisfy e_k+f_k＝X₁ ^-1And g_k+h_k＝X₂ ^-1；

e) Performing similar operations with the trusted authority using the decrypted binary vector R_jCalculate each D_jDecryption key DK of_j；

f) The credible authority sends the secret of each decryption key to each D_j(where j is 1,2, … N_d) And S_k(wherein k is 1,2, … N_s)；

(2) Data encryption phase

At each data reporting time point t_τEach user U_iPerforming the following operation to use the electricity r_i ^j,kReporting to a gateway:

1) by non-crossingMutually calculating session key shared with control center

2) Constructing a v-dimensional plaintext data vector P_iWhich corresponds to D_jAnd S_kIs set as the power consumption

The noisy ciphertext of (2):

P_iis set to 0. Wherein: k_i,cIs U_iA session key shared with the control center;

and

for 2 obedient gamma distributions

The independent and uniformly distributed random variables of (1) are provided, x is more than or equal to 0, and gamma function is a function value of point 1/n; according to the Laplace distribution Lap (λ) (which has probability density)

Infinite decomposable property: for any n ≧ 1,

the total number of users of the system is N_uWhen each user U_iAt the real power consumption m_iIn (1) adding

Noise information of magnitude, total aggregate power consumption

Satisfying the ε _ DP differential privacy security attribute (for 2 datasets D differing by only 1 element)₁And D₂If Pr (A (D) is satisfied₁)∈S)≤e^ε·Pr(A(D₂)∈S)，Then the random algorithm a satisfies the epsilon _ DP differential privacy security attribute);

3) will P_iSplitting into 2 vectors p_i' and p_i": random splitting of P against a binary digit of 1 in s (z) (where z is 1,2, … v)_i(z) satisfies p_i′(z)+p_i″(z)＝P_i(z); for a binary bit of 0 in s (z) (where z is 1,2, … v), p is set_i′(z)＝p_i″(z)＝P_i(z)；

4) By p_i′,p_i"and encryption Key K_iGenerating a ciphertext C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]，C_iIs a 4 v-dimensional row vector;

(3) data aggregation phase

After receiving the report data cryptographs of all users, the gateway executes the following operation to all C_iCarrying out polymerization:

computing aggregate ciphertext for all users

C_aggIs a 4 v-dimensional row vector;

(4) data re-encryption and access control phase

The control center performs the following operations of carrying out re-encryption operation on the aggregated information and realizing the access control function, namely each power distribution center D_j(wherein j ═ 1, 2.. N_d) And the power supplier S_k(wherein k is 1,2, … N_s) Only the information to which each belongs can be accessed:

1) without loss of generality, the control center utilizes a re-encryption and access control key RK_kTo C_aggPerforming re-encryption to generate

Wherein

To send to S_kAll of D_jElectricity consumption for the aggregated ciphertext:

wherein

Is a 4 v-dimensional row vector;

the calculation process of (2) is as follows:

2) performing similar operation to obtain

The remainder of (a);

(5) data decryption and data recovery phases

Each distribution center D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1,2, … N_s) And executing the following operation, decrypting the received ciphertexts respectively, and recovering the noise-caused aggregated electricity consumption of the ciphertexts respectively. Without loss of generality, S_kUsing decryption key DK_kPerforming the following operations on the received

Decrypting to obtain

1) Computing

Calculated v-dimensional row vector

With N_dThe value of each position is not 0, N_dEach position corresponds to a two-dimensional position serial number<S_k,D_j>(where k is fixed, j is 1,2, …, N_d) (ii) a This N_dEach value not equal to 0 represents a corresponding two-dimensional position number<S_k,D_j>(where k is fixed, j is 1,2, …, N_d) Of all users of (1) a group of noisy ciphertext

Wherein Lap (λ) is Laplace noise with parameter λ;

2) calculating and calculating U of each user in a non-interactive mode_iShared session key

Wherein i is 1,2, …, N_uAnd calculate

3)S_kBy calculation of

Obtaining N_dNoise-reduced electricity consumption

(where k is fixed, j is 1,2, … N)_d)；

4)S_kBy calculation ofCan obtain the corresponding S_kAll of D_j(where k is fixed, j is 1,2, … N)_d) The total noise of (1) and (2) is aggregated into electricity consumption;

5)D_jperform similar operations, N can be calculated_sNoise-reduced electricity consumption

(where j is fixed, k is 1,2, …, N_s)；

6) In the same way, D_jBy calculation of

Can obtain a correspondence D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) The total noise of (1) and (2) is aggregated into electricity consumption;

7) finally, the transmission center passes through the calculation

Obtaining all D_j(where j is 1,2, … N_d) And the power supplier S_k(wherein k is 1, 2.. N.)_s) Total noise-reduced electricity consumption

2. A secure smart grid access control system that resists differential attacks, comprising:

a trusted authority: the system is responsible for managing and distributing secret information of all other entities in the system, and has high credibility and super computing capability;

the control center: the system is responsible for integrating, processing and analyzing the periodic time series power consumption data of all users in the electric energy consumption side network and providing comprehensive and reliable intelligent service;

a power transmission center: the system is used for managing a transmission network and is responsible for ensuring that electric energy is efficiently transmitted to each distribution station from each power station based on aggregated electricity consumption information of different user sets at an electric energy consumption side;

the power distribution center:

the system is used for managing a power distribution network and is responsible for ensuring that electric energy is efficiently transmitted to each user on a consumption side from each power distribution station based on aggregated electricity consumption information of different user sets on the electric energy consumption side;

the power supplier:the system is responsible for providing a competitive electric power retail market based on the aggregated electricity consumption information of different user sets at the electric energy consumption side;

a gateway: the system is used for connecting the control center and the electric energy consumption side, and is responsible for aggregating the electricity consumption data submitted by each user and forwarding communication data between each user and the control center;

the perception network:

the electric energy consumption side of the smart grid is aware of the network and has N_uAnd each user/node is responsible for collecting power consumption data in real time and reporting the data to the control center through the gateway.

3. A secure smart grid access control system against differential attacks as recited in claim 2, further comprising:

(1) system initialization module

1) User U is calculated and distributed based on discrete logarithm difficulty problem by credible authority_iAnd a public and private key of the control center, and selecting and initializing v as N_dN_sMaintain the row vector S, generate the system master key MK₁＝{M₁,M₂,N₁,N₂,N₃,N₄And MK₂＝{X₁,X₂,Y₁,Y₂,Y₃,Y₄The technology of (1) is used for a method for safely generating and distributing system network nodes and interactive entity secret information;

2) trusted authority utilizes system master key MK₁For each user U_iGenerating an encryption key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology of (1), a method for encrypting user data and ensuring confidentiality of communication data;

3) trusted authority for each power supplier

And a power distribution center

Generating an access control binary vector Q_kAnd Q_jSplitting vector q_k′、q_k"and q_j′、q_j", diagonal matrix

And

a method for generating a re-encryption and access control key;

4) trusted authority utilizes system master key MK₁And MK₂For each power supplier

And a power distribution centerGenerating a re-encryption and access control key RK_k＝{RK_k1,RK_k2,RK_k3,RK_k4,RK_k5,RK_k6,RK_k7,RK_k8} and RK_j＝{RK_j1,RK_j2,RK_j3,RK_j4,RK_j5,RK_j6,RK_j7,RK_j8The technology of (1) is used for carrying out proxy re-encryption on user aggregated data to realize a method for controlling secure data access with multiple recipients;

5) trusted authority for each power supplierAnd a power distribution center

Generating a decrypted binary vector R_kAnd R_jSplit vector r_k′、r_k"and r_j′、r_j", diagonal matrixAnd

a method for generating a decryption key;

6) trusted authority utilizes system master key MK₂For each power supplier

And a power distribution center

Generating a decryption key DK_k＝{DK_k1,DK_k2,DK_k3,DK_k4} and DK_j＝{DK_j1,DK_j2,DK_j3,DK_j4The technology of { is used for carrying on the declassification to the users 'aggregate heavy enciphered data, realize the method with many recipients' access control of safe data;

(2) data encryption module

1) Each user U_iTechnology for fusing identity, public and private keys, reporting time point and other information of two communication parties and calculating session key shared with control center in non-interactive mode

The method of (1);

2) by fusing a secure data access control technology based on multi-user permission, a non-interactive session key generation and sharing mechanism and an infinite decomposition characteristic of Laplace distribution, a high-efficiency and light-weight modulo addition technology is designed

A method for implementing secure data aggregation and distributed differential privacy security;

3) construction of a plaintext data vector P_iFor each user U_iFor reporting power consumption

Carry out noise encryption

Satisfy the power supplier

And a power distribution center

A method of secure access control;

4) by having a probability density

The infinite resolvable property of the laplace distribution Lap (λ):

G₁(n, lambda) and G₂(n, λ) is 2 obedient gamma distributions

Is the function value of gamma function at point 1/n, and each user U_iThrough a distributed modeReal electricity consumption m_iIn (1) adding

Information of large and small noises, and total electricity consumption

The technology meeting the epsilon _ DP differential privacy security attribute is a method for resisting differential attack and protecting the privacy of a user;

5) generating a split vector p from a v-dimensional row vector s (z) (where z ═ 1,2, … v)_i′、p_i"for user U_iThe method for encrypting the electricity consumption;

6) by p_i′,p_i"and encryption Key K_i＝{K_i1,K_i2,K_i3,K_i4}＝{a_iN₁,b_iN₂,c_iN₃,d_iN₄The technology for generating 4 v-dimensional row vectors for users U_iThe electricity consumption is encrypted C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]The method of (1);

(3) data aggregation module

Gateway for all users

Report cipher text C_i＝[p_i′a_iN₁,p_i′b_iN₂,p_i″c_iN₃,p_i″d_iN₄]Technique for performing security processing to generate 4 v-dimensional row vector for performing security aggregation on report data of all users

The method of (1);

(4) data re-encryption and access control module

Control center using re-encryption and access control key RK_kAnd RK_jTo C_aggPerforming re-encryption for each power supplier

And a power distribution center

Generating a re-encrypted ciphertext

And

the technology of (1) is used for carrying out proxy re-encryption on user aggregated data, realizing secure data access control with multiple receivers and ensuring that each receiver can only access own exclusive data;

(5) data decryption and data recovery module

1) Each power supplier

And a power distribution center

Using decryption key DK_kAnd DK_jTo be received

Anddecryption technique for recovering respective noise-reduced aggregated power consumption

And

the method of (1);

2) each power supplier

And a power distribution center

A technique for analyzing information of noise-caused aggregated power consumption to which each of the two-dimensional position numbers belongs<S_k,D_j>Aggregate noisy ciphertext for all users

The method of (1);

3) the control center integrates the identity, public and private keys, reporting time point and other information of both communication parties, and calculates and reports the information to each user U in a non-interactive mode_iShared session key

For obtaining a noised aggregated electric power consumption

The method of (1);

4) each power supplier

And a power distribution center

Computing

And

obtain a correspondence S_kAll of D_jTotal noise-reduced aggregate power consumption, and corresponding D_jAll of S_k(where j is fixed, k is 1,2, … N)_s) For ensuring total noise and electricity consumptionEach receiver can only access own exclusive data, and a method for realizing safe sharing and access control of mixed information of a physical layer and an information layer of the smart grid is realized;

5) calculation of transmission centerOrObtaining all power suppliersAnd a power distribution center

Total noise-reduced electricity consumption

The technology of the intelligent power grid is used for ensuring that each receiver can only access own exclusive data, and the method for realizing the safe sharing and access control of the mixed information of the physical layer and the information layer of the intelligent power grid is realized.

Images