面向变电站二次系统的安全加固终端设备实现

Realization of Safety Reinforced Terminal Equipment for Secondary System of Substation

随着信息化与工业化的高度融合,变电站二次系统智能化、自动化程度不断增强.人们在享受便利性的同时,也需直面网络带来的挑战与威胁.针对二次系统应用程序或工具在计算、传输过程中可能面临的机密性、完整性等安全威胁,基于USB接口的安全加固终端保护技术成为研究热点.传统的安全加固终端设备虽然生产方便,但其中的算法已经由厂商指定并下载到了相应的设备中.考虑到不同场景安全需求的差异较大,并且不同的用户存在多级的安全需求.通过ArduinoIDE平台对AVR单片机进行编程,设计实现了一个通用算法的安全加固终端设备,不仅实现了身份认证、内容加密等功能,同时满足了用户自主选择的个性化需求,提升了整个二次系统的安全性和可控性.经测试,初步证明了该终端的可用性和健壮性.

With the high integration of informatization and industrialization,the degree of intelligence and auto⁃mation of the secondary system of substations has been continuously enhanced.While enjoying the convenience,we also need to face the challenges and threats brought by the Internet.In view of the confidentiality,integrity and other security threats that the secondary system applications or tools may face during the calculation and transmission pro⁃cess,the enhanced security terminal protection technology based on the USB interface has become a research hotspot.Although the traditional enhanced security terminal equipment is easy to produce,the algorithms in it have been speci⁃fied by the manufacturer and downloaded to the corresponding equipment.Considering that the security requirements of different scenarios are quite different,and different users have multi-level security requirements,the AVR micro⁃controller is programmed through the Arduino IDE platform,and an enhanced security terminal equipment with gen⁃eral algorithms is designed and implemented,which not only realizes functions such as identity authentication and con⁃tent encryption,but also meets the personalized needs of users'independent choices and improves the security and controllability of the entire secondary system.After the test,the usability and robustness of the terminal are prelimi⁃narily proved.