摘要
分析了电力二次系统安全区Ⅰ和安全区Ⅱ之间的主要业务系统的数据交换,以及存在的安全问题;设计了基于混沌序列算法的加密解密模块,模块的密钥基于时间同步自动产生;设计了基于主动防御和被动防御相结合的安全网关,将防火墙、加密、入侵检测和蜜网结合在一起。实验证明设计的安全网关达到了预期的效果,可以满足实时性的要求。
This article analyzes the data exchange of main business system between security area Ⅰ and Ⅱ of power secondary system and the security problems existing. It discusses the design of encryption and deeryption modules based on chaotic sequence algorithm, in which the key generated automatically based on time synchronization system. The design of security gateway combining firewall, encryption, intrusion detection and honey net together based on both active and passive defense is also discussed. The experiment has proved that the security gateways have achieved desired results and can meet real-time requirements.
出处
《电力系统通信》
2008年第12期28-32,共5页
Telecommunications for Electric Power System
关键词
电力二次系统
网关
安全防护
混沌
入侵检测
蜜网
power secondary system
gateway
security protection
chaos
intrusion detection
honey net