面向对象的用电信息系统安全通信协议设计
|
摘要
针对当前用电信息系统多业务并行处理能力需求,提出了一种面向对象的用电信息系统安全通信协议(OS-CP)。OSCP协议采用传输层和应用层双层加密机制实现了用电信息系统的安全防护,并将业务数据根据安全级别进行分类,不同类别的数据采用不同的安全配置模式,实现了业务数据的灵活处理。之后,采用基于博弈论的安全性证明方法证明了OSCP协议的正确性和安全性,并与传统安全通信协议做了性能比较。比较结果表明,OSCP协议的交互次数相对较少,加解密处理效率有了明显提高,安全加密模式配置更为灵活。因此,OSCP协议更适用于当前用电信息系统的业务应用需求。
According to the current multi-business parallel processing demand of electricity information system,this paper has proposed an object-oriented security communication protocol (OSCP) for electricity information system. The OSCP mainly uses transmission layer encryption and application layer encryption double layer encryption mechanism to realize the security protection for electricity information system,and which categorizes the business data according to security levels,then,different security configuration modes adopt different categories of data. The correctness and security of OSCP have been proved by the security proof method based on the game theory. The communication performance comparison also has been made between the OSCP protocol and the traditional secure communication protocol such as HSMA security protocol.The comparison results showed that the information interaction times of OSCP protocol is relatively less,the encryption efficiency has been improved obviously,and the security encryption mode configuration is more flexible. Therefore,the OSCP protocol is more suitable for the actual business application demand for the current electricity information system.
According to the current multi-business parallel processing demand of electricity information system,this paper has proposed an object-oriented security communication protocol (OSCP) for electricity information system. The OSCP mainly uses transmission layer encryption and application layer encryption double layer encryption mechanism to realize the security protection for electricity information system,and which categorizes the business data according to security levels,then,different security configuration modes adopt different categories of data. The correctness and security of OSCP have been proved by the security proof method based on the game theory. The communication performance comparison also has been made between the OSCP protocol and the traditional secure communication protocol such as HSMA security protocol.The comparison results showed that the information interaction times of OSCP protocol is relatively less,the encryption efficiency has been improved obviously,and the security encryption mode configuration is more flexible. Therefore,the OSCP protocol is more suitable for the actual business application demand for the current electricity information system.
引文
[1]任姝玮.山西省用电信息系统建设方案设计及评价研究[D].华北电力大学,2016.
[2]陈星.用电信息采集系统建设研究[D].山东大学,2015.
[3]林为民.智能电网信息安全风险及其应对措施的思考[J].中国信息安全,2015,(9):73-76.Lin Weimin.Consideration of information security risk and Countermeasures in Smart Grid[J].Information security in China,2015,(9):73-76.
[4]赵兵,闫江毓,丁伟,等.基于IPv6的用电信息采集系统的安全体系架构[C].第三届全国信息安全等级保护技术大会,2014.
[5]郜盼盼.智能电网系统中面向用电信息安全防护的认证加密系统研究[D].北京邮电大学大学硕士学位论文,2013
[6]赵兵,高欣,郜盼盼,等.一种适用于用电信息采集的轻量级认证密钥协商协议[J].电力系统自动化,2013,37(12):81-86.Zhao Bing,Gao Xin,Gao Panpan,et al.A lightweight authenticated protocol with key agreement for power utili-zation information collecting[J].Automation of Electric Power Systems,2013,37(12):81-86.
[7]赵兵,高欣,翟峰,等.面向用电信息系统的双向认证协议[J].电网技术,2014,38(9):2328-2335.Zhao Bing,Gao Xin,Zhai Feng,et al.Mutual Authentication Protocol for Electricity Consumption Information Acquisition System[J].Power System Technology,2014,38(9):2328-2335.
[8]赵兵,翟峰,李涛永,等.适用于智能电表双向互动系统的安全通信协议[J].电力系统自动化,2016,40(17):93-99.Zhao Bing,Zhai Feng,Li Taoyong,et al.A Secure Communication Protocol for Smart Meter Bidirec-tional Interaction System[J].Automation of Electric Power Systems,2016,40(17):93-99.
[9]巫钟兴,阿辽沙·叶,郑安刚,等.基于面向对象互操作技术的用电信息系统通信协议设计[J]。电测与仪表,2016,53(24):69-74.Wu Zhongxing,Aliaosha Ye,Zheng Angang,et al.Communication protocol design of electricity information acquisition system based on objectoriented technology[J].Electrical Measurement&Instrumentation,2016,53(24):69-74.
[10]Q/GDW 1376.1-2013,电力用户用电信息系统通信协议:主站与采集终端通信协议[S].
[11]国际电工委员会(IEC).第13届技术委员会(TC13),IEC62056标准体系(IEC-TC13)[S].
[12]DL/T645-2007,多功能电能表通信规约[S].
[13]刘宣,郑安刚,张乐群.用电信息系统数据传输协议的发展趋势研究[J].通信技术,2016,49(8):1057-1061.Liu Xuan,Zheng Angang,Zhang Lequn.Development Trend of Data Transmission Protocol for Electricity Information Collection System[J].Communications Technology,2016,49(8):1057-1061.
[14]李蓉,张亮,冯国礼.基于等级保护的用电信息系统安全防护技术研究[C].2016年中国电机工程学会年会论文,2016.
[15]郝玉洁.信息安全概论[M].成都:电子科技大学出版社,2007.
[16]Shoup V.Sequences of games:A tool for taming com-plexity in security proofs[EB/OL].(2004-11-30).http://eprint.iacr.org/2004/332.
[17]王洁.秘密交换的博弈模型及应用研究[D].北京工业大学,2015.
[18]张文政,王立彬,李益发,等.安全协议设计与分析[M].北京:国防工业出版社,2015.
[19]田有亮.分布式密码协议及公平性研究[D].西安电子科技大学,2012.
[20]孟庆志.网络协议描述及正确性证明方法初探[J].通信技术,1987,(4):25-30.Meng Qingzhi.Network protocol description and correctness proof method[J].Communication Technology,1987,(4):25-30.
[21]王洁.秘密交换的博弈模型及应用研究[D].北京工业大学2015.
[2]陈星.用电信息采集系统建设研究[D].山东大学,2015.
[3]林为民.智能电网信息安全风险及其应对措施的思考[J].中国信息安全,2015,(9):73-76.Lin Weimin.Consideration of information security risk and Countermeasures in Smart Grid[J].Information security in China,2015,(9):73-76.
[4]赵兵,闫江毓,丁伟,等.基于IPv6的用电信息采集系统的安全体系架构[C].第三届全国信息安全等级保护技术大会,2014.
[5]郜盼盼.智能电网系统中面向用电信息安全防护的认证加密系统研究[D].北京邮电大学大学硕士学位论文,2013
[6]赵兵,高欣,郜盼盼,等.一种适用于用电信息采集的轻量级认证密钥协商协议[J].电力系统自动化,2013,37(12):81-86.Zhao Bing,Gao Xin,Gao Panpan,et al.A lightweight authenticated protocol with key agreement for power utili-zation information collecting[J].Automation of Electric Power Systems,2013,37(12):81-86.
[7]赵兵,高欣,翟峰,等.面向用电信息系统的双向认证协议[J].电网技术,2014,38(9):2328-2335.Zhao Bing,Gao Xin,Zhai Feng,et al.Mutual Authentication Protocol for Electricity Consumption Information Acquisition System[J].Power System Technology,2014,38(9):2328-2335.
[8]赵兵,翟峰,李涛永,等.适用于智能电表双向互动系统的安全通信协议[J].电力系统自动化,2016,40(17):93-99.Zhao Bing,Zhai Feng,Li Taoyong,et al.A Secure Communication Protocol for Smart Meter Bidirec-tional Interaction System[J].Automation of Electric Power Systems,2016,40(17):93-99.
[9]巫钟兴,阿辽沙·叶,郑安刚,等.基于面向对象互操作技术的用电信息系统通信协议设计[J]。电测与仪表,2016,53(24):69-74.Wu Zhongxing,Aliaosha Ye,Zheng Angang,et al.Communication protocol design of electricity information acquisition system based on objectoriented technology[J].Electrical Measurement&Instrumentation,2016,53(24):69-74.
[10]Q/GDW 1376.1-2013,电力用户用电信息系统通信协议:主站与采集终端通信协议[S].
[11]国际电工委员会(IEC).第13届技术委员会(TC13),IEC62056标准体系(IEC-TC13)[S].
[12]DL/T645-2007,多功能电能表通信规约[S].
[13]刘宣,郑安刚,张乐群.用电信息系统数据传输协议的发展趋势研究[J].通信技术,2016,49(8):1057-1061.Liu Xuan,Zheng Angang,Zhang Lequn.Development Trend of Data Transmission Protocol for Electricity Information Collection System[J].Communications Technology,2016,49(8):1057-1061.
[14]李蓉,张亮,冯国礼.基于等级保护的用电信息系统安全防护技术研究[C].2016年中国电机工程学会年会论文,2016.
[15]郝玉洁.信息安全概论[M].成都:电子科技大学出版社,2007.
[16]Shoup V.Sequences of games:A tool for taming com-plexity in security proofs[EB/OL].(2004-11-30).http://eprint.iacr.org/2004/332.
[17]王洁.秘密交换的博弈模型及应用研究[D].北京工业大学,2015.
[18]张文政,王立彬,李益发,等.安全协议设计与分析[M].北京:国防工业出版社,2015.
[19]田有亮.分布式密码协议及公平性研究[D].西安电子科技大学,2012.
[20]孟庆志.网络协议描述及正确性证明方法初探[J].通信技术,1987,(4):25-30.Meng Qingzhi.Network protocol description and correctness proof method[J].Communication Technology,1987,(4):25-30.
[21]王洁.秘密交换的博弈模型及应用研究[D].北京工业大学2015.