论文部分内容阅读
现有的安全体系公钥算法大多采用RSA算法,无法保证数字化变电站通信报文的安全传输。针对此问题,提出了一种基于IEC 62351通信协议的身份认证机制,并结合国产商用密码SM2密码体系针对通信报文的安全传输问题提出了解决方案。分别以D2-1型变电站全站星形网、环形网及带冗余的双环路通信网络出现母线故障的场景为例,对面向通用对象的变电站事件/采样值(GOOSE/SMV)报文数字签名时间进行了定量计算,并通过OPNET软件对扩展报文进行了通信延时仿真,得到了3种网络结构在100 Mbit/s和10 Mbit/s带宽下的最大传输延时。仿真结果表明,该方案可有效满足变电站通信报文安全性和实时性需求。
Most existing public key algorithms of security system use RSA algorithm, which can not guarantee the secure transmission of communication messages in digital substation. Aimed at this problem, this paper proposes a mechanism of identity authentication based on IEC 62351 protocol, and proposes a solution to the problem of secure transmission of communication messages by combining with the domestic commercial password SM2 cryptosystem. Taking the case of a busbar fault in all station star network, ring network and redundant double loop communication network of D2-1 substation as an example, the GOOSE / SMV packet numbers for general purpose objects The signature time was quantitatively calculated and the communication delays of the extended message were simulated by OPNET software. The maximum transmission delay of the three kinds of network structures at 100 Mbit / s and 10 Mbit / s bandwidth was obtained. Simulation results show that this scheme can effectively meet the requirements of substation communication message security and real-time.