CN114124481A - 双级配网安全模块终端系统 - Google Patents

双级配网安全模块终端系统 Download PDF

Info

Publication number
CN114124481A
CN114124481A CN202111313136.4A CN202111313136A CN114124481A CN 114124481 A CN114124481 A CN 114124481A CN 202111313136 A CN202111313136 A CN 202111313136A CN 114124481 A CN114124481 A CN 114124481A
Authority
CN
China
Prior art keywords
module
security
security module
terminal
safety
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111313136.4A
Other languages
English (en)
Inventor
张国兰
张东
蒋旭东
徐金华
喻宜
吕志来
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Xu Ji Electric Co ltd
Original Assignee
Beijing Xu Ji Electric Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Xu Ji Electric Co ltd filed Critical Beijing Xu Ji Electric Co ltd
Priority to CN202111313136.4A priority Critical patent/CN114124481A/zh
Publication of CN114124481A publication Critical patent/CN114124481A/zh
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0209Architectural arrangements, e.g. perimeter networks or demilitarized zones
    • HELECTRICITY
    • H02GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
    • H02JCIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
    • H02J13/00Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
    • H02J13/00006Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by information or instructions transport means between the monitoring, controlling or managing units and monitored, controlled or operated power network element or electrical equipment
    • H02J13/00016Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by information or instructions transport means between the monitoring, controlling or managing units and monitored, controlled or operated power network element or electrical equipment using a wired telecommunication network or a data transmission bus
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02EREDUCTION OF GREENHOUSE GAS [GHG] EMISSIONS, RELATED TO ENERGY GENERATION, TRANSMISSION OR DISTRIBUTION
    • Y02E60/00Enabling technologies; Technologies with a potential or indirect contribution to GHG emissions mitigation
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y04INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
    • Y04SSYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
    • Y04S40/00Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
    • Y04S40/12Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them characterised by data transport means between the monitoring, controlling or managing units and monitored, controlled or operated electrical equipment
    • Y04S40/124Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them characterised by data transport means between the monitoring, controlling or managing units and monitored, controlled or operated electrical equipment using wired telecommunication networks or data transmission busses
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y04INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
    • Y04SSYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
    • Y04S40/00Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
    • Y04S40/20Information technology specific aspects, e.g. CAD, simulation, modelling, system security

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Remote Monitoring And Control Of Power-Distribution Networks (AREA)

Abstract

本发明实施例提供了一种双级配网安全模块终端系统,包括两个互为备份安全模块终端,其中所述两个互为备份的安全模块终端相互并联后通过一个分线器连接配电终端,并通过另一个分线器连接安全接入网关;其中所述每一安全模块终端都包括:加密模块、安全芯片;其中所述加密模块用于分别与网关和主站进行双重双向身份验证,其中所述内置安全芯片用于为所述加密模块提供密钥。

Description

双级配网安全模块终端系统
技术领域
本发明属于涉及信息技术领域,尤其涉及一种双级配网安全模块终端系统。
背景技术
随着电网安全等级的提高,运行安全已经涉及到全网,为了加强配电自动化系统安全防护,保障电力监控系统的安全,《电力监控系统安全防护规定》 (国家发展和改革委员会令2014年第14号)(以下简称“14号令”)和《关于印发电力监控系统安全防护总体方案等安全防护方案和评估规范的通知》 (国能安全〔2015〕36号)(以下简称“36号文”)等对配电自动化系统的安全防护做出了原则性规定。
为贯彻落实国家网络安全和信息化工作要求,积极应对当前网络信息安全面临的严峻形势,进一步提升配电自动化系统安全防护水平,保障电网安全稳定运行,国网运检部2017年下面发了《国网运检部关于做好配电自动化建设应用工作的通知》(运检三〔2017〕6号)(以下简称“6号文”),通知中配套下发的《配电自动化系统网络安全防护方案》对配电自动化系统存量及新增市场的网络安全防护做出了明确的要求,其中涉及的网络安全产品类有防火墙、配电加密认证装置、配电专用安全接入网关、加密模块等。
但是现有的安全模块终端一旦进行在线升级,就会给整个系统带来安全隐患。
发明内容
针对现有技术中对于安全模块终端在升级时可能导致安全隐患的问题,本发明实施例的目的是提供一种双级配网安全模块终端系统,以提供一种可靠的安全模块终端,提高系统的整体安全性。
为了解决上述问题,本发明实施例提出了一种双级配网安全模块终端系统,包括:两个互为备份安全模块终端,其中所述两个互为备份的安全模块终端相互并联后通过一个分线器连接配电终端,并通过另一个分线器连接安全接入网关;其中所述每一安全模块终端都包括:加密模块、安全芯片;其中所述加密模块用于分别与网关和主站进行双重双向身份验证,其中所述内置安全芯片用于为所述加密模块提供密钥。
进一步的,其中所述配电终端设有RJ45接口以连接所述分线器。
进一步的,所述每一安全模块终端都具有RJ45接口以连接所述分线器,以使所述安全模块终端通过所述分线器与所述配电终端进行通信。
进一步的,所述安全接入网关设有RJ45接口,以使所述安全接入网关通过所述分线器连接所述两个互为备份的安全模块终端。
进一步的,还包括控制终端,所述控制终端分别连接所述两个互为备份安全模块终端,以使所述两个互为备份安全模块终端分别进行升级。
本发明的有益效果在于:本发明实施例提出了一种双级配网安全模块终端系统,能够通过两个互为备份安全模块终端形成最小安全升级系统;这样两个互为备份的安全模块终端能够分别进行升级和工作,以提高整体系统的安全性。
附图说明
图1是本发明实施例的最小安全升级系统的结构示意图;
图2是本发明实施例的安全模块终端的结构示意图;
附图标记说明:
1:配点终端 2:分线器 3:安全模块终端
4:安全模块终端 5:分线器 6:最小安全升级系统
7:安全接入网关 8:加密模块 9:安全芯片。
具体实施例
为了使本发明的目的、技术方案及优点更加清楚明白,以下结合附图,对本发明进一步详细说明。应当理解,此处所描述的具体实施例仅仅用以解释本发明,并不用于限定本发明。
下面结合附图及本发明的实施例对后评估的方法进一步说明。
本发明公开了一套最小安全升级系统6,其连接配点终端1和安全接入网关7;其中所述最小安全升级系统包括:分线器2、安全模块终端3、安全模块终端4、分线器5、加密模块8、安全芯片9;其中分线器2和分线器5都具有RJ45接口,以分别连接安全模块终端3、安全模块终端4的RJ45接口;其中安全模块终端3和安全模块终端4都具有加密模块8、安全芯片9;其中加密模块9用于分别与网关和主站进行双重双向身份验证;还用于当验证通过后,与主站在交互业务数据时,基于密码算法对所述业务数据进行分级加解密;其中内置安全芯片8用于为所述加密模块提供密钥。
其中基于安全芯片9的安全模块终端3和4与两个分线器2和5,构成一套可满足配网安全升级要求的最小安全升级系统。该系统可以快速适应不同的配网安全升级;按照上级部门要求,要定期安全升级,双模块模式可以满足一个模块升级,另一个模块继续工作,热备用模式。
本发明主要目的是在基于配电终端产品基础上的融合设计,采用国网要求的二重四认证规则要求,创新性采用有线单端接入,双链路,单输出模式,满足安全不断升级的要求。当上级部门要求将安全装置进行线下升级时,可以卸掉一个链路模块,进行升级,另一个模块继续工作,升级完毕以后,再更换另一个没有升级链路进行升级。
本发明在系统加入双链路模式,前后引入两个一分二接线模式,实现双级热备,并充分考虑到了配网开闭站、箱变、柱上开关对设备空间的要求,设备整体体积控制在100mm×60mm×20mm的范围内,固定方式采用粘挂螺丝模式,供电采用POE模式供电。发明具有满足电网安全要求,具有快速布置,快速升级,工程量小的特点。适合配网安全升级改造应用。
以上所述是本发明的优选实施方式,应当指出,对于本技术领域的普通技术人员来说,在不脱离本发明所述原理的前提下,还可以作出若干改进和润饰,这些改进和润饰也应视为本发明的保护范围。

Claims (5)

1.一种双级配网安全模块终端系统,其特征在于,包括两个互为备份安全模块终端,其中所述两个互为备份的安全模块终端相互并联后通过一个分线器连接配电终端,并通过另一个分线器连接安全接入网关;其中所述每一安全模块终端都包括:加密模块、安全芯片;其中所述加密模块用于分别与网关和主站进行双重双向身份验证,其中所述内置安全芯片用于为所述加密模块提供密钥。
2.根据权利要求1所述的双级配网安全模块终端系统,其特征在于,所述配电终端设有RJ45接口以连接所述分线器。
3.根据权利要求2所述的双级配网安全模块终端系统,其特征在于,所述每一安全模块终端都具有RJ45接口以连接所述分线器,以使所述安全模块终端通过所述分线器与所述配电终端进行通信。
4.根据权利要求1所述的双级配网安全模块终端系统,其特征在于,所述安全接入网关设有RJ45接口,以使所述安全接入网关通过所述分线器连接所述两个互为备份的安全模块终端。
5.根据权利要求1所述的双级配网安全模块终端系统,其特征在于,所述控制终端分别连接所述两个互为备份安全模块终端,以使所述两个互为备份安全模块终端分别进行升级。
CN202111313136.4A 2021-11-08 2021-11-08 双级配网安全模块终端系统 Pending CN114124481A (zh)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111313136.4A CN114124481A (zh) 2021-11-08 2021-11-08 双级配网安全模块终端系统

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111313136.4A CN114124481A (zh) 2021-11-08 2021-11-08 双级配网安全模块终端系统

Publications (1)

Publication Number Publication Date
CN114124481A true CN114124481A (zh) 2022-03-01

Family

ID=80381316

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111313136.4A Pending CN114124481A (zh) 2021-11-08 2021-11-08 双级配网安全模块终端系统

Country Status (1)

Country Link
CN (1) CN114124481A (zh)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110132069A1 (en) * 2006-07-10 2011-06-09 Astrium Sas Device for generating impacts with a structure
CN107358124A (zh) * 2017-06-14 2017-11-17 北京多思技术服务有限公司 一种处理器
CN110535653A (zh) * 2019-07-15 2019-12-03 中国电力科学研究院有限公司 一种安全的配电终端及其通讯方法
CN112395236A (zh) * 2020-11-13 2021-02-23 中车株洲电力机车有限公司 一种分布式车载安全计算机系统
CN113158201A (zh) * 2021-02-26 2021-07-23 云码智能(海南)科技有限公司 信息的安全备份方法及装置

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20110132069A1 (en) * 2006-07-10 2011-06-09 Astrium Sas Device for generating impacts with a structure
CN107358124A (zh) * 2017-06-14 2017-11-17 北京多思技术服务有限公司 一种处理器
CN110535653A (zh) * 2019-07-15 2019-12-03 中国电力科学研究院有限公司 一种安全的配电终端及其通讯方法
CN112395236A (zh) * 2020-11-13 2021-02-23 中车株洲电力机车有限公司 一种分布式车载安全计算机系统
CN113158201A (zh) * 2021-02-26 2021-07-23 云码智能(海南)科技有限公司 信息的安全备份方法及装置

Similar Documents

Publication Publication Date Title
CN104106056A (zh) 变电站自动化系统以及终端的自动识别方法
CN105071544A (zh) 基于特征值比对的智能变电站继电保护在线监测系统
CN102496211B (zh) 一种充电站充电计量系统及计量方法
CN105576660A (zh) 地区配电网在线仿真分析装置及系统
CN103166765B (zh) 一种PoE功率门限切换方法和设备
CN104192153A (zh) 轨道列车控制器
CN105978146B (zh) D5000调度自动化主站系统与变电站五防系统之间的通信方式
CN103150830A (zh) 一种充电站充电计量方法
CN105162251A (zh) 一种适用于保护信息系统应用分析功能的保护装置建模方法
CN107069801A (zh) 一种基于最小用户停电损失的配电网孤岛划分方法
CN107275963B (zh) 一种智能变电站二次检修安全措施自动生成方法
CN114124481A (zh) 双级配网安全模块终端系统
CN106026047A (zh) 一种基于多源协调配合的高可靠配电自动化的优化控制方法
CN105554693A (zh) 蓝牙设备的配对方法和装置
CN202480901U (zh) 一种电动汽车电池管理系统通信线路
CN207053244U (zh) 一种安稳装置和备自投装置联锁控制装置及系统
CN106530022A (zh) 一种税控核心板 、使用方法及税控服务器
CN110223462A (zh) 一种税控盘共享开票系统
CN109450092A (zh) 配电网过负荷预警监控系统
CN104467182A (zh) 一种站控层设备不停电遥控系统及方法
CN107222020A (zh) 一种安稳装置和备自投装置联锁控制方法、装置及系统
CN203218961U (zh) 一种用于通信设备群的低压直流电源组电源板备份装置
Burns et al. After the lights went out
CN215268316U (zh) 一种配电变压器台区智能营配融合终端测试系统
CN104850095A (zh) 一种综自测控消缺指导系统

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20220301