内外网数据安全交换技术在电网企业的应用研究

Research on the application of data security exchange technology of internal and external network in power grid enterprises

为保护企业机密,需要采用安全有效且成熟的技术来保障企业信息安全。以网闸等安全设备为基础的内外网数据安全交换平台,通过网络隔离、安全访问控制、协议剥离重组等技术,实现可控安全的数据交换,建立一套完善的内外网数据安全交换系统。本文参考电网企业安全防护标准、公安信息通信网边界接入平台安全规范及其他行业内外网安全防护设计思路,结合电网企业的应用需求,提出了多层次安全隔离防护,强管控数据交换的安全策略,并设计了符合电网企业应用需求的内外网数据安全交换平台、数据交换体系和安全管控方法,实现了电网企业内外网安全数据交换。同时结合试点、推广建设与实践,阐述了该体系在电网企业内外网实际环境中的应用效果。

In order to protect enterprise secrets, it is necessary to adopt a safe, effective and mature enterprise information. The security equipment, such as the network gate, is the basic data security exchanexternal network, through network isolation, security access control, protocol stripping, recombination and other technologies to realize controllable and secure data exchange, a set of perfect data security exchange system for internal and external network is established. This article refer to the power grid enterprise security protection standards, the public security information communication network boundary access platform security standards and other industries both inside and outside network security protection design, combined with the application requirements of power grid enterprises, proposes a multi-level security isolation protection, securitystrategy for strengthening management and control of data exchange, It also designs an internal and external network data securityexchange platform, data exchange system and security management control method that meets the realizes security data exchange between internal and external network of power grid enterprises. At the same time, the application effect of the system in the actual environment of the internal and external network of the power grid enterprises is expounded in combination with the pilot, the promotion and the practice.