摘要
智能电网信息安全风险评估是智能电网信息安全建设的起点和基础,文章结合智能电网信息化、自动化、互动化的技术特点与发展情况,分析在智能终端、无线通信信道、密码技术、应用代码、嵌入式系统等方面具有智能电网特色的信息安全风险评估需求,有针对性地提出常规评估、渗透测试、针对性评估等风险评估方法。按此方法得出的评估结论,可作为智能电网信息安全优化及整改的依据。
Information security risk assessment is the starting point and the basis of the information security construction of smart grid. Based on the development and the features of information technology, automation and interactive technology applicable to smart grid, this paper analyzes the information security risk assessment needs of related technologies involved in smart grid, such as smart terminals, wireless communication channel, cryptographic technology, application code and embedded systems, pointedly proposes several risk assessment methods including routine assessment, penetration testing and targeted assessment. The assessment conclusions drawn from the above method can be used as a basis for security risk optimization and rectification.
出处
《电力信息化》
2012年第11期101-104,共4页
Electric Power Information Technology
关键词
智能电网
信息安全
风险评估
smart grid
information security
risk assessment
