摘要
基于IEC61850的智能变电站严重依赖于信息和通信技术,信息安全成为不得不面对的新问题。从智能变电站信息安全脆弱性和传统信息安全评估手段的局限性2个方面对智能变电站的安全现状进行分析,提出了可覆盖智能变电站信息系统和控制系统的安全脆弱性评估方法。该方法分别采用已知漏洞扫描技术、未知漏洞挖掘技术以及静态评估方法,分别对智能变电站的各层设备和日常管理进行安全评估工作。通过对智能变电站实验环境的现场实际测试,发现了存在于信息系统、自动化设备中的系统漏洞,验证了该方法评估智能变电站信息安全脆弱性的有效性。应用该方法可以实现对智能变电站信息和控制系统潜在安全漏洞的多方位管控,提升智能变电站的整体安全。
The cyber security of the IEC 61850-based smart substations has become an inevitable issue since they rely heavily on information and communication technologies.This paper analyzed the current security situation of smart substation from two aspects:cyber security vulnerability of smart substation and limitation of traditional cyber security evaluation methods.It proposed a security analysis and estimation method for information system and automation system,which estimated the security levels of any devices or equipment in substation separately by detecting known or unknown vulnerabilities.The method managed to assess the daily management by using static assessment tool.Through the practical test in the experimental environment for smart substation,several system vulnerabilities were detected towards information system and automation system,where the effectiveness of the cyber security analysis andestimation method for smart substation was verified.By applying this method,vulnerabilities of substation information system and automation system can be controlled,and the overall security of smart substation thereby can be enhanced.
出处
《重庆大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2017年第7期52-62,共11页
Journal of Chongqing University
基金
重庆市基础科学与前沿技术研究专项资助(cstc2017jcyjB0305)
国家自然科学基金面上项目资助(61472054)~~
