CN114400517A - Transformer substation partition monitoring system - Google Patents
Transformer substation partition monitoring system Download PDFInfo
- Publication number
- CN114400517A CN114400517A CN202111518108.6A CN202111518108A CN114400517A CN 114400517 A CN114400517 A CN 114400517A CN 202111518108 A CN202111518108 A CN 202111518108A CN 114400517 A CN114400517 A CN 114400517A
- Authority
- CN
- China
- Prior art keywords
- area
- control
- management
- monitoring
- production
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000012544 monitoring process Methods 0.000 title claims description 200
- 238000005192 partition Methods 0.000 title claims description 21
- 238000004519 manufacturing process Methods 0.000 claims abstract description 175
- 238000004891 communication Methods 0.000 claims abstract description 33
- 238000001914 filtration Methods 0.000 claims abstract description 10
- 238000007726 management method Methods 0.000 claims description 219
- 238000002955 isolation Methods 0.000 claims description 53
- 238000004458 analytical method Methods 0.000 claims description 17
- 238000012545 processing Methods 0.000 claims description 14
- 238000005516 engineering process Methods 0.000 claims description 4
- 238000004088 simulation Methods 0.000 claims description 4
- 238000005259 measurement Methods 0.000 claims description 3
- 238000012549 training Methods 0.000 claims description 3
- XLYOFNOQVPJJNP-UHFFFAOYSA-N water Substances O XLYOFNOQVPJJNP-UHFFFAOYSA-N 0.000 claims description 3
- 238000013316 zoning Methods 0.000 claims 1
- 230000005540 biological transmission Effects 0.000 abstract description 30
- 238000000034 method Methods 0.000 abstract description 10
- 238000010586 diagram Methods 0.000 description 12
- 241000700605 Viruses Species 0.000 description 6
- 206010033799 Paralysis Diseases 0.000 description 2
- 230000002159 abnormal effect Effects 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 208000037265 diseases, disorders, signs and symptoms Diseases 0.000 description 1
- 238000013519 translation Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02B—BOARDS, SUBSTATIONS OR SWITCHING ARRANGEMENTS FOR THE SUPPLY OR DISTRIBUTION OF ELECTRIC POWER
- H02B1/00—Frameworks, boards, panels, desks, casings; Details of substations or switching arrangements
- H02B1/24—Circuit arrangements for boards or switchyards
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00001—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by the display of information or by user interaction, e.g. supervisory control and data acquisition systems [SCADA] or graphical user interfaces [GUI]
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00002—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by monitoring
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00006—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network characterised by information or instructions transport means between the monitoring, controlling or managing units and monitored, controlled or operated power network element or electrical equipment
-
- H—ELECTRICITY
- H02—GENERATION; CONVERSION OR DISTRIBUTION OF ELECTRIC POWER
- H02J—CIRCUIT ARRANGEMENTS OR SYSTEMS FOR SUPPLYING OR DISTRIBUTING ELECTRIC POWER; SYSTEMS FOR STORING ELECTRIC ENERGY
- H02J13/00—Circuit arrangements for providing remote indication of network conditions, e.g. an instantaneous record of the open or closed condition of each circuitbreaker in the network; Circuit arrangements for providing remote control of switching means in a power distribution network, e.g. switching in and out of current consumers by using a pulse code signal carried by the network
- H02J13/00032—Systems characterised by the controlled or operated power network elements or equipment, the power network elements or equipment not otherwise provided for
- H02J13/00034—Systems characterised by the controlled or operated power network elements or equipment, the power network elements or equipment not otherwise provided for the elements or equipment being or involving an electric power substation
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02E—REDUCTION OF GREENHOUSE GAS [GHG] EMISSIONS, RELATED TO ENERGY GENERATION, TRANSMISSION OR DISTRIBUTION
- Y02E60/00—Enabling technologies; Technologies with a potential or indirect contribution to GHG emissions mitigation
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S10/00—Systems supporting electrical power generation, transmission or distribution
- Y04S10/16—Electric power substations
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S40/00—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
- Y04S40/12—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them characterised by data transport means between the monitoring, controlling or managing units and monitored, controlled or operated electrical equipment
- Y04S40/128—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them characterised by data transport means between the monitoring, controlling or managing units and monitored, controlled or operated electrical equipment involving the use of Internet protocol
Landscapes
- Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Human Computer Interaction (AREA)
- Remote Monitoring And Control Of Power-Distribution Networks (AREA)
Abstract
The utility model relates to a transformer substation subregion monitored control system, this system includes production control large area and management information large area, the production control large area includes control area and non-control area, the management information large area includes production management district and management information area, be provided with horizontal isolating device between production control large area and the management information large area, horizontal isolating device is used for filtering the data of transmission between production control large area and the management information large area, be provided with first logic isolating device between control area and the non-control area, be provided with second logic isolating device between production management district and the management information area, production control large area and electric power scheduling data network system communication connection, electric power scheduling data network system is used for carrying out scheduling control to the electric power data in production control large area, production management large area and enterprise's comprehensive business data network system and internet communication connection. By adopting the method, the safety protection performance of the transformer substation system can be improved.
Description
Technical Field
The application relates to the technical field of monitoring, in particular to a transformer substation partition monitoring system.
Background
With the development of power systems, the application of intelligent substations is also more and more extensive. In recent years, a plurality of viruses invade a transformer substation system, so that the transformer substation system is paralyzed, large-area power failure is caused, much inconvenience is brought to life of people, and huge economic loss is caused for enterprises. Therefore, it is very important to increase the safety protection performance of the substation system to prevent viruses from invading the substation system.
Disclosure of Invention
In view of the above, it is necessary to provide a substation area monitoring system capable of improving the safety protection performance of a substation system.
A transformer substation zone monitoring system comprises a production control zone and a management information zone, wherein the production control zone comprises a control zone and a non-control zone, the management information zone comprises a production management zone and a management information zone, the control zone comprises a plurality of control software systems of a primary power system, the non-control zone comprises a plurality of non-control software systems of the primary power system, the production management zone comprises a plurality of production management software systems of the primary power system, and the management information zone comprises a plurality of management and office automation software systems of the primary power system;
a transverse isolation device is arranged between the production control large area and the management information large area and is used for filtering data transmitted between the production control large area and the management information large area;
a first logic isolation device is arranged between the control area and the non-control area, and a second logic isolation device is arranged between the production management area and the management information area;
the production control area is in communication connection with a power dispatching data network system, and the power dispatching data network system is used for dispatching and controlling power data of the production control area;
the production management area is in communication connection with an enterprise integrated service data network system and the Internet, and the enterprise integrated service data network system is used for processing production management data of the production management area.
In one embodiment, the transverse isolation device includes a transverse forward isolation device and a transverse reverse isolation device, wherein the transverse forward isolation device is used for filtering data transmitted from the production control area to the management information area, and the transverse reverse isolation device is used for filtering data transmitted from the management information area to the production control area.
In one embodiment, the control area is in communication connection with the power dispatching data network system through a real-time VPN, and communication data between the control area and the power dispatching data network system are subjected to longitudinal encryption authentication processing.
In one embodiment, the non-control area is in communication connection with the power dispatching data network system through a non-real-time VPN, and communication data between the non-control area and the power dispatching data network system are subjected to longitudinal encryption authentication processing.
In one embodiment, the control area includes a control one area and a control two area, the non-control area includes a non-control one area and a non-control two area, the production management area includes a production management one area and a production management two area, and the management information area includes an information management one area and an information management two area;
the first control area is connected with the second control area through an encryption and authentication special line;
the first non-control area and the second non-control area are connected through the encryption and authentication special line.
In one embodiment, firewalls are provided between the production management area and the enterprise integrated services data network system and the internet.
In one embodiment, the plurality of control software systems comprise a scheduling automation system, a wide-area phasor measurement system, an automatic voltage control system, a stability control system, an online pre-decision system, a security system, a distribution automation system, a substation automation system and a power plant automatic monitoring system;
the plurality of non-control software systems comprise a dispatcher training simulation system, a communication protection system, a water dispatching automation system, an electric energy metering system, an electric power market transaction technology support system, a station-side electric energy acquisition system, a fault recording system and a power station quotation system;
the production management software systems comprise a power dispatching operation management system, a dispatching information disclosure system, a lightning monitoring system, a release system of a production control large area system in a management information large area and a dispatching production management user system;
the multiple management and office automation software systems include an asset management system, a marketing management system, a human resource management system, a financial management system, a collaborative office system, a comprehensive management system, and a decision support system.
In one embodiment, the substation partition monitoring system includes a command parsing device, where the command parsing device is configured to receive a monitoring instruction sent by a substation to obtain a monitoring area corresponding to the monitoring instruction, where the monitoring area includes the control area, the non-control area, the production management area, or the management information area; the command analysis device is further configured to send the monitoring instruction to a software system included in the monitoring area, so that the software system performs a monitoring operation in response to the monitoring instruction.
In one embodiment, the command parsing device is specifically configured to: judging whether the monitoring instruction corresponds to the control area, if so, sending the monitoring instruction to a plurality of control software systems of the primary power system in the control area so that the plurality of control software systems respond to the monitoring instruction to perform monitoring operation;
if not, judging whether the monitoring instruction corresponds to the non-control area, if so, sending the monitoring instruction to a plurality of non-control software systems of the primary power system in the non-control area so as to respond to the monitoring instruction by the plurality of non-control software systems to perform monitoring operation;
if not, judging whether the monitoring instruction corresponds to the production management area, if so, sending the monitoring instruction to a plurality of production management software systems of the primary power system in the production management area so as to respond to the monitoring instruction by the plurality of production management software systems to perform monitoring operation;
if not, the monitoring instruction is sent to a plurality of management and office automation software systems of the power primary system included in the management information area, so that the plurality of management and office automation software systems respond to the monitoring instruction to perform monitoring operation.
In one embodiment, the control software systems are used for responding to the monitoring instruction to monitor the control area of the primary power system;
the plurality of non-control software systems are used for responding to the monitoring instruction to monitor a non-control area of the primary power system;
the plurality of production management software systems are used for responding to the monitoring instruction to monitor the production management area of the primary power system;
and the management and office automation software systems are used for responding to the monitoring instruction to monitor the management information area of the primary power system.
The transformer substation subarea monitoring system comprises a production control area and a management information area, wherein the production control area comprises a control area and a non-control area, the management information area comprises a production management area and a management information area, the control area comprises a plurality of control software systems of a primary power system, the non-control area comprises a plurality of non-control software systems of the primary power system, the production management area comprises a plurality of production management software systems of the primary power system, and the management information area comprises a plurality of management and office automation software systems of the primary power system, a transverse isolation device is arranged between the production control area and the management information area and used for filtering data transmitted between the production control area and the management information area, a first logic isolation device is arranged between the control area and the non-control area, and a second logic isolation device is arranged between the production management area and the management information area, the production control area is in communication connection with the power dispatching data network system, the power dispatching data network system is used for dispatching and controlling power data of the production control area, the production management area is in communication connection with the enterprise integrated service data network system and the internet, the enterprise integrated service data network system is used for processing production management data of the production management area, the transformer substation monitoring system is partitioned according to properties, data of each partitioned area are protected in different modes, safety protection performance of each area is improved, and accordingly safety protection performance of the whole transformer substation monitoring system is improved.
Drawings
FIG. 1 is a schematic diagram of a substation area monitoring system in one embodiment;
FIG. 2 is a schematic diagram of a substation area monitoring system in one embodiment;
FIG. 3 is a schematic diagram of a substation area monitoring system in one embodiment;
FIG. 4 is a schematic diagram of a substation area monitoring system in one embodiment;
FIG. 5 is a schematic diagram of a substation area monitoring system in one embodiment;
fig. 6 is a schematic structural diagram of a substation partition monitoring system in one embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application is described in further detail below with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
First, before specifically describing the technical solution of the embodiment of the present disclosure, a technical background or a technical evolution context on which the embodiment of the present disclosure is based is described. With the development of the intelligent power grid dispatching technology, the application of the intelligent substation is more and more extensive, the virus attack to the substation is more and more frequent, and the substation system is paralyzed after being attacked, so that large-area power failure is caused, and great inconvenience is brought to the life of people. The existing transformer substation monitoring system can determine whether the transformer substation system is attacked by viruses or not according to abnormal conditions after monitoring that the transformer substation is abnormal, and the prior art cannot timely monitor whether the transformer substation is attacked by the viruses or not and cannot determine a specific attacked area, so that the safety protection performance of the transformer substation system is low. Aiming at the problems, the method divides the transformer substation monitoring system into areas, monitors different areas respectively, divides the divided areas into grades, and increases the safety protection performance of the areas with different grades in the process of transmitting data, thereby improving the safety protection performance of the whole transformer substation subarea monitoring system.
The following describes the technical solution related to the present embodiment with reference to a scenario in which the present embodiment is applied.
Referring to fig. 1, a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present application is shown, where the substation partition monitoring system 1 includes a production control area 11 and a management information area 12, the production control area 11 includes a control area 111 and a non-control area 112, the management information area 12 includes a production management area 121 and a management information area 122, where the control area 111 includes a plurality of control software systems of a primary power system, the non-control area 112 includes a plurality of non-control software systems of the primary power system, the production management area 121 includes a plurality of production management software systems of the primary power system, and the management information area 122 includes a plurality of management and office automation software systems of the primary power system; a transverse isolation device is arranged between the production control large area 11 and the management information large area 12 and is used for filtering data transmitted between the production control large area and the management information large area; a first logic isolation device is arranged between the control area 111 and the non-control area 112, and a second logic isolation device is arranged between the production management area 121 and the management information area 122; the production control area 11 is in communication connection with the power dispatching data network system 2, and the power dispatching data network system 2 is used for dispatching and controlling power data of the production control area 11; the production management area 12 is in communication connection with the enterprise integrated service data network system 3 and the internet 4, and the enterprise integrated service data network system 3 is used for processing production management data of the production management area.
The power system may include a primary power system and a secondary power system, the primary power system mainly refers to a high-voltage system in the power system, and the primary power system is used for carrying electric energy transmission and distribution tasks. The primary electric power system may include generators, referred to as primary electric power devices of the primary electric power system, power transformers, circuit breakers, disconnectors, power cables, transmission lines, and the like.
Specifically, the horizontal isolation device is to isolate each safety area by using safety devices with different strengths, and a special horizontal isolation device for electric power, which is detected and authenticated by a national specified department, needs to be deployed between the production control area 11 and the information management area 12, so as to ensure the safety of data transmission between the production control area 11 and the management information area 12. Specifically, the logical isolation device means that a network of the control area 111 and the non-control area 112 is physically wired, the logical isolation device ensures that data transmitted between the control area 111 and the non-control area 112 is logically isolated, and only a part of the allowed data can be transmitted through the logical isolation device, so as to ensure the safety of data transmission between the control area 111 and the non-control area 112. The power dispatching data network system is used for transmitting power network automation information, dispatching command instructions, relay protection and safety automation device control information, the production control area 11 can transmit power data to the power dispatching data network system 2, and the power dispatching data network system 2 carries out dispatching control on the power data after receiving the power data. The enterprise integrated service data network system 3 is used for processing various data in the production management area 12, storing various data in the production management area and facilitating the consulting of technicians.
Optionally, the plurality of control software systems include a scheduling automation system, a wide-area phasor measurement system, an automatic voltage control system, a stability control system, an online pre-decision system, a security system, a power distribution automation system, a substation automation system, and a power plant automatic monitoring system; the plurality of non-control software systems comprise a dispatcher training simulation system, a letter protection system, a water dispatching automation system, an electric energy metering system, an electric power market transaction technology support system, a station end electric energy acquisition system, a fault recording system and a power station quotation system; the production management software systems comprise a power dispatching operation management system, a dispatching information disclosure system, a lightning monitoring system, a release system of a production control large area system in a management information large area and a dispatching production management user system; the plurality of management and office automation software systems comprise an asset management system, a marketing management system, a human resource management system, a financial management system, a cooperative office system, a comprehensive management system and a decision support system.
The transformer substation subarea monitoring system comprises a production control area and a management information area, wherein the production control area comprises a control area and a non-control area, the management information area comprises a production management area and a management information area, the control area comprises a plurality of control software systems of a primary power system, the non-control area comprises a plurality of non-control software systems of the primary power system, the production management area comprises a plurality of production management software systems of the primary power system, and the management information area comprises a plurality of management and office automation software systems of the primary power system, a transverse isolation device is arranged between the production control area and the management information area and used for filtering data transmitted between the production control area and the management information area, a first logic isolation device is arranged between the control area and the non-control area, and a second logic isolation device is arranged between the production management area and the management information area, the production control area is in communication connection with the power dispatching data network system, the power dispatching data network system is used for dispatching and controlling power data of the production control area, the production management area is in communication connection with the enterprise integrated service data network system and the Internet, the enterprise integrated service data network system is used for processing production management data of the production management area, the transformer substation monitoring system is partitioned according to properties, data of each partitioned area are protected in different modes, safety protection performance of each area is improved, and accordingly safety protection performance of the whole transformer substation monitoring system is improved.
Referring to fig. 2, a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present invention is shown, in which a lateral isolation device includes a lateral forward isolation device and a lateral reverse isolation device, where the lateral forward isolation device is configured to filter data transmitted from a production control large area 11 to a management information large area 12, and the lateral reverse isolation device is configured to filter data transmitted from the management information large area 12 to the production control large area 11.
Specifically, the transverse isolation device is equivalent to a safety network gate in the using process, so that data transmission between the production control area 11 and the management information area 12 on two sides of the transverse isolation device can only be transmitted in a single direction and cannot be transmitted in two directions, and therefore the transverse isolation device is divided into a transverse forward isolation device and a transverse reverse isolation device. When the production control area 11 transmits data to the management information area 12, a transverse forward isolation device is adopted to prevent the data of the management information area 12 from being transmitted to the production control area 11, and when the management information area 12 transmits data to the production control area 11, a transverse reverse isolation device is adopted to prevent the data of the production control area 11 from being transmitted to the management information area 12.
In the transformer substation subarea monitoring system, the transverse isolation device comprises a transverse forward isolation device and a transverse reverse isolation device, and the transverse forward isolation device is used for filtering data transmitted from the production control area to the management information area, so that the data of the management information area cannot be transmitted to the production control area through the transverse forward isolation device in the process of transmitting the data from the production control area to the management information area; the transverse reverse isolation device is used for filtering data transmitted from the management information large area to the production control large area, so that the data transmitted from the management information large area to the production control large area cannot be transmitted to the management information large area through the transverse reverse isolation device in the process of transmitting the data from the management information large area to the production control large area, single-phase data transmission is guaranteed by using the transverse forward isolation device and the transverse reverse isolation device, the disorder of the data in the transmission process is avoided, and the data type transmitted from the production control large area to the management information large area can be better controlled.
Referring to fig. 3, a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present application is shown, in which a control area 111 is connected to a power dispatching data network system 2 through a real-time VPN in a communication manner, and communication data between the control area 111 and the power dispatching data network system 2 is subjected to a longitudinal encryption authentication process.
The longitudinal encryption authentication refers to the security of data transmission between the control area 111 of the primary power system and the power dispatching data network system 2 by adopting technical measures such as authentication, encryption, access control and the like. VPN refers to remote access through encryption of packets and translation of packet destination addresses.
Specifically, the control area 111 in the production control large area 11 is connected to the power dispatching data network system 2, and since the control area 111 is the area with the highest security level in the primary power system, the control area 111 needs to transmit data to the power dispatching data network system 2, or when the power dispatching data network system 2 transmits data to the control area 111, the transmitted data needs to be subjected to longitudinal encryption authentication processing, so that the security of data transmission between the control area 111 and the power dispatching data network system 2 is ensured. The control area 111 has the highest security level, and the data of the corresponding control area 111 is also the most important, and the data transmission between the control area 111 and the power dispatching data network system 2 needs to be performed by real-time remote transmission.
In the transformer substation subarea monitoring system, the control area is in communication connection with the power dispatching data network system through the real-time VPN, remote data transmission can be carried out in a VPN mode, data between the control area and the power dispatching data network system are transmitted in real time, timeliness of communication data is guaranteed, encryption and authentication processing are carried out on the communication data between the control area and the power dispatching data network system on the basis of guaranteeing timely transmission of the data, and safety of data transmission between the control area and the power dispatching data network system is guaranteed.
Referring to fig. 4, a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present application is shown, in which a non-control area is in communication connection with a power dispatching data network system through a non-real-time VPN, and communication data between the non-control area and the power dispatching data network system is subjected to a vertical encryption authentication process.
Specifically, the non-control area 112 in the production control large area 11 is connected to the power dispatching data grid system 2, the security level of the non-control area 121 is slightly lower than that of the control area 111, and the non-control area 112 transmits data to the power dispatching data grid system 2, or when the power dispatching data grid system 2 transmits data to the non-control area 112, the transmitted data also needs to be subjected to longitudinal encryption authentication processing, so that the security of data transmission between the non-control area 112 and the power dispatching data grid system 2 is ensured. The security level of the control area 111 is higher than that of the non-control area 112, and the importance of the power data of the non-control area 112 is lower than that of the control area 111, so that the non-control area 112 and the power dispatching data network system 2 only need to communicate through a non-real-time VPN, and the non-real-time data transmission can be performed according to a preset time period, or the time period of the non-real-time data transmission can be determined according to the process of historical data transmission.
In the transformer substation subarea monitoring system, the non-control area is in communication connection with the power dispatching data network system through the non-real-time VPN, and communication data between the non-control area and the power dispatching data network system is subjected to longitudinal encryption authentication processing, so that the safety of data transmission between the non-control area and the power dispatching data network system is ensured.
Referring to fig. 5, which shows a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present application, in the embodiment of the present application, a control area 111 includes a first control area 1111 and a second control area 1112, a non-control area 112 includes a first non-control area 1121 and a second non-control area 1122, a production management area 121 includes a first production management area 1211 and a second production management area 1212, and a management information area 122 includes a first information management area 1221 and a second information management area 1222; the first control area 1111 and the second control area 1112 are connected through a private encryption authentication line; the first uncontrolled area 1121 and the second uncontrolled area 1122 are connected by a dedicated encryption authentication line.
The encryption can ensure that data or information is not illegally read in the transmission process, the authentication can ensure that two communication parties mutually confirm whether the identities of the two communication parties are real or not in the data or information transmission process, and the safety of the transmitted data can be ensured in the data transmission process of the two areas through the two areas which are connected by the encryption authentication special line.
Specifically, a control area 111, a non-control area 112, a production management area 121 and a management information area 122 in the substation partition monitoring system are divided into a corresponding first area and a corresponding second area, the first control area 1111 is connected with the first non-control area 1121, the second control area 1112 and the second non-control area 1122 through first logic isolation, the first production management area 1211 is connected with the first information management area 1221, the second production management area 1212 is connected with the second information management area 1222 through second logic isolation, the first control area 1111 is connected with the second control area 1112 through an encryption authentication dedicated line, and the first non-control area 1121 is connected with the second non-control area 1122 through an encryption authentication dedicated line.
In the transformer substation subarea monitoring system, the control area comprises a first control area and a second control area, the non-control area comprises a first non-control area and a second non-control area, the production management area comprises a first production management area and a second production management area, the management information area comprises a first information management area and a second information management area, the control area, the non-control area, the production management area and the management information area are respectively divided into two areas for management, each area can be better controlled, the risk of data in each area is dispersed, the first control area and the second control area are connected through a special encryption authentication line, the first non-control area and the second non-control area are connected through a special encryption authentication line, the security level of the control area and the non-control area is higher than that of the production management area and the management information area, the data transmission process between the control area and the non-control area needs the special encryption authentication line connection, and illegal reading of the data transmission process is ensured, the safety of data transmission is ensured.
Referring to fig. 6, a schematic structural diagram of a substation partition monitoring system provided in an embodiment of the present application is shown, in which firewalls are provided between the production management large area 12 and the enterprise integrated service data network system 3 and the internet 4.
Specifically, the enterprise integrated service data network system 3 may be configured to process and store data generated by the production management area 12, so as to facilitate consulting of enterprise technicians, and the internet 4 may be configured to perform experimental simulation analysis on data generated by the production management area 12. The electric power data generated by the production management area 12 needs to be transmitted with the enterprise integrated service data network system 3 and the internet 4, and the safety of the electric power data needs to be guaranteed in the electric power data transmission process, so a firewall is arranged between the production management area 12 and the enterprise integrated service data network system 3, the safety of data transmission between the production management area 12 and the enterprise integrated service data network system 3 is guaranteed, and the firewall is arranged between the production management area 12 and the internet 4, so that the safety of data transmission between the production management area 12 and the internet 4 is guaranteed.
A firewall is arranged between the production management area and the enterprise integrated service data network system and between the production management area and the Internet in the transformer substation partition monitoring system, viruses are prevented from invading the production management area of the power system through the enterprise integrated service data network system or the Internet through the firewall to influence the production process of the power system, and the safety of data transmission between the production management area and the enterprise integrated service data network system and between the production management area and the Internet can be guaranteed through the firewall.
In the embodiment of the application, the substation subarea monitoring system comprises a command analysis device, wherein the command analysis device is used for receiving a monitoring instruction sent by a substation to obtain a monitoring area corresponding to the monitoring instruction, and the monitoring area comprises a control area, a non-control area, a production management area or a management information area; and the command analysis equipment is also used for sending the monitoring instruction to a software system included in the monitoring area so that the software system responds to the monitoring instruction to perform monitoring operation.
Optionally, the plurality of control software systems are configured to monitor a control area of the primary power system in response to the monitoring instruction; the system comprises a plurality of non-control software systems, a plurality of control units and a plurality of control units, wherein the non-control software systems are used for responding to monitoring instructions to monitor non-control areas of the primary power system; the production management software systems are used for responding to the monitoring instruction to monitor the production management area of the primary power system; and the management and office automation software systems are used for responding to the monitoring instruction to monitor the management information area of the primary power system.
Illustratively, when a substation needs to monitor a non-control area, the substation sends a monitoring instruction corresponding to the non-control area to be monitored to a substation subarea monitoring system, a command analysis device in the substation subarea monitoring system analyzes the monitoring instruction to obtain a monitoring area corresponding to the monitoring instruction as the non-control area, the command analysis device sends the non-control area corresponding to the obtained monitoring instruction to a plurality of non-control software systems, and the plurality of non-control software systems monitor the non-control area after obtaining the monitoring instruction.
Among the above-mentioned transformer substation subregion monitored control system, transformer substation subregion monitored control system includes the analysis of commands equipment, the analysis of commands equipment is used for receiving the monitoring instruction that the transformer substation sent, in order to obtain the monitoring area that monitoring instruction corresponds, the monitoring area includes the control area, non-control area, production management district or management information district, the analysis of commands equipment still is arranged in sending the monitoring instruction to the software system that the monitoring area includes, in order to respond monitoring instruction by software system and carry out monitoring operation, analysis monitoring instruction that analysis of equipment can be quick according to the command, thereby the monitoring area that the definite monitoring instruction that can be quick corresponds, shorten the analysis time, the efficiency of responding to monitoring instruction has been improved.
In this embodiment of the present application, the command parsing device is specifically configured to: judging whether the monitoring instruction corresponds to the control area, if so, sending the monitoring instruction to a plurality of control software systems of the primary power system in the control area so as to respond to the monitoring instruction by the plurality of control software systems to perform monitoring operation; if not, judging whether the monitoring instruction corresponds to the non-control area, if so, sending the monitoring instruction to a plurality of non-control software systems of the primary power system in the non-control area so as to respond to the monitoring instruction by the plurality of non-control software systems to perform monitoring operation; if not, judging whether the monitoring instruction corresponds to the production management area, if so, sending the monitoring instruction to a plurality of production management software systems of the power primary system included in the production management area so as to respond to the monitoring instruction by the plurality of production management software systems to perform monitoring operation; if not, the monitoring instruction is sent to a plurality of management and office automation software systems of the primary power system in the management information area, and the plurality of management and office automation software systems respond to the monitoring instruction to perform monitoring operation.
Specifically, in the substation partition monitoring system, the safety level of a control area is higher than that of a non-control area, the safety level of the non-control area is higher than that of a production management area, the safety level of the production management area is higher than that of an information management area, and the higher the safety level is, the more corresponding monitoring instructions are, so after the monitoring instructions are obtained, whether the monitoring instructions are the monitoring instructions corresponding to the control area needs to be judged firstly, and if the monitoring instructions are the monitoring instructions corresponding to the control area, a plurality of control software systems monitor the control area according to the monitoring instructions corresponding to the control area; if the monitoring instruction is not the monitoring instruction corresponding to the control area, continuously judging whether the monitoring instruction is the monitoring instruction corresponding to the non-control area, if the monitoring instruction is the monitoring instruction corresponding to the non-control area, monitoring the non-control area by the plurality of non-control software systems according to the monitoring instruction corresponding to the non-control area, if the monitoring instruction is not the monitoring instruction corresponding to the non-control area, judging whether the monitoring instruction is the monitoring instruction corresponding to the production management area, and if the monitoring instruction is the monitoring instruction corresponding to the production management area, monitoring the production management area by the plurality of production management software systems according to the monitoring instruction corresponding to the production management area; and if the monitoring instruction is not the monitoring instruction corresponding to the production management area, the monitoring instruction is the monitoring instruction corresponding to the information management area, and the plurality of management and office automation software systems monitor the information management area according to the monitoring system corresponding to the information management area.
In the substation partition monitoring system, the command analysis device is specifically configured to: judging whether the monitoring instruction corresponds to the control area, if so, sending the monitoring instruction to a plurality of control software systems of the primary power system in the control area so as to respond to the monitoring instruction by the plurality of control software systems to perform monitoring operation; if not, judging whether the monitoring instruction corresponds to the non-control area, if so, sending the monitoring instruction to a plurality of non-control software systems of the primary power system in the non-control area so as to respond to the monitoring instruction by the plurality of non-control software systems to perform monitoring operation; if not, judging whether the monitoring instruction corresponds to the production management area, if so, sending the monitoring instruction to a plurality of production management software systems of the power primary system included in the production management area so as to respond to the monitoring instruction by the plurality of production management software systems to perform monitoring operation; if not, the monitoring instruction is sent to a plurality of management and office automation software systems of the primary power system in the management information area, the plurality of management and office automation software systems respond to the monitoring instruction to perform monitoring operation, the monitoring instruction is analyzed successively according to areas corresponding to different security levels, the monitoring instruction is analyzed first in an area with a high security level, monitoring of an area with a high security level in the power system can be improved, safety protection performance of the power system can be effectively improved, and reliability of the power system is improved.
Claims (10)
1. A transformer substation zone monitoring system is characterized by comprising a production control zone and a management information zone, wherein the production control zone comprises a control zone and a non-control zone, the management information zone comprises a production management zone and a management information zone, the control zone comprises a plurality of control software systems of a primary power system, the non-control zone comprises a plurality of non-control software systems of the primary power system, the production management zone comprises a plurality of production management software systems of the primary power system, and the management information zone comprises a plurality of management and office automation software systems of the primary power system;
a transverse isolation device is arranged between the production control large area and the management information large area and is used for filtering data transmitted between the production control large area and the management information large area;
a first logic isolation device is arranged between the control area and the non-control area, and a second logic isolation device is arranged between the production management area and the management information area;
the production control area is in communication connection with a power dispatching data network system, and the power dispatching data network system is used for dispatching and controlling power data of the production control area;
the production management area is in communication connection with an enterprise integrated service data network system and the Internet, and the enterprise integrated service data network system is used for processing the production management data of the production management area.
2. The substation area monitoring system according to claim 1, wherein the lateral isolation device comprises a lateral forward isolation device and a lateral reverse isolation device, wherein the lateral forward isolation device is configured to filter data transmitted from the production control area to the management information area, and the lateral reverse isolation device is configured to filter data transmitted from the management information area to the production control area.
3. The substation partition monitoring system according to claim 1, wherein the control area is in communication connection with the power dispatching data network system through a real-time VPN, and communication data between the control area and the power dispatching data network system is subjected to longitudinal encryption authentication processing.
4. The substation partition monitoring system according to claim 1, wherein the non-control area is in communication connection with the power dispatching data network system through a non-real-time VPN, and communication data between the non-control area and the power dispatching data network system is subjected to longitudinal encryption authentication processing.
5. The substation partition monitoring system according to claim 1, wherein the control area comprises a first control area and a second control area, the non-control area comprises a first non-control area and a second non-control area, the production management area comprises a first production management area and a second production management area, and the management information area comprises a first information management area and a second information management area;
the control first area is connected with the control second area through an encryption authentication special line;
the first non-control area and the second non-control area are connected through the encryption and authentication special line.
6. The substation partition monitoring system according to claim 1, wherein a firewall is disposed between the production management large area and the enterprise integrated services data network system and the internet.
7. The substation partition monitoring system according to any one of claims 1 to 6, wherein the plurality of control software systems comprise a dispatch automation system, a wide area phasor measurement system, an automatic voltage control system, a stability control system, an online pre-decision system, a credit protection system, a distribution automation system, a substation automation system and a power plant automatic monitoring system;
the plurality of non-control software systems comprise a dispatcher training simulation system, a communication protection system, a water dispatching automation system, an electric energy metering system, an electric power market transaction technology support system, a station-side electric energy acquisition system, a fault recording system and a power station quotation system;
the production management software systems comprise a power dispatching operation management system, a dispatching information disclosure system, a lightning monitoring system, a release system of a production control large area system in a management information large area and a dispatching production management user system;
the management and office automation software systems comprise an asset management system, a marketing management system, a human resource management system, a financial management system, a cooperative office system, a comprehensive management system and a decision support system.
8. The system according to any one of claims 1 to 6, wherein the substation zoning monitoring system comprises a command analysis device, the command analysis device is configured to receive a monitoring instruction sent by a substation to obtain a monitoring zone corresponding to the monitoring instruction, and the monitoring zone comprises the control zone, the non-control zone, the production management zone or the management information zone;
the command analysis device is further configured to send the monitoring instruction to a software system included in the monitoring area, so that the software system performs a monitoring operation in response to the monitoring instruction.
9. The system of claim 8, wherein the command parsing device is specifically configured to: judging whether the monitoring instruction corresponds to the control area, if so, sending the monitoring instruction to a plurality of control software systems of the primary power system in the control area so that the plurality of control software systems respond to the monitoring instruction to perform monitoring operation;
if not, judging whether the monitoring instruction corresponds to the non-control area, if so, sending the monitoring instruction to a plurality of non-control software systems of the primary power system in the non-control area so as to respond to the monitoring instruction by the plurality of non-control software systems to perform monitoring operation;
if not, judging whether the monitoring instruction corresponds to the production management area, if so, sending the monitoring instruction to a plurality of production management software systems of the primary power system in the production management area so as to respond to the monitoring instruction by the plurality of production management software systems to perform monitoring operation;
if not, the monitoring instruction is sent to a plurality of management and office automation software systems of the primary power system in the management information area, so that the plurality of management and office automation software systems respond to the monitoring instruction to perform monitoring operation.
10. The system of claim 8, wherein the plurality of control software systems are configured to monitor a control area of the electrical primary system in response to the monitoring instructions;
the plurality of non-control software systems are used for responding to the monitoring instruction to monitor a non-control area of the primary power system;
the plurality of production management software systems are used for responding to the monitoring instruction to monitor the production management area of the primary power system;
and the management and office automation software systems are used for responding to the monitoring instruction to monitor the management information area of the primary power system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111518108.6A CN114400517B (en) | 2021-12-13 | 2021-12-13 | Substation partition monitoring system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111518108.6A CN114400517B (en) | 2021-12-13 | 2021-12-13 | Substation partition monitoring system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114400517A true CN114400517A (en) | 2022-04-26 |
| CN114400517B CN114400517B (en) | 2023-11-24 |
Family
ID=81227468
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111518108.6A Active CN114400517B (en) | 2021-12-13 | 2021-12-13 | Substation partition monitoring system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114400517B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115065702A (en) * | 2022-06-17 | 2022-09-16 | 国电南瑞科技股份有限公司 | New energy data access system and method suitable for new generation scheduling master station |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110106321A1 (en) * | 2009-11-03 | 2011-05-05 | Spirae, Inc. | Dynamic distributed power grid control system |
| CN104333551A (en) * | 2014-10-31 | 2015-02-04 | 上海电机学院 | Active security defense system of power secondary system |
| CN104516334A (en) * | 2013-12-09 | 2015-04-15 | 国家电网公司 | Closed-loop control system and method for positive and reverse isolators |
| CN207283594U (en) * | 2017-09-09 | 2018-04-27 | 广西电网有限责任公司电力科学研究院 | Power transmission and transformation equipment state monitoring system based on network security subregion |
| CN111208779A (en) * | 2020-01-15 | 2020-05-29 | 中能融合智慧科技有限公司 | Industrial control system data processing system and method based on independent networking |
-
2021
- 2021-12-13 CN CN202111518108.6A patent/CN114400517B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110106321A1 (en) * | 2009-11-03 | 2011-05-05 | Spirae, Inc. | Dynamic distributed power grid control system |
| CN104516334A (en) * | 2013-12-09 | 2015-04-15 | 国家电网公司 | Closed-loop control system and method for positive and reverse isolators |
| CN104333551A (en) * | 2014-10-31 | 2015-02-04 | 上海电机学院 | Active security defense system of power secondary system |
| CN207283594U (en) * | 2017-09-09 | 2018-04-27 | 广西电网有限责任公司电力科学研究院 | Power transmission and transformation equipment state monitoring system based on network security subregion |
| CN111208779A (en) * | 2020-01-15 | 2020-05-29 | 中能融合智慧科技有限公司 | Industrial control system data processing system and method based on independent networking |
Non-Patent Citations (2)
| Title |
|---|
| 吴强;: "贵州电网调度数据网业务接入安全防护方案设计", 广东输电与变电技术, no. 03 * |
| 施畅;汤向华;: "变电站监控系统网络安全防护措施及方案", 农村电气化, no. 07 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115065702A (en) * | 2022-06-17 | 2022-09-16 | 国电南瑞科技股份有限公司 | New energy data access system and method suitable for new generation scheduling master station |
| CN115065702B (en) * | 2022-06-17 | 2024-03-26 | 国电南瑞科技股份有限公司 | New energy data access system and method suitable for new generation scheduling master station |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114400517B (en) | 2023-11-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110138092A (en) | Transformer substation sequence control system and method with regulation main website Security Checking function | |
| CN110557758A (en) | Power system communication network deployment processing method and device | |
| Yang | ICT technologies standards and protocols for active distribution network | |
| CN207677507U (en) | Intelligent cloud acquisition system for monitoring power distribution | |
| CN106451373A (en) | Bidirectional allowable protection method employing master station to identify dynamic topology for power distribution circuit | |
| CN212572614U (en) | Transformer substation secondary security system | |
| CN114400517B (en) | Substation partition monitoring system | |
| CN107204666A (en) | The remote sensing information joint debugging method of transformer station four and system based on mobile message technology | |
| CN104201657A (en) | Power direction judgment based bidirectional blocking protection method for distributing line | |
| CN202363972U (en) | Remote operation and maintenance platform of substation secondary system | |
| CN106100934B (en) | A kind of substation information monitoring system and method based on EMS fault warning | |
| CN109639466B (en) | Power engineering control system network safety detection system based on' source network load | |
| Drayer et al. | Resilient distribution grids—cyber threat scenarios and test environment | |
| CN106451374A (en) | Power distribution network bidirectional allow type protection method based on FTU role identification | |
| CN105162256B (en) | A kind of the protection control method and Intelligent complete equipment of the cable line fault self-healing of 10kV power distribution networks | |
| CN110880811B (en) | Communication device and method for battery energy storage power station | |
| CN208461463U (en) | Rail traffic online tri-station isolating switch and monitoring system | |
| CN109784617B (en) | Intelligent power grid integrated management system | |
| CN107732883A (en) | Distributed feeder fault processing information interacts method of controlling security | |
| CN111935120A (en) | Universal encryption and decryption device for power system protocol and encryption and decryption method thereof | |
| Yajing et al. | Research on security isolation method for wireless public network oriented to smart power distribution service | |
| CN207069570U (en) | A kind of power distribution network part power-off control system and distribution network system | |
| CN213461783U (en) | Intelligent sensing system based on Internet of things application electric power communication system | |
| CN104882960B (en) | Digital transformer substation automated method and system | |
| Kim et al. | Robust Cyber Infrastructure for Cyber Attack Enabling Resilient Distribution System |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |