席禹;邹俊雄;蔡泽祥;苏忠阳;

• 1:华南理工大学电力学院
• 2:广州至德电力科技有限公司

摘要(Abstract)：

针对智能变电站保护控制信息安全风险的防范问题,提出了智能变电站保护控制信息安全风险防护的三道防线模型,包括以防入侵风险为核心的第一道防线、以防传播风险为核心的第二道防线和以防失效风险为核心的第三道防线。进一步,针对第二道防线防传播风险技术的薄弱环节,提出了基于报文识别与流量管控的保护控制信息传播风险防护方法以及相应的安全交换模型,并基于OPNET搭建了智能变电站保护控制信息传播风险防护的仿真平台。仿真结果表明所提出的保护控制信息传播风险防护方法在正常运行情况下能够优化报文处理机制,在异常情况下能够保障关键报文的可靠传输,从而有效提升了智能变电站通信网络的抗风险能力。

关键词(KeyWords)： 智能变电站;信息安全;三道防线;令牌桶;报文识别;流量管控

Abstract:

Keywords:

基金项目(Foundation): 国家自然科学基金项目(51577073);; 广东省自然科学基金(2016A030313476)~~

作者(Author): 席禹;邹俊雄;蔡泽祥;苏忠阳;

Email:

DOI: 10.13335/j.1000-3673.pst.2016.1052

参考文献(References)：

• [1]徐丹丹,米为民,邓勇,等.智能变电站与调度主站间模型/图形协调共享及无缝通信一体化建模方案[J].电网技术,2012,36(11):235-239.Xu Dandan,Mi Weimin,Deng Yong,et al.Integrated modeling for coordinated sharing of models/images and seamless communication between smart substation and dispatch master station[J].Power System Technology,2012,36(11):235-239(in Chinese).
• [2]Parikh P P,Sidhu T S,Shami A A.A comprehensive investigation of wireless LAN for IEC 610850-based smart distribution substation applications[J].IEEE Transactions on Industrial Informatics,2013,9(3):1466-1476.
• [3]张延旭,蔡泽祥,龙翩翩,等.智能变电站通信网络实时故障诊断模型与方法[J].电网技术,2016,40(6):1851-1857.Zhang Yanxu,Cai Zexiang,Long Pianpian,et al.Real-time fault diagnosing models and method for communication network in smart substation[J].Power System Technology,2016,40(6):1851-1857(in Chinese).
• [4]叶夏明,文福拴,尚金成,等.电力系统中信息物理安全风险传播机制[J].电网技术,2015,39(11):3072-3079.Ye Xiaming,Wen Fushuan,Shang Jincheng,et al.Propagation mechanism of cyber physical security risks in power systems[J].Power System Technology,2015,39(11):3072-3079(in Chinese).
• [5]郭创新,俞斌,郭嘉,等.基于IEC 61850的变电站自动化系统安全风险评估[J].中国电机工程学报,2014,24(4):685-694.Guo Chuangxin,Yu Bin,Guo Jia,et al.Security risk assessment of the IEC61850-based substation automation system[J].Proceedings of the CSEE,2014,24(4):685-694(in Chinese).
• [6]杨漾,黄小庆,曹一家,等.变电站通信报文安全认证及其实时性仿真[J].电力系统自动化,2011,35(13):77-82.Yang Yang,Huang Xiaoqing,Cao Yijia,et al.Security authentication for substation communication message and its real-time simulation[J].Automation of Electric Power Systems,2011,35(13):77-82(in Chinese).
• [7]王保义,王民安,张少敏.一种基于GCM的智能变电站报文安全传输方法[J].电力系统自动化,2013,37(3):87-92.Wang Baoyi,Wang Minan,Zhang Shaomin.A secure message transmission method based on GCM for smart substation[J].Automation of Electric Power Systems,2013,37(3):87-92(in Chinese).
• [8]王宾,董新洲,许飞,等.智能配电变电站集成保护控制信息共享分析[J].中国电机工程学报,2011,31(S1):1-6.Wang Bin,Dong Xinzhou,Xu Fei,et al.Analysis of data sharing for protection and control system in smart distribution substation[J].Proceedings of the CSEE,2011,31(S1):1-6(in Chinese).
• [9]王海柱,蔡泽祥,张延旭,等.提升智能变电站信息流实时性和可靠性的定质交换技术[J].电力自动化设备,2014,34(5):156-162.Wang Haizhu,Cai Zexiang,Zhang Yanxu,et al.Development and application of distributed simulation&test system for stability control system[J].Electric Power Automation Equipment,2014,34(5):156-162(in Chinese).
• [10]曹志昆,章杜锡,董树锋,等.改进功能分解的二次系统风险评估方法[J].电网技术,2016,40(4):1265-1270.Cao Zhikun,Zhang Duxi,Dong Shufeng,et al.An improved method of secondary system risk assessment based on functional decomposition[J].Power System Technology,2016,40(4):1265-1270(in Chinese).
• [11]郭创新,陆海波,俞斌,等.电力二次系统安全风险评估研究综述[J].电网技术,2013,37(1):112-118.Guo Chuangxin,Lu Haibo,Yu Bin,et al.A survey of research on security risk assessment of secondary system[J].Power System Technology,2013,37(1):112-118(in Chinese).
• [12]Li H,Rosenwald G W,Jung J,et al.Strategic power infrastructure defense[J].Proceedings of the IEEE,2005,5:918-933.
• [13]张行,王逸飞,何迪,等.电网防灾减灾现状分析及建议[J].电网技术,2016,40(9):2838-2844.Zhang Xing,Wang Yifei,He Di,et al.Overview of situation,problems and suggestions of disaster prevention and mitigation in power systems[J].Power System Technology,2016,40(9):2838-2844(in Chinese).
• [14]黄明辉,邵向潮,张弛,等.基于OPNET的智能变电站继电保护建模与仿真[J].电力自动化设备,2013,33(5):144-149.Huang Minghui,Shao Xiangchao,Zhang Chi,et al.Modeling and simulation of relay protection for intelligent substation based on OPNET[J].Electric Power Automation Equipment,2013,33(5):144-149(in Chinese).