CN114550353B - Intelligent lockset control system of transformer substation - Google Patents
Intelligent lockset control system of transformer substation Download PDFInfo
- Publication number
- CN114550353B CN114550353B CN202210173973.XA CN202210173973A CN114550353B CN 114550353 B CN114550353 B CN 114550353B CN 202210173973 A CN202210173973 A CN 202210173973A CN 114550353 B CN114550353 B CN 114550353B
- Authority
- CN
- China
- Prior art keywords
- intelligent
- lockset
- key
- lock
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00182—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with unidirectional data transmission between data carrier and locks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S40/00—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
- Y04S40/20—Information technology specific aspects, e.g. CAD, simulation, modelling, system security
Abstract
The application relates to an intelligent lockset control system of a transformer substation. The system comprises: the intelligent lockset management system comprises an intelligent lockset management platform, a key manager, an intelligent key, an intelligent lockset, an intelligent gateway and a network relay, wherein the intelligent lockset management platform is used for acquiring operation information of a target lockset operation task and generating lockset authorization information corresponding to the target lockset operation task; the key manager receives the operation information and the lockset authorization information and sends the operation information and the lockset authorization information to the intelligent key; the intelligent key sends the lockset authorization information to the intelligent lockset matched with the operation information, the intelligent lockset verifies the digital signature in the lockset authorization information by adopting the second key information, and when the verification passes, the intelligent lockset is opened, the intelligent gateway forwards the operation information and the lockset authorization information, and the uploaded log information, and the network relay uploads the lockset state information detected by the intelligent lockset to the intelligent lockset management platform, so that the intelligent lockset optimization control of a transformer substation is realized, and the lockset management efficiency of the transformer substation is improved.
Description
Technical Field
The application relates to the technical field of power equipment management, in particular to an intelligent lock control system of a transformer substation.
Background
With the improvement of the automation degree of the transformer substation, the requirement on the management level of the transformer substation is also improved. At present, a lockset which is usually used for a cabinet in a transformer substation has the defects of large potential safety hazard and inconvenient unlocking, the lockset is unlocked without record, the unlocking problem cannot be traced, the working efficiency of transformer substation operators is low, the labor intensity is high, and the safety management level of the transformer substation is affected.
Therefore, the related art has the problem of low management efficiency of the substation lockset.
Disclosure of Invention
Accordingly, it is necessary to provide a substation intelligent lock control system capable of solving the above-mentioned problems.
A substation intelligent lockset control system, the system comprising:
the intelligent lockset management platform is used for acquiring the operation information of a target lockset operation task and generating lockset authorization information corresponding to the target lockset operation task; the lockset authorization information comprises a digital signature obtained by adopting encryption processing of first key information;
the key manager is used for receiving the operation information and the lock authorization information issued by the intelligent lock management platform through the intelligent gateway and sending the operation information and the lock authorization information to the intelligent key;
the intelligent key is used for sending the lock authorization information to an intelligent lock matched with the operation information, and uploading log information corresponding to the target lock operation task to the key manager after the task is completed;
the intelligent lockset is used for verifying the digital signature in the lockset authorization information by adopting second key information, unlocking the intelligent lockset when the verification is passed, and detecting the lockset state of the intelligent lockset; the second key information is used for decrypting and verifying the first key information;
the intelligent gateway is used for sending the received operation information and the received lockset authorization information sent by the intelligent lockset management platform to the key manager and uploading the received log information sent by the key manager to the intelligent lockset management platform;
and the network relay is used for uploading the lock state information detected by the intelligent lock to the intelligent lock management platform through the intelligent gateway.
In one embodiment, the intelligent lockset management platform is further configured to randomly generate a key pair for the intelligent lockset management platform during initialization; the key pair includes the first key information and the second key information.
In one embodiment, the smart lock is further configured to write, when registration is activated, second key information in a key pair generated by the smart lock management platform to the smart lock.
In one embodiment, the intelligent gateway is disposed at a station end, the intelligent gateway is respectively connected with the intelligent lock management platform and the key manager, and the communication between the intelligent gateway and the intelligent lock management platform and between the intelligent gateway and the key manager is HTTPS encrypted communication.
In one embodiment, the key manager has a first interface, the key fob is placed at a designated location of the key manager, and the key manager charges and transmits data to the key fob through the first interface.
In one embodiment, the smart key is further configured to clear the lock authorization information and the log information after the completion task is placed back to the designated position of the key manager and the log information corresponding to the target lock operation task is uploaded to the key manager.
In one embodiment, the smart key has a second interface, and the smart key supplies power to the smart lock through the second interface and transmits the lock authorization information.
In one embodiment, the target lock operation task is a task of performing an unlocking operation on a plurality of intelligent locks, and the intelligent key is further configured to unlock a plurality of intelligent locks corresponding to the target lock operation task based on the lock authorization information.
In one embodiment, the intelligent lock comprises a passive lock cylinder, and the passive lock cylinder is used for receiving lock authorization information sent by the intelligent key through reverse power supply of the intelligent key.
In one embodiment, the intelligent lockset further comprises a state monitoring module, wherein the state monitoring module is used for monitoring the lockset opening and closing state of the intelligent lockset.
According to the intelligent lockset control system of the transformer substation, the intelligent lockset management platform is used for acquiring the operation information of the target lockset operation task and generating the lockset authorization information corresponding to the target lockset operation task, the lockset authorization information comprises the digital signature obtained by adopting the first key information encryption processing, the key manager is used for receiving the operation information and the lockset authorization information issued by the intelligent lockset management platform through the intelligent gateway and sending the operation information and the lockset authorization information to the intelligent key, the intelligent key is used for sending the lockset authorization information to the intelligent lockset matched with the operation information, log information corresponding to the target lockset operation task is uploaded to the key manager after the task is completed, the intelligent lockset adopts the second key information to verify the digital signature in the lockset authorization information and unlock the intelligent lockset when the lockset passes through the verification, the second key information is used for decrypting and verifying the first key information, the received operation information and lockset authorization information sent by the intelligent lockset management platform, and the received log information sent by the intelligent key manager are uploaded to the intelligent lockset management platform, the network is used for uploading the lockset state detected by the intelligent gateway to the intelligent lockset management platform, the intelligent lockset can not be controlled by the intelligent gateway, the problem of the intelligent lockset can not be solved, and the complicated lockset can not be controlled, and the problem can be solved.
Drawings
Fig. 1 is a block diagram of a substation intelligent lock control system according to an embodiment.
Fig. 2 is a schematic architecture diagram of a substation intelligent lock control system according to an embodiment.
FIG. 3 is a flowchart illustrating a lock control initialization procedure according to an embodiment.
FIG. 4 is a flowchart illustrating a lock control operation procedure according to an embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the present application more apparent, the present application will be further described in detail with reference to the accompanying drawings and examples. It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the present application.
It should be noted that, the user information (including but not limited to user equipment information, user personal information, etc.) and the data (including but not limited to data for presentation, analyzed data, etc.) related in the present application are both information and data authorized by the user or sufficiently authorized by each party; correspondingly, the application also provides a corresponding user authorization entry for the user to select authorization or select rejection.
The application provides a transformer substation intelligent lock control system, as shown in fig. 1, may include an intelligent lock management platform 101, an intelligent gateway 102, a key manager 103, an intelligent key 104, an intelligent lock 105, and a network relay 106. The intelligent lockset management platform 101 can be implemented by an independent server or a server cluster formed by a plurality of servers, and is in communication connection with a management terminal, wherein the management terminal can be, but is not limited to, a personal computer, a notebook computer, a smart phone, a tablet personal computer and the like.
Specifically, the system may include:
the intelligent lockset management platform 101 is used for acquiring the operation information of a target lockset operation task and generating lockset authorization information corresponding to the target lockset operation task; the lockset authorization information comprises a digital signature obtained by adopting encryption processing of first key information;
the target lock operation task can be a task for operating the locks in the transformer substation, for example, an administrator can preset the target lock operation task through the intelligent lock management platform, can set the operation information of the target lock operation task, and can also automatically acquire the target lock operation task and the operation information thereof through the intelligent lock management platform.
As an example, the lock authorization information may be an authorization credential for the lock to be unlocked in the target lock operation task.
In practical application, an administrator assigns an operation work order on the intelligent lockset management platform, so that the operation information of the target lockset operation task can be obtained, and the intelligent lockset management platform can generate an authorization credential for the lockset required to be opened in the operation aiming at the target lockset operation task, namely lockset authorization information corresponding to the target lockset operation task.
Specifically, the authorization credential may include information such as a lockset ID, start-stop time of an authorization validity period, and a digital signature, where a public key and a private key (i.e., first key information) preset by the intelligent lockset management platform may be adopted to encrypt the information such as the lockset ID, start-stop time of the authorization validity period, and the like, so as to obtain the digital signature.
In an example, by assigning an operation work order (i.e., operation information of a target lock operation task) on the intelligent lock management platform by an administrator, a lock to be operated this time, an operator, a smart key to be used, an authorization time, and the like can be specified.
In yet another example, the intelligent lockset management platform can perform unified management on the intelligent locksets, which can include functions of work order authorization management, log management and the like.
The key manager 103 is configured to receive the operation information and the lock authorization information issued by the intelligent lock management platform through the intelligent gateway, and send the operation information and the lock authorization information to the intelligent key;
in a specific implementation, the intelligent lockset management platform can send the operation information and lockset authorization information to the key manager through the intelligent gateway, and then the key manager can send the operation information and lockset authorization information to the intelligent key.
For example, the intelligent lock management platform may issue an operation ticket (i.e., lock authorization information) including authorization credentials (i.e., operation information) to the key manager through the intelligent gateway, and the key manager may send the operation ticket including authorization credentials to the intelligent key through the contact interface (i.e., the first interface).
The smart key 104 is configured to send the lock authorization information to a smart lock matched with the operation information, and upload log information corresponding to the target lock operation task to the key manager after completing the task;
after the intelligent key receives the operation information and the lock authorization information, an operator corresponding to the target lock operation task can receive the intelligent key, and the intelligent key is used for transmitting the lock authorization information to the intelligent lock for verification in the operation site aiming at the to-be-unlocked lock in the target lock operation task, namely the intelligent lock matched with the operation information.
For example, an operator may use the smart key to power a passive lock cylinder of the smart lock via a contact interface (i.e., a second interface) after arriving at the operation site by receiving the smart key, and send an authorization credential (i.e., lock authorization information) to the smart lock.
In an alternative embodiment, when the smart key returns to the key manager, the smart key may upload information related to the current operation, that is, log information corresponding to the target lock operation task, to the key manager.
The intelligent lockset 105 is configured to verify a digital signature in the lockset authorization information by using second key information, unlock the intelligent lockset when verification passes, and detect a lockset state of the intelligent lockset; the second key information is used for decrypting and verifying the first key information;
in practical application, the intelligent lockset can verify the digital signature in the lockset authorization information by adopting the second key information, and then the intelligent lockset can be opened when verification passes, for example, based on a public key (namely the second key information) in a public-private key pair preset by an intelligent lockset management platform pre-stored in the intelligent lockset, the digital signature in a received authorization credential, the start-stop time of an authorization validity period and the like can be verified, and unlocking can be performed when verification is successful.
In an example, through the state monitoring module in the intelligent lock, the open-close state (i.e. the lock state) of the intelligent lock can be detected, and then the open-close state of the lock can be uploaded to the intelligent lock management platform through the network relay, and the intelligent lock management platform can also actively detect the open-close state of the intelligent lock.
The intelligent gateway 102 is configured to send the received operation information and the received lock authorization information sent by the intelligent lock management platform to the key manager, and upload the received log information sent by the key manager to the intelligent lock management platform;
in a specific implementation, the intelligent gateway can connect the intelligent lock management platform and the key manager, and then the intelligent gateway can issue an operation work order (i.e. lock authorization information) and an authorization credential (i.e. operation information) to the key manager, and can upload the received log information to the intelligent lock management platform, for example, the key manager can upload the log information to the intelligent lock management platform through the intelligent gateway.
In an example, the intelligent gateway may also obtain the lock status information detected by the intelligent lock from the network relay, and may further upload the lock status information to the intelligent lock management platform.
And the network relay 106 is used for uploading the lock state information detected by the intelligent lock to the intelligent lock management platform through the intelligent gateway.
In practical application, the network relay can receive the lock state information detected by the intelligent lock, and can report the lock state information to the intelligent lock management platform through the intelligent gateway, such as the lock state switching value of the intelligent lock.
In an example, since two types of locks are mainly used for a cabinet of a transformer substation in the conventional method, one is a five-prevention lock for preventing errors, which is a mechanical lock carrying RFID, but such locks are easy to be opened by a mechanical tool; secondly, the common mechanical lockset has complicated key management when the lockset is adopted, thus being easy to cause management confusion, and even a lockset operator can not lock more cabinets or directly insert the key on the cabinets, so that potential safety hazards exist; moreover, the unlocking is recorded without adopting the traditional method, and if the problem cannot be traced, the opening and closing states of the lockset cannot be perceived. In addition, because of adopting remote drive-by-wire, some intelligent tool to lock needs remote control center's staff to cooperate, causes on-the-spot inconvenient of unblanking, too relies on the internet connection, and the state can't be perceived to passive tool to lock, and the state is ascertained the real-time relatively poor.
Compared with the traditional method, in order to realize high-efficiency low-cost management control of the substation lockset, the technical scheme of the embodiment adopts an intelligent lockset management system (namely a substation intelligent lockset control system), which can comprise an intelligent lockset management platform, an intelligent gateway, a key manager, an intelligent key, an intelligent lockset and a network relay, and the intelligent lockset management system is established to uniformly manage and control the intelligent lockset by adopting the intelligent lockset management platform, so that an authorization credential is generated by the intelligent lockset in the substation based on a private key and authorization authentication is carried out based on a public key, the problems of complicated key management, low safety, incapability of tracing unlocking records and the like of a mechanical lock are avoided by intelligent transformation of the lockset, the lockset state can be monitored, the management loophole of the lockset can be avoided, and timely warning can be carried out; the adoption of the encryption technology also avoids the unlocking authorization from being falsified and the sensitive information from being stolen, and achieves the security management and control measures of the commodity secret level; and the whole process has no air interface, and is more suitable for the environment with high safety requirement of physical isolation of the transformer substation.
In this embodiment, obtain the operation information of target tool to lock operation task through intelligent tool to lock management platform, and generate the tool to lock authorization information that target tool to lock operation task corresponds, tool to lock authorization information includes the digital signature that adopts first key information encryption processing to obtain, key manager receives the operation information and the tool to lock authorization information that intelligent tool to lock management platform was down sent through intelligent gateway, and send operation information and tool to lock authorization information to intelligent key, the intelligent key sends tool to the intelligent tool to lock with operation information assorted, and after accomplishing the task, upload the log information that target tool to lock operation task corresponds to key manager, intelligent tool to lock adopts the digital signature in the tool to lock authorization information to verify, and open intelligent tool to lock when verifying and pass through, and detect the tool to lock state of intelligent tool to lock, the second key information is used for decrypting the verification to first key information, the intelligent gateway sends the operation information and the tool to key manager that the intelligent tool to lock management platform sent, and the log information that the key manager sent to intelligent gateway was received, network relay has passed through intelligent gateway with the tool to lock state information that intelligent tool to lock detection is good for intelligent substation, the security control system, the problem is solved, the system is difficult to be controlled by the intelligent substation, and the system is not able to be controlled to be traced to the intelligent, and the system is realized.
In one embodiment, the intelligent lockset management platform is further configured to randomly generate a key pair for the intelligent lockset management platform at the time of initialization; the key pair includes the first key information and the second key information.
In a specific implementation, at the time of the initialization of the installation and deployment of the intelligent lockset management platform, the public-private key pair (i.e., the key pair for the intelligent lockset management platform) of the ECC algorithm (Elliptic Curves Cryptography, elliptic curve cryptography, belonging to the public key algorithm) of the platform, such as the SM2 algorithm (elliptic curve public key cryptography, which is one of the ECC algorithms), may be randomly generated, and the public-private key pair may include a private key (i.e., the first key information) and a public key (i.e., the second key information).
In the embodiment, the key pair for the intelligent lockset management platform is randomly generated during initialization, so that unlocking authorization is prevented from being falsified and sensitive information is prevented from being stolen based on an encryption technology, and the safety management and control capability is improved.
In one embodiment, the smart lock is further configured to write, when registration is activated, second key information in a key pair generated by the smart lock management platform to the smart lock.
When the lockset is initialized, as the intelligent lockset needs to be activated after registration, the intelligent lockset can be connected to the terminal through a special line during activation, and then the public key (namely the second key information) in the key pair generated by the intelligent lockset management platform can be written into the intelligent lockset by adopting software.
In this embodiment, when the registration is activated, the second key information in the key pair generated by the intelligent lock management platform is written into the intelligent lock, so that the security management and control capability can be improved based on the encryption technology, and the security management and control measure of the business secret level is achieved.
In one embodiment, the intelligent gateway is disposed at a station end, the intelligent gateway is respectively connected with the intelligent lock management platform and the key manager, and the communication between the intelligent gateway and the intelligent lock management platform and between the intelligent gateway and the key manager is HTTPS encrypted communication.
In practical application, the intelligent gateway can be deployed at a station end, and can be connected with the intelligent lockset management platform and the key manager, and the communication between the intelligent lockset management platform and the intelligent gateway and the communication between the intelligent gateway and the key manager all adopt HTTPS encryption communication.
In the embodiment, the intelligent gateway is deployed at the station end and is respectively connected with the intelligent lockset management platform and the key manager, and the communication between the intelligent gateway and the intelligent lockset management platform and the communication between the intelligent gateway and the key manager are all HTTPS encrypted communication, so that the communication safety in the data transmission process is ensured.
In one embodiment, the key manager has a first interface through which the key manager charges and transmits data to the key, and the key manager is placed at a designated location of the key manager.
In practical application, when managing the intelligent key, can place the intelligent key on the dedicated position of key manager (i.e. appointed position), can charge and data transmission simultaneously through contact interface (i.e. first interface), the personnel that need to unblank the operation can receive the intelligent key.
For example, the key manager may be connected to the smart gateway through a wired network, and the key manager may issue an operation ticket (i.e., lock authorization information) and an authorization credential (i.e., operation information) to the smart key through a contact interface, and upload log information sent by the smart key.
In this embodiment, the key manager has first interface, and the intelligent key is placed on the assigned position of key manager, and the key manager charges and data transmission to the intelligent key through first interface, can reach the whole process and have no air interface, more is fit for the high safety requirement environment of transformer substation physical isolation.
In one embodiment, the smart key is further configured to clear the lock authorization information and the log information after the completion task is placed back to the designated location of the key manager and the log information corresponding to the target lock operation task is uploaded to the key manager.
In practical application, when the intelligent key for completing the task returns to the designated position of the key manager, the intelligent key can upload the relevant information of the current operation, namely the log information corresponding to the target lockset operation task, to the key manager, and can clear the lockset authorization information and the log information.
In this embodiment, through the intelligent key after completion task place back the assigned position of key manager, and upload the log information that target tool to lock operation task corresponds to key manager after, clear tool to lock authorization information and log information, can solve loaded down with trivial details management, security low, the problem that unblanked record can't trace back, promoted transformer substation's tool to lock management efficiency.
In one embodiment, the smart key has a second interface through which the smart key powers the smart lock and sends the lock authorization information.
In a specific implementation, the intelligent key can acquire an operation work order (namely lock authorization information) and an authorization credential (namely operation information) from the key manager before use, so that the intelligent lock can be powered through a contact interface (namely a second interface) when in use, and an unlocking authorization credential can be sent to unlock.
In this embodiment, the intelligent key has the second interface, and the intelligent key passes through the second interface and supplies power for intelligent tool to lock to and send tool to lock authorization information, can reach the whole process and have no air interface, more is fit for the high safety requirement environment of transformer substation physical isolation.
In an embodiment, the target lock operation task is a task of performing an unlocking operation on a plurality of intelligent locks, and the intelligent key is further configured to unlock a plurality of intelligent locks corresponding to the target lock operation task based on the lock authorization information.
In an example, when the target lock operation task is a task of performing an unlocking operation on a plurality of intelligent locks, the intelligent key with the unlocking authorization credential may unlock all the intelligent locks authorized at the time by one key, that is, based on the lock authorization information, the intelligent key may perform lock unlocking on the plurality of intelligent locks corresponding to the target lock operation task.
In this embodiment, the target lock operation task may be a task of opening operations on a plurality of intelligent locks, and through the intelligent key, a plurality of intelligent locks corresponding to the target lock operation task may be opened based on lock authorization information, so that an effect that one key opens all intelligent locks authorized at the time can be achieved, and working efficiency is improved.
In one embodiment, the smart lock comprises a passive lock cylinder, and the passive lock cylinder is used for receiving lock authorization information sent by the smart key through reverse power supply of the smart key.
In practical application, the intelligent lockset can be formed by an unlocking and locking structure taking a passive lock cylinder as a main body and a wired power supply state monitoring module, wherein the passive lock cylinder can be reversely powered by the intelligent key and can receive unlocking credentials (namely lockset authorization information) sent by the intelligent key, so that the unlocking credentials can be verified and the lockset can be unlocked after the verification is passed.
In this embodiment, intelligent tool to lock includes passive lock core, through the reverse power supply of intelligent key to passive lock core, receives the tool to lock authorization information that intelligent key sent, can avoid the loaded down with trivial details key management of mechanical lock, security low, the record of unblanking can't trace back scheduling problem based on the intelligent transformation of tool to lock, has promoted work efficiency.
In one embodiment, the intelligent lockset further comprises a state monitoring module for monitoring a lockset opening and closing state of the intelligent lockset.
In practical application, the intelligent lockset can be jointly composed of an unlocking and locking structure taking a passive lock cylinder as a main body and a wired power supply state monitoring module, wherein the state monitoring module can monitor the unlocking and locking state of the intelligent lockset and can provide a lockset state monitoring function through a network relay.
In this embodiment, intelligent tool to lock still includes state monitoring module, monitors the tool to lock open and close state of intelligent tool to lock through state monitoring module, has realized can monitor the tool to lock state, can avoid the management leak of tool to lock.
In order to enable those skilled in the art to better understand the intelligent lock control system of the substation in this embodiment, the embodiment of the present application is described below by way of an example, but it should be understood that the embodiment of the present application is not limited thereto.
As shown in fig. 2, the intelligent lockset control system of the transformer substation may include an intelligent lockset management platform, an intelligent gateway, a key manager, an intelligent key, an intelligent lockset, and a network relay, where, at a master station layer of the intelligent lockset control system of the transformer substation, a power transformation operation master station support system for the intelligent lockset management platform may be configured, and unlocking authority may be set and platform management may be performed through a management terminal (such as a management PC end).
At the transmission layer of the intelligent lockset control system of the transformer substation, the intelligent gateway can be connected with an intelligent lockset management platform and a key manager, can issue unlocking credentials (namely lockset authorization information) and upload log information, and can also be connected with a network relay, receive lockset state information detected by the intelligent lockset and upload the lockset state information to the intelligent lockset management platform; the key manager can be connected with the intelligent key, and issues unlocking certificates and uploads log information; the network relay can be connected with the intelligent lockset and receives detected lockset state information.
At the operation layer of the intelligent lockset control system of the transformer substation, the intelligent key can send the received unlocking certificate to the intelligent lockset and upload log information to the key manager.
In the tool to lock layer of transformer substation's intelligent tool to lock control system, intelligent tool to lock can verify the unblanking voucher that the intelligent key sent to can detect its tool to lock state.
As shown in fig. 3, when the intelligent lockset management platform is initialized in installation and deployment, a public and private key pair (i.e. a key pair for the intelligent lockset management platform) of an ECC algorithm of the platform, such as an SM2 algorithm, can be randomly generated; when the lockset is initialized, as the intelligent lockset needs to be activated after registration, the intelligent lockset can be connected to the terminal through a special line during activation, and then the public key (namely second key information) of the platform can be written into the intelligent lockset by adopting software; in the key management process, the intelligent key can be placed at a special position (namely a designated position) of the key manager, charging and data transmission can be simultaneously carried out through the contact interface (namely the first interface), and personnel needing unlocking operation can receive the intelligent key.
As shown in fig. 4, step one, an administrator may assign an operation work order (i.e. operation information) on the intelligent lock management platform to designate the lock to be operated this time, the operator, the intelligent key to be used, the authorization time, etc.;
and step two, the intelligent lockset management platform can generate an authorization credential (namely lockset authorization information) for the lockset which is required to be opened in the operation, wherein the authorization credential comprises lockset ID, start and stop time of the authorization validity period and other information, and a digital signature for encrypting the information by using a platform private key (namely first key information).
And thirdly, the intelligent lockset management platform can issue an operation work order containing the authorization certificate to the key manager through the intelligent gateway, and the platform and the intelligent gateway and the key manager are communicated by adopting HTTPS encryption.
Step four, the key manager can send the operation work order containing the authorization certificate to the intelligent key through the contact interface (namely the first interface).
And fifthly, the operator receives the intelligent key.
Step six, an operator uses the intelligent key to the operation site, supplies power to the passive lock cylinder of the intelligent lock through the contact interface (namely the second interface), sends an authorization certificate to the intelligent lock, and the intelligent lock can adopt a pre-stored platform public key (namely the second key information) to verify the digital signature and time of the certificate, and can unlock after verification is successful.
And seventhly, the state monitoring module of the intelligent lockset can detect opening and closing of the lockset, and further can upload the opening and closing state of the lockset to the intelligent lockset management platform through the network relay, and the platform can also actively detect the state of the intelligent lockset.
And step eight, uploading log information to the key manager by the intelligent key when the intelligent key is returned to the key manager, and emptying the authorization certificate and the log information.
And step nine, uploading log information to an intelligent lockset management platform by the key manager through the intelligent gateway.
Those skilled in the art will appreciate that implementing all or part of the above described embodiments may be accomplished by way of a computer program stored on a non-transitory computer readable storage medium, which when executed, may comprise the steps of the above described embodiments. Any reference to memory, database, or other medium used in the various embodiments provided herein may include at least one of non-volatile and volatile memory. The nonvolatile Memory may include Read-Only Memory (ROM), magnetic tape, floppy disk, flash Memory, optical Memory, high density embedded nonvolatile Memory, resistive random access Memory (ReRAM), magnetic random access Memory (Magnetoresistive Random Access Memory, MRAM), ferroelectric Memory (Ferroelectric Random Access Memory, FRAM), phase change Memory (Phase Change Memory, PCM), graphene Memory, and the like. Volatile memory can include random access memory (Random Access Memory, RAM) or external cache memory, and the like. By way of illustration, and not limitation, RAM can be in the form of a variety of forms, such as static random access memory (Static Random Access Memory, SRAM) or dynamic random access memory (Dynamic Random Access Memory, DRAM), and the like. The databases referred to in the various embodiments provided herein may include at least one of relational databases and non-relational databases. The non-relational database may include, but is not limited to, a blockchain-based distributed database, and the like. The processors referred to in the embodiments provided herein may be general purpose processors, central processing units, graphics processors, digital signal processors, programmable logic units, quantum computing-based data processing logic units, etc., without being limited thereto.
The technical features of the above embodiments may be arbitrarily combined, and all possible combinations of the technical features in the above embodiments are not described for brevity of description, however, as long as there is no contradiction between the combinations of the technical features, they should be considered as the scope of the description.
The above examples only represent a few embodiments of the present application, which are described in more detail and are not to be construed as limiting the scope of the present application. It should be noted that it would be apparent to those skilled in the art that various modifications and improvements could be made without departing from the spirit of the present application, which would be within the scope of the present application. Accordingly, the scope of protection of the present application shall be subject to the appended claims.
Claims (10)
1. An intelligent lockset control system for a transformer substation, the system comprising: the intelligent lockset comprises an intelligent lockset management platform, a key manager, an intelligent key, an intelligent lockset, an intelligent gateway and a network relay;
an administrator assigns an operation work order on the intelligent lockset management platform, and the intelligent lockset management platform acquires the operation information of a target lockset operation task and generates lockset authorization information corresponding to the target lockset operation task; the lockset authorization information comprises a digital signature obtained by encrypting a lockset ID and the start and stop time of an authorization validity period by adopting first key information; the target lockset operation task is a task for opening an intelligent lockset in a transformer substation; the intelligent lockset management platform is also used for carrying out unified management on the intelligent locksets and specifically comprises work order authorization management and log management;
the key manager is used for receiving the operation information and the lock authorization information issued by the intelligent lock management platform through the intelligent gateway and sending the operation information and the lock authorization information to the intelligent key;
the intelligent key is used for being received by an operator corresponding to a target lock operation task after the operation information and the lock authorization information are received, the operator uses the intelligent key to send the lock authorization information to an intelligent lock matched with the operation information in an operation site for verification, and the intelligent key also uploads log information corresponding to the target lock operation task to the key manager after the task is completed;
the intelligent lockset is used for verifying the digital signature in the lockset authorization information by adopting second key information, unlocking the intelligent lockset when the verification is passed, and detecting the lockset state of the intelligent lockset; the second key information is specifically used for decrypting and verifying the first key information;
the intelligent gateway is used for sending the received operation information and the received lockset authorization information sent by the intelligent lockset management platform to the key manager and uploading the received log information sent by the key manager to the intelligent lockset management platform;
and the network relay is used for uploading the lock state information detected by the intelligent lock to the intelligent lock management platform through the intelligent gateway.
2. The system of claim 1, wherein the smart lock management platform is further configured to randomly generate a key pair for the smart lock management platform upon initialization; the key pair includes the first key information and the second key information.
3. The system of claim 2, wherein the smart lock is further configured to write second key information in a key pair generated by the smart lock management platform to the smart lock upon registration activation.
4. The system of claim 1, wherein the intelligent gateway is deployed at a plant site, the intelligent gateway is respectively connected with the intelligent lock management platform and the key manager, and the communication between the intelligent gateway and the intelligent lock management platform and between the intelligent gateway and the key manager is HTTPS encrypted communication.
5. The system of claim 1, wherein the key manager has a first interface through which the key manager charges and transmits data to the key, the key being placed in a designated location of the key manager.
6. The system of claim 5, wherein the smart key is further configured to clear the lock authorization information and the log information after a completion task is placed back at a designated location of the key manager and log information corresponding to the target lock operation task is uploaded to the key manager.
7. The system of claim 1, wherein the smart key has a second interface through which the smart key powers the smart lock and transmits the lock authorization information.
8. The system of claim 1, wherein the target lock operation task is a task of performing an unlocking operation on a plurality of the intelligent locks; the intelligent key is also used for unlocking a plurality of intelligent locks corresponding to the target lock operation task based on the lock authorization information.
9. The system of claim 1, wherein the smart lock comprises a passive lock cylinder for receiving lock authorization information sent by the smart key by reverse powering of the smart key.
10. The system of claim 1, wherein the smart lock further comprises a status monitoring module for monitoring a lock open/closed status of the smart lock.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210173973.XA CN114550353B (en) | 2022-02-24 | 2022-02-24 | Intelligent lockset control system of transformer substation |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210173973.XA CN114550353B (en) | 2022-02-24 | 2022-02-24 | Intelligent lockset control system of transformer substation |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114550353A CN114550353A (en) | 2022-05-27 |
| CN114550353B true CN114550353B (en) | 2023-08-08 |
Family
ID=81677744
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210173973.XA Active CN114550353B (en) | 2022-02-24 | 2022-02-24 | Intelligent lockset control system of transformer substation |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114550353B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115171252A (en) * | 2022-07-07 | 2022-10-11 | 广州广电运通金融电子股份有限公司 | BT and IOT based dynamic coded lock unlocking method and system |
| CN115273284A (en) * | 2022-07-27 | 2022-11-01 | 中国电信股份有限公司 | Permission adaptation method and device, storage medium and electronic equipment |
| CN117649714B (en) * | 2024-01-30 | 2024-03-29 | 珠海唯码科技有限公司 | Door lock monitoring system, method, equipment and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN203490745U (en) * | 2013-08-26 | 2014-03-19 | 国家电网公司 | Lock control and inspection management system of transformer substation |
| CN103745513A (en) * | 2014-01-03 | 2014-04-23 | 成都创石科技有限公司 | Intelligent key system |
| CN104809795A (en) * | 2015-05-21 | 2015-07-29 | 河南传通电子科技有限公司 | Circuit structure utilizing mobile phone APP (Application Program), cloud platform and Bluetooth intelligent key control switch lock and implementation method of circuit structure |
| CN105023334A (en) * | 2015-08-10 | 2015-11-04 | 广东文城科技发展有限公司 | Unlocking and locking control method based on cloud platform and mobile phone APP |
| CN107313660A (en) * | 2017-07-07 | 2017-11-03 | 安徽德诺科技股份公司 | The method for unlocking of intelligent lock system and smart lock |
| CN107507303A (en) * | 2017-07-07 | 2017-12-22 | 安徽德诺科技股份公司 | The method for unlocking of intelligent lock system and smart lock |
| CN109191616A (en) * | 2017-07-07 | 2019-01-11 | 安徽德诺科技股份公司 | intelligent lock system |
| CN112002037A (en) * | 2019-05-10 | 2020-11-27 | 联合汽车电子有限公司 | Cloud server, vehicle, mobile terminal and authorization data updating method |
-
2022
- 2022-02-24 CN CN202210173973.XA patent/CN114550353B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN203490745U (en) * | 2013-08-26 | 2014-03-19 | 国家电网公司 | Lock control and inspection management system of transformer substation |
| CN103745513A (en) * | 2014-01-03 | 2014-04-23 | 成都创石科技有限公司 | Intelligent key system |
| CN104809795A (en) * | 2015-05-21 | 2015-07-29 | 河南传通电子科技有限公司 | Circuit structure utilizing mobile phone APP (Application Program), cloud platform and Bluetooth intelligent key control switch lock and implementation method of circuit structure |
| CN105023334A (en) * | 2015-08-10 | 2015-11-04 | 广东文城科技发展有限公司 | Unlocking and locking control method based on cloud platform and mobile phone APP |
| CN107313660A (en) * | 2017-07-07 | 2017-11-03 | 安徽德诺科技股份公司 | The method for unlocking of intelligent lock system and smart lock |
| CN107507303A (en) * | 2017-07-07 | 2017-12-22 | 安徽德诺科技股份公司 | The method for unlocking of intelligent lock system and smart lock |
| CN109191616A (en) * | 2017-07-07 | 2019-01-11 | 安徽德诺科技股份公司 | intelligent lock system |
| CN112002037A (en) * | 2019-05-10 | 2020-11-27 | 联合汽车电子有限公司 | Cloud server, vehicle, mobile terminal and authorization data updating method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114550353A (en) | 2022-05-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN114550353B (en) | Intelligent lockset control system of transformer substation | |
| CN105205898B (en) | A kind of electronic cipher Rights Management System of smart lock | |
| CN105184935B (en) | It is a kind of can wechat share the blue-tooth intelligence lock system of password | |
| CN100449561C (en) | Divulging secrets prevention system of USB storage device date based on certificate and transparent encryption technology | |
| US11244524B2 (en) | System and method for managing electronic locks | |
| CN104081409B (en) | Method for protecting computing device | |
| US9256723B2 (en) | Security key using multi-OTP, security service apparatus, security system | |
| CN104282058B (en) | The method for unlocking of the safety intelligent lock system of band video monitoring based on bluetooth | |
| CN104299300B (en) | The unblanking and close locking method of safety intelligent lock system based on NFC | |
| CN104282061B (en) | Unlocking method for safety intelligent lock system | |
| CN104123768B (en) | A kind of safe and intelligent lock system and unlocking, shut control method | |
| CN102859929A (en) | Online secure device provisioning with updated offline identity data generation and offline device binding | |
| CN105303651A (en) | Bluetooth based two-way communication automatic locking system and method | |
| CN104282060B (en) | A kind of method for unlocking of safety intelligent lock system | |
| CN104123769A (en) | Locking and unlocking control method of safe smart lock | |
| CN106548059A (en) | The method of teacher, head of a family's mobile terminal and head of a family's authentication | |
| CN104468491A (en) | Virtual desktop system and method based on secure channel | |
| CN100476841C (en) | Method and system for centrally managing code to hard disk of enterprise | |
| CN101655893B (en) | Manufacture method of intelligent blog lock, Blog access control method and system thereof | |
| CN110517374A (en) | A kind of goods and materials turnover management system and method | |
| CN109920109A (en) | Smart lock control method and smart lock | |
| CN104092084A (en) | Optical fiber laser device as well as self-protection device and self-protection method thereof | |
| CN114550352B (en) | Lock management system, method, device and storage medium for power equipment | |
| CN113608933B (en) | Distributed backup synchronization system for public cloud tenant service sensitive data | |
| CN109710460A (en) | Information processing method and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |