CN116455564A - Quantum encryption-based power distribution automation protection method and system - Google Patents
Quantum encryption-based power distribution automation protection method and system Download PDFInfo
- Publication number
- CN116455564A CN116455564A CN202310420003.XA CN202310420003A CN116455564A CN 116455564 A CN116455564 A CN 116455564A CN 202310420003 A CN202310420003 A CN 202310420003A CN 116455564 A CN116455564 A CN 116455564A
- Authority
- CN
- China
- Prior art keywords
- quantum
- power distribution
- key
- quantum key
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000009826 distribution Methods 0.000 title claims abstract description 220
- 238000000034 method Methods 0.000 title claims abstract description 46
- 238000004891 communication Methods 0.000 claims abstract description 116
- 238000002955 isolation Methods 0.000 claims abstract description 48
- 230000002787 reinforcement Effects 0.000 claims abstract description 24
- 230000005540 biological transmission Effects 0.000 claims description 61
- 230000002159 abnormal effect Effects 0.000 claims description 9
- 238000012544 monitoring process Methods 0.000 claims description 7
- 230000004807 localization Effects 0.000 abstract description 6
- 238000001514 detection method Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000012423 maintenance Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 230000009466 transformation Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 230000001419 dependent effect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 239000004744 fabric Substances 0.000 description 1
- 238000001914 filtration Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000005457 optimization Methods 0.000 description 1
- 238000011084 recovery Methods 0.000 description 1
- 238000003860 storage Methods 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0852—Quantum cryptography
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S40/00—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
- Y04S40/20—Information technology specific aspects, e.g. CAD, simulation, modelling, system security
Abstract
The invention discloses a distribution automation protection method and system based on quantum encryption, which relate to the field of quantum secret communication application, and the method comprises the following steps: performing built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform; establishing a first secret communication channel between a power distribution main station and a quantum security service platform and a second secret communication channel between the power distribution main station and a power distribution substation, wherein the first secret communication channel comprises a security access gateway; if the power distribution terminal initiates a data request, a session key is acquired through the quantum security service platform, data encryption is carried out on the basis of the session key, and the session key is filled to the quantum key filling substation through a second secret communication channel; and decrypting the data through the secure access gateway, and transmitting the decrypted service data to the power distribution master station. The invention can enhance the safety of the quantum encryption platform, ensure the stable operation of the system, improve the safety level of communication with county and realize the localization management.
Description
Technical Field
The invention relates to the technical field of quantum secret communication application, in particular to a power distribution automation protection method and system based on quantum encryption.
Background
Along with the continuous promotion of energy internet construction, a large number of novel electric power energy facilities are accessed, and the power grid access equipment with multiple faces and wide points also provides higher requirements on power grid communication safety. Taking Zhejiang as an example, the production control large areas of 11 local cities in Zhejiang province of the current national network are all provided with quantum encryption security service platform systems, the large-scale transformation of the wireless public network remote control of the intelligent switch of the overhead line is developed, and the test point application is developed aiming at the local control of the low-voltage station area.
In the prior art, when the power distribution terminal is subjected to hardware transformation, a quantum encryption chip is usually installed on a main board of a core unit of the power distribution terminal and is connected in series between a national network encryption module and a communication module, and data and the like for three remote, remote maintenance and program upgrading are transmitted between the power distribution terminal and a quantum communication device. However, with the continuous popularization of quantum encryption application, the quantum encryption platform is still deployed for the extranet, and has a safety risk for the quantum encryption platform, and the quantum encryption platform has single equipment on part of nodes, and can not normally operate if abnormal conditions occur. In addition, the communication security level of the county master station is low, and the master station side of the city office needs to be concentrated to finish the pouring work of the protection key (filling key), so that the problem of difficulty in localization management exists.
Disclosure of Invention
Aiming at the problems that the quantum encryption platform applied by quantum encryption has single security risk and part of node equipment and the security level of the communication at the county level is low, the invention provides a power distribution automation protection method based on quantum encryption.
In a first aspect, a technical solution provided in an embodiment of the present invention is a power distribution automation protection method based on quantum encryption, which is applicable to a power distribution network, where the power distribution network includes a power distribution main station, a power distribution substation and a quantum security service platform, and the power distribution substation includes a quantum key charging substation, and includes the following steps:
performing built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
establishing a first secret communication channel between the power distribution master station and the quantum security service platform and a second secret communication channel between the power distribution master station and the power distribution substation, wherein the first secret communication channel comprises a security access gateway;
If the power distribution terminal initiates a data request, a session key is acquired through the quantum security service platform, the data encryption is carried out based on the session key, and the session key is filled to a quantum key filling substation of the power distribution substation through the second secret communication channel;
and decrypting the data through the secure access gateway and transmitting the decrypted service data to the power distribution master station.
Optionally, the quantum security service platform includes an original quantum security service module, the original quantum security service module includes a quantum key generation module, a quantum key scheduling module, a quantum key application module and a quantum network management module that are in communication connection, the built-in isolation reinforcement is performed on the quantum security service platform, and the method includes:
the quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
Optionally, the performing redundant deployment of the key node device on the quantum security service platform includes:
based on the original quantum security service module, a quantum cryptographic service engine mirror image device, a first quantum key service mirror image device, a second quantum key service mirror image device and a forward and reverse security isolation device are deployed, the quantum cryptographic service engine mirror image device is connected with the forward and reverse security isolation device through a second communication connection end, the forward and reverse security isolation device is connected with the first quantum key service mirror image device and one end of the second quantum key service mirror image device through a third communication connection end, and the other ends of the first quantum key service mirror image device and the second quantum key service mirror image device are connected with a fourth communication connection end which is connected to the security access gateway.
Optionally, the quantum key generation module includes a single-sending quantum key generation and management terminal, a single-receiving quantum key generation and management terminal, and a quantum random number generator, where the session key is acquired by the quantum security service platform, and the data encryption is performed based on the session key to acquire the quantum key, and includes:
If any communication connection end receives a data request sent by the power distribution terminal, a quantum random number is generated through the quantum random number generator, and a session key is generated through the single-sending quantum key generation and management terminal and the single-receiving quantum key generation and management terminal;
and the quantum key scheduling module generates the quantum key according to the session key and the quantum random number, and encrypts service data contained in a data request through the quantum key.
Optionally, the quantum key scheduling module includes an exchange cipher machine, a quantum cipher service engine device, and a quantum key charging device, where encrypting, by the quantum key, service data included in the data request includes:
encrypting service data through the exchange cipher machine and distributing the quantum key to the quantum cipher service engine device;
according to a preset scheduling negotiation rule, the quantum cipher service engine device distributes the quantum key to the quantum key application module, and performs key filling on the quantum key through the quantum key filling equipment;
and if the quantum cipher service engine device detects that an abnormal event exists, distributing the quantum key to the quantum key application module through the quantum cipher service engine mirror device according to a preset scheduling negotiation rule.
Optionally, the quantum network management module includes a quantum network management database server and a quantum network management service server which are in communication connection, and in the process of quantum encryption, the running states of the quantum key generation module, the quantum key scheduling module and the quantum key application module are managed and monitored by the quantum network management database server and the quantum network management service server.
Optionally, the security access gateway includes a quantum security access gateway that is communicatively connected and disposed on a side of the quantum security service platform, and a distribution network security gateway that is disposed on a side of the distribution master station, where the data decryption is performed through the security access gateway, and the decrypted service data is sent to the distribution master station, and the method includes:
and carrying out encryption transmission on the service data through the quantum security access gateway and the distribution network security access gateway, decrypting the service data through the distribution network security gateway at one side of the distribution master station, and transmitting the decrypted service data to the distribution master station.
Optionally, the second secret communication channel includes a first quantum key transmission device communicatively connected with the distribution master station and the quantum security service platform, and a second quantum key transmission device disposed in the distribution substation and in secret communication with the first quantum key transmission device, where the second quantum key transmission device is in communication with the quantum key charging substation and a distribution device in the distribution substation, and the first quantum key transmission device and the second quantum key transmission device are used for communication transmission between the distribution master station and the distribution substation, and for quantum key charging of the quantum key charging substation by the quantum key charging device.
In a second aspect, a technical solution provided in an embodiment of the present invention is a quantum encryption-based power distribution automation protection system, configured to execute the quantum encryption-based power distribution automation protection method according to any one of the embodiments, where the system includes:
the quantum security service platform deployment module is used for carrying out built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
the channel establishing module is used for establishing a first secret communication channel between the power distribution main station and the quantum security service platform and a second secret communication channel between the power distribution main station and the power distribution substation, wherein the first secret communication channel comprises a security access gateway;
the key acquisition module is used for acquiring a session key through the quantum security service platform if the power distribution terminal initiates a data request, carrying out data encryption based on the session key, and filling the session key to a quantum key filling substation of the power distribution substation through the second secret communication channel;
and the master station data transmission module is used for decrypting the data through the security access gateway and transmitting the decrypted service data to the power distribution master station.
Optionally, the quantum security service platform includes an original quantum security service module, the original quantum security service module includes a quantum key generation module, a quantum key scheduling module, a quantum key application module and a quantum network management module which are in communication connection, the quantum security service platform is subjected to built-in isolation reinforcement, and the quantum security service platform deployment module is specifically used for:
the quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
The invention has the beneficial effects that: according to the invention, the quantum security service platform is internally isolated and reinforced, so that forward and reverse physical isolation can be realized, and the security protection level of the platform is improved; by carrying out redundant deployment on the key node equipment of the quantum security service platform, the key node equipment in the quantum security service platform can be replaced when the key node equipment is abnormal, and the stable operation of the system is ensured. In addition, by establishing the first secret communication channel and the second secret communication channel, when a data request initiated by the power distribution terminal is received in the power distribution process, data encryption transmission can be performed based on the first secret communication channel, so that the safety of the data encryption transmission is ensured, and the data encryption transmission between the power distribution main station and the power distribution substation is realized through the second secret communication channel, so that the safety of the data transmission is enhanced; and the quantum security service platform can carry out key filling on the quantum key filling substation of the power distribution substation based on the second secret communication channel, so that data encryption and decryption operations in the power distribution substation can be conveniently carried out, and the localization management is realized. Therefore, the invention can enhance the safety of the quantum encryption platform, ensure the stable operation of the system, and improve the safety of communication with county and realize the localization management.
The foregoing summary is merely an overview of the present invention, and is intended to be implemented in accordance with the teachings of the present invention in order that the same may be more fully understood, and in order that the same or additional objects, features and advantages of the present invention may be more fully understood.
Drawings
Other features, objects and advantages of the present invention will become more apparent upon reading of the detailed description of non-limiting embodiments made with reference to the following drawings. The drawings are only for purposes of illustrating the preferred embodiments and are not to be construed as limiting the invention. Also, like reference numerals are used to designate like parts throughout the figures.
Fig. 1 is a flowchart of a quantum-encryption-based power distribution automation protection method according to an embodiment of the present invention;
fig. 2 is an overall topology diagram of a power distribution master station and a power distribution substation according to an embodiment of the present invention;
fig. 3 is a schematic structural diagram of a quantum-encryption-based power distribution automation protection system according to an embodiment of the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in further detail with reference to the accompanying drawings and examples, it being understood that the detailed description herein is merely a preferred embodiment of the present invention, which is intended to illustrate the present invention, and not to limit the scope of the invention, as all other embodiments obtained by those skilled in the art without making any inventive effort fall within the scope of the present invention.
Before discussing the exemplary embodiments in more detail, it should be mentioned that some exemplary embodiments are described as processes or methods depicted as flowcharts. Although a flowchart depicts operations (or steps) as a sequential process, many of the operations (or steps) can be performed in parallel, concurrently, or at the same time. Furthermore, the order of the operations may be rearranged. The process may be terminated when its operations are completed, but may have additional steps not included in the figures; the processes may correspond to methods, functions, procedures, subroutines, and the like.
The terms "first," "second," "third," "fourth" and the like in the description and in the claims and in the above drawings, if any, are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used may be interchanged where appropriate such that the embodiments of the invention described herein may be implemented in sequences other than those illustrated or otherwise described herein. It should also be understood that, in various embodiments of the present invention, the sequence number of each process does not mean the order of execution, and the order of execution of each process should be determined by its functions and internal logic, and should not constitute any limitation on the implementation process of the embodiments of the present invention.
It should be understood that in the present invention, "plurality" means two or more. "and/or" is merely a variable relationship describing an associated object, meaning that there may be three relationships, e.g., and/or B, may represent: a exists alone, A and B exist together, and B exists alone. The character "/" generally indicates that the context-dependent object is an "or" relationship. "comprising A, B and C", "comprising A, B, C" means that all three of A, B, C comprise, "comprising A, B or C" means that one of the three comprises A, B, C, and "comprising A, B and/or C" means that any 1 or any 2 or 3 of the three comprises A, B, C.
It should be understood that in the present invention, "B corresponding to a", "a corresponding to B", or "B corresponding to a" means that B is associated with a, from which B can be determined. Determining B from a does not mean determining B from a alone, but may also determine B from a and/or other information. The matching of A and B is that the similarity of A and B is larger than or equal to a preset threshold value.
Example 1
As shown in fig. 1, a flowchart of a power distribution automation protection method based on quantum encryption is provided in this embodiment. The automatic power distribution protection method based on quantum encryption comprises the following steps of:
S1, carrying out built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
s2, establishing a first secret communication channel between the power distribution master station and the quantum security service platform and a second secret communication channel between the power distribution master station and the power distribution substation, wherein the first secret communication channel comprises a security access gateway;
s3, if the power distribution terminal initiates a data request, a session key is acquired through the quantum security service platform, the quantum key is acquired based on the session key to encrypt data, and the session key is filled to a quantum key filling substation of the power distribution substation through the second secret communication channel;
s4, decrypting the data through the secure access gateway, and sending the decrypted service data to the power distribution master station.
Specifically, the quantum encryption-based distribution automation protection method provided by the embodiment of the invention is suitable for a distribution network, and the distribution network can comprise a distribution main station, a distribution substation and a quantum security service platform, wherein the quantum key charging substation is deployed in the distribution substation. The power distribution main station can refer to a city power distribution automation main station, and the power distribution substation can refer to a county workstation. The power distribution terminal (Feeder Terminal Unit, FTU) can be connected to the power distribution master station based on the quantum security service platform in a communication mode, and the power distribution master station is uploaded to the power distribution master station after data encryption is carried out on a transmitted data request through the quantum security service platform, so that communication with the power distribution master station is achieved. Similarly, the power distribution main station can also encrypt data based on the issued command by the quantum security service platform and then issue the command to the power distribution terminal. Wherein the data request may include, but is not limited to, a failure check request, a monitoring data upload request, etc.; the commands include, but are not limited to, adjusting and controlling the power distribution terminals, achieving fault location, fault isolation, and the like.
More specifically, the quantum security service platform may refer to a platform for encrypting and decrypting data transmitted between a power distribution terminal and a power distribution master station through a quantum encryption technology, where the quantum encryption technology is a series of encryption technologies that use a quantum principle to generate a secret key, perform confusion encryption of plaintext, restore decryption of ciphertext, communicate ciphertext, anti-eavesdropping, and the like. In the quantum security service platform, including being used for built-in devices such as quantum key generation, encryption and decryption, key distribution, in order to strengthen the security protection level of built-in devices, can carry out risk isolation reinforcement to built-in devices through the risk isolation technique, for example: and the built-in device is isolated and reinforced by a forward and reverse isolation party technology in network security measures. The key nodes may include necessary devices with large operation volume in the quantum security service platform, for example: quantum cryptography service engine device, quantum key service device, etc. In this embodiment, in order to avoid the unstable system operation caused by downtime on the key node, at least one set of key node redundancy equipment may be newly deployed in the quantum security service platform, and when the downtime occurs on the key node equipment, the system may be switched to the key node redundancy equipment to continue to provide normal operation service, so as to ensure normal operation of the system.
More specifically, the first secure communication channel may be a channel for secure data transmission between the quantum security service platform and the power distribution master station. The second secure communication channel may be a channel for secure transmission of data between the distribution master station and the distribution substation. Specifically, encryption communication can be realized between the quantum security service platform and the power distribution main station based on the security access gateway, and encryption communication can be realized between the power distribution main station and the power distribution substation by arranging an encryption transmission device. The security access gateway can be used as an entrance device in a network, a security encryption tunnel can be established between the quantum security service platform and the power distribution master station, the identity authentication and protocol conversion work is completed, and the data encryption transmission between the quantum security service platform and the power distribution master station is realized.
More specifically, when the power distribution terminal initiates a data request, a session key is output in the quantum security service platform, and service data in the data request is encrypted by acquiring a quantum key based on the session key. Meanwhile, the second secret communication channel can be used for communication between the quantum security service platform and the power distribution substation, and is used for filling the session key into the quantum key filling substation deployed in the power distribution substation, when data encryption transmission is carried out between the power distribution main station and the power distribution substation, the session key can be directly acquired based on the quantum key filling substation, the session key does not need to be acquired from the quantum security service platform at one side of the power distribution main station, the session key is sunk to a county, the localized management is realized, the working efficiency is improved, and the county access quantum secret communication function is synchronously realized. Wherein a one-time request corresponds to one quantum key, following one-time-pad encryption. The encrypted service data can be decrypted at the secure access gateway at the power distribution master station side, the decrypted service data is sent to the power distribution master station, and the power distribution master station can respond to a data request of the service data after receiving the service data, for example: and if the service data is that the point a has high-temperature faults, the power distribution main station sends out a control instruction to control the point a to be cut off.
In the embodiment of the invention, the quantum security service platform is internally isolated and reinforced, so that forward and reverse physical isolation can be realized, and the security protection level of the platform is improved; the quantum security service platform is subjected to redundant deployment of key node equipment, so that the key node equipment in the quantum security service platform can be replaced when the key node equipment is abnormal, and the stable operation of the system is ensured; in the power distribution process, when a data request initiated by a power distribution terminal is received, data encryption transmission can be performed based on the first secret communication channel, so that the safety of the data encryption transmission is ensured, the data encryption transmission between the power distribution main station and the power distribution substation is realized through the second secret communication channel, and the safety of the data transmission is enhanced; and the quantum security service platform can carry out key filling on the quantum key filling substation of the power distribution substation based on the second secret communication channel, so that data encryption and decryption operations in the power distribution substation can be conveniently carried out, and the localization management is realized. Therefore, the invention can enhance the safety of the quantum encryption platform, ensure the stable operation of the system, and improve the safety of communication with county and realize the localization management.
In this embodiment, the quantum security service platform includes an original quantum security service module, where the original quantum security service module includes a quantum key generation module, a quantum key scheduling module, a quantum key application module, and a quantum network management module that are in communication connection, and in the step S1, the quantum security service platform is built-in isolation and reinforcement, including:
the quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
Specifically, the original quantum security service module may refer to a basic quantum security service platform, and the built-in isolation reinforcement and the redundant deployment of key node equipment in the invention are based on the deployment of the basic quantum security service platform. The quantum key generation module can generate a quantum key according to quantum characteristics, and provides quantum key support for the quantum key scheduling module and the quantum key application module. The quantum key scheduling module can realize the storage and output of quantum keys, the negotiation scheduling and the session key filling. The quantum key application module can construct a quantum secure encryption transmission channel, such as a first secure communication channel, by utilizing the quantum key so as to improve the security level of the 4G/5G transmission channel, and ensure that service data can be safely transmitted to a secure access area and forwarded to a power distribution master station or other service systems. The security access area comprises a quantum security access area arranged on the side of the quantum security service platform and a city wireless security access area arranged on the side of the power distribution main station. The quantum network management module can realize network management and monitoring of the running state of the quantum equipment of the quantum security service platform, and the running state can be monitored to provide operation and maintenance support. The first communication connection end may refer to a plurality of switches deployed in an original quantum security service module, where the switches can provide an independent electrical signal path for any two network nodes accessing the switches, for example: ethernet switches, fabric switches, etc. In this embodiment, one end of the switch may be connected to the power distribution terminal, and the other end is connected to the quantum key generation module of the original quantum security service module in a communication manner, and after the power distribution terminal sends a data request, data is transmitted to the quantum key generation module through the switch to generate a quantum key.
More specifically, the isolation reinforcement can be realized through forward and reverse isolation reinforcement, the forward and reverse isolation is a network security measure, quantum devices with different security levels can be isolated, and information leakage and attack are prevented. Forward and reverse isolation can be achieved by two aspects: firstly, through network topology design, quantum devices with high security level and low security level are isolated in different physical areas, for example: after the quantum devices in the quantum security service platform are divided according to preset security levels, the quantum key generation module and the quantum key scheduling module are isolated in a first-level security area, and the quantum key application module is isolated in a second-level security area. The primary security zone security level is higher than the secondary security zone. Secondly, the network security equipment is used for carrying out security detection and filtering on the data, and only legal data is allowed to pass through, for example: and a firewall or an intrusion detection system is deployed on an original quantum security service module of the quantum security service platform, when an attacker expects to enter the quantum security service platform or some quantum devices in the quantum security service platform, data validity detection is carried out through the firewall or the intrusion detection system, and finally only legal data is allowed to pass through, so that illegal data isolation is realized.
After the reinforcement based on forward and reverse isolation, even if an attacker successfully enters a low-security-level area in the quantum security service platform, the attacker cannot directly attack the high-security-level quantum equipment, so that the division of the security boundaries of the internal and external networks of the quantum security service platform is realized, and the network security is improved.
In this embodiment, in the step S1, the performing redundant deployment of the key node device on the quantum security service platform includes:
based on the original quantum security service module, a quantum cryptographic service engine mirror image device, a first quantum key service mirror image device, a second quantum key service mirror image device and a forward and reverse security isolation device are deployed, the quantum cryptographic service engine mirror image device is connected with the forward and reverse security isolation device through a second communication connection end, the forward and reverse security isolation device is connected with the first quantum key service mirror image device and one end of the second quantum key service mirror image device through a third communication connection end, and the other ends of the first quantum key service mirror image device and the second quantum key service mirror image device are connected with a fourth communication connection end which is connected to the security access gateway.
Specifically, as shown in fig. 2, on the basis of the original quantum security service module, a quantum cryptographic service engine mirror device may be deployed to serve as a standby device of the quantum cryptographic service engine device in the quantum key scheduling module, and a first quantum key service mirror device and a second quantum key service mirror device are deployed to implement quantum key management, where the first quantum key service mirror device and the second quantum key service mirror device serve as standby devices, and when the first quantum key service mirror device is a master device, the second quantum key service mirror device is a standby device; when the second quantum key service mirror device is the main device, the first quantum key service mirror device is the standby device. And at least one forward and reverse safety isolation device is deployed between the first quantum key service mirror device and the second quantum key service mirror device and the quantum cipher service engine mirror device for forward and reverse isolation reinforcement, so that the safety and the protection level of data transmission are enhanced, for example: adding a firewall. The deployed quantum cryptography service engine mirroring device, the first quantum key service mirroring device, the second quantum key service mirroring device and the forward and reverse security isolation device are deployed as 1 set of integral key node redundancy equipment.
More specifically, the second communication connection end, the third communication connection end, and the fourth communication connection end may be service outlets provided for the power distribution terminal, and each communication connection end may include at least one switch. In this embodiment, each communication connection end includes 2 switches, and by providing a plurality of service outlets, a disaster recovery function can be implemented, so as to ensure uninterrupted service of key application. The fourth communication connection end is connected to the secure access gateway, and a quantum network management proxy server is connected between the third communication connection end and the fourth communication connection end, and is used for performing network management and monitoring on the newly deployed first quantum key service mirroring device, the second quantum key service mirroring device and the like. Through newly increasing and deploying a plurality of switches, more distribution equipment can be docked, and more equipment demands are met. Aiming at the increase of power distribution equipment, in order to avoid the problems of excessive data requests and large data processing amount during quantum key generation, a quantum cryptographic service engine mirror image device, a first quantum key service mirror image device, a second quantum key service mirror image device and a forward and reverse safety isolation device are deployed, so that the management and safety protection level of quantum key generation are ensured, and the stability and the data processing capacity of a quantum safety service platform can be enhanced through the auxiliary work of the deployment mirror image device.
In this embodiment, the quantum key generation module includes a single-emission type quantum key generation and management terminal, a single-reception type quantum key generation and management terminal, and a quantum random number generator. In the step S3, the step of obtaining, by the quantum security service platform, the session key, and obtaining, based on the session key, the quantum key for data encryption includes:
if any communication connection end receives a data request sent by the power distribution terminal, a quantum random number is generated through the quantum random number generator, and a session key is generated through the single-sending quantum key generation and management terminal and the single-receiving quantum key generation and management terminal;
and the quantum key scheduling module generates the quantum key according to the session key and the quantum random number, and encrypts service data contained in a data request through the quantum key.
Specifically, when any of the switches receives a data request sent by the power distribution terminal, the data request may be transmitted to the quantum key generation module. In this embodiment, two quantum random numbers may be randomly generated by 2 quantum random number generators for a data request, session keys are respectively output by a single-transmission type quantum key generation and management terminal and a single-reception type quantum key generation and management terminal, the generated quantum random numbers and session keys are transmitted to a quantum key scheduling module to perform quantum key generation and negotiation scheduling, and service data is encrypted based on the generated quantum keys. The single-shot quantum key generation and management terminal and the single-receiving quantum key generation and management terminal realize management monitoring through the quantum key management system server.
In this embodiment, the quantum key scheduling module includes an exchange crypto-engine, a quantum cryptographic service engine device, and a quantum key charging device, where encrypting, by the quantum key, service data included in a data request includes: encrypting service data through the exchange cipher machine and distributing the quantum key to the quantum cipher service engine device;
according to a preset scheduling negotiation rule, the quantum cipher service engine device distributes the quantum key to the quantum key application module, and performs key filling on the quantum key through the quantum key filling equipment;
and if the quantum cipher service engine device detects that an abnormal event exists, distributing the quantum key to the quantum key application module through the quantum cipher service engine mirror device according to a preset scheduling negotiation rule.
Specifically, the session key and the quantum random number are specifically transmitted to an exchange cipher machine deployed in a quantum key scheduling module, the exchange cipher machine generates and stores the quantum key according to the session key and the quantum random number, the generated quantum key is transmitted to a quantum cipher service engine device, and the quantum cipher service engine device schedules and negotiates the quantum key according to a preset scheduling negotiation rule, so that the quantum key can be distributed to a quantum key application module according to safety and order. In this embodiment, the exchange crypto-machine is 2, each interfacing with a random quantum number and a session key. The number of the quantum key filling devices is 2, and the quantum key filling devices are responsible for filling the quantum key through modes such as a U shield/TF card and the like and are used in a quantum key application terminal. Specifically, the quantum key can be output to one quantum key filling machine through 2 password switches, one-time encryption session key output is carried out on the other quantum key filling machine, and key filling is carried out on quantum equipment in the quantum key application module through two quantum key filling machines.
More specifically, during the working process of the quantum security service platform, the key application service of the quantum cryptography service engine device may generate an abnormal event including but not limited to downtime, if the quantum network management module detects that the quantum cryptography service engine device generates the abnormal event, the quantum cryptography service engine device may be switched to the quantum cryptography service engine mirror device to provide emergency service, and after the quantum cryptography service engine device is recovered, the emergency service is closed and synchronous data is performed with the quantum cryptography service engine mirror device. The quantum cryptography service engine device and the quantum cryptography service engine mirror device have the same functions to distribute quantum keys according to preset scheduling negotiation rules.
In this embodiment, the quantum network management module includes a quantum network management database server and a quantum network management service server that are in communication connection, and in the process of quantum encryption, the running states of the quantum key generation module, the quantum key scheduling module and the quantum key application module are managed and monitored by the quantum network management database server and the quantum network management service server.
Specifically, the quantum network management database server is mainly used for deploying database engine software, and provides applications including but not limited to query, update, transaction management, indexing, cache, query optimization and the like. The quantum network management service server mainly provides service logic for application programs and does not store service data. In the quantum encryption process, the running states of all quantum devices in the quantum key generation module, the quantum key scheduling module and the quantum key application module can be subjected to network management and monitoring through a quantum network management database server and a quantum network management service server, so that the running states of all quantum devices are known in real time, and data support is provided for background operation and maintenance personnel.
In this embodiment, the security access gateway includes a quantum security access gateway that is communicatively connected and disposed on a side of the quantum security service platform, and a distribution network security gateway that is disposed on a side of the distribution master station, and the step S4 specifically includes: and carrying out encryption transmission on the service data through the quantum security access gateway and the distribution network security access gateway, decrypting the service data through the distribution network security gateway at one side of the distribution master station, and transmitting the decrypted service data to the distribution master station.
Specifically, as shown in fig. 2, a plurality of quantum security access gateways can be deployed on one side of the quantum security service platform, and a plurality of distribution security gateways can be deployed on one side of the distribution master station, wherein the quantum security access gateways are located in quantum security access areas, and the distribution network security gateways are located in urban office wireless security access areas on the side of the distribution master station. The quantum security access gateway and the distribution network security gateway communicate through a convergence switch, the encrypted service data received by the multipath quantum security access gateway is converted into two paths to be output to one end of the distribution network security gateway, and after the data decryption is carried out through the distribution network security gateway, the decrypted service data can be sent to a distribution master station based on a wireless private network acquisition server. And a forward and reverse safety isolation device can be deployed between the wireless private network acquisition server and the power distribution main station to carry out safety protection, so that the safety of service data transmission is ensured. In addition, a firewall can be deployed between the quantum security access gateway and the electric power wireless virtual private network (4G/G5), and a plurality of operator access switches are deployed between the quantum security access gateway and the electric power wireless virtual private network, so that data security in a power distribution main station can be enhanced through the firewall deployment.
In this embodiment, the second secret communication channel includes a first quantum key transmission device communicatively connected to the distribution master station and the quantum security service platform, and a second quantum key transmission device disposed in the distribution substation and in secret communication with the first quantum key transmission device, where the second quantum key transmission device communicates with the quantum key charging substation and the distribution equipment in the distribution substation, and the first quantum key transmission device and the second quantum key transmission device are used for communication transmission between the distribution master station and the distribution substation, and for quantum key charging of the quantum key charging substation by the quantum key charging equipment.
Specifically, as shown in fig. 2, the second secret communication channel can implement encryption transmission of the quantum key to the service data by respectively disposing 2 first quantum key transmission devices and 2 second quantum key transmission devices in the power distribution master station and the power distribution substation. The first quantum key transmission device is respectively communicated with the second quantum key transmission device, the quantum security service platform and the power distribution main station, and the second quantum key transmission device is communicated with the quantum key charging sub-station and the power distribution automation sub-station in the power distribution sub-station based on a plurality of switches. Based on an interface and management service of a filling key provided by a quantum key filling device in the quantum security service platform, the interface and management service can be connected to a quantum key filling substation through a second secret channel, the quantum key filling substation is subjected to quantum key filling, and the quantum key is stored in the quantum key filling substation. Therefore, the data encryption and decryption transmission is carried out between the power distribution main station and the power distribution substation based on the second secret communication channel, and the safety protection level of the data communication transmission can be improved. The quantum key filling function is realized at the side of the power distribution substation by the quantum key filling substation, so that the power distribution substation can realize the home management function of key filling without acquiring the quantum key from the side of the power distribution main station.
Example two
Referring to fig. 3, a technical solution further provided in the embodiment of the present invention is a quantum encryption-based power distribution automation protection system, configured to execute the quantum encryption-based power distribution automation protection method described in the first embodiment, where the system 40 includes:
the quantum security service platform deployment module 401 is used for carrying out built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
a channel establishment module 402, configured to establish a first secure communication channel between the power distribution master station and the quantum security service platform, and a second secure communication channel between the power distribution master station and the power distribution substation, where the first secure communication channel includes a security access gateway;
the key obtaining module 403 is configured to obtain, if the power distribution terminal initiates a data request, a session key through the quantum security service platform, encrypt data based on the session key obtained by the quantum security service platform, and fill the session key to a quantum key filling substation of the power distribution substation through the second secret communication channel;
and the master station data transmission module 404 is used for decrypting data through the secure access gateway and transmitting the decrypted service data to the power distribution master station.
In this embodiment, the quantum security service platform includes an original quantum security service module, where the original quantum security service module includes a quantum key generation module, a quantum key scheduling module, a quantum key application module, and a quantum network management module that are in communication connection, and the quantum security service platform deployment module 401 is specifically configured to: the quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
In this embodiment, the quantum security service platform deployment module 401 is specifically further configured to: based on the original quantum security service module, a quantum cryptographic service engine mirror image device, a first quantum key service mirror image device, a second quantum key service mirror image device and a forward and reverse security isolation device are deployed, the quantum cryptographic service engine mirror image device is connected with the forward and reverse security isolation device through a second communication connection end, the forward and reverse security isolation device is connected with the first quantum key service mirror image device and one end of the second quantum key service mirror image device through a third communication connection end, and the other ends of the first quantum key service mirror image device and the second quantum key service mirror image device are connected with a fourth communication connection end which is connected to the security access gateway.
In this embodiment, the quantum key generation module includes a single-emission quantum key generation and management terminal, a single-receiving quantum key generation and management terminal, and a quantum random number generator, and the key acquisition module 403 is specifically configured to:
if any communication connection end receives a data request sent by the power distribution terminal, a quantum random number is generated through the quantum random number generator, and a session key is generated through the single-sending quantum key generation and management terminal and the single-receiving quantum key generation and management terminal;
and the quantum key scheduling module generates the quantum key according to the session key and the quantum random number, and encrypts service data contained in a data request through the quantum key.
In this embodiment, the quantum key scheduling module includes an exchange crypto-engine, a quantum cryptographic service engine device, and a quantum key charging device, and the key obtaining module 403 is specifically further configured to:
encrypting service data through the exchange cipher machine and distributing the quantum key to the quantum cipher service engine device;
according to a preset scheduling negotiation rule, the quantum cipher service engine device distributes the quantum key to the quantum key application module, and performs key filling on the quantum key through the quantum key filling equipment;
And if the quantum cipher service engine device detects that an abnormal event exists, distributing the quantum key to the quantum key application module through the quantum cipher service engine mirror device according to a preset scheduling negotiation rule.
In this embodiment, the quantum network management module includes a quantum network management database server and a quantum network management service server that are in communication connection, and in the process of quantum encryption, the key obtaining module 403 is specifically further configured to: and carrying out network management and monitoring on the running states of the quantum key generation module, the quantum key scheduling module and the quantum key application module through the quantum network management database server and the quantum network management service server.
In this embodiment, the security access gateway includes a quantum security access gateway that is communicatively connected and disposed on a side of the quantum security service platform, and a distribution network security gateway that is disposed on a side of the distribution master station, and the data transmission module 404 is specifically configured to: and carrying out encryption transmission on the service data through the quantum security access gateway and the distribution network security access gateway, decrypting the service data through the distribution network security gateway at one side of the distribution master station, and transmitting the decrypted service data to the distribution master station.
In this embodiment, the second secret communication channel includes a first quantum key transmission device communicatively connected to the distribution master station and the quantum security service platform, and a second quantum key transmission device disposed in the distribution substation and in secret communication with the first quantum key transmission device, where the second quantum key transmission device communicates with the quantum key charging substation and the distribution equipment in the distribution substation, and the first quantum key transmission device and the second quantum key transmission device are used for communication transmission between the distribution master station and the distribution substation, and for quantum key charging of the quantum key charging substation by the quantum key charging equipment.
The above embodiments are preferred embodiments of the quantum-encryption-based power distribution automation protection method of the present invention, and are not limited to the specific embodiments, but the scope of the present invention includes not limited to the specific embodiments, and all equivalent changes of the shape and structure according to the present invention are within the scope of the present invention.
Claims (10)
1. The automatic power distribution protection method based on quantum encryption is suitable for a power distribution network, the power distribution network comprises a power distribution main station, a power distribution substation and a quantum security service platform, and the power distribution substation comprises a quantum key filling substation and is characterized by comprising the following steps: performing built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
Establishing a first secret communication channel between the power distribution master station and the quantum security service platform and a second secret communication channel between the power distribution master station and the power distribution substation, wherein the first secret communication channel comprises a security access gateway;
if the power distribution terminal initiates a data request, a session key is acquired through the quantum security service platform, the data encryption is carried out based on the session key, and the session key is filled to a quantum key filling substation of the power distribution substation through the second secret communication channel;
and decrypting the data through the secure access gateway and transmitting the decrypted service data to the power distribution master station.
2. The method for automatically protecting power distribution based on quantum encryption according to claim 1, wherein the quantum security service platform comprises an original quantum security service module, the original quantum security service module comprises a quantum key generation module, a quantum key scheduling module, a quantum key application module and a quantum network management module which are in communication connection, and the built-in isolation reinforcement is performed on the quantum security service platform, and the method comprises the following steps:
the quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
3. The quantum-encryption-based power distribution automation protection method according to claim 2, wherein the performing the redundant deployment of the key node devices on the quantum security service platform comprises:
based on the original quantum security service module, a quantum cryptographic service engine mirror image device, a first quantum key service mirror image device, a second quantum key service mirror image device and a forward and reverse security isolation device are deployed, the quantum cryptographic service engine mirror image device is connected with the forward and reverse security isolation device through a second communication connection end, the forward and reverse security isolation device is connected with the first quantum key service mirror image device and one end of the second quantum key service mirror image device through a third communication connection end, and the other ends of the first quantum key service mirror image device and the second quantum key service mirror image device are connected with a fourth communication connection end which is connected to the security access gateway.
4. The automatic protection method for power distribution based on quantum cryptography according to claim 3, wherein the quantum key generation module comprises a single-shot quantum key generation and management terminal, a single-received quantum key generation and management terminal and a quantum random number generator, the session key is acquired through the quantum security service platform, and the data encryption is performed by acquiring the quantum key based on the session key, comprising:
If any communication connection end receives a data request sent by the power distribution terminal, a quantum random number is generated through the quantum random number generator, and a session key is generated through the single-sending quantum key generation and management terminal and the single-receiving quantum key generation and management terminal;
and the quantum key scheduling module generates the quantum key according to the session key and the quantum random number, and encrypts service data included in the data request through the quantum key.
5. The quantum-encryption-based power distribution automation protection method of claim 3, wherein the quantum key scheduling module comprises a switching crypto-engine, a quantum cryptographic service engine device, and a quantum key charging device, the encrypting the traffic data contained in the data request by the quantum key comprises:
encrypting service data through the exchange cipher machine and distributing the quantum key to the quantum cipher service engine device;
according to a preset scheduling negotiation rule, the quantum cipher service engine device distributes the quantum key to the quantum key application module, and performs key filling on the quantum key through the quantum key filling equipment;
And if the quantum cipher service engine device detects that an abnormal event exists, distributing the quantum key to the quantum key application module through the quantum cipher service engine mirror device according to a preset scheduling negotiation rule.
6. The automatic power distribution protection method based on quantum encryption according to claim 2, wherein the quantum network management module comprises a quantum network management database server and a quantum network management service server which are in communication connection, and in the quantum encryption process, the running states of the quantum key generation module, the quantum key scheduling module and the quantum key application module are subjected to network management and monitoring through the quantum network management database server and the quantum network management service server.
7. The quantum-encryption-based distribution automation protection method according to claim 1, wherein the secure access gateway comprises a quantum secure access gateway which is in communication connection and is deployed at one side of the quantum secure service platform, and a distribution network secure gateway which is deployed at one side of the distribution master station, the data decryption is performed through the secure access gateway, and the decrypted service data is sent to the distribution master station, and the method comprises:
And carrying out encryption transmission on the service data through the quantum security access gateway and the distribution network security access gateway, decrypting the service data through the distribution network security gateway at one side of the distribution master station, and transmitting the decrypted service data to the distribution master station.
8. The quantum-encryption-based power distribution automation protection method of claim 5, wherein the second secure communication channel comprises a first quantum key transmission device communicatively connected to the power distribution master station and the quantum security service platform, and a second quantum key transmission device disposed within the power distribution substation and in secure communication with the first quantum key transmission device, the second quantum key transmission device being in communication with the quantum key charging substation and a power distribution device in the power distribution substation, the first quantum key transmission device and the second quantum key transmission device being used for communication transmissions of the power distribution master station and the power distribution substation, and for quantum key charging of the quantum key charging substation by the quantum key charging device.
9. A quantum-encryption-based power distribution automation protection system for performing the quantum-encryption-based power distribution automation protection method of any one of claims 1 to 8, the system comprising:
The quantum security service platform deployment module is used for carrying out built-in isolation reinforcement and redundant deployment of key node equipment on the quantum security service platform;
the channel establishing module is used for establishing a first secret communication channel between the power distribution main station and the quantum security service platform and a second secret communication channel between the power distribution main station and the power distribution substation, wherein the first secret communication channel comprises a security access gateway;
the key acquisition module is used for acquiring a session key through the quantum security service platform if the power distribution terminal initiates a data request, carrying out data encryption based on the session key, and filling the session key to a quantum key filling substation of the power distribution substation through the second secret communication channel;
and the master station data transmission module is used for decrypting the data through the security access gateway and transmitting the decrypted service data to the power distribution master station.
10. The quantum-encryption-based distribution automation protection system of claim 9, wherein the quantum security service platform comprises an original quantum security service module, the original quantum security service module comprises a quantum key generation module, a quantum key scheduling module, a quantum key application module and a quantum network management module which are in communication connection, and the quantum security service platform is subjected to built-in isolation reinforcement, and the quantum security service platform deployment module is specifically configured to:
The quantum key generation module, the quantum key scheduling module, the quantum key application module and the quantum network management module are subjected to forward and reverse isolation reinforcement, the quantum key generation module is connected with the power distribution terminal through a first communication connection end, and the data request is sent to the quantum key generation module through a first signal connection end.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310420003.XA CN116455564A (en) | 2023-04-19 | 2023-04-19 | Quantum encryption-based power distribution automation protection method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310420003.XA CN116455564A (en) | 2023-04-19 | 2023-04-19 | Quantum encryption-based power distribution automation protection method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN116455564A true CN116455564A (en) | 2023-07-18 |
Family
ID=87126913
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310420003.XA Pending CN116455564A (en) | 2023-04-19 | 2023-04-19 | Quantum encryption-based power distribution automation protection method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN116455564A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117376404A (en) * | 2023-11-10 | 2024-01-09 | 浙江双成电气有限公司 | Transformer substation communication network frame architecture based on wireless public network and quantum encryption |
| CN117527208A (en) * | 2023-10-27 | 2024-02-06 | 梵迩佳智能科技有限公司 | Application method and device of low-voltage station quantum encryption communication technology |
| CN117376404B (en) * | 2023-11-10 | 2024-04-26 | 国网浙江省电力有限公司绍兴供电公司 | Transformer substation communication network frame architecture based on wireless public network and quantum encryption |
-
2023
- 2023-04-19 CN CN202310420003.XA patent/CN116455564A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117527208A (en) * | 2023-10-27 | 2024-02-06 | 梵迩佳智能科技有限公司 | Application method and device of low-voltage station quantum encryption communication technology |
| CN117376404A (en) * | 2023-11-10 | 2024-01-09 | 浙江双成电气有限公司 | Transformer substation communication network frame architecture based on wireless public network and quantum encryption |
| CN117376404B (en) * | 2023-11-10 | 2024-04-26 | 国网浙江省电力有限公司绍兴供电公司 | Transformer substation communication network frame architecture based on wireless public network and quantum encryption |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11662760B2 (en) | Wireless communication systems and methods for intelligent electronic devices | |
| Habib et al. | Multi-agent-based technique for fault location, isolation, and service restoration | |
| CN106789015B (en) | Intelligent power distribution network communication safety system | |
| Tan et al. | New challenges in the design of microgrid systems: Communication networks, cyberattacks, and resilience | |
| CN101807818B (en) | Device access authentication method of distribution network automated communication system based on ID | |
| Baza et al. | An efficient distributed approach for key management in microgrids | |
| Zhou et al. | Efficient application of GPRS and CDMA networks in SCADA system | |
| Ustun et al. | A review of cybersecurity issues in smartgrid communication networks | |
| CN116455564A (en) | Quantum encryption-based power distribution automation protection method and system | |
| CN110300108A (en) | A kind of power distribution automation message encryption transmission method, system, terminal and storage medium | |
| CN115632779B (en) | Quantum encryption communication method and system based on power distribution network | |
| CN105046791A (en) | Intelligent entrance guard system for controlling unlocking through mobile terminal | |
| Tebekaemi et al. | Secure overlay communication and control model for decentralized autonomous control of smart micro-grids | |
| CN114123487A (en) | Distributed power supply online centralized monitoring system and method based on power internet of things | |
| CN105656623A (en) | Device for enhancing security of intelligent substation IED | |
| CN116668009A (en) | Multi-terminal-based distribution automation data safety disposal method and system | |
| CN105162256B (en) | A kind of the protection control method and Intelligent complete equipment of the cable line fault self-healing of 10kV power distribution networks | |
| US20220070155A1 (en) | Systems and methods for establishing secure communication in an electric power distribution system | |
| CN114531266A (en) | Power distribution network data protection system and method based on intermediate database | |
| CN105162253A (en) | Wireless communication system for intellectualization of primary equipment | |
| Zhang et al. | Design and Implementation of IEC61850 Communication Security Protection Scheme for Smart Substation based on Bilinear Function | |
| Leksawat et al. | Hybrid framework of management systems supporting cluster-oriented smart grid operations | |
| CN109039602B (en) | Finite field symmetric key management method applied to intelligent substation | |
| LU504593B1 (en) | Method for deploying longitudinal encryption and authentication device in electrical power system | |
| CN107732883A (en) | Distributed feeder fault processing information interacts method of controlling security |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information | ||
| CB02 | Change of applicant information |
Country or region after: China Address after: No. 78 Yanning Road, Yanqiao Supporting Area, Huishan Economic Development Zone, Wuxi City, Jiangsu Province, 214174 Applicant after: Fanerjia Intelligent Technology Co.,Ltd. Applicant after: Zhejiang GuoDun quantum Power Technology Co.,Ltd. Address before: No. 78 Yanning Road, Yanqiao Supporting Area, Huishan Economic Development Zone, Wuxi City, Jiangsu Province, 214174 Applicant before: Fanerjia Intelligent Electric Co.,Ltd. Country or region before: China Applicant before: Zhejiang GuoDun quantum Power Technology Co.,Ltd. |