一种面向分布式新能源网络的终端安全接入技术Terminal Security Access Technology for Distributed New Energy Networks
梅文明;李美成;孙炜;余文豪;
摘要(Abstract):
在分布式新能源并网的应用背景下,安全防护方案存在中心化的风险。针对这一问题,该文提出一种面向分布式新能源网络的终端安全接入技术。首先对安全模型进行深入分析,提出基于区块链构建身份认证和访问控制服务的可行性和实施方法,进而结合实际应用场景设计了身份认证模型和访问控制模型,并提出了终端信任度的评估方法。然后在此基础之上提出基于区块链的终端安全接入方案,详细描述了应用模式和方案流程。实验结果表明,该方案能够有效对抗新能源电网安全方案的单点化风险,并具有良好的性能。
关键词(KeyWords): 分布式新能源;终端安全接入;区块链;身份认证;访问控制
基金项目(Foundation):
作者(Author): 梅文明;李美成;孙炜;余文豪;
Email:
DOI: 10.13335/j.1000-3673.pst.2019.2366
参考文献(References):
- [1]李兴鹏.新能源并网的关键技术研究[D].杭州:浙江大学,2013.
- [2]李明节,于钊,许涛,等.新能源并网系统引发的复杂振荡问题及其对策研究[J].电网技术,2017,41(4):8-15.Li Mingjie,Yu Zhao,Xu Tao,et al.Study of complex oscillation caused by renewable energy integration and its solution[J].Power System Technology,2017,41(4):8-15(in Chinese).
- [3]杨荣峰,于雁南,俞万能,等.新能源船舶并网逆变器电网支撑协调控制[J].电工技术学报,2019,34(10):161-174.Yang Rongfeng,Yu Yannan,Yu Wanneng,et al.New energy ship grid-connected inverter grid support and cooperative control[J].Transactions of China Electrotechnical Society,2019,34(10):161-174(in Chinese).
- [4]连线.黑客入侵风力发电厂全过程[EB/OL].[2017-07-03].https://www.aqniu.com/hack-geek/26368.html.
- [5] Fromknecht C,Velicanu D.Certcoin:a namecoin based decentralized authentication system[J].Massachusetts Institute of Technology,2014,21(2):857-867.
- [6]袁勇,王飞跃.区块链技术发展现状与展望[J].自动化学报,2016,42(4):481-494.Yuan Yong,Wang Feiyue.Blockchain:the state of the art and future trends[J].Acta Automatica Sinica,2016,42(4):481-494(in Chinese).
- [7]李彬,曹望璋,祁兵,等.区块链技术在电力辅助服务领域的应用综述[J].电网技术,2017,41(3):60-68.Li Bin,Cao Wangzhang,Qi Bing,et al.Overview of application of block chain technology in ancillary service market[J].Power System Technology,2017,41(3):60-68(in Chinese).
- [8]邵奇峰,金澈清,张召,等.区块链技术:架构及进展[J].计算机学报,2018,41(5):969-988.Shao Qifeng,Jin Cheqing,Zhang Zhao,et al.Blockchain:architecture and research progress[J].Chinese Journal of Computers,2018,41(5):969-988(in Chinese).
- [9] Al-bassam M.SCPKI:A smart contract-based PKI and identity system[C]//Proceedings of the ACM Workshop on Blockchain,Cryptocurrencies and Contracts.NewYork:ACM,2017:35-40.
- [10] Hari A,Lakshman T V.The internet blockchain:a distributed,tamper-resistant transaction framework for the internet[C]//The 15th ACM Workshop.Atlanta:ACM,2016.
- [11] Matsumoto S,Reischuk R M.IKP:turning a PKI around with decentralized automated incentives[C]//Security and Privacy(SP),2017 IEEE Symposium on.San Jose,CA,USA:IEEE,2017:410-426.
- [12] Chen J,Yao S X,Yuan Q,et al.Certchain:public and efficient certificate audit based on blockchain for TLS connections[C]//IEEE INFOCOM 2018.Honolulu,HI,USA:IEEE,2018.
- [13] Wang Z,Lin J,Cai Q,et al.Blockchain-based certificate transparency and revocation transparency[C]//Financial Cryptography and Data Security 2018.Curacao:IFCA,2019.
- [14] Axon L,Goldsmith M.PB-PKI:a privacy-aware blockchain-based PKI[C]//14th International Conference on Security and Cryptography.Madrid,Spain:IACR,2017.
- [15] Paul D,Petitcolas F A P.A first look at identity management schemes on the blockchain[J].IEEE Security&Privacy,2018,16(4):20-29.
- [16]王秀利,江晓舟,李洋.应用区块链的数据访问控制与共享模型[J].软件学报,2019,30(6):1661-1669.Wang Xiuli,Jiang Xiaozhou,Li Yang.Model for data access control and sharing based on blockchain[J].Journal of Software,2019,30(6):1661-1669(in Chinese).
- [17] Cruz J P,Kaji Y,Yanai N.RBAC-SC:role-based access control using smart contract[J].IEEE Access,2018,32(6):12240-12251.
- [18] Zyskind G,Nathan O,Pentland A S.Decentralizing privacy:using blockchain to protect personal data[C]//2015 IEEE Security and Privacy Workshops.San Jose,CA,USA:IEEE,2015..
- [19]刘明达,拾以娟,陈左宁.基于区块链的分布式可信网络连接架构[J].软件学报,2019,30(8):2314-2336.Liu Mingda,Shi Yijuan,Chen Zuoning.Distributed trusted network connection architecture based on blockchain[J].Journal of Software,2019,30(8):2314-2336(in Chinese).
- [20]刘明达,拾以娟.基于区块链的远程证明模型[J].计算机科学,2018,45(2):48-52.Liu Mingda, Shi Yijuan. Remote attestation model based on blockchain[J].Computer Science,2018,45(2):48-52(in Chinese).
- [21] Elli A,Artem B,Vita B,et al.Hyperledger fabric:a distributed operating system for permissioned blockchains[C]//EuroSys2018.Porto,Portugal:EuroSys,2018.
- [22] Maofan Yin,Dahlia Malkhi,Michael K Reiter,et al.HotStuff:BFT Consensus with Linearity and Responsiveness[C]//2019 ACM Symposium.Chaminade,Santa Cruz, California:ACM,2019.