摘要
随着中国电网'三型两网'泛在电力物联网发展目标的提出,电力系统智能终端广泛互联、泛在接入,终端易成为攻击电网的主要目标和跳板。在此背景下,围绕电力系统智能终端安全互联和现场移动作业需求,对电力系统智能终端安全防护挑战及防护技术框架进行了阐述。构建了覆盖芯片层、终端层、交互层的电力系统智能终端防护框架,对芯片电路级可证明安全防护和内核故障自修复、融合可信计算和业务安全的异构终端主动免疫、面向不确定攻击特征的终端威胁精确感知与阻断、终端互联计算环境下电力系统智能终端安全接入和业务隔离等关键技术进行了详细展望。
Along with the propose of the strategy of building power grid with’three functions and two networks’and developing ubiquitous Internet of Things,the power system terminals are widely interconnected and ubiquitous,so the terminals are often regarded as the target and springboard when power grid is attacked.Under this background,by focusing on the security interconnection of smart devices and demand of mobile operation in power system,this paper expounds the challenges and technical framework of the security protection for smart terminals of power system.This paper builds the protection framework for smart terminals of power system covering chip layer,terminal layer and interaction layer.This paper gives a detailed prospect for some key technologies,such as provable security protection in chip circuit layer and kernel fault self-recovery,active immunity of heterogeneous terminals integrating trusted computing and business security,precise perception and blocking of terminal threats with uncertain attack features,power terminal security access and business isolation in the terminal interconnection computation environment.
作者
张涛
赵东艳
薛峰
张波
章锐
ZHANG Tao;ZHAO Dongyan;XUE Feng;ZHANG Bo;ZHANG Rui(Global Energy Interconnection Research Institute Co.,Ltd.,Nanjing 210003,China;State Grid Key Laboratory of Information&Network Security,Nanjing 210003,China;Beijing Smart Chip Microelectronics Co.,Ltd.,Beijing 102200,China;NARI Technology Co.,Ltd.,Nanjing 211106,China)
出处
《电力系统自动化》
EI
CSCD
北大核心
2019年第19期1-8,67,共9页
Automation of Electric Power Systems
关键词
电力系统
智能终端
安全挑战与风险
安全防护
power system
smart terminal
challenge and risk of security
security protection