CN112422560A - 基于安全套接层的轻量级变电站安全通信方法及系统 - Google Patents
基于安全套接层的轻量级变电站安全通信方法及系统 Download PDFInfo
- Publication number
- CN112422560A CN112422560A CN202011290858.8A CN202011290858A CN112422560A CN 112422560 A CN112422560 A CN 112422560A CN 202011290858 A CN202011290858 A CN 202011290858A CN 112422560 A CN112422560 A CN 112422560A
- Authority
- CN
- China
- Prior art keywords
- client
- server
- encryption
- certificate
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 93
- 238000004891 communication Methods 0.000 title claims abstract description 82
- 230000005540 biological transmission Effects 0.000 claims abstract description 51
- 238000002360 preparation method Methods 0.000 claims abstract description 15
- 238000004422 calculation algorithm Methods 0.000 claims description 54
- 230000004044 response Effects 0.000 claims description 39
- 238000012795 verification Methods 0.000 claims description 21
- 238000007906 compression Methods 0.000 claims description 16
- 230000006835 compression Effects 0.000 claims description 16
- 230000003993 interaction Effects 0.000 abstract description 8
- 231100000279 safety data Toxicity 0.000 abstract 1
- 238000010586 diagram Methods 0.000 description 15
- 230000006870 function Effects 0.000 description 11
- 230000008569 process Effects 0.000 description 11
- 238000004364 calculation method Methods 0.000 description 9
- 238000005516 engineering process Methods 0.000 description 8
- 238000013507 mapping Methods 0.000 description 8
- 230000002457 bidirectional effect Effects 0.000 description 7
- 238000004590 computer program Methods 0.000 description 7
- 230000002787 reinforcement Effects 0.000 description 6
- 238000012545 processing Methods 0.000 description 5
- 238000013478 data encryption standard Methods 0.000 description 4
- 230000004807 localization Effects 0.000 description 4
- 238000012544 monitoring process Methods 0.000 description 4
- 230000008520 organization Effects 0.000 description 4
- 230000008859 change Effects 0.000 description 3
- 238000005538 encapsulation Methods 0.000 description 3
- 230000007246 mechanism Effects 0.000 description 3
- 238000003860 storage Methods 0.000 description 3
- 101001094649 Homo sapiens Popeye domain-containing protein 3 Proteins 0.000 description 2
- 101000608234 Homo sapiens Pyrin domain-containing protein 5 Proteins 0.000 description 2
- 101000578693 Homo sapiens Target of rapamycin complex subunit LST8 Proteins 0.000 description 2
- 102100027802 Target of rapamycin complex subunit LST8 Human genes 0.000 description 2
- 230000006872 improvement Effects 0.000 description 2
- 238000009434 installation Methods 0.000 description 2
- 230000000670 limiting effect Effects 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000002829 reductive effect Effects 0.000 description 2
- 238000006467 substitution reaction Methods 0.000 description 2
- 230000003044 adaptive effect Effects 0.000 description 1
- 238000004458 analytical method Methods 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 230000006837 decompression Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012946 outsourcing Methods 0.000 description 1
- 238000004806 packaging method and process Methods 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 230000002441 reversible effect Effects 0.000 description 1
- 238000004088 simulation Methods 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000005728 strengthening Methods 0.000 description 1
- 238000013519 translation Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0435—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0643—Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
Abstract
Description
Claims (19)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011290858.8A CN112422560A (zh) | 2020-11-17 | 2020-11-17 | 基于安全套接层的轻量级变电站安全通信方法及系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202011290858.8A CN112422560A (zh) | 2020-11-17 | 2020-11-17 | 基于安全套接层的轻量级变电站安全通信方法及系统 |
Publications (1)
Publication Number | Publication Date |
---|---|
CN112422560A true CN112422560A (zh) | 2021-02-26 |
Family
ID=74831655
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202011290858.8A Pending CN112422560A (zh) | 2020-11-17 | 2020-11-17 | 基于安全套接层的轻量级变电站安全通信方法及系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112422560A (zh) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113114460A (zh) * | 2021-06-15 | 2021-07-13 | 国网浙江省电力有限公司杭州供电公司 | 一种基于量子加密的配电网信息安全传输方法 |
CN113347010A (zh) * | 2021-08-05 | 2021-09-03 | 深圳市财富趋势科技股份有限公司 | 基于ssl-tls协议的双向认证方法、装置 |
CN113472792A (zh) * | 2021-07-01 | 2021-10-01 | 北京玩蟹科技有限公司 | 一种长连接网络通信加密方法及系统 |
CN113672547A (zh) * | 2021-08-26 | 2021-11-19 | 中国核动力研究设计院 | 一种仪控设备数据交互握手方法 |
CN115037490A (zh) * | 2021-11-12 | 2022-09-09 | 国网浙江省电力有限公司衢州供电公司 | 一种用于变电站恶意代码检测的跨网络通信系统 |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030177358A1 (en) * | 2000-08-01 | 2003-09-18 | Tobias Martin | Method for key agreement for a cryptographic secure point - to - multipoint connection |
CN1787525A (zh) * | 2005-11-15 | 2006-06-14 | 上海格尔软件股份有限公司 | 双证书在ssl协议中的应用方法 |
CN101860546A (zh) * | 2010-06-18 | 2010-10-13 | 杭州电子科技大学 | 一种改进ssl握手协议的方法 |
CN104378374A (zh) * | 2014-11-14 | 2015-02-25 | 国家超级计算深圳中心(深圳云计算中心) | 一种基于安全套接层建立通信的方法及系统 |
CN107231347A (zh) * | 2017-05-05 | 2017-10-03 | 国网福建省电力有限公司 | 一种数据流传输服务的方法及系统 |
CN109347809A (zh) * | 2018-09-25 | 2019-02-15 | 北京计算机技术及应用研究所 | 一种面向自主可控环境下的应用虚拟化安全通信方法 |
CN110324180A (zh) * | 2019-06-17 | 2019-10-11 | 国电南瑞科技股份有限公司 | 变电站自动化设备广域运维安全设计方法 |
CN111740844A (zh) * | 2020-06-24 | 2020-10-02 | 上海缔安科技股份有限公司 | 基于硬件的国密算法的ssl通信方法及装置 |
-
2020
- 2020-11-17 CN CN202011290858.8A patent/CN112422560A/zh active Pending
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030177358A1 (en) * | 2000-08-01 | 2003-09-18 | Tobias Martin | Method for key agreement for a cryptographic secure point - to - multipoint connection |
CN1787525A (zh) * | 2005-11-15 | 2006-06-14 | 上海格尔软件股份有限公司 | 双证书在ssl协议中的应用方法 |
CN101860546A (zh) * | 2010-06-18 | 2010-10-13 | 杭州电子科技大学 | 一种改进ssl握手协议的方法 |
CN104378374A (zh) * | 2014-11-14 | 2015-02-25 | 国家超级计算深圳中心(深圳云计算中心) | 一种基于安全套接层建立通信的方法及系统 |
CN107231347A (zh) * | 2017-05-05 | 2017-10-03 | 国网福建省电力有限公司 | 一种数据流传输服务的方法及系统 |
CN109347809A (zh) * | 2018-09-25 | 2019-02-15 | 北京计算机技术及应用研究所 | 一种面向自主可控环境下的应用虚拟化安全通信方法 |
CN110324180A (zh) * | 2019-06-17 | 2019-10-11 | 国电南瑞科技股份有限公司 | 变电站自动化设备广域运维安全设计方法 |
CN111740844A (zh) * | 2020-06-24 | 2020-10-02 | 上海缔安科技股份有限公司 | 基于硬件的国密算法的ssl通信方法及装置 |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113114460A (zh) * | 2021-06-15 | 2021-07-13 | 国网浙江省电力有限公司杭州供电公司 | 一种基于量子加密的配电网信息安全传输方法 |
CN113114460B (zh) * | 2021-06-15 | 2021-08-24 | 国网浙江省电力有限公司杭州供电公司 | 一种基于量子加密的配电网信息安全传输方法 |
CN113472792A (zh) * | 2021-07-01 | 2021-10-01 | 北京玩蟹科技有限公司 | 一种长连接网络通信加密方法及系统 |
CN113347010A (zh) * | 2021-08-05 | 2021-09-03 | 深圳市财富趋势科技股份有限公司 | 基于ssl-tls协议的双向认证方法、装置 |
CN113672547A (zh) * | 2021-08-26 | 2021-11-19 | 中国核动力研究设计院 | 一种仪控设备数据交互握手方法 |
CN115037490A (zh) * | 2021-11-12 | 2022-09-09 | 国网浙江省电力有限公司衢州供电公司 | 一种用于变电站恶意代码检测的跨网络通信系统 |
CN115037490B (zh) * | 2021-11-12 | 2023-12-15 | 国网浙江省电力有限公司衢州供电公司 | 一种用于变电站恶意代码检测的跨网络通信系统 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108650227B (zh) | 基于数据报安全传输协议的握手方法及系统 | |
CN109088870B (zh) | 一种新能源厂站发电单元采集终端安全接入平台的方法 | |
Bonetto et al. | Secure communication for smart IoT objects: Protocol stacks, use cases and practical examples | |
CN112422560A (zh) | 基于安全套接层的轻量级变电站安全通信方法及系统 | |
CN101409619B (zh) | 闪存卡及虚拟专用网密钥交换的实现方法 | |
CN104580189A (zh) | 一种安全通信系统 | |
CN110995414B (zh) | 基于国密算法在tls1_3协议中建立通道的方法 | |
CN111756529B (zh) | 一种量子会话密钥分发方法及系统 | |
CN104639534A (zh) | 网站安全信息的加载方法和浏览器装置 | |
Khan et al. | Design and implementation of security gateway for synchrophasor based real-time control and monitoring in smart grid | |
US20200351107A1 (en) | Secure authentication of remote equipment | |
CN104580190A (zh) | 安全浏览器的实现方法和安全浏览器装置 | |
KR20010058744A (ko) | 통신 프로토콜 운용 방법 | |
CN104219217A (zh) | 安全关联协商方法、设备和系统 | |
CN111756528B (zh) | 一种量子会话密钥分发方法、装置及通信架构 | |
CN110247803B (zh) | 一种针对网络管理协议SNMPv3的协议优化架构及其方法 | |
CN115567206A (zh) | 采用量子分发密钥实现网络数据报文加解密方法及系统 | |
CN113572766A (zh) | 电力数据传输方法和系统 | |
CN114024698A (zh) | 一种基于国密算法的配电物联网业务安全交互方法及系统 | |
CN114422256B (zh) | 一种基于ssal/ssl协议的高性能安全接入方法及装置 | |
CN115085943A (zh) | 用于电力物联网南北向安全加密的边缘计算方法及平台 | |
CN211352206U (zh) | 基于量子密钥分发的IPSec VPN密码机 | |
CN116132043B (zh) | 会话密钥协商方法、装置及设备 | |
CN106101056B (zh) | 一种代理软件软件架构中数据处理方法及让ie浏览器基于国密ssl协议通信的方法 | |
CN112787819B (zh) | 一种工业控制安全通信系统及通信方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
TA01 | Transfer of patent application right | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20210409 Address after: 100192 Beijing city Haidian District Qinghe small Camp Road No. 15 Applicant after: CHINA ELECTRIC POWER RESEARCH INSTITUTE Co.,Ltd. Applicant after: STATE GRID CORPORATION OF CHINA Applicant after: STATE GRID JIANGSU ELECTRIC POWER Co.,Ltd. Applicant after: STATE GRID JIANGSU ELECTRIC POWER COMPANY Research Institute Address before: 100192 Beijing city Haidian District Qinghe small Camp Road No. 15 Applicant before: CHINA ELECTRIC POWER RESEARCH INSTITUTE Co.,Ltd. Applicant before: STATE GRID CORPORATION OF CHINA Applicant before: STATE GRID JIANGSU ELECTRIC POWER Co.,Ltd. |
|
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210226 |