微电网SCADA系统中具有消息恢复的身份认证协议  被引量：7

作　　者：左黎明 张梦丽[1,2] 丁仕晗 陈艺琳 ZUO Liming;ZHANG Mengli;DING Shihan;CHEN Yilin(School of Science,East China Jiaotong University,Nanchang 330013,Jiangxi Province,China;Systems Engineering and Cryptography Institute,East China Jiaotong University,Nanchang 330013,Jiangxi Province,China)

机构地区：[1]华东交通大学理学院,江西省南昌市330013 [2]华东交通大学系统工程与密码学研究所,江西省南昌市330013

出　　处：《电网技术》2019年第12期4299-4305,共7页Power System Technology

基　　金：国家自然科学基金资助项目(11761033);江西省教育厅科技项目(GJJ180323,GJJ170386);江西省学位与研究生教育教学改革研究项目(JXYJG-2018-095)~~

摘　　要：针对偏远地区微电网SCADA系统存在数据篡改和信息泄漏等安全问题,提出一种具有消息恢复的数字签名方案。该方案不仅能够自认证,而且可以减少通信量,降低通信代价,能较好地适用于偏远地区微电网SCADA系统设备较落后、带宽受限等场景。进一步,考虑到身份认证对微电网SCADA系统的重要性,结合高级加密标准(advanced encryption standard,AES)算法,设计一种微电网SCADA系统中具有消息恢复的身份认证协议。然后对该协议的安全性进行分析,分析表明具有机密性、抗篡改性、抗重放性和抗伪造攻击性。最后在嵌入式平台实现了该协议,并与近几年的数字签名协议进行比较,实验结果和分析表明该协议计算量较小、通信代价较低、运行效率和安全性较高,有效的解决了SCADA系统身份可靠性认证和机密性的问题。Aiming at the security problems of data tampering and information leakage in SCADA system of microgrid in remote areas, a signature scheme with message recovery is proposed, which can not only authenticate itself, but also reduce communication traffic and cost. Therefore, it can be applied to scenarios where the micro-grid SCADA system in remote areas is relatively backward and bandwidth is limited. Furthermore, considering the importance of identity authentication for SCADA system in microgrid, combined with AES encryption algorithm, an identity authentication protocol with message recovery in SCADA system of microgrid is designed. Then the security of the protocol is analyzed, showing that the protocol has confidentiality, tamper resistance, replay resistance and forgery resistance. Finally, the protocol is implemented on an embedded platform and compared with existing signature protocols. Experimental results and analysis show that the protocol has the advantages of less computation, lower communication cost, higher operational efficiency and security. It effectively solves the problems of identity reliability authentication and confidentiality of SCADA system.

关 键 词：身份认证 消息可恢复 微电网 SCADA 

分 类 号：TM72[电气工程—电力系统及自动化]