CN111565167B - Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation - Google Patents

Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation Download PDF

Info

Publication number
CN111565167B
CN111565167B CN202010158802.0A CN202010158802A CN111565167B CN 111565167 B CN111565167 B CN 111565167B CN 202010158802 A CN202010158802 A CN 202010158802A CN 111565167 B CN111565167 B CN 111565167B
Authority
CN
China
Prior art keywords
maintenance
remote
file
module
intelligent substation
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010158802.0A
Other languages
Chinese (zh)
Other versions
CN111565167A (en
Inventor
杨才明
陶鸿飞
李康毅
裘愉涛
金乃正
谢栋
李勇
张锋明
朱玛
王志亮
丁立新
金红华
俞小虎
裴军
王雷
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shaoxing Power Supply Co of State Grid Zhejiang Electric Power Co Ltd
Original Assignee
Shaoxing Power Supply Co of State Grid Zhejiang Electric Power Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shaoxing Power Supply Co of State Grid Zhejiang Electric Power Co Ltd filed Critical Shaoxing Power Supply Co of State Grid Zhejiang Electric Power Co Ltd
Priority to CN202010158802.0A priority Critical patent/CN111565167B/en
Publication of CN111565167A publication Critical patent/CN111565167A/en
Application granted granted Critical
Publication of CN111565167B publication Critical patent/CN111565167B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • HELECTRICITY
    • H02GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
    • H02JCIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
    • H02J13/00Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0281Proxies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/101Access control lists [ACL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02EREDUCTION OF GREENHOUSE GAS [GHG] EMISSIONS, RELATED TO ENERGY GENERATION, TRANSMISSION OR DISTRIBUTION
    • Y02E60/00Enabling technologies; Technologies with a potential or indirect contribution to GHG emissions mitigation

Abstract

The invention discloses a generalized remote operation information safety device and a safety operation and maintenance method for an intelligent substation, wherein the remote relay protection operation of a dispatching master station is subjected to authority limit, log recording and abnormal warning according to operation authority set by a manager; the method comprises the steps of performing authority limitation, log recording and abnormal warning on remote equipment operation and maintenance operation, wherein the equipment operation and maintenance operation comprises file downloading, file calling and remote login operation; when the file downloading operation is performed, all the downloaded files need to be subjected to virus detection by the virus gateway module. Therefore, a safety protection mode can be provided for remote operation of the dispatching master station, risks brought to system operation are reduced, and uncontrollable risks brought to stable operation of bay level equipment are avoided because all operation and maintenance terminals can access all bay level equipment in a network in a safety maintenance mode of the substation bay level equipment.

Description

Intelligent substation generalized remote operation information safety device and safe operation and maintenance method
Technical Field
The invention relates to the technical field of power distribution network informatization, in particular to an automatic monitoring system of an intelligent substation.
Background
With the development of the smart power grid and the energy Internet, the problem of influence of an information link on a physical system is more prominent. The intelligent power grid is a novel power grid running on the advanced IT technology, the number of sensors, the scale of an information network and the number of decision units are greatly increased, and the development of the energy Internet further couples a physical system with multiple energy flows with an information system. With the significant increase of the uncertainty and the transient balance difficulty of the power grid energy flow, the method completely depends on the support of information technology, and the energy flow is rapidly regulated and controlled through the information flow so as to deal with the complexity of the operation and control of the smart power grid. The real-time reliability challenges of information processing capacity, information interaction mode and information transmission brought by the method directly determine the capacity of the monitoring control system for tracking energy flow changes and the decision effectiveness.
The digital transformer substation and intelligent power grid technology which takes 'interconnection and intercommunication, unified model, information sharing and high integration' as marks, and aims at networking, digitalization, intellectualization, interactivity and high centralization and 'one standard and one world' in the world provides more intrusion nodes and attack paths, more information stealing links and reading easiness, more hidden positions or foot stones, more wide attack into the abdominal area and deeper fatal critical parts for information attack, and brings serious threats to the safe and stable operation of a power system, even causes catastrophic accidents.
The transformer substation is a key point for real-time monitoring of power grid operation and power grid fault defense, and the intelligent transformer substation is weak in information safety performance due to the fact that the Ethernet technology and the open IEC61850 communication standard are adopted. The network of the intelligent substation automatic monitoring system is a relatively closed local area network. The remote dispatching master station can remotely operate the intelligent substation through gateway equipment in the intelligent substation, and if the remote operation of the dispatching master station is not reliably protected, high risk is brought to the operation of a system; the maintenance of the bay level equipment of the intelligent substation automatic monitoring system is completed by maintenance personnel, and the maintenance personnel connect a terminal used by the maintenance personnel to a network of the intelligent substation automatic monitoring system in the maintenance process and can access all bay level equipment in the network, so that uncontrollable risks are brought to the stable operation of the bay level equipment.
Disclosure of Invention
The technical problem to be solved by the invention is to provide a generalized remote operation information safety device for an intelligent substation, which provides reliable safety protection for remote operation of a dispatching master station and ensures stable operation of bay level equipment.
In order to solve the technical problems, the invention adopts the following technical scheme: the utility model provides an intelligent substation generalized remote operation information safety device, includes that passageway detection module, message forward module, authority configuration module, file download management module, file call management module, telnet agent module, virus gateway module, wherein:
the channel detection module is connected with the scheduling master station and the message detection module and is responsible for detecting the IP address and port identification of the scheduling master station, limiting the access of illegal IP addresses and ports and generating warning information;
the message detection module is used for detecting messages of an application layer of the scheduling master station, identifying message flow, message types and data point numbers in the messages, discarding illegal messages and generating warning information;
the message forwarding module is connected with the message detection module and the interlayer equipment and is responsible for forwarding the message allowed by the authority to the interlayer equipment;
the file downloading management module, the file calling management module and the remote login agent module are connected with the operation and maintenance terminal and the interlayer equipment, and the file downloading management module is used for detecting an IP address of the operation and maintenance terminal, a file transmission protocol and downloaded file contents so as to prevent the operation and maintenance terminal from accessing by using an illegal IP, transmitting files by using an illegal file transmission protocol and transmitting files which are not authorized by management personnel; the remote login agent module is used for detecting whether an IP address and a remote login protocol of the operation and maintenance terminal are authorized or not, and converting remote login of the authorized operation and maintenance terminal to the intelligent substation generalized remote operation information safety device into remote login of the set specified equipment;
the virus gateway module is used for scanning the viruses of the files to be downloaded to the equipment by the file downloading management module one by one;
and the authority configuration module is used for providing authority configuration for the channel detection module, the message forwarding module, the file downloading management module, the file calling management module, the remote login agent module and the virus gateway module.
Optionally, the generalized remote operation information security device of the intelligent substation is provided with more than 12 mutually independent ethernet ports, including an operation port, a networking port, a monitoring port and an operation and maintenance port, wherein the operation port is connected with the scheduling master station; the networking port is connected with equipment in the intelligent substation; the monitoring port is connected with the management terminal; the operation and maintenance port is connected with the operation and maintenance terminal.
Optionally, the generalized remote operation information safety device of the intelligent substation is provided with a multi-path power supply module, and the multi-path power supply module is connected with a multi-path power supply.
Optionally, the virus scanning policy of the virus gateway module is changed in real time and the virus library is updated in real time through the management terminal.
Optionally, the remote operation authority is issued to the authority configuration module through the management terminal.
The invention also provides a safe operation and maintenance method of the generalized remote operation information safety device of the intelligent substation, which comprises a remote operation safety protection method of a dispatching master station and a safety maintenance method of substation bay level equipment,
the remote operation safety protection method of the dispatching master station comprises the following steps:
1) a manager sets a scheduling master station communication parameter, an operation type and a message type white list through a management terminal;
2) the intelligent substation generalized remote operation information safety device limits the connection of the scheduling master stations according to the white list of the communication parameters of the scheduling master stations, allows the scheduling master stations in the white list to connect, forbids the scheduling master stations outside the white list to connect, and records logs to send an alarm;
3) the intelligent substation generalized remote operation information safety device limits the remote operation type of the scheduling master station according to the operation type white list of the scheduling master station, allows the scheduling master station to perform remote operation in the white list, prohibits the scheduling master station from performing remote operation outside the white list, and records a log to send an alarm;
4) the intelligent substation generalized remote operation information safety device limits the message types used by remote operation of the scheduling master station according to the scheduling master station message type white list, allows the remote operation of the scheduling master station to use the message types in the white list, prohibits the remote operation of the scheduling master station from using the message types outside the white list, and records logs to send alarms;
the safety maintenance method of the substation bay level equipment comprises the following steps:
1) in the authority setting stage, aiming at the maintenance operation of file downloading and the maintenance operation of file calling, setting a maintenance terminal address, a file and a path which are allowed to be transmitted, a maintenance interlayer equipment address and a file transmission protocol, and aiming at the maintenance operation of remote login, setting the maintenance terminal address, the remote login protocol and the maintenance interlayer equipment address;
2) in the maintenance preparation stage, file service is opened for a maintenance terminal according to set authority aiming at maintenance operation of file downloading, the file to be downloaded by the maintenance terminal is transmitted to the intelligent substation generalized remote operation information safety device, the file in the bay level equipment is called to the intelligent substation generalized remote operation information safety device through a specified file transmission protocol according to the set authority aiming at maintenance operation of file calling, a network environment is opened for the maintenance terminal according to the set authority aiming at maintenance operation of remote login, and the maintenance terminal is connected to the intelligent substation generalized remote operation information safety device;
3) in the maintenance execution stage, files to be downloaded are downloaded to target bay level equipment through a specified file transmission protocol according to the set authority for the file downloading maintenance operation, the called files are taken away from the intelligent substation generalized remote operation information safety device through specified file service by a maintenance terminal according to the set authority for the file calling maintenance operation, a remote login protocol is opened according to the set authority for the remote login maintenance operation, and operation and maintenance personnel start debugging;
4) and at the maintenance finishing stage, the operation and maintenance terminal disconnects the physical connection with the generalized remote operation information safety device of the intelligent substation and clears the operation authority.
By adopting the technical scheme, the invention provides a safety protection mode for remote operation of the dispatching master station, reduces the risk brought to the operation of the system, provides a safety maintenance mode for the spacer layer equipment of the transformer substation, and avoids the uncontrollable risk brought to the stable operation of the spacer layer equipment because all operation and maintenance terminals can access all the spacer layer equipment in the network.
The following detailed description of the present invention will be provided in conjunction with the accompanying drawings.
Drawings
The invention is further described with reference to the accompanying drawings and the detailed description below:
fig. 1 is a schematic structural diagram of a generalized remote operation information security device of an intelligent substation.
In the figure: the system comprises an intelligent substation generalized remote operation information safety device 1, spacer layer equipment 2-1-2-n, a scheduling master station 3, a management terminal 4, an operation and maintenance terminal 5, a channel detection module 6, a message detection module 7, a message forwarding module 8, a permission configuration module 9, a file downloading management module 10, a file calling management module 11, a remote login agent module 12 and a virus gateway module 13.
Detailed Description
Example one
In order to overcome the above problems in the prior art, the present invention provides a generalized remote operation information security device 1 for an intelligent substation, as shown in fig. 1, including a channel detection module 6, a message detection module 7, a message forwarding module 8, an authority configuration module 9, a file downloading management module 10, a file calling management module 11, a remote login agent module 12, and a virus gateway module 13, wherein:
the channel detection module 6 is connected with the scheduling master station 3 and the message detection module 7 and is responsible for detecting the IP address and port identification of the scheduling master station, limiting the access of illegal IP addresses and ports and generating warning information; and the channel detection module is responsible for detecting frequent connection of the scheduling master station and generating frequent connection warning information.
The message detection module 7 is used for detecting messages of the application layer of the scheduling master station 3, identifying message flow, message types and data point numbers in the messages, discarding illegal messages and generating warning information;
the message forwarding module 8 is connected with the message detection module 7 and the interlayer equipment 2-n and is responsible for forwarding the message allowed by the authority to the interlayer equipment 2-n;
the file downloading management module 10, the file calling management module 11 and the remote login agent module 12 are connected with the operation and maintenance terminal 5 and the bay level equipment 2-n, and the file downloading management module is used for detecting an IP address of the operation and maintenance terminal, a file transmission protocol and downloaded file contents so as to prevent the operation and maintenance terminal from accessing by an illegal IP, transmitting files by using an illegal file transmission protocol and transmitting files which are not authorized by management personnel; the remote login agent module is used for detecting whether an IP address and a remote login protocol of the operation and maintenance terminal are authorized or not, and converting remote login of the authorized operation and maintenance terminal to the intelligent substation generalized remote operation information safety device into remote login of the set specified equipment;
the virus gateway module 13 is used for scanning the virus of the files to be downloaded to the equipment by the file downloading management module one by one;
and the authority configuration module 9 is used for providing authority configuration for the channel detection module, the message forwarding module, the file downloading management module, the file calling management module, the remote login agent module and the virus gateway module.
The intelligent substation generalized remote operation information safety device is provided with more than 12 mutually independent Ethernet ports, and comprises an operation port, a networking port, a monitoring port and an operation and maintenance port, wherein the operation port is connected with a scheduling master station; the networking port is connected with equipment in the intelligent substation; the monitoring port is connected with the management terminal; the operation and maintenance port is connected with the operation and maintenance terminal 5.
The intelligent substation generalized remote operation information safety device 1 is provided with a multi-path power supply module, and the multi-path power supply module is connected with a multi-path power supply.
And the virus scanning strategy of the virus gateway is changed in real time and the virus library is updated in real time through the management terminal 4. And issuing the remote operation authority to the authority configuration module through the management terminal.
Example two
Two safety operation and maintenance methods of the generalized remote operation information safety device of the intelligent substation are respectively a remote operation safety protection mode of a dispatching master station and a safety maintenance mode of equipment on a substation bay level.
1. Remote operation safety protection mode of dispatching master station
And the manager sets the authority of communication parameters, operation types and message types in the generalized remote operation information safety device of the intelligent substation aiming at different scheduling master stations. The intelligent substation generalized remote operation information safety device limits remote operation of the dispatching master station according to the authority. The outline flow is as follows:
1) a manager sets a communication parameter, an operation type and a message type white list of a scheduling master station through client software or a browser on a local terminal;
2) the intelligent substation generalized remote operation information safety device limits the connection of the scheduling master stations according to the white list of the communication parameters of the scheduling master stations, allows the scheduling master stations in the white list to connect, forbids the scheduling master stations outside the white list to connect, and records logs to send an alarm;
3) the intelligent substation generalized remote operation information safety device limits the remote operation type of the scheduling master station according to the scheduling master station operation type white list, allows the scheduling master station to perform remote operation in the white list, prohibits the scheduling master station from performing remote operation outside the white list, and records a log to send an alarm;
4) the intelligent substation generalized remote operation information safety device limits the message types used by remote operation of the scheduling master station according to the scheduling master station message type white list, allows the remote operation of the scheduling master station to use the message types in the white list, prohibits the remote operation of the scheduling master station from using the message types outside the white list, and records logs to send an alarm.
2. Safety maintenance mode for spacer layer equipment of transformer substation
And the terminal of the maintainer carries out maintenance operations of file downloading, file calling and remote login on the bay level equipment through the generalized remote operation information safety device of the intelligent substation. The management personnel set the authority of the generalized remote operation information safety device of the intelligent substation, limit the terminal connection of operation and maintenance personnel, limit the maintenance objects of the operation and maintenance personnel and limit the operation types of the operation and maintenance personnel. The safety maintenance mode of the equipment on the substation bay level is divided into four stages, namely permission setting, maintenance preparation, maintenance execution and maintenance ending. The outline flow is as follows:
1) in the privilege setting phase. And setting the terminal equipment address, the file and path allowed to be transmitted, the interlayer equipment address for maintenance and the file transmission protocol of a maintainer aiming at the maintenance operation of file downloading and the maintenance operation of file calling. Setting a terminal equipment address, a remote login protocol and a maintenance interval layer equipment address of a maintainer aiming at the maintenance operation of remote login;
2) in the maintenance preparation phase. And opening file service for a terminal of a maintainer according to the set authority aiming at the maintenance operation of file downloading, wherein the terminal of the maintainer transmits the file to be downloaded to the generalized remote operation information safety device of the intelligent substation. And calling the files in the spacer layer equipment to the generalized remote operation information safety device of the intelligent substation through a specified file transmission protocol according to the set authority for the maintenance operation of the file calling. And aiming at the maintenance operation of remote login, opening a network environment for the terminal of a maintainer according to the set authority, wherein the terminal of the maintainer is connected to the generalized remote operation information safety device of the intelligent substation.
3) In the maintenance execution phase. And downloading the file to be downloaded to the target interlayer equipment according to the set authority by aiming at the maintenance operation of file downloading. Aiming at the maintenance operation of the file calling, according to the set authority, the terminal of a maintenance person takes the called file from the generalized remote operation information safety device of the intelligent substation through the specified file service. And aiming at the maintenance operation of the remote login, a remote login protocol is opened according to the set authority, and the operation and maintenance personnel start debugging.
4) At the maintenance end stage. And disconnecting the physical connection with the generalized remote operation information safety device of the intelligent substation by the terminal of the operation and maintenance personnel, and clearing the operation permission.
While the invention has been described with reference to specific embodiments, it will be understood by those skilled in the art that the invention is not limited thereto, and may be embodied in other forms without departing from the spirit or essential characteristics thereof. Any modification which does not depart from the functional and structural principles of the present invention is intended to be included within the scope of the claims.

Claims (6)

1. The utility model provides an intelligent substation generalized distant place operation information safety device which characterized in that: the system comprises a channel detection module, a message forwarding module, a permission configuration module, a file downloading management module, a file calling management module, a remote login agent module and a virus gateway module, wherein:
the channel detection module is connected with the scheduling master station and the message detection module and is responsible for detecting the IP address and port identification of the scheduling master station, limiting the access of illegal IP addresses and ports and generating warning information;
the message detection module is used for detecting messages of an application layer of the scheduling master station, identifying message flow, message types and data point numbers in the messages, discarding illegal messages and generating warning information;
the message forwarding module is connected with the message detection module and the interlayer equipment and is responsible for forwarding the message allowed by the authority to the interlayer equipment;
the file downloading management module, the file calling management module and the remote login agent module are connected with the operation and maintenance terminal and the spacer layer equipment, and the file downloading management module is used for detecting an IP address of the operation and maintenance terminal, a file transmission protocol and downloaded file contents so as to prevent the operation and maintenance terminal from accessing by using an illegal IP, transmitting files by using the illegal file transmission protocol and transmitting files which are not authorized by management personnel; the remote login agent module is used for detecting whether an IP address and a remote login protocol of the operation and maintenance terminal are authorized or not, and converting remote login of the authorized operation and maintenance terminal to the intelligent substation generalized remote operation information safety device into remote login of the set specified equipment;
the virus gateway module is used for scanning the viruses of the files to be downloaded to the equipment by the file downloading management module one by one;
and the authority configuration module is used for providing authority configuration for the channel detection module, the message forwarding module, the file downloading management module, the file calling management module, the remote login agent module and the virus gateway module.
2. The intelligent substation generalized remote operation information safety device of claim 1, characterized in that: the intelligent substation generalized remote operation information safety device is provided with more than 12 mutually independent Ethernet ports, and comprises an operation port, a networking port, a monitoring port and an operation and maintenance port, wherein the operation port is connected with a scheduling master station; the networking port is connected with equipment in the intelligent substation; the monitoring port is connected with the management terminal; the operation and maintenance port is connected with the operation and maintenance terminal.
3. The intelligent substation generalized remote operation information safety device of claim 1, characterized in that: the intelligent substation generalized remote operation information safety device is provided with a multi-path power supply module, and the multi-path power supply module is connected with a multi-path power supply.
4. The intelligent substation generalized remote operation information safety device according to any one of claims 1 to 3, characterized in that: and changing the virus scanning strategy of the virus gateway module in real time and updating the virus library in real time through the management terminal.
5. The intelligent substation generalized remote operation information safety device of claim 4, characterized in that: and issuing the remote operation authority to the authority configuration module through the management terminal.
6. A safe operation and maintenance method of a generalized remote operation information safety device of an intelligent substation, which is maintained by adopting the generalized remote operation information safety device of the intelligent substation of any one of claims 1 to 5, and is characterized in that: comprises a remote operation safety protection method of a dispatching master station and a safety maintenance method of equipment at a spacer layer of a transformer substation,
the remote operation safety protection method of the dispatching master station comprises the following steps:
1) a manager sets a scheduling master station communication parameter, an operation type and a message type white list through a management terminal;
2) the intelligent substation generalized remote operation information safety device limits the connection of the scheduling master stations according to the white list of the communication parameters of the scheduling master stations, allows the scheduling master stations in the white list to connect, forbids the scheduling master stations outside the white list to connect, and records logs to send an alarm;
3) the intelligent substation generalized remote operation information safety device limits the remote operation type of the scheduling master station according to the operation type white list of the scheduling master station, allows the scheduling master station to perform remote operation in the white list, prohibits the scheduling master station from performing remote operation outside the white list, and records a log to send an alarm;
4) the intelligent substation generalized remote operation information safety device limits the message types used by remote operation of the scheduling master station according to the scheduling master station message type white list, allows the remote operation of the scheduling master station to use the message types in the white list, prohibits the remote operation of the scheduling master station from using the message types outside the white list, and records logs to send alarms;
the safety maintenance method of the substation bay level equipment comprises the following steps:
1) in the authority setting stage, aiming at the maintenance operation of file downloading and the maintenance operation of file calling, setting a maintenance terminal address, a file and a path which are allowed to be transmitted, a maintenance interlayer equipment address and a file transmission protocol, and aiming at the maintenance operation of remote login, setting the maintenance terminal address, the remote login protocol and the maintenance interlayer equipment address;
2) in the maintenance preparation stage, file service is opened for a maintenance terminal according to set authority aiming at maintenance operation of file downloading, the file to be downloaded by the maintenance terminal is transmitted to the intelligent substation generalized remote operation information safety device, the file in the bay level equipment is called to the intelligent substation generalized remote operation information safety device through a specified file transmission protocol according to the set authority aiming at maintenance operation of file calling, a network environment is opened for the maintenance terminal according to the set authority aiming at maintenance operation of remote login, and the maintenance terminal is connected to the intelligent substation generalized remote operation information safety device;
3) in the maintenance execution stage, files to be downloaded are downloaded to target bay level equipment through a specified file transmission protocol according to the set authority for the file downloading maintenance operation, the called files are taken away from the intelligent substation generalized remote operation information safety device through specified file service by a maintenance terminal according to the set authority for the file calling maintenance operation, a remote login protocol is opened according to the set authority for the remote login maintenance operation, and operation and maintenance personnel start debugging;
4) and at the maintenance finishing stage, the operation and maintenance terminal disconnects the physical connection with the generalized remote operation information safety device of the intelligent substation and clears the operation authority.
CN202010158802.0A 2020-03-09 2020-03-09 Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation Active CN111565167B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010158802.0A CN111565167B (en) 2020-03-09 2020-03-09 Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010158802.0A CN111565167B (en) 2020-03-09 2020-03-09 Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation

Publications (2)

Publication Number Publication Date
CN111565167A CN111565167A (en) 2020-08-21
CN111565167B true CN111565167B (en) 2022-05-17

Family

ID=72073062

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010158802.0A Active CN111565167B (en) 2020-03-09 2020-03-09 Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation

Country Status (1)

Country Link
CN (1) CN111565167B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115118509A (en) * 2022-06-29 2022-09-27 国网河南省电力公司电力科学研究院 Substation secondary equipment debugging file permission detection method and security control device

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015192659A1 (en) * 2014-06-19 2015-12-23 国家电网公司 Intelligent transformer substation warning message reporting method
CN106302540A (en) * 2016-10-14 2017-01-04 国网浙江省电力公司绍兴供电公司 Communications network security detecting system based on substation information safety and method
CN109103986A (en) * 2018-08-27 2018-12-28 南京南瑞继保电气有限公司 Substation's remote operation safety protecting method and system
CN109302404A (en) * 2018-10-30 2019-02-01 国电南瑞南京控制系统有限公司 A kind of remote maintenance authenticating operation method of wide area operational system
CN109981568A (en) * 2019-02-15 2019-07-05 中国南方电网有限责任公司 A kind of substation's remote operation safety protecting method based on binary channels authentication
CN110289681A (en) * 2019-06-10 2019-09-27 国网福建省电力有限公司泉州供电公司 Intelligent substation regulates and controls remote operation modeling, monitoring method and monitoring system

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5530996B2 (en) * 2011-11-15 2014-06-25 株式会社日立製作所 Distribution network communication system, communication path setting apparatus and method
CN106253487B (en) * 2016-09-29 2019-02-05 北京东土科技股份有限公司 Intelligent electric power server applied to intelligent substation Protection control system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015192659A1 (en) * 2014-06-19 2015-12-23 国家电网公司 Intelligent transformer substation warning message reporting method
CN106302540A (en) * 2016-10-14 2017-01-04 国网浙江省电力公司绍兴供电公司 Communications network security detecting system based on substation information safety and method
CN109103986A (en) * 2018-08-27 2018-12-28 南京南瑞继保电气有限公司 Substation's remote operation safety protecting method and system
CN109302404A (en) * 2018-10-30 2019-02-01 国电南瑞南京控制系统有限公司 A kind of remote maintenance authenticating operation method of wide area operational system
CN109981568A (en) * 2019-02-15 2019-07-05 中国南方电网有限责任公司 A kind of substation's remote operation safety protecting method based on binary channels authentication
CN110289681A (en) * 2019-06-10 2019-09-27 国网福建省电力有限公司泉州供电公司 Intelligent substation regulates and controls remote operation modeling, monitoring method and monitoring system

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
变电站监控信息接入自动验收方法研究;高峰;《电子设计工程》;20181105(第21期);全文 *
智能变电站系统安全防护技术研究;翟峰等;《自动化与仪表》;20150315(第03期);全文 *

Also Published As

Publication number Publication date
CN111565167A (en) 2020-08-21

Similar Documents

Publication Publication Date Title
CN106982235B (en) IEC 61850-based electric power industry control network intrusion detection method and system
Yang et al. Multidimensional intrusion detection system for IEC 61850-based SCADA networks
EP2721801B1 (en) Security measures for the smart grid
CN101728869B (en) Power station automation system data network security monitoring method
CN109995796A (en) Industrial control system terminal safety protection method
CN109976239A (en) Industrial control system terminal security guard system
CN112738063A (en) Industrial control system network safety monitoring platform
CN214306527U (en) Gas pipe network scheduling monitoring network safety system
KR20120058913A (en) Intelligent Electric Device, network system including the device and the protecting method for the network
CN112468592B (en) Terminal online state detection method and system based on electric power information acquisition
CN112751843A (en) Network safety protection system of railway power supply system
CN111565167B (en) Generalized remote operation information safety device and safety operation and maintenance method for intelligent substation
Czechowski et al. Cyber security in communication of SCADA systems using IEC 61850
Hu et al. An enhanced multi-stage semantic attack against industrial control systems
Kabir-Querrec et al. Power utility automation cybersecurity: IEC 61850 specification of an intrusion detection function
CN101621427B (en) Anti-intrusion method and system for a communication network
CN113382076A (en) Internet of things terminal security threat analysis method and protection method
Mahboob et al. Intrusion avoidance for SCADA security in industrial plants
Dai et al. Risk assessment for cyber attacks in feeder automation system
CN106534110A (en) Three-in-one security protection system architecture for substation secondary system
KR102145421B1 (en) Digital substation with smart gateway
Lai et al. An active security defense strategy for wind farm based on automated decision
Yang et al. Cybersecurity testing technology in smart substations
Wang et al. Research on network security active defense system oriented to electric power monitoring system
KR102160539B1 (en) Digital substation with smart gateway

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant