摘要
随着电力物联网智慧物联体系建设的推进,智能电网终端的种类、数量日益增多,大量电力终端在远程升级过程中面临的安全风险逐渐凸显。针对目前安全方案需要配置多种密码算法、占用资源较多,而电力物联网终端设备的硬件资源有限,不适合采用复杂安全方案的问题,文章基于支付系统广泛采用的双因子认证(two-factor authentication,2FA)思想提出一种两要素认证的轻量级安全可信的升级机制。经验证,该机制可以在电力物联网资源受限的终端上支撑实现应用远程安全升级,能够有效地防止恶意应用给电网运行带来的损害,并降低终端设备资源的消耗。
With the continuous advancement of the construction of the intelligent power Io T system,the types and numbers of smart grid terminals are increasing,and a large number of power terminals are at risk in the remote upgrade process.Current security protection scheme needs to configure multiple cryptographic algorithms and occupies a lot of resources,and the hardware resources of power Internet of things terminal equipment are limited,so it is not suitable for the complex security protection scheme.Based on the two-factor authentication(two-factor authentication)idea widely used in payment systems,this paper proposes a lightweight,safe and reliable upgrade mechanism for two-factor authentication.It has been proved that this mechanism can support remote security protection upgrade of applications on terminals with limited power Internet of things resources,effectively prevent damage to power grid operation caused by malicious applications,and reduce resource consumption of terminal devices.
作者
王传君
缪巍巍
曾锃
李世豪
WANG Chuanjun;MIAO Weiwei;ZENG Zeng;LI Shihao(Information and Communication Branch,State Grid Jiangsu Electric Power Co.,Ltd.,Nanjing 211100,China)
出处
《电力信息与通信技术》
2022年第8期76-82,共7页
Electric Power Information and Communication Technology
基金
国网江苏省电力有限公司科技项目资助(J2020066)。
作者简介
通信作者:王传君(1981-),男,高级工程师,从事电力物联网新技术研发工作,115935501@qq.com;缪巍巍(1968-),男,高级工程师(教授级),从事电力信息通信及电力物联网相关技术研究工作;曾锃(1987-),男,高级工程师,从事电力物联网相关技术研发工作;李世豪(1993-),男,工程师,从事电力物联网相关技术研发工作。
