CN200962604Y - Vertical encryption authentication gateway device special for power - Google Patents
Vertical encryption authentication gateway device special for power Download PDFInfo
- Publication number
- CN200962604Y CN200962604Y CN 200620119485 CN200620119485U CN200962604Y CN 200962604 Y CN200962604 Y CN 200962604Y CN 200620119485 CN200620119485 CN 200620119485 CN 200620119485 U CN200620119485 U CN 200620119485U CN 200962604 Y CN200962604 Y CN 200962604Y
- Authority
- CN
- China
- Prior art keywords
- gateway
- electric power
- encryption
- data
- card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The utility model discloses a lengthways encryption and authentication gateway equipment for private use of electric power, which respectively provides a gateway unit at two electric power dispatching communication nodes needed mutually transmit data, wherein an embedded computer capable of guaranteeing a safe and stable operation of equipment is arranged in each gateway unit. The embedded computer is built-in with a cipher code consulting module and an encryption/decryption processing module, and also equipped with an internal network access, an external network access and a distribution network access connected with the embedded computer in a gateway computer through a PCI bus, a hardware encryption card connected with the embedded computer in the gateway computer through a PCI insert slot and an intelligent IC card connected with the hardware encryption card. The cipher code consulting module of the two gateway units are mutually provided with a communication channel through a conversation cipher code consulting according to an 'encryption and authentication communication protocol for private use of electric power'. The built-in data encryption/decryption processing module calls the hardware encryption card and adopts a special SSXo6 algorithm for electric power to encrypt and decrypt the transferred data.
Description
Technical field
The utility model belongs to network security product, is the electric power secondary system special use, relates in particular to a kind of special-purpose vertically encrypting and authenticating gateway device of electric power that is applied to power dispatch data network wide area network Border Protection.
Background technology
Called gateway is a kind of network access device of complexity, claims protocol converter again.Utilization gateway ability that incompatible upper-layer protocol is changed can realize different communication protocol, even the communication between different two networks of architecture.
Along with progressively going deep into of IT application in enterprise, computer, network role in the production run of enterprise is increasing, Internet uses more and more universal, and the direct or indirect and Internet connection of simultaneously a lot of enterprise network brings numerous unsafe factors to enterprise network.
Electric power system is at home in the industry-by-industry, the starting of technology such as appliance computer, network relatively early, now in order to satisfy the exchanges data demand that progressively increases between the scheduling production unit, State Grid Corporation of China's investment construction power dispatch data network (SPDNet), by this dedicated network, whole nation electric power dispatching systems at different levels can more quick, effective real-time exchange be dispatched the various information of producing, and guarantee the stable operation of electrical network.Simultaneously, because this network spreads all over all parts of the country, tight with the interconnection of various places, this has just brought a large amount of security risks.
Along with power scheduling business, power marketing business, electricity market business etc. are carried out more and more widely, the contact of electric power enterprise net and Internet is also more and more tightr.Some control centres are arranged at present, the power plant, transformer station is in planning, design, when building control system and data network, network security problem is paid attention to not enough, excessively integrated, excessively resource-sharing, feasible supervisory control system with real-time distant place controlled function, mis system with the locality under the situation of not carrying out the effective and safe isolation interconnects, even with the internet direct interconnection, constituted serious hidden danger to electric power netting safe running, simultaneously, this risk can be spread to all parts of the country by power dispatch data network, as: the invador is to the power plant, transformer station sends illegal control command and causes power system accident, even system break-down; Tackle or distort sensitive datas such as control command, the parameter setting in the transmission of data dispatching wide area network, the quotation of concluding the business; Or the like.In addition, also exist the hacker in the data dispatching net, to adopt the means of " overlap joint " that " eavesdropping " and " distorting " carried out in the electric power control information of transmission, thereby have the threat of the electric power primary equipment being carried out the unauthorised broken operation.
Summary of the invention
The purpose of this utility model provides the special-purpose vertically encrypting and authenticating gateway device of a kind of electric power; can realize electric power dedicated encrypted authentication gateway function by this equipment; guarantee to realize the function of authentication and data encryption communication, guarantee protection confidentiality, integrality, authenticity and the non-repudiation of data on the power dispatch data network.
For achieving the above object, the utility model is taked following design:
The special-purpose vertically encrypting and authenticating gateway device of a kind of electric power, it is to need the electric power conduct and communication node of mutual data transmission to set up gateway unit separately at two; One embedded computer is arranged in each gateway unit; This built-in computer has key negotiation module and encryption and decryption processing module, and is provided with by pci bus and gateway machine and is embedded in interior network interface, outer network interface and the distribution interface that the formula computer links to each other; Be provided with by PCI slot and gateway machine and be embedded in the hardware encryption card that the formula computer is connected; Be provided with the intellective IC card that is connected with hardware encryption card.
The key negotiation module of two gateway units is set up communication tunnel according to " electric power dedicated encrypted authentication communication agreement " each other by session key agreement.
The special-purpose vertically encrypting and authenticating gateway device of the utility model electric power also can be furnished with serial ports (Console) and the house dog (WatchDog) that is used for the surveillance running status that is used for short circuit network of network bypass interface and logging device under the equipment fault situation, the liquid crystal display screen that is used for the display device operating state.
Described built-in data encrypting and deciphering processing module is carried out encryption and decryption, stores and is read the data of transmission through calling an encrypted card chip, the interior RSA rivest, shamir, adelman that encapsulates the special-purpose SSX06 cryptographic algorithm software of electric power and optimization is provided of this encrypted card chip.
The utility model has the advantages that: utilize the special-purpose vertically encrypting and authenticating gateway device of the utility model electric power can realize authenticity, confidentiality, integrality and the non-repudiation protection of the power scheduling data of online transmission for dispatching data, guarantee the safety of schedule data transmission, the safety of production control system, thereby guarantee the primary system safe and stable operation; Can resist diverse network by this gateway device and attack and virus infections, also guarantee the continual and steady operation of being protected of electrical secondary system application; And need not any change is done in the structure and the setting of network,, use very convenient for the user; Network interface card with three difference in functionality interface 10/100M self adaptation network interfaces can guarantee that the high speed of Network Transmission is stable.
Description of drawings
Fig. 1 constitutes schematic diagram (in the frame of broken lines is the utility model part) for the utility model
Fig. 2 is that the utility model gateway unit hardware system is formed schematic diagram
Fig. 2-a is gateway unit main system energization pins and correlation filtering circuit logic circuit diagram
Fig. 2-b is gateway unit main system CPU PIC energization pins and peripheral circuit logical circuitry
Fig. 2-c is gateway unit Intranet interface chip and peripheral circuit logical circuitry.
Fig. 2-d is gateway unit outer net interface chip and peripheral circuit logical circuitry.
Fig. 2-e is gateway unit distribution interface chip and peripheral circuit logical circuitry.
Embodiment
As shown in Figure 1, the special-purpose vertically encrypting and authenticating gateway device of the utility model electric power is the gateway device of setting up between two electric power conduct and communication meshed network A that need mutual data transmission, network B, adopts certificate that power scheduling cert services system signs and issues as the voucher that carries out authentication between the special-purpose vertically encrypting and authenticating gateways of two electric power (we divide two gateways of another name for encrypting gateway A, encrypting gateway B); Be provided with key negotiation module and data encrypting and deciphering processing module in each gateway.
The key negotiation module of two gateway units is carried out key agreement according to " electric power dedicated encrypted authentication communication agreement " and is set up communication tunnel mutually.Described built-in data encrypting and deciphering processing module is through calling hardware encryption card, and the interior RSA rivest, shamir, adelman that encapsulates the special-purpose SSX06 cryptographic algorithm software of electric power and optimization is provided of this encrypted card chip carries out encryption and decryption, stores and reads the data of transmission.
Shown in Figure 2 is the hardware system composition block diagram of each gateway unit, comprising an embedded OS CPU (MPC8245) that can guarantee device security stable operation is arranged, be provided with by pci bus and gateway machine and be embedded in interior network interface, outer network interface and the distribution interface that the formula computer links to each other; Be provided with by PCI slot and gateway machine and be embedded in the hardware encryption card that the formula computer is connected; Hardware encryption card is connected with intellective IC card again.
Fig. 2-a shows main system energization pins and correlation filtering circuit, and this circuit can guarantee that circuit is stable, reliability service.
Fig. 2-b shows main system CPU PIC energization pins and peripheral circuit, and this circuit is as three Ethernet chip and the joining bridge of CPU.
U1C among above-mentioned Fig. 2-a and Fig. 2-b and U1B are the split cell mesh of CPU (MPC8245) chip.
Fig. 2-c shows Intranet interface chip U13 (RTL8139D) and peripheral circuit (network transformer T3 and plug-in unit P3).The IRQ of this chip U13 ~ 0 links with IRQ ~ 0 of cpu system function and peripheral circuit, makes interrupt requests to CPU; Pin in the scopes such as this chip AD0-AD31 links to each other with the left side of PCI and (is used as transfer of data referring to Fig. 2-b).
Fig. 2-d shows outer net interface chip U3A, U3B (U3A, U3B are the split cell mesh of network chip I82559) and peripheral circuit (network transformer T1 and plug-in unit P7).The IRQ of this chip U3A, U3B ~ 1 links with IRQ ~ 1 of cpu system function and peripheral circuit, makes interrupt requests to CPU; Pin in the scopes such as this chip AD0-AD31 links with the left side of PCI and (is used as transfer of data referring to Fig. 2-b).
Fig. 2-e shows distribution interface chip U4A, U4B (U4A, U4B are the split cell mesh of network chip I82559) and peripheral circuit (network transformer T2 and plug-in unit P9).The IRQ of this chip U4A, U4B ~ 2 link with IRQ ~ 2 of cpu system function and peripheral circuit, make interrupt requests to CPU; Pin in the scopes such as this chip AD0-AD31 and the left side of PCI and Fig. 2-b link as transfer of data.
The session key that the key negotiation module of two gateway unit A, B negotiates during according to key agreement according to " electric power dedicated encrypted authentication communication agreement " carries out key agreement and sets up communication tunnel mutually.
Described electric power dedicated encrypted authentication communication agreement is based on the reasonable simplification of standard I PSEC agreement and the key agreement protocol of modification, and the agreement main contents are as follows:
Set a communicator and be initiator (device 1), another communicator (device 2) is an answer party, the request of holding consultation between both sides and reply, confirm that session key agreement carries out in IP message aspect, wherein the IP address is the IP address of both sides' device, and negotiations process can be briefly described below:
Produce random number r1 1.1. install 1, do:
A=ECert2 (r1) ‖ ESkey1 (H (r1)) sends to device 2 with A;
2.2. install the signature of 2 pairs of A deciphering and demo plant 1, produce random number r2, do:
B=ECert1 (r2) ‖ ESkey2 (H (r2)) sends to device 1 with B;
Synthetic session key: DK=r1+r2;
3.3. install the signature of 1 pair of B deciphering and demo plant 2, do:
Synthetic session key: DK=r1+r2,
C=H (r1+r2) sends to device 2 with C;
If identical this moment of both sides the other side's identity of empirical tests, and hold session key: DK=r1+r2; If inequality, then install 2 and provide negotiation failure warning information, notifying device 1 is initiated to consult by device 2 again.
Adopt operating system on the vertical encrypting and authenticating gateway device software design of other the utility model electric power special use through suitable reduction and security hardening, removed network protocol stack, only utilize original socket and self-control program to realize corresponding function, network services such as Telnet, FTP, Http externally are not provided, and the configuration of equipment is finished by special-purpose network interface and home agent module.
The special-purpose vertically encrypting and authenticating gateway device of the utility model electric power encapsulates the special-purpose SSX06 cryptographic algorithm software of electric power and the RSA rivest, shamir, adelman of optimization is provided in the encrypted card chip, so that the data of transmission are carried out encryption and decryption, store and read.This hardware encryption card is provided by professional encrypted card manufacturer; the RSA rivest, shamir, adelman of optimization is provided on encrypted card; the special-purpose SSX06 cryptographic algorithm of the electric power of chip form encapsulation; provide sensitive data multistage key protection mechanism, can realize data encrypting and deciphering at a high speed and storage and read.
Vertically the certification authentication of encrypting and authenticating gateway has dual mode, and one is meant hardware encipher, promptly carries out certification authentication by encrypted card; Two are meant software cryptography, and promptly the Lib function of the Openssl (Open Security socket layer agreement) by standard is realized, can operate various certificate formats commonly used, compatible power scheduling cert services system.
Simultaneously, equipment provides basic network message filtering function as Network Security Device, can realize based on the source purpose MAC, source purpose IP, source the comprehensive packet filtering and the access control of destination interface, host-host protocol, transmission direction.
The course of work of the present utility model is:
Referring to Fig. 1, randomizer on the hardware encryption card of encryption gateway A employing device interior generates the strong random number of a string 16 bytes, and this random number encrypted with the PKI of encrypting in the corresponding certificate of gateway B, then before this enciphered data, increase the key agreement information that information such as type of message, sequence number form whole string, the additional utilization encrypted the signature of gateway A self private key to key agreement information after this whole string information, forms the key negotiation request message and sends to encryption gateway B.
Encrypt gateway B after receiving above-mentioned key negotiation request information, utilize the certificate of local encryption gateway A correspondence of preserving, the message signature data that checking receives, confirm that this message is from encrypting gateway A, use the private key decruption key negotiation data of oneself then, the random number that the recording of encrypted gateway A is sent, the random number that self is generated in advance passes to the encryption gateway A according to said process equally then.At this moment encrypt gateway B and assert that substantially XOR value with two random numbers as session key, remains to be encrypted gateway A and confirms.
Encrypt gateway A receive encrypt the key agreement response message that gateway B sends after, the same certificate that utilizes local encryption gateway B correspondence of preserving, the message signature data that checking receives, confirm that this message is from encrypting gateway B, consult reply data with the private key decruption key of oneself then, the random number that recording of encrypted gateway B sends, then the random number of sending before this random number and self is carried out with XOR, the result is as session key, and the cryptographic Hash of session key sent to as the key agreement confirmation message encrypts gateway B.
After encrypting gateway B and receiving the key agreement confirmation message, calculate the cryptographic Hash of the session key of self assert,, then represent the session key agreement success if consistent with cryptographic Hash in receiving message; If inconsistent, assert and consult failure, initiate to consult request again.
Owing to when needing mutual data transmission between two electric power conduct and communication nodes, at first will pass the gateway device that is deployed in two system node wide area network borders respectively, we can say that the utility model gateway device can check on for the data of system transmissions.
Two gateway devices are verified the other side's identity by the authentication mode based on certificate; utilize consulting session key to set up communication tunnel simultaneously; and the message that the filtering rule permission is passed through is carried out encryption and decryption according to predefined security strategy handle the back transmission; by machine-processed guarding network attacks such as sliding windows, when ensureing electric power specialized protocol transfer of data real-time, provide selective protection simultaneously.Realize by above-mentioned technology, can guarantee the safety and stability of communication node electrical secondary system aspect following:
1. in the time of can guaranteeing to communicate by letter between two communication nodes, the identity of the other side's node can be trusted, and can not be that other nodes are pretended to be.
2. the data that a certain node is received are complete certainly, if partial data is clipped by malice in the centre, the data that obtain after deciphering so will not have meaning.
3. data are encrypted in the outer net transmission course, after anyone intercepts and captures these data, all can't obtain the sensitive information that its inside comprises.
4. if a certain node memory is attacked at virus or wooden horse, the message that these viruses are sent is not because the filtration of gateway that can't be by own network boundary can infect other communication nodes of communicating by letter with it.
5. because descending control message all adopts encrypted form, the hacker can't forge the control message and be issued to factory's station end, can't constitute a threat to primary equipment.
6. because have only communicating pair to know the session key of communication, the message of the correct format that a side receives is that the other side sends certainly, and the other side can't deny.
By enforcement of the present utility model, can realize the encryption and decryption transmission of data, and can realize the user based on the tripartite authentication of the man-machine card of smart card and digital certificate, thereby farthest reduce the online unsafe factor of data dispatching, guarantee real-time, authenticity, confidentiality, integrality and the non-repudiation of electric power dispatching system communication.
Claims (2)
1, the special-purpose vertically encrypting and authenticating gateway device of a kind of electric power is characterized in that:
Need the electric power conduct and communication node of mutual data transmission to set up the gateway unit of mutual foundation " electric power dedicated encrypted authentication communication agreement " separately at two by session key agreement communication;
One embedded computer is arranged in each gateway unit; This built-in computer key negotiation module and encryption and decryption processing module, and be provided with by pci bus and gateway machine and be embedded in interior network interface, outer network interface and the distribution interface that the formula computer links to each other; Be provided with by PCI slot and gateway machine and be embedded in the hardware encryption card that the formula computer is connected; Be provided with the intellective IC card that is connected with hardware encryption card.
2, the special-purpose vertically encrypting and authenticating gateway device of electric power according to claim 1 is characterized in that: described built-in data encrypting and deciphering processing module is for the special-purpose SSX06 cryptographic algorithm software of interior encapsulation electric power and the module of the RSA rivest, shamir, adelman of optimization is provided.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200620119485 CN200962604Y (en) | 2006-09-14 | 2006-09-14 | Vertical encryption authentication gateway device special for power |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200620119485 CN200962604Y (en) | 2006-09-14 | 2006-09-14 | Vertical encryption authentication gateway device special for power |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN200962604Y true CN200962604Y (en) | 2007-10-17 |
Family
ID=38799113
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200620119485 Expired - Fee Related CN200962604Y (en) | 2006-09-14 | 2006-09-14 | Vertical encryption authentication gateway device special for power |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN200962604Y (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101494624B (en) * | 2008-10-22 | 2010-12-29 | 珠海市鸿瑞信息技术有限公司 | Electric force special public network communication secure gateway |
| CN101662359B (en) * | 2009-08-17 | 2011-11-30 | 中国南方电网有限责任公司 | Security protection method of communication data of special electricity public network |
| CN102280929A (en) * | 2010-06-13 | 2011-12-14 | 中国电子科技集团公司第三十研究所 | System for information safety protection of electric power supervisory control and data acquisition (SCADA) system |
| CN102882850A (en) * | 2012-09-03 | 2013-01-16 | 广东电网公司电力科学研究院 | Cryptographic device and method thereof for isolating data by employing non-network way |
| CN103209075A (en) * | 2013-03-15 | 2013-07-17 | 南京易司拓电力科技股份有限公司 | Password exchange method |
| CN104539573A (en) * | 2014-10-30 | 2015-04-22 | 北京科技大学 | Communication method and device of industrial security gateway based on embedded system |
| CN106713286A (en) * | 2016-12-07 | 2017-05-24 | 广东电网有限责任公司电力科学研究院 | Electric power data transmission system based on multilevel authentication and suspected attack isolation |
| CN108696397A (en) * | 2018-08-14 | 2018-10-23 | 国家电网有限公司 | A kind of electric network information safety evaluation method and device based on AHP and big data |
| CN108810011A (en) * | 2018-06-29 | 2018-11-13 | 南京南瑞继保电气有限公司 | A kind of universal network secure accessing sound zone system and message processing method suitable for power private network |
| CN108908342A (en) * | 2018-08-15 | 2018-11-30 | 广东电网有限责任公司 | Intelligent Mobile Robot and scheduling system business operations linkage system and method |
| CN108924168A (en) * | 2018-09-06 | 2018-11-30 | 广东电网有限责任公司 | A kind of service scheduling system and business interlock method of Intelligent Mobile Robot |
| CN108908343A (en) * | 2018-08-15 | 2018-11-30 | 广东电网有限责任公司 | Intelligent Mobile Robot and scheduling system business operations linkage system and method |
| CN109842596A (en) * | 2017-11-28 | 2019-06-04 | 中天安泰(北京)信息技术有限公司 | Secure network chip on network intermediary device |
| CN110012027A (en) * | 2019-04-19 | 2019-07-12 | 鼎信信息科技有限责任公司 | Safe distribution of electric power communication terminal |
| CN111083146A (en) * | 2019-12-19 | 2020-04-28 | 上海铱控自动化系统工程有限公司 | Operation authorization system of electric primary equipment |
| CN113783837A (en) * | 2021-08-03 | 2021-12-10 | 国网福建省电力有限公司检修分公司 | Self-adaptive transformer substation longitudinal encryption host verification method and terminal |
| CN114513360A (en) * | 2022-02-16 | 2022-05-17 | 国网浙江省电力有限公司舟山供电公司 | Operation and maintenance state supervision method based on longitudinal encryption |
| CN114844676A (en) * | 2022-04-02 | 2022-08-02 | 国网湖北省电力有限公司 | Network security threat emergency disposal system and method for power monitoring system |
-
2006
- 2006-09-14 CN CN 200620119485 patent/CN200962604Y/en not_active Expired - Fee Related
Cited By (25)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101494624B (en) * | 2008-10-22 | 2010-12-29 | 珠海市鸿瑞信息技术有限公司 | Electric force special public network communication secure gateway |
| CN101662359B (en) * | 2009-08-17 | 2011-11-30 | 中国南方电网有限责任公司 | Security protection method of communication data of special electricity public network |
| CN102280929A (en) * | 2010-06-13 | 2011-12-14 | 中国电子科技集团公司第三十研究所 | System for information safety protection of electric power supervisory control and data acquisition (SCADA) system |
| CN102280929B (en) * | 2010-06-13 | 2013-07-03 | 中国电子科技集团公司第三十研究所 | System for information safety protection of electric power supervisory control and data acquisition (SCADA) system |
| CN102882850B (en) * | 2012-09-03 | 2015-11-18 | 广东电网公司电力科学研究院 | A kind of encryption apparatus and method thereof adopting non-network mode isolated data |
| CN102882850A (en) * | 2012-09-03 | 2013-01-16 | 广东电网公司电力科学研究院 | Cryptographic device and method thereof for isolating data by employing non-network way |
| CN103209075A (en) * | 2013-03-15 | 2013-07-17 | 南京易司拓电力科技股份有限公司 | Password exchange method |
| CN104539573A (en) * | 2014-10-30 | 2015-04-22 | 北京科技大学 | Communication method and device of industrial security gateway based on embedded system |
| CN104539573B (en) * | 2014-10-30 | 2018-07-27 | 北京科技大学 | A kind of communication means and device of the industry security gateway based on embedded system |
| CN106713286A (en) * | 2016-12-07 | 2017-05-24 | 广东电网有限责任公司电力科学研究院 | Electric power data transmission system based on multilevel authentication and suspected attack isolation |
| CN109842596A (en) * | 2017-11-28 | 2019-06-04 | 中天安泰(北京)信息技术有限公司 | Secure network chip on network intermediary device |
| CN108810011A (en) * | 2018-06-29 | 2018-11-13 | 南京南瑞继保电气有限公司 | A kind of universal network secure accessing sound zone system and message processing method suitable for power private network |
| CN108696397A (en) * | 2018-08-14 | 2018-10-23 | 国家电网有限公司 | A kind of electric network information safety evaluation method and device based on AHP and big data |
| CN108696397B (en) * | 2018-08-14 | 2022-02-25 | 国家电网有限公司 | Power grid information security assessment method and device based on AHP and big data |
| CN108908342A (en) * | 2018-08-15 | 2018-11-30 | 广东电网有限责任公司 | Intelligent Mobile Robot and scheduling system business operations linkage system and method |
| CN108908343A (en) * | 2018-08-15 | 2018-11-30 | 广东电网有限责任公司 | Intelligent Mobile Robot and scheduling system business operations linkage system and method |
| CN108924168A (en) * | 2018-09-06 | 2018-11-30 | 广东电网有限责任公司 | A kind of service scheduling system and business interlock method of Intelligent Mobile Robot |
| CN110012027A (en) * | 2019-04-19 | 2019-07-12 | 鼎信信息科技有限责任公司 | Safe distribution of electric power communication terminal |
| CN111083146A (en) * | 2019-12-19 | 2020-04-28 | 上海铱控自动化系统工程有限公司 | Operation authorization system of electric primary equipment |
| CN113783837A (en) * | 2021-08-03 | 2021-12-10 | 国网福建省电力有限公司检修分公司 | Self-adaptive transformer substation longitudinal encryption host verification method and terminal |
| CN113783837B (en) * | 2021-08-03 | 2023-07-14 | 国网福建省电力有限公司检修分公司 | Method and terminal for checking longitudinal encryption host of self-adaptive substation |
| CN114513360A (en) * | 2022-02-16 | 2022-05-17 | 国网浙江省电力有限公司舟山供电公司 | Operation and maintenance state supervision method based on longitudinal encryption |
| CN114513360B (en) * | 2022-02-16 | 2023-08-15 | 国网浙江省电力有限公司舟山供电公司 | Operation and maintenance state supervision method for longitudinal encryption |
| CN114844676A (en) * | 2022-04-02 | 2022-08-02 | 国网湖北省电力有限公司 | Network security threat emergency disposal system and method for power monitoring system |
| CN114844676B (en) * | 2022-04-02 | 2023-12-05 | 国网湖北省电力有限公司 | Emergency handling system and method for network security threat of power monitoring system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN200962604Y (en) | Vertical encryption authentication gateway device special for power | |
| CN109088870B (en) | Method for safely accessing acquisition terminal of power generation unit of new energy plant station to platform | |
| CN1324502C (en) | Method for discriminating invited latent member to take part in group | |
| Xin | A mixed encryption algorithm used in internet of things security transmission system | |
| CN1949765B (en) | Method and system for obtaining SSH host computer public key of device being managed | |
| Wang et al. | NOTSA: Novel OBU with three-level security architecture for internet of vehicles | |
| CN110753344B (en) | NB-IoT-based smart meter secure access system | |
| CN113783836A (en) | Internet of things data access control method and system based on block chain and IBE algorithm | |
| CN1926837A (en) | Method, apparatuses and computer program product for sharing cryptographic key with an embedded agent on a network endpoint in a network domain | |
| CN105871873A (en) | Security encryption authentication module for power distribution terminal communication and method thereof | |
| CN110336774A (en) | Hybrid Encryption decryption method, equipment and system | |
| CN105281909A (en) | Encryption and decryption mechanism and internet of things lock system using encryption and decryption mechanism | |
| CN1905436A (en) | Method for ensuring data exchange safety | |
| CN1659821A (en) | Method for secure data exchange between two devices | |
| CN104219217A (en) | SA (security association) negotiation method, device and system | |
| CN107733747A (en) | Towards the common communication access system of multiple service supporting | |
| CN109344639A (en) | A kind of distribution automation double protection safety chip, data transmission method and equipment | |
| CN115549932B (en) | Security access system and access method for massive heterogeneous Internet of things terminals | |
| CN104065485A (en) | Power grid dispatching mobile platform safety guaranteeing and controlling method | |
| CN102348210A (en) | Method and mobile security equipment for security mobile officing | |
| CN1523808A (en) | Method for encrypting data of an access virtual private network (vpn) | |
| CN111988328A (en) | Safety guarantee method and system for acquiring terminal data of power generation unit of new energy plant station | |
| CN1863048A (en) | Method of internet key exchange consultation between user and cut-in apparatus | |
| CN101179470A (en) | Dual-protocol based VPN implementing method | |
| CN211352206U (en) | IPSec VPN cryptographic machine based on quantum key distribution |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20071017 Termination date: 20110914 |