摘要
电网状态全感知的目标意味着物联网技术在电网的广泛应用,大量物联网终端将通过传感技术、通信技术和计算机技术接入网络。电力物联网终端分布呈现数量大、地域广、采集数据复杂的特点,容易被攻击者突破和入侵,而且传统的中心化认证存在单点失败、性能瓶颈等问题。本文基于区块链技术,研发并应用了基于终端标识符的DID数字身份、区块链多源适配的DID解析器、基于终端凭证信息的零知识证明、基于机器学习算法的设备管理等技术,设计出了一种基于区块链的电力物联网终端安全认证系统。该系统在电网内成功应用,实现了物联网设备接入认证的去中心化,降低了设备接入的网络安全风险,减少了中心化基础设施建设和维护的成本,提高了运维人员的工作效率。
The goal of full awareness of the power grid's state implies the widespread application of internet of things(IoT)technology in the power grid,where a large number of IoT terminals will be connected to the network through sensing,communication,and computer technologies.Power IoT terminals are characterized by a large quantity,wide geographical distribution,and complex data collection,making them susceptible to breaches and intrusions by attackers.Additionally,traditional centralized authentication systems suffer from issues like single-point failure and performance bottlenecks.This paper,based on blockchain technology,develops and applies technologies such as decentralized identifiers(DID)digital identity based on terminal identifiers,a blockchain-adaptive DID resolver,zero-knowledge proofs based on terminal credential information,and device management based on machine learning algorithms.These technologies culminate in the design of a blockchain-based security authentication system for power Internet of Things terminals.The system has been successfully applied in the power grid,achieving decentralized authentication of IoT devices,reducing network security risks associated with device access,lowering the costs of centralized infrastructure construction and maintenance,and enhancing the efficiency of operations and maintenance personnel.
作者
杜瀚霖
郭志达
李晓莉
蒋赟斯
周舒静
DU Hanlin;GUO Zhida;LI Xiaoli;JIANG Yunsi;ZHOU Shujing(Huizhou Power Supply Company,Guangdong Power Grid Co.,Ltd.,Huizhou 516003,Guangdong,China)
出处
《电力大数据》
2023年第9期10-17,共8页
Power Systems and Big Data
基金
国网江苏电力有限公司科技项目(J2020120)。
