电网企业敏感数据保护研究

Research on Sensitive Data Protection for Power Grid Enterprises

【目的】随着时代发展,数据总量爆炸性增长,数据安全风险与日俱增。针对电网企业数据安全治理问题,重点考量企业面临的数据泄露风险,旨在平衡数据价值与安全的前提下,为电网企业敏感数据治理提供一种可行的技术手段。【方法】首先,调研分析电网企业当前数据安全治理与数据业务情况,在此基础上,结合企业特点,提出运用数据脱敏技术实现敏感数据治理的方案;其次,构建企业数据脱敏系统总体BS架构和关键业务环节脱敏流程;最后,结合完整的系统数据脱敏应用实例,阐述不同业务数据的脱敏处理。【结果】基于BS的管理模式,构建了电力大数据环境下总体逻辑架构。通过建设数据存储层、数据服务引擎、业务引擎层、流程管理层、逻辑界面层和物理界面层六个功能层,以及电力数据脱敏流程,可以有效保障电力系统数据的安全性和合规性。【结论】该电力企业数据脱敏系统与应用流程的构建,契合电网企业业务与数据安全治理的需求,能够有效识别和规范治理企业内部不同业务系统中的敏感数据,为企业的安全发展保驾护航,也为类似特点的行业提供参考借鉴。

[Purposes]With the explosive growth of data and increasing data security risks as the times de-velop,this study focuses on the data security governance issues faced by power grid enterprises,mainly considering the data leakage risks and overall national security requirements they face,aiming to provide a feasible technical means for the governance of sensitive data of power grid enterprises on the premise of balancing data value and security.[Methods]The study first investigates and analyzes the current data security governance and data business status of power grid enterprises.On this basis,combined with the characteristics of enterprises,it proposes a scheme to realize sensitive data governance by using data de-sensitization technology;then the study builds the overall BS architecture of the enterprise data desensiti-zation system and the desensitization process of key business links;finally the study gives complete sys-tem data desensitization application examples to illustrate the desensitization processing of different busi-ness data.[Findings]Based on the BS management model,the overall logical architecture of the power big data environment was constructed.By constructing six functional layers:data storage layer,data ser-vice engine layer,business engine layer,process management layer,logical interface layer,and physical interface layer,as well as the power data desensitization process,the security and compliance of power system data can be effectively guaranteed.[Conclusions]The power enterprise data desensitization sys-tem and application process constructed by the research meet the business and data security governance needs of power grid enterprises,which can effectively identify and regulate sensitive data in different business systems within the enterprise,safeguard the safe development of the enterprise,and provide ref-erence and reference for industries with similar characteristics.