CN114978619A - Cross-safety-zone data integration monitoring method, system and medium for multi-load regulation and control system - Google Patents
Cross-safety-zone data integration monitoring method, system and medium for multi-load regulation and control system Download PDFInfo
- Publication number
- CN114978619A CN114978619A CN202210489867.2A CN202210489867A CN114978619A CN 114978619 A CN114978619 A CN 114978619A CN 202210489867 A CN202210489867 A CN 202210489867A CN 114978619 A CN114978619 A CN 114978619A
- Authority
- CN
- China
- Prior art keywords
- load
- load data
- data
- data integration
- task
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02P—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN THE PRODUCTION OR PROCESSING OF GOODS
- Y02P90/00—Enabling technologies with a potential contribution to greenhouse gas [GHG] emissions mitigation
- Y02P90/02—Total factory control, e.g. smart factories, flexible manufacturing systems [FMS] or integrated manufacturing systems [IMS]
Abstract
The invention discloses a cross-safety-zone data integration monitoring method and a cross-safety-zone data integration monitoring system for a multi-element load regulation and control system, wherein the monitoring method comprises the following steps: inputting the information of the load data integration task into a task table in a system database; loading tasks in a task table; for a load data integration task in a task table, establishing a uniform REST service interface with a load aggregator platform, and acquiring load data in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network; and reading the load data in the cache information table, forwarding the load data to the multi-element load regulation and control system, and monitoring the state of the load data. The method can realize the rapid access, monitoring and display of the load data, is beneficial to the overall observation of the operation and maintenance personnel on the load data integration process, and can timely position and deal with the problem when an abnormality occurs, thereby enhancing the stability and safety of the operation of the regulation and control system.
Description
Technical Field
The invention relates to a cross-safety-area data integration monitoring method and system for a multi-load regulation and control system, and belongs to the technical field of power grid optimization configuration.
Background
With the occurrence of a large number of source-containing load nodes applied to distributed power generation, distributed energy storage, electric vehicles and the like, the load of a power system is more diversified, and the user side is not only the end power load, so that the traditional passive power distribution network generates bidirectional tide; this requires the load regulation system to support extensive data integration and monitoring, thereby achieving load-side resource interactive management. The integrated monitoring object of the load data is changed from traditional regulation and control objects such as a power plant, a transformer substation and the like into a load aggregator platform deployed outside a regulation and control data network, the load side resource data are numerous, the distribution is wide, the platforms are different, and the communication link is long, so that how to reliably and efficiently integrate and monitor the access of the load aggregator platform across a safety zone is an urgent problem to be solved for improving the regulation and control optimization capability of a new generation of power grid.
The chinese patent application No. 2021108742885 discloses a method and system for processing multi-load data across security zones, which collects multi-load data sent on a load aggregator platform of an external power network by using SOAP by constructing a data information channel from an access zone of the external power network to a first security zone of the internal power network and then to a second security zone of the internal power network, thereby realizing the access of multi-load across security zones comprehensively. SOAP is a service-oriented communication protocol, is suitable for customization and has higher redundancy, which affects the service communication efficiency; meanwhile, SOAP relies on a WSDL generation framework, communication interface interaction needs to be encapsulated on a code layer, and workload is large.
Disclosure of Invention
The purpose of the invention is as follows: aiming at the problems in the prior art, the invention provides a method and a system for monitoring data integration of a multi-element load regulation and control system across a safety zone, which can realize the quick access of load data.
The technical scheme is as follows: the invention provides a cross-safety-zone data integration monitoring method for a multi-element load regulation and control system, which comprises the following steps:
loading tasks in the task table; the task table is used for recording information of a load data integration task, and the information of the load data integration task comprises a load data identifier and a load data description; the task table is arranged in a system database, and the system database is deployed in a first network;
for the load data integration tasks in the task table, establishing a unified REST service interface between the load data integration tasks and a load aggregator platform, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network;
reading load data in the cache information table, forwarding the load data to the multi-element load regulation and control system, and monitoring the state of the load data; the state of the load data includes: whether the data is valid or not and whether the forwarding is successful or not.
In order to improve the transmission safety of data, after a unified REST service interface between the load aggregation business platform and the load aggregation business platform is established, a safety communication channel is established between the load aggregation business platform and the load data corresponding to the load data integration task is obtained through the safety communication channel in a request-response mode; the establishing of the secure communication channel with the load aggregator platform specifically includes forward authentication and reverse authentication, where the forward authentication includes:
sending a first public key certificate to a load aggregator platform;
receiving a second signature key and a second public key certificate returned by the load aggregator platform;
decrypting the second signature key by using the first private key to obtain the signature and the first session key of the load aggregator platform;
verifying the legality of the load aggregator platform through the signature of the load aggregator platform, the first session key and the second public key certificate; if the data is legal, the first session key is adopted to encrypt the data sent to the load aggregation provider platform, and the first session key is adopted to decrypt the data sent by the load aggregation provider platform;
the reverse authentication includes:
receiving a second public key certificate sent by the load aggregator platform;
generating a random number, encrypting the random number by using a second public key certificate as a key, and signing the key to obtain a first signature key; and sending the first signature key and the first public key certificate to the load aggregator platform.
The acquiring of the load data corresponding to the task in a request-response manner includes:
sending a load data request to a load aggregator platform at regular time according to a periodic strategy; the load data request carries a load data identifier and a load data description;
and acquiring a response returned by the load aggregation provider platform, analyzing load data from the response, and storing the load data in a cache information table.
As a preferred embodiment, the acquiring load data corresponding to the task in a request-response manner includes:
monitoring a port connected with a load aggregator platform, and acquiring a load data uploading request sent by the load aggregator platform;
analyzing the load data in the load data uploading request and storing the load data in a cache information table;
and sending a response to the load aggregation provider platform, wherein the response carries the request receiving success identification.
Furthermore, after the load data in the cache information table is read, the method also comprises the steps of performing statistical analysis on the read load data and displaying the result by adopting the selected display mode.
Further, the cache information table stores the load data in a classified manner.
Further, the method also comprises the step of acquiring and displaying the operation state of the secure communication channel.
In another aspect, the present invention further provides a data integration monitoring system for a multivariate load regulation system across a safety zone, comprising: the system comprises a load data integration task management module and a load data integration task monitoring module which are arranged in a first network; distributed data integration communication agents arranged in the first network and/or the internet security server area;
the load data integration task management module is used for managing a task table, the task table is used for recording information of the load data integration task, and the information of the load data integration task comprises a load data identifier and a load data description; the task table is arranged in a system database, and the system database is deployed in a first network;
the distributed data integration communication agent is used for loading tasks in a task table; for the load data integration tasks in the task table, establishing a unified REST service interface between the load data integration tasks and a load aggregator platform, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network;
the load data integration task monitoring module is used for reading the load data in the cache information table, forwarding the load data to the multi-element load regulation and control system and monitoring the state of the load data; the state of the load data includes: whether the data is valid and whether the forwarding is successful.
Furthermore, a communication module and an authentication module are arranged in the distributed data integration communication agent, the communication module comprises a service calling module and a service publishing module, and the service calling module is used for actively acquiring the load aggregator platform interface service data; the service release module is used for receiving the data pushed by the load aggregator platform; the authentication module is used for providing Token authentication service and bidirectional certificate authentication for the load aggregator platform.
Furthermore, the system also comprises a panoramic monitoring module which is used for carrying out statistical analysis on the load data read by the load data integration task monitoring module and displaying the result by adopting a selected display mode.
In another aspect, the present invention discloses a computer readable storage medium, on which computer instructions are stored, and when the computer instructions are executed, the steps of the above-mentioned cross-safe-area data integration monitoring method are executed.
Has the advantages that: the method and the system for monitoring the data integration of the multi-element load regulation and control system across the safety zone, disclosed by the invention, have the following advantages:
1. the invention manages and maintains the load data integration tasks through the task table, and provides a basis for load data integration monitoring; 2. according to the invention, the load data corresponding to the load data integration task is acquired in a request-response manner by establishing a uniform REST service interface for data sent by the load aggregator platform, so that the method is simple and direct to realize and has small workload; 3. the invention establishes a secure communication channel to carry out encryption communication with the load aggregator platform, thereby maintaining the security of the power system; 4. the mode of acquiring the load data adopts a mode of regularly requesting or actively reporting, and is flexibly adapted to social adjustable load resources; 5. the invention monitors the load data, displays the result according to the selected display mode, and simultaneously monitors and displays the operation state of the communication channel, thereby being beneficial to the overall observation of the operation and maintenance personnel on the load data integration process, and when an abnormality occurs, the operation and maintenance personnel can position and deal with the problem in time, thereby enhancing the stability and the safety of the operation of the multi-element load regulation and control system.
Drawings
FIG. 1 is a flow chart of a cross-safe zone data integration monitoring method disclosed by the present invention;
fig. 2 is a schematic connection diagram of the cross-safe-zone data integration monitoring system disclosed in the present invention.
Detailed Description
The invention is further elucidated with reference to the drawings and the detailed description.
The load aggregator platform comprises an external load aggregator platform distributed on the internet, such as an internet of vehicles, a charging pile and an intelligent building, and further comprises an internal load aggregator platform distributed in a management information area, such as comprehensive energy service and electric heating. The data sent by the load aggregation business platform crosses the power system management information large area and the internet area, and is accessed from an information external network to participate in the multi-element load regulation and control. In this embodiment, the first network is an intranet. The invention discloses a cross-safety-zone data integration monitoring method for a multi-element load regulation and control system, the flow of which is shown in figure 1 and comprises the following steps:
(1) inputting the information of the load data integration task into a task table in a system database; the system database is deployed inside a first network; the information of the load data integration task comprises a load data identifier and a load data description;
(2) loading tasks in a task table;
for the load data integration tasks in the task table, establishing a unified REST service interface between the load data integration tasks and a load aggregator platform, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network; for an electric power intranet, dividing the electric power intranet into a production control large area and a management information large area according to the safety protection regulation requirement of an electric power secondary system, wherein in the embodiment, a cache information table is deployed in the management information large area;
(3) reading load data in the cache information table, forwarding the load data to the multi-element load regulation and control system, and monitoring the state of the load data; the state of the load data includes: whether the data is valid and whether the forwarding is successful.
The cross-safe-zone data integration monitoring system for implementing the method is shown in fig. 2 and comprises: the system comprises a load data integration task management module and a load data integration task monitoring module which are arranged in a first network; and the distributed data integration communication agent is arranged in the first network and/or the internet security server area.
The load data integration task management module is deployed in the first network and used for managing the task table. The load data integration task management module manages the load data integration tasks by managing and maintaining the task table, and the management comprises adding, deleting and modifying the load data integration tasks in the task table. When a load data integration task is added in a task table, setting a load data identifier for the newly added task, and recording information such as a task access type, a task interface input/output parameter value, a task execution period strategy, a message transfer mode and the like in the description of the load data;
the distributed data integration communication agent is used for loading tasks in the task table, establishing a unified REST service interface between the distributed data integration communication agent and the load data integration platform for the load data integration tasks in the task table, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in the first network. A plurality of distributed data integrated communication agents can be arranged in the whole system, and external load aggregator platforms distributed on the internet, such as an internet of vehicles, charging piles, intelligent buildings and the like, are accessed through the distributed data integrated communication agents deployed in the internet security server area; and accessing internal load aggregator platforms such as comprehensive energy services and electric heating distributed in the management information large area through distributed data integrated communication agents deployed in the management information large area of the power intranet. In fig. 2, an internal load aggregator platform 1 and an internal load aggregator platform 2 access a distributed data integration communication agent 1 located in a management information large area of an electric power intranet through a firewall; the external load aggregator platform 3 and the external load aggregator platform M access the distributed data integrated communication agent 2 and the distributed data integrated communication agent N, respectively, located in the internet extranet through the firewall.
The load data integration task monitoring module is deployed in the management information area and used for reading the load data in the cache information table, forwarding the load data to the multi-element load regulation and control system and monitoring the state of the load data. The cache information table stores the load data in a classified manner for the convenience of management and monitoring. The cache information meter is positioned in an information logic isolation agent which is positioned in a management information large area, so that the load data of an external load aggregator platform distributed on the Internet is integrated into an internal network of the power system.
In order to improve the communication security, the distributed data integration communication agent establishes an HTTP secure communication channel based on a secure transport layer protocol TLS with the load aggregator platform. The method comprises the steps that a communication module and an authentication module are arranged in a distributed data integration communication agent, wherein the communication module comprises a service calling module and a service publishing module, the service calling module is used for actively acquiring interface service data of a load aggregator platform, and the service publishing module is used for receiving pushed data of the load aggregator platform; the authentication module is used for providing Token authentication service and two-way certificate authentication for the load aggregator platform, wherein the two-way certificate authentication process specifically comprises forward authentication and reverse authentication, the distributed data integrated communication agent is used as a server during the forward authentication, the load aggregator platform is used as a client, and the steps are as follows:
the distributed data integration communication agent sends a first public key certificate to the load aggregator platform;
the load aggregator platform generates a random number, encrypts the random number by using the received first public key certificate as a secret key, signs the secret key to obtain a second signature secret key, and returns the second signature secret key and a second public key certificate of the load aggregator platform to the distributed data integration communication agent;
the distributed data integration communication agent receives a second signature key and a second public key certificate returned by the load aggregator platform; decrypting the second signature key by using the existing first private key to obtain the signature and the first session key of the load aggregator platform;
verifying the legality of the load aggregator platform through the signature of the load aggregator platform, the first session key and the second public key certificate;
if the data is legal, the data sent to the load aggregation business platform is encrypted by the first session key, and the data sent by the load aggregation business platform is decrypted by the first session key;
when reverse authentication is carried out, the distributed data integrated communication agent serves as a client, the load aggregator platform serves as a server, and the steps are as follows:
the load aggregation business platform sends a second public key certificate to the distributed data integration communication agent;
the distributed data integration communication agent generates a random number, encrypts the random number by using the received second public key certificate as a secret key, and signs the secret key to obtain a first signature secret key; sending the first signature key and the first public key certificate to a load aggregator platform;
the load aggregator platform receives a first signature key and a first public key certificate; decrypting the first signature key by using the existing second private key to obtain the signature and a second session key of the distributed data integrated communication agent;
verifying the validity of the distributed data integration communication agent through the signature of the distributed data integration communication agent, the second session key and the first public key certificate;
if the data is legal, the load aggregation platform adopts the second session key to encrypt the data sent to the distributed data integrated communication agent, and adopts the second session key to decrypt the data sent by the distributed data integrated communication agent.
Only when the two-way authentication is legal, the two-way communication channel between the distributed data integrated communication agent and the load aggregator platform can be established and encrypted for communication, so that the safety and reliability of load data communication are ensured.
In the step (2), the load data corresponding to the task is obtained in a request-response manner, and the following two manners may be adopted:
the first mode comprises the following steps:
sending a load data request to a load aggregator platform at regular time according to a periodic strategy; the load data request carries a load data identifier and a load data description;
and acquiring a response returned by the load aggregation provider platform, analyzing load data from the response, and storing the load data in a cache information table.
The second mode comprises the following steps:
monitoring a port connected with a load aggregator platform, and acquiring a load data uploading request sent by the load aggregator platform;
analyzing the load data in the load data uploading request and storing the load data in a cache information table;
and sending a response to the load aggregation business platform, wherein the response carries the request receiving success identification.
The selection of the two modes can be set in the task access type in the load data integration task information in the task table, and the distributed data integration communication agent selects the mode of acquiring the load data according to the setting after loading the task. The request has two string type parameters taskSign and objData, wherein the taskSign is used for service data identification, and the objData represents specific entry parameter data corresponding to the request; responding to response, wherein the response contains three string type parameters, namely code, msg and data, the code is interactive state coding, the msg is result description information, and the data is used for representing returned service parameter data; request-response is in JSON format.
Similarly, when the load data integration task monitor forwards the load data to the multi-element load regulation and control system, a uniform REST service interface is also established, and the data is forwarded in a request-response mode. After receiving the forwarded load data, the multivariate load regulation and control system can forward the load data to a background application or other service systems according to a message forwarding mode in the description of the load data. If the message transfer mode is forward and reverse isolation, scanning a corresponding load data message file, and then forwarding the load data message file to a background application or a service system; otherwise, mapping the load data into an internal service bus, and then forwarding to a background application or a service system.
In order to avoid unstable cooperative interaction between a multi-element load regulation and control system and a load aggregator platform due to single-node failure of a distributed data integrated communication agent, reliability of communication is improved by deploying an access communication redundant server, and a high-availability load balancing cluster is built by adopting Keepalived and Nginx to realize dual-computer hot standby of the distributed data integrated communication agent.
The load data integration task monitoring module is also used for carrying out statistical analysis on the read load data and displaying the result by adopting a selected display mode. The display is realized by a panoramic monitoring module, a plurality of display modes are provided, including forms of static graphs, dynamic graphs or lists and the like, threshold judgment is carried out, and an alarm is pushed.
The data integration monitoring system in the cross-safety zone also acquires and displays the running state of the safety communication channel, and alarms the communication channel with abnormal state. The display of the operation state of the communication channel can be realized by each distributed data integrated communication agent, and can also be realized by the panoramic monitoring module according to the state reported by the distributed data integrated communication agents or analyzing the operation information and the log information of the distributed data integrated communication agents.
In this embodiment, a computer readable storage medium is further provided, where computer instructions are stored, and when the computer instructions are executed, the steps of the cross-security-area data integration monitoring method are executed.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The foregoing descriptions of specific exemplary embodiments of the present invention have been presented for purposes of illustration and description. It is not intended to limit the invention to the precise form disclosed, and obviously many modifications and variations are possible in light of the above teaching. The exemplary embodiments were chosen and described in order to explain certain principles of the invention and its practical application to enable one skilled in the art to make and use various exemplary embodiments of the invention and various alternatives and modifications as are suited to the particular use contemplated. It is intended that the scope of the invention be defined by the claims and their equivalents.
Claims (11)
1. A data integration monitoring method used for a multi-element load regulation and control system crossing a safety zone is characterized by comprising the following steps:
loading tasks in the task table; the task table is used for recording information of a load data integration task, and the information of the load data integration task comprises a load data identifier and a load data description; the task table is arranged in a system database, and the system database is deployed in a first network;
for the load data integration tasks in the task table, establishing a unified REST service interface between the load data integration tasks and a load aggregator platform, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network;
reading load data in the cache information table, forwarding the load data to the multi-element load regulation and control system, and monitoring the state of the load data; the state of the load data includes: whether the data is valid or not and whether the forwarding is successful or not.
2. The method for monitoring data integration across the security zone according to claim 1, wherein after establishing the uniform REST service interface with the load aggregator platform, establishing a secure communication channel with the load aggregator platform, and acquiring load data corresponding to the load data integration task through the secure communication channel in a request-response manner; the establishing of the secure communication channel with the load aggregator platform specifically includes forward authentication and reverse authentication, where the forward authentication includes:
sending a first public key certificate to a load aggregator platform;
receiving a second signature key and a second public key certificate returned by the load aggregator platform;
decrypting the second signature key by using the first private key to obtain the signature and the first session key of the load aggregator platform;
verifying the legality of the load aggregator platform through the signature of the load aggregator platform, the first session key and the second public key certificate; if the data is legal, the data sent to the load aggregation business platform is encrypted by the first session key, and the data sent by the load aggregation business platform is decrypted by the first session key;
the reverse authentication includes:
receiving a second public key certificate sent by the load aggregator platform;
generating a random number, encrypting the random number by using a second public key certificate as a key, and signing the key to obtain a first signature key; and sending the first signature key and the first public key certificate to the load aggregator platform.
3. The method for monitoring data integration across security zones according to claim 1, wherein the acquiring load data corresponding to the task in a request-response manner comprises:
sending a load data request to a load aggregator platform at regular time according to a periodic strategy; the load data request carries a load data identifier and a load data description;
and acquiring a response returned by the load aggregation provider platform, analyzing load data from the response, and storing the load data in a cache information table.
4. The method for monitoring data integration across security zones according to claim 1, wherein the acquiring load data corresponding to the task in a request-response manner comprises:
monitoring a port connected with a load aggregator platform, and acquiring a load data uploading request sent by the load aggregator platform;
analyzing the load data in the load data uploading request and storing the load data in a cache information table;
and sending a response to the load aggregation business platform, wherein the response carries the request receiving success identification.
5. The method for integrated monitoring of data across safe zones according to claim 1, further comprising performing statistical analysis on the read load data after reading the load data in the cache information table, and displaying the result using the selected display mode.
6. The method for monitoring data integration across security zones according to claim 1, wherein the cache information table stores load data in a classified manner.
7. The cross-safe-zone data integration monitoring method of claim 2, further comprising acquiring and exposing an operational state of a secure communication channel.
8. A data integration monitoring system used for a multi-element load regulation and control system crossing a safety zone is characterized by comprising a load data integration task management module and a load data integration task monitoring module which are arranged in a first network; distributed data integration communication agents arranged in the first network and/or the internet security server area;
the load data integration task management module is used for managing a task table, the task table is used for recording information of the load data integration task, and the information of the load data integration task comprises a load data identifier and a load data description; the task table is arranged in a system database, and the system database is deployed in a first network;
the distributed data integration communication agent is used for loading tasks in a task table; for the load data integration tasks in the task table, establishing a unified REST service interface between the load data integration tasks and a load aggregator platform, and acquiring load data corresponding to the load data integration tasks in a request-response mode; the acquired load data is stored in a cache information table, and the cache information table is deployed in a first network;
the load data integration task monitoring module is used for reading the load data in the cache information table, forwarding the load data to the multi-element load regulation and control system and monitoring the state of the load data; the state of the load data includes: whether the data is valid and whether the forwarding is successful.
9. The data integration monitoring system across the safety zone according to claim 8, wherein a communication module and an authentication module are arranged in the distributed data integration communication agent, the communication module comprises a service calling module and a service publishing module, and the service calling module is used for actively acquiring load aggregator platform interface service data; the service release module is used for receiving the push data of the load aggregation business platform; the authentication module is used for providing Token authentication service and bidirectional certificate authentication for the load aggregator platform.
10. The data integration monitoring system across the safety zone according to claim 8, further comprising a panoramic monitoring module for performing statistical analysis on the load data read by the load data integration task monitoring module and displaying the result by using a selected display mode.
11. A computer readable storage medium having stored thereon computer instructions, wherein the computer instructions when executed perform the steps of the cross-safe zone data integration monitoring method of any one of claims 1 to 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210489867.2A CN114978619B (en) | 2022-05-07 | 2022-05-07 | Cross-safety-zone data integration monitoring method, system and medium for multi-element load regulation and control system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210489867.2A CN114978619B (en) | 2022-05-07 | 2022-05-07 | Cross-safety-zone data integration monitoring method, system and medium for multi-element load regulation and control system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114978619A true CN114978619A (en) | 2022-08-30 |
| CN114978619B CN114978619B (en) | 2023-08-04 |
Family
ID=82981459
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210489867.2A Active CN114978619B (en) | 2022-05-07 | 2022-05-07 | Cross-safety-zone data integration monitoring method, system and medium for multi-element load regulation and control system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114978619B (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521781A (en) * | 2011-12-15 | 2012-06-27 | 绍兴电力局 | Safe region-crossing equipment uniform monitoring method based on independent monitoring services, and monitoring system for the same |
| CN105528669A (en) * | 2015-11-26 | 2016-04-27 | 国网北京市电力公司 | Load prediction system for power system |
| US20160277368A1 (en) * | 2015-03-19 | 2016-09-22 | Netskope, Inc. | Systems and methods of per-document encryption of enterprise information stored on a cloud computing service (ccs) |
| CN108650333A (en) * | 2018-07-31 | 2018-10-12 | 泰链(厦门)科技有限公司 | Dispersed nodes load method, medium, device and the block catenary system of block catenary system |
| CN109508273A (en) * | 2018-09-21 | 2019-03-22 | 广东电网有限责任公司珠海供电局 | A kind of electric automobile charging station monitoring system and data capture method based on Web |
| CN111405055A (en) * | 2020-03-23 | 2020-07-10 | 北京达佳互联信息技术有限公司 | Multi-cluster management method, system, server and storage medium |
| CN112463885A (en) * | 2020-11-26 | 2021-03-09 | 北京宏景世纪软件股份有限公司 | Data synchronization implementation method and centralized data system |
| CN113595090A (en) * | 2021-07-30 | 2021-11-02 | 中国电力科学研究院有限公司 | Multi-element load data processing method and system across safety zones |
| CN114363096A (en) * | 2022-03-21 | 2022-04-15 | 中国电建集团华东勘测设计研究院有限公司 | Data access transmission system crossing safety partitions |
-
2022
- 2022-05-07 CN CN202210489867.2A patent/CN114978619B/en active Active
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521781A (en) * | 2011-12-15 | 2012-06-27 | 绍兴电力局 | Safe region-crossing equipment uniform monitoring method based on independent monitoring services, and monitoring system for the same |
| US20160277368A1 (en) * | 2015-03-19 | 2016-09-22 | Netskope, Inc. | Systems and methods of per-document encryption of enterprise information stored on a cloud computing service (ccs) |
| US20160275303A1 (en) * | 2015-03-19 | 2016-09-22 | Netskope, Inc. | Systems and methods of monitoring and controlling enterprise information stored on a cloud computing service (ccs) |
| US20180218167A1 (en) * | 2015-03-19 | 2018-08-02 | Netskope, Inc. | Systems and methods of monitoring and controlling enterprise information stored on a cloud computing service (ccs) |
| CN105528669A (en) * | 2015-11-26 | 2016-04-27 | 国网北京市电力公司 | Load prediction system for power system |
| CN108650333A (en) * | 2018-07-31 | 2018-10-12 | 泰链(厦门)科技有限公司 | Dispersed nodes load method, medium, device and the block catenary system of block catenary system |
| CN109508273A (en) * | 2018-09-21 | 2019-03-22 | 广东电网有限责任公司珠海供电局 | A kind of electric automobile charging station monitoring system and data capture method based on Web |
| CN111405055A (en) * | 2020-03-23 | 2020-07-10 | 北京达佳互联信息技术有限公司 | Multi-cluster management method, system, server and storage medium |
| CN112463885A (en) * | 2020-11-26 | 2021-03-09 | 北京宏景世纪软件股份有限公司 | Data synchronization implementation method and centralized data system |
| CN113595090A (en) * | 2021-07-30 | 2021-11-02 | 中国电力科学研究院有限公司 | Multi-element load data processing method and system across safety zones |
| CN114363096A (en) * | 2022-03-21 | 2022-04-15 | 中国电建集团华东勘测设计研究院有限公司 | Data access transmission system crossing safety partitions |
Non-Patent Citations (1)
| Title |
|---|
| 宋振伟: "《用电信息采集系统数据库的云存储设计》", 《信息科技》, no. 2014 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114978619B (en) | 2023-08-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20230017740A1 (en) | Electric Border Gateway Device and Method for Chaining and Storage of Sensing Data Based on the Same | |
| CN111930851B (en) | Control data processing method, device, medium and electronic equipment of block chain network | |
| CN111818032B (en) | Data processing method and device based on cloud platform and computer program | |
| Sha et al. | A secure and efficient framework to read isolated smart grid devices | |
| CN112532705B (en) | Smart city service system based on big data | |
| CN109302491A (en) | A kind of industry internet framework and its operation method based on block chain | |
| CN109274672B (en) | Mobile operation and maintenance management and data interaction system for information communication equipment | |
| CN108390881A (en) | A kind of distribution high concurrent real-time messages method for pushing and system | |
| CN103856345B (en) | Server account number and password management method and system and server | |
| EP3602720B1 (en) | Method of operating an electrical grid | |
| CN113079215B (en) | Block chain-based wireless security access method for power distribution Internet of things | |
| Rui et al. | Research on secure transmission and storage of energy IoT information based on Blockchain | |
| CN111447067A (en) | Encryption authentication method for power sensing equipment | |
| CN113014655A (en) | Internet of things network system based on block chain | |
| Yang et al. | Application of blockchain in internet of things | |
| CN111212105A (en) | Remote safe transmission method and system for wind and light storage data | |
| CN111988260B (en) | Symmetric key management system, transmission method and device | |
| Shen et al. | Design of trusted aviation data exchange platform based on blockchain | |
| CN114978619B (en) | Cross-safety-zone data integration monitoring method, system and medium for multi-element load regulation and control system | |
| Ruggeri et al. | An innovative blockchain based application of the extended triple diffie-hellman protocol for iot | |
| Sunny et al. | Towards a lightweight blockchain platform for critical infrastructure protection | |
| US11626978B2 (en) | Secure group communication in a cluster of devices | |
| Dan et al. | An study on the application of blockchain based 5G Technology in the Power IoT | |
| Johnpaul et al. | Blockchain based secure erlang server for request based group communication over XMPP | |
| CN112383556B (en) | Data processing method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |