检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:李洪池 汤成俊 高飞 LI Hongchi;TANG Chengjun;GAO Fei(Nanjing SAC Power Grid Automation Co.,Ltd.,Nanjing 211100,China)
机构地区:[1]南京国电南自电网自动化有限公司,江苏南京211100
出 处:《电工技术》2024年第18期152-155,共4页Electric Engineering
摘 要:变电站监控系统网络安全数据通过探针模块采集后发送到网络安全监测装置,但监控系统探针的自身安全、运行可信度、与网络安全监测装置通信的合法性等都存在一定风险,为此提出一种基于可信计算的变电站监控系统网络安全数据采集方法。首先,在监控系统部署可信计算运行环境,形成计算平台可信、应用行为可信、网络通信可信的运行环境,确保监控系统应用及探针自身安全和运行的可信度。其次,基于数字证书及国密算法,对通信双方身份进行有效性认证,确保监控系统探针与网络安全监测装置之间通信的合法性。最后,通过对采集数据完整性的校验,提高数据采集的可靠性和准确性。The network security data of the substation monitoring system is sent to the network security monitoring device through the probe module,but there are certain risks to the security and operation credibility of the probe,and the legality of communication with the network security monitoring device.A network security data collection method for substation monitoring system based on trusted computing is proposed.First a trusted computing operating environment is deployed in the monitoring system to ensure the security and trustworthiness of the monitoring system and the probe,forming an operating environment with trusted computing platform,trusted application behavior,and trusted network communication.Second effective authentication of the identities of both communication parties is carried out to ensure the legality of communication between the probe and the network security monitoring devices based on digital certificates and national security algorithms.Finally the integrity of the collected data is verified to improve data collection reliability and accuracy.
关 键 词:可信计算 监控系统 网络安全 国密算法 身份认证
分 类 号:TM76[电气工程—电力系统及自动化]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.137.161.247