[go: up one dir, main page]

CN110798309A - Smart meter access system based on Beidou short message communication transmission - Google Patents

Smart meter access system based on Beidou short message communication transmission Download PDF

Info

Publication number
CN110798309A
CN110798309A CN201911067667.2A CN201911067667A CN110798309A CN 110798309 A CN110798309 A CN 110798309A CN 201911067667 A CN201911067667 A CN 201911067667A CN 110798309 A CN110798309 A CN 110798309A
Authority
CN
China
Prior art keywords
beidou
communication
algorithm
key
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201911067667.2A
Other languages
Chinese (zh)
Inventor
臧志斌
马军
张丽丽
夏传福
吴小鸥
廖宝全
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
National Network Si Ji Shen Xiang Location Service (beijing) Co Ltd
State Grid Information and Telecommunication Group Co Ltd
Original Assignee
National Network Si Ji Shen Xiang Location Service (beijing) Co Ltd
State Grid Information and Telecommunication Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by National Network Si Ji Shen Xiang Location Service (beijing) Co Ltd, State Grid Information and Telecommunication Group Co Ltd filed Critical National Network Si Ji Shen Xiang Location Service (beijing) Co Ltd
Priority to CN201911067667.2A priority Critical patent/CN110798309A/en
Publication of CN110798309A publication Critical patent/CN110798309A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B7/00Radio transmission systems, i.e. using radiation field
    • H04B7/14Relay systems
    • H04B7/15Active relay systems
    • H04B7/185Space-based or airborne stations; Stations for satellite systems
    • H04B7/1851Systems using a satellite or space-based relay
    • H04B7/18513Transmission in a satellite or space-based system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0209Architectural arrangements, e.g. perimeter networks or demilitarized zones
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/045Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply hybrid encryption, i.e. combination of symmetric and asymmetric encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Power Engineering (AREA)
  • Physics & Mathematics (AREA)
  • Astronomy & Astrophysics (AREA)
  • Aviation & Aerospace Engineering (AREA)
  • General Physics & Mathematics (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

本发明公开了一种基于北斗短报文通讯传输的智能表接入系统,其提供了基于北斗技术的智能表信息传输解决方案,具备更加安全便捷高效的智能表接入功能。本发明包含智能表终端、北斗短报文通讯系统、安全接入平台和企业内网;所述北斗短报文通讯系统包含北斗指挥机和北斗通信前置;北斗通信前置与安全接入区通讯;北斗指挥机通过空中接口与通信终端通讯;所述通信终端为和每个智能表终端连接的北斗通信模块和北斗数传终端;还包含统一密钥管理系统,统一密钥管理系统为智能表终端发放密钥且对安全接入平台进行密钥验证;所述北斗短报文通讯系统通过北斗安全通信协议通讯;所述北斗安全通信协议采用商用密码算法中的SM4算法、SM2算法和SM3算法。

Figure 201911067667

The invention discloses a smart meter access system based on Beidou short message communication and transmission, which provides a Beidou technology-based smart meter information transmission solution and has a more secure, convenient and efficient smart meter access function. The invention includes a smart meter terminal, a Beidou short message communication system, a secure access platform and an enterprise intranet; the Beidou short message communication system includes a Beidou commander and a Beidou communication front; Beidou communication front and a safe access area Communication; the Beidou command plane communicates with the communication terminal through the air interface; the communication terminal is the Beidou communication module and the Beidou data transmission terminal connected to each smart meter terminal; it also includes a unified key management system, and the unified key management system is intelligent The watch terminal issues keys and performs key verification on the secure access platform; the Beidou short message communication system communicates through the Beidou secure communication protocol; the Beidou secure communication protocol adopts the SM4 algorithm, SM2 algorithm and SM3 algorithm in commercial cryptographic algorithms algorithm.

Figure 201911067667

Description

基于北斗短报文通讯传输的智能表接入系统Smart meter access system based on Beidou short message communication transmission

技术领域technical field

本发明涉及一种智能表接入系统,具体用于智能表终端的无线数据传输管 理。The invention relates to a smart meter access system, in particular for wireless data transmission management of smart meter terminals.

背景技术Background technique

随着社会的发展以及我国能源结构转型,水表和气表已经走进了千家万户, 但是传统的机械式的水气表要靠人工上门进行抄表,难免会存在效率低、人工 成本高、记录数据容易出错、维护管理困难、缴费不方便等弊端。With the development of society and the transformation of my country's energy structure, water meters and gas meters have entered thousands of households. However, traditional mechanical water and gas meters rely on manual door-to-door meter reading, which inevitably leads to low efficiency, high labor costs, and record-keeping. Data is prone to errors, difficult to maintain and manage, and inconvenient to pay.

因此,基于运营商无线网络的远程智能抄表便应运而生,它解决了人工抄 表一系列问题。无线网络的方式很多,有基于NB-IoT的,有4G网络的等等; 目前还没有基于北斗短报文通讯传输的智能表信息管理系统;Therefore, the remote intelligent meter reading based on the operator's wireless network came into being, which solved a series of problems of manual meter reading. There are many ways of wireless network, some are based on NB-IoT, some are 4G network, etc.; At present, there is no smart meter information management system based on Beidou short message communication transmission;

北斗卫星导航系统是中国自行研制的全球卫星导航系统,为军民用户提供 了快速定位、实时导航、精密授时、位置报告、短信服务的服务功能,具备安 全可靠的优势。在短报文通信方面,我国北斗卫星导航系统一直沿用了GEO双 向通信功能,这也是北斗卫星导航系统区别于GPS等系统的最大亮点和特色。 北斗短报文的功能在国防、民生和应急救援等领域,都具有很强的应用价值。Beidou satellite navigation system is a global satellite navigation system developed by China. It provides military and civilian users with the service functions of rapid positioning, real-time navigation, precise timing, position reporting, and short message services, with the advantages of safety and reliability. In terms of short message communication, my country's Beidou satellite navigation system has always used the GEO two-way communication function, which is also the biggest highlight and feature of Beidou satellite navigation system from GPS and other systems. The function of Beidou short message has strong application value in the fields of national defense, people's livelihood and emergency rescue.

北斗短报文由于其覆盖范围广、建设周期短、投资成本低等优势,逐渐被 各个行业重视并应用于无电力专用通信覆盖地区,作为信息数据采集的补充通 信方式。Due to its advantages of wide coverage, short construction period and low investment cost, Beidou short message has gradually been valued by various industries and applied in areas without dedicated communication coverage for electricity as a supplementary communication method for information and data collection.

从2010年开始,国家电网大力推进北斗在电力行业的应用和探索,内容涵 盖了北斗的授时、授频、定位及短报文等各个方面,形成了多种北斗+电力的应 用解决方案,在电网生产和管理中也得到了广泛的应用。现阶段,北斗在国家 电网的具体应用主要在电网控制领域的调度自动化系统时间同步、电力通信网 的频率同步,人与车辆的准确定位,以及利用北斗短报文在偏远无人地区的数 据采集回传等方面。Since 2010, State Grid has vigorously promoted the application and exploration of Beidou in the power industry, covering various aspects of Beidou's timing, frequency, positioning and short messages, and has formed a variety of Beidou + power application solutions. It has also been widely used in power grid production and management. At this stage, the specific applications of Beidou in the State Grid are mainly in the time synchronization of dispatch automation systems in the field of power grid control, the frequency synchronization of power communication networks, the accurate positioning of people and vehicles, and the use of Beidou short messages in remote and unmanned areas. return, etc.

北斗短报文技术可承载多种电力业务终端,业务信息可包括用电信息采集 业务、配网自动化业务、电力设备设施监控业务等,对业务信息泄露和侵害, 会对公民、法人和其他组织的合法权益造成严重危害;该系统服务遭受破坏后, 会影响相关电力业务的正常运行,会对社会秩序、公共利益造成一般损害。Beidou short message technology can carry a variety of power business terminals, and business information can include power consumption information collection business, distribution network automation business, power equipment and facility monitoring business, etc. The leakage and infringement of business information will be harmful to citizens, legal persons and other organizations. serious harm to the legitimate rights and interests of the system; after the system service is damaged, it will affect the normal operation of the relevant power business and cause general damage to the social order and public interests.

发明内容SUMMARY OF THE INVENTION

本发明所要解决的技术问题在于针对上述现有技术中的不足,提供一种基 于北斗短报文通讯传输的智能表接入系统,其提供了基于北斗技术的智能表信 息传输解决方案,具备更加安全便捷高效的智能表接入功能。The technical problem to be solved by the present invention is to provide a smart meter access system based on Beidou short message communication and transmission in view of the above-mentioned deficiencies in the prior art, which provides a smart meter information transmission solution based on the Beidou technology, with more Safe, convenient and efficient smart meter access function.

为了达到上述目的,本发明采用以下技术方案予以实现:In order to achieve the above object, the present invention adopts the following technical solutions to be realized:

基于北斗短报文通讯传输的智能表接入系统,包含智能表终端、北斗短报 文通讯系统、安全接入平台和企业内网;Smart meter access system based on Beidou short message communication transmission, including smart meter terminal, Beidou short message communication system, secure access platform and enterprise intranet;

所述北斗短报文通讯系统包含北斗指挥机和北斗通信前置;北斗通信前置 与安全接入区通讯;北斗指挥机通过空中接口与通信终端通讯;所述通信终端 为和每个智能表终端连接的北斗通信模块和北斗数传终端;The Beidou short message communication system includes the Beidou command aircraft and the Beidou communication front; the Beidou communication front and the safe access area communicate; the Beidou command aircraft communicates with the communication terminal through the air interface; the communication terminal is connected to each smart meter. The Beidou communication module and Beidou data transmission terminal connected to the terminal;

还包含统一密钥管理系统,统一密钥管理系统为智能表终端发放密钥且对 安全接入平台进行密钥验证;It also includes a unified key management system, which issues keys for smart meter terminals and performs key verification on the secure access platform;

所述北斗短报文通讯系统通过北斗安全通信协议通讯;所述北斗安全通信 协议采用商用密码算法中的SM4算法、SM2算法和SM3算法;其中SM4算法是对 称加密算法,用于无线网络中的加密通信数据,保证通信的保密性;SM2算法是 非对称加密算法,用于身份认证和验证数据完整性;SM3算法是哈希算法,用于 生成消息摘要配合SM2算法进行数据完整性检查。The Beidou short message communication system communicates through the Beidou security communication protocol; the Beidou security communication protocol adopts the SM4 algorithm, the SM2 algorithm and the SM3 algorithm in the commercial cryptographic algorithms; wherein the SM4 algorithm is a symmetric encryption algorithm, which is used in wireless networks. Encrypt communication data to ensure the confidentiality of communication; SM2 algorithm is an asymmetric encryption algorithm, used for identity authentication and data integrity verification; SM3 algorithm is a hash algorithm, used to generate message digest and SM2 algorithm for data integrity check.

作为本发明的一种优选实施方式:所述安全接入平台内设置有边界安全防 护模块;所述边界安全防护模块为硬件防火墙;所述企业内网设置有应用安全 防护模块。As a preferred embodiment of the present invention: the security access platform is provided with a border security protection module; the border security protection module is a hardware firewall; the enterprise intranet is provided with an application security protection module.

作为本发明的一种优选实施方式:所述安全接入平台设置有北斗接入网关; 所述北斗安全通信协议包括密钥协商流程和加密通信流程;As a preferred embodiment of the present invention: the security access platform is provided with a Beidou access gateway; the Beidou security communication protocol includes a key negotiation process and an encrypted communication process;

所述密钥协商流程是指北斗安全通信协议采用证书型密钥协商方式,使用 SM2证书来实现通信双方的双向身份认证,通信的双方首先根据身份认证协议互 相验证对方的合法性,保证只有合法终端才能建立通信通道,在此基础上利用 密钥交换协议生成一个动态的安全的对称加密密钥;所述密钥协商流程包含如 下步骤:The key negotiation process means that the Beidou security communication protocol adopts the certificate-based key negotiation method, and uses the SM2 certificate to realize the two-way identity authentication of both parties in the communication. Only the terminal can establish a communication channel, and on this basis, a dynamic and secure symmetric encryption key is generated by using the key exchange protocol; the key negotiation process includes the following steps:

S1:密钥协商请求报文的处理;S1: Processing of the key agreement request message;

北斗数传终端首先通过硬件随机数发生器产生32字节的随机数X;然后以 网关公钥为加密密钥,对随机数X进行SM2算法的加密运算生成随机数密文 Apubkey(X),并将随机数密文A通过北斗卫星通信发送到北斗接入网关;A的长 度为128个字节,密钥协商请求报文1发送A的前64字节,密钥协商请求报文2发送A的后64字节;The Beidou data transmission terminal first generates a 32-byte random number X through the hardware random number generator; then, using the gateway public key as the encryption key, the random number X is encrypted by the SM2 algorithm to generate the random number ciphertext Apubkey(X), Send the random number ciphertext A to the Beidou access gateway through Beidou satellite communication; the length of A is 128 bytes, the key negotiation request message 1 sends the first 64 bytes of A, and the key negotiation request message 2 sends The last 64 bytes of A;

S2:密钥协商确认报文的处理;S2: Processing of the key agreement confirmation message;

北斗接入网关接收到北斗数传终端发来的随机数密文A之后,对随机数密 文A以网关私钥key为解密密钥进行SM2算法的解密操作得到明文随机数X;After receiving the random number ciphertext A sent by the Beidou data transmission terminal, the Beidou access gateway performs the decryption operation of the SM2 algorithm on the random number ciphertext A with the gateway private key key as the decryption key to obtain the plaintext random number X;

经过上述密钥协商处理过程,北斗数传终端与北斗接入网关完成了整个密 钥协商流程,完成了双向身份认证和协商出相同的会话密钥X,之后就可以使用 会话密钥X通信过程进行安全加密防护。After the above key negotiation process, the Beidou data transmission terminal and the Beidou access gateway complete the entire key negotiation process, complete the two-way identity authentication and negotiate the same session key X, and then the session key X can be used for the communication process Secure encryption protection.

作为本发明的一种优选实施方式:所述加密通信流程包含如下步骤:As a preferred embodiment of the present invention: the encrypted communication process includes the following steps:

S100:北斗数传终端发送通信数据的处理;S100: the processing of the communication data sent by the Beidou data transmission terminal;

北斗数传终端想要发送明文数据DATA1到北斗接入网关;由于SM4算法的 特性,需要对明文数据DATA1进行填充处理;之后以会话密钥X为加密密钥对 填充过后的DATA1进行SM4算法的加密操作得到密文数据G=EX(DATA1),将密文 数据G通过北斗卫星通信发送给北斗接入网关;北斗接入网关接收到密文数据G 后,首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥 对密文数据G进行解密操作并根据规则进行反填充处理得到明文数据DATA1;The Beidou data transmission terminal wants to send the plaintext data DATA1 to the Beidou access gateway; due to the characteristics of the SM4 algorithm, the plaintext data DATA1 needs to be filled; then the filled DATA1 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data G=EX(DATA1) is obtained by the encryption operation, and the ciphertext data G is sent to the Beidou access gateway through Beidou satellite communication; after the Beidou access gateway receives the ciphertext data G, it first performs the integrity of the data through the CRC16 algorithm Verify, then use the session key X as the decryption key to decrypt the ciphertext data G and perform anti-padding processing according to the rules to obtain plaintext data DATA1;

S200:北斗接入网关发送通信数据的处理;S200: the processing of the communication data sent by the Beidou access gateway;

北斗接入网关想要发送明文数据DATA2到北斗数传终端;由于SM4算法的 特性,需要对明文数据DATA2进行填充处理;之后以会话密钥X为加密密钥对 填充过后的DATA2进行SM4算法的加密操作得到密文数据H=EX(DATA2),将密文 数据H北斗卫星通信发送给北斗数传终端;北斗数传终端接收到密文数据H后, 首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥对密 文数据H进行解密操作并根据规则进行反填充处理得到明文数据DATA2。The Beidou access gateway wants to send the plaintext data DATA2 to the Beidou data transmission terminal; due to the characteristics of the SM4 algorithm, the plaintext data DATA2 needs to be filled; then the filled DATA2 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data H=EX(DATA2) is obtained by the encryption operation, and the ciphertext data H is sent to the Beidou data transmission terminal by Beidou satellite communication; after the Beidou data transmission terminal receives the ciphertext data H, the integrity of the data is first checked by the CRC16 algorithm. Then, the ciphertext data H is decrypted with the session key X as the decryption key, and the plaintext data DATA2 is obtained by performing anti-filling processing according to the rules.

本发明有益效果是:The beneficial effects of the present invention are:

本发明公开的基于北斗短报文通讯传输的智能表接入系统,通过设置北斗 短报文通信系统及其对应的通信终端、安全接入区实现基于北斗短报文通信方 式的传输;本发明从接入终端、网络环境、边界和应用四个层次进行信息采集 传输,体现层层递进的设计思想。通过四层的传输过程,实现了对智能表接入 过程中数据交互的全面采集传输和安全防护。The intelligent meter access system based on Beidou short message communication transmission disclosed by the invention realizes the transmission based on Beidou short message communication mode by setting up the Beidou short message communication system and its corresponding communication terminal and security access area; Information collection and transmission are carried out from four levels of access terminal, network environment, boundary and application, reflecting the progressive design idea. Through the four-layer transmission process, the comprehensive collection, transmission and security protection of data interaction during the access process of smart meters are realized.

附图说明Description of drawings

图1为本发明的一种具体实施方式的系统结构示意图;1 is a schematic diagram of the system structure of a specific embodiment of the present invention;

图2为本发明的密钥协商流程的示意图;Fig. 2 is the schematic diagram of the key negotiation process of the present invention;

图3为本发明的加密通信流程的示意图。FIG. 3 is a schematic diagram of an encrypted communication flow of the present invention.

附图标记说明:Description of reference numbers:

B1:北斗短报文通信与信息内网边界;B2:北斗短报文通信与安全接入区边 界;B3:安全接入区与生产控制大区边界。B1: Boundary of Beidou short message communication and information intranet; B2: Boundary of Beidou short message communication and safe access area; B3: Boundary of safe access area and production control area.

具体实施方式Detailed ways

下面结合附图及实施例描述本发明具体实施方式:The specific embodiments of the present invention are described below in conjunction with the accompanying drawings and examples:

如图所示,其示出了本发明的具体实施方式,如图所示,本发明公开的基 于北斗短报文通讯传输的智能表接入系统,包含智能表终端、北斗短报文通讯 系统、安全接入平台和企业内网;As shown in the figure, it shows the specific implementation of the present invention. As shown in the figure, the smart meter access system based on Beidou short message communication and transmission disclosed in the present invention includes a smart meter terminal and a Beidou short message communication system. , secure access platform and enterprise intranet;

所述北斗短报文通讯系统包含北斗指挥机和北斗通信前置;北斗通信前置 与安全接入区通讯;北斗指挥机通过空中接口与通信终端通讯;所述通信终端 为和每个智能表终端连接的北斗通信模块和北斗数传终端;The Beidou short message communication system includes the Beidou command aircraft and the Beidou communication front; the Beidou communication front and the safe access area communicate; the Beidou command aircraft communicates with the communication terminal through the air interface; the communication terminal is connected to each smart meter. The Beidou communication module and Beidou data transmission terminal connected to the terminal;

还包含统一密钥管理系统,统一密钥管理系统为智能表终端发放密钥且对 安全接入平台进行密钥验证;It also includes a unified key management system, which issues keys for smart meter terminals and performs key verification on the secure access platform;

所述北斗短报文通讯系统通过北斗安全通信协议通讯;所述北斗安全通信 协议采用商用密码算法中的SM4算法、SM2算法和SM3算法;其中SM4算法是对 称加密算法,用于无线网络中的加密通信数据,保证通信的保密性;SM2算法是 非对称加密算法,用于身份认证和验证数据完整性;SM3算法是哈希算法,用于 生成消息摘要配合SM2算法进行数据完整性检查。The Beidou short message communication system communicates through the Beidou security communication protocol; the Beidou security communication protocol adopts the SM4 algorithm, the SM2 algorithm and the SM3 algorithm in the commercial cryptographic algorithms; wherein the SM4 algorithm is a symmetric encryption algorithm, which is used in wireless networks. Encrypt communication data to ensure the confidentiality of communication; SM2 algorithm is an asymmetric encryption algorithm, used for identity authentication and data integrity verification; SM3 algorithm is a hash algorithm, used to generate message digest and SM2 algorithm for data integrity check.

作为本发明的一种优选实施例,所述安全接入平台内设置有边界安全防护 模块;所述边界安全防护模块为硬件防火墙;所述企业内网设置有应用安全防 护模块。本实施例设置便捷安全防护模块和应用安全防护模块,增加数据传输 安全性。As a preferred embodiment of the present invention, the security access platform is provided with a border security protection module; the border security protection module is a hardware firewall; the enterprise intranet is provided with an application security protection module. In this embodiment, a convenient security protection module and an application security protection module are set to increase the security of data transmission.

作为本发明的一种优选实施例,所述安全接入平台设置有北斗接入网关; 所述北斗安全通信协议包括密钥协商流程和加密通信流程;As a preferred embodiment of the present invention, the security access platform is provided with a Beidou access gateway; the Beidou security communication protocol includes a key negotiation process and an encrypted communication process;

所述密钥协商流程是指北斗安全通信协议采用证书型密钥协商方式,使用 SM2证书来实现通信双方的双向身份认证,通信的双方首先根据身份认证协议互 相验证对方的合法性,保证只有合法终端才能建立通信通道,在此基础上利用 密钥交换协议生成一个动态的安全的对称加密密钥;所述密钥协商流程包含如 下步骤:The key negotiation process means that the Beidou security communication protocol adopts the certificate-based key negotiation method, and uses the SM2 certificate to realize the two-way identity authentication of both parties in the communication. Only the terminal can establish a communication channel, and on this basis, a dynamic and secure symmetric encryption key is generated by using the key exchange protocol; the key negotiation process includes the following steps:

S1:密钥协商请求报文的处理;S1: Processing of the key agreement request message;

北斗数传终端首先通过硬件随机数发生器产生32字节的随机数X;然后以 网关公钥为加密密钥,对随机数X进行SM2算法的加密运算生成随机数密文Apubkey(X),并将随机数密文A通过北斗卫星通信发送到北斗接入网关;A的长 度为128个字节,密钥协商请求报文1发送A的前64字节,密钥协商请求报文 2发送A的后64字节;The Beidou data transmission terminal first generates a 32-byte random number X through the hardware random number generator; then, using the gateway public key as the encryption key, the random number X is encrypted by the SM2 algorithm to generate the random number ciphertext Apubkey(X), Send the random number ciphertext A to the Beidou access gateway through Beidou satellite communication; the length of A is 128 bytes, the key negotiation request message 1 sends the first 64 bytes of A, and the key negotiation request message 2 sends The last 64 bytes of A;

S2:密钥协商确认报文的处理;S2: Processing of the key agreement confirmation message;

北斗接入网关接收到北斗数传终端发来的随机数密文A之后,对随机数密 文A以网关私钥key为解密密钥进行SM2算法的解密操作得到明文随机数X;After receiving the random number ciphertext A sent by the Beidou data transmission terminal, the Beidou access gateway performs the decryption operation of the SM2 algorithm on the random number ciphertext A with the gateway private key key as the decryption key to obtain the plaintext random number X;

经过上述密钥协商处理过程,北斗数传终端与北斗接入网关完成了整个密 钥协商流程,完成了双向身份认证和协商出相同的会话密钥X,之后就可以使用 会话密钥X通信过程进行安全加密防护。After the above key negotiation process, the Beidou data transmission terminal and the Beidou access gateway complete the entire key negotiation process, complete the two-way identity authentication and negotiate the same session key X, and then the session key X can be used for the communication process Secure encryption protection.

作为本发明的一种优选实施例,所述加密通信流程包含如下步骤:As a preferred embodiment of the present invention, the encrypted communication process includes the following steps:

S100:北斗数传终端发送通信数据的处理;S100: the processing of the communication data sent by the Beidou data transmission terminal;

北斗数传终端想要发送明文数据DATA1到北斗接入网关;由于SM4算法的 特性,需要对明文数据DATA1进行填充处理;之后以会话密钥X为加密密钥对 填充过后的DATA1进行SM4算法的加密操作得到密文数据G=EX(DATA1),将密文 数据G通过北斗卫星通信发送给北斗接入网关;北斗接入网关接收到密文数据G 后,首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥 对密文数据G进行解密操作并根据规则进行反填充处理得到明文数据DATA1;The Beidou data transmission terminal wants to send the plaintext data DATA1 to the Beidou access gateway; due to the characteristics of the SM4 algorithm, the plaintext data DATA1 needs to be filled; then the filled DATA1 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data G=EX(DATA1) is obtained by the encryption operation, and the ciphertext data G is sent to the Beidou access gateway through Beidou satellite communication; after the Beidou access gateway receives the ciphertext data G, it first performs the integrity of the data through the CRC16 algorithm Verify, then use the session key X as the decryption key to decrypt the ciphertext data G and perform anti-padding processing according to the rules to obtain plaintext data DATA1;

S200:北斗接入网关发送通信数据的处理;S200: the processing of the communication data sent by the Beidou access gateway;

北斗接入网关想要发送明文数据DATA2到北斗数传终端;由于SM4算法的 特性,需要对明文数据DATA2进行填充处理;之后以会话密钥X为加密密钥对 填充过后的DATA2进行SM4算法的加密操作得到密文数据H=EX(DATA2),将密文 数据H北斗卫星通信发送给北斗数传终端;北斗数传终端接收到密文数据H后, 首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥对密 文数据H进行解密操作并根据规则进行反填充处理得到明文数据DATA2。本实施 例公开了具体的密钥协商处理方法和加密通信方法,为信息的安全传输提供了 可靠支撑。The Beidou access gateway wants to send the plaintext data DATA2 to the Beidou data transmission terminal; due to the characteristics of the SM4 algorithm, the plaintext data DATA2 needs to be filled; then the filled DATA2 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data H=EX(DATA2) is obtained by the encryption operation, and the ciphertext data H is sent to the Beidou data transmission terminal by Beidou satellite communication; after the Beidou data transmission terminal receives the ciphertext data H, the integrity of the data is first checked by the CRC16 algorithm. Then, the ciphertext data H is decrypted with the session key X as the decryption key, and the plaintext data DATA2 is obtained by performing anti-filling processing according to the rules. This embodiment discloses a specific key negotiation processing method and an encrypted communication method, which provides reliable support for the secure transmission of information.

上面结合附图对本发明优选实施方式作了详细说明,但是本发明不限于上 述实施方式,在本领域普通技术人员所具备的知识范围内,还可以在不脱离本 发明宗旨的前提下做出各种变化,这些变化涉及本领域技术人员所熟知的相关 技术,这些都落入本发明专利的保护范围。The preferred embodiments of the present invention have been described in detail above in conjunction with the accompanying drawings, but the present invention is not limited to the above-mentioned embodiments. Within the scope of knowledge possessed by those of ordinary skill in the art, various modifications can be made without departing from the purpose of the present invention. These changes involve related technologies well known to those skilled in the art, which all fall into the protection scope of the patent of the present invention.

不脱离本发明的构思和范围可以做出许多其他改变和改型。应当理解,本 发明不限于特定的实施方式,本发明的范围由所附权利要求限定。Numerous other changes and modifications may be made without departing from the spirit and scope of the present invention. It is to be understood that the present invention is not limited to the specific embodiments, and the scope of the present invention is defined by the appended claims.

Claims (4)

1.基于北斗短报文通讯传输的智能表接入系统,其特征在于:包含智能表终端、北斗短报文通讯系统、安全接入平台和企业内网;1. the smart meter access system based on Beidou short message communication transmission, is characterized in that: comprise smart meter terminal, Beidou short message communication system, safe access platform and enterprise intranet; 所述北斗短报文通讯系统包含北斗指挥机和北斗通信前置;北斗通信前置与安全接入区通讯;北斗指挥机通过空中接口与通信终端通讯;所述通信终端为和每个智能表终端连接的北斗通信模块和北斗数传终端;The Beidou short message communication system includes the Beidou command aircraft and the Beidou communication front; the Beidou communication front and the safe access area communicate; the Beidou command aircraft communicates with the communication terminal through the air interface; the communication terminal is connected to each smart meter. The Beidou communication module and Beidou data transmission terminal connected to the terminal; 还包含统一密钥管理系统,统一密钥管理系统为智能表终端发放密钥且对安全接入平台进行密钥验证;It also includes a unified key management system, which issues keys for smart meter terminals and performs key verification on the secure access platform; 所述北斗短报文通讯系统通过北斗安全通信协议通讯;所述北斗安全通信协议采用商用密码算法中的SM4算法、SM2算法和SM3算法;其中SM4算法是对称加密算法,用于无线网络中的加密通信数据,保证通信的保密性;SM2算法是非对称加密算法,用于身份认证和验证数据完整性;SM3算法是哈希算法,用于生成消息摘要配合SM2算法进行数据完整性检查。The Beidou short message communication system communicates through the Beidou security communication protocol; the Beidou security communication protocol adopts the SM4 algorithm, the SM2 algorithm and the SM3 algorithm in the commercial cryptographic algorithms; wherein the SM4 algorithm is a symmetric encryption algorithm, which is used in wireless networks. Encrypt communication data to ensure the confidentiality of communication; SM2 algorithm is an asymmetric encryption algorithm, used for identity authentication and data integrity verification; SM3 algorithm is a hash algorithm, used to generate message digest and SM2 algorithm for data integrity check. 2.如权利要求1所述的基于北斗短报文通讯传输的智能表接入系统,其特征在于:所述安全接入平台内设置有边界安全防护模块;所述边界安全防护模块为硬件防火墙;所述企业内网设置有应用安全防护模块。2. the intelligent meter access system based on Beidou short message communication transmission as claimed in claim 1, is characterized in that: described security access platform is provided with border security protection module; Described border security protection module is hardware firewall ; The enterprise intranet is provided with an application security protection module. 3.如权利要求1所述的基于北斗短报文通讯传输的智能表接入系统,其特征在于:所述安全接入平台设置有北斗接入网关;所述北斗安全通信协议包括密钥协商流程和加密通信流程;3. The smart meter access system based on Beidou short message communication transmission as claimed in claim 1, characterized in that: the secure access platform is provided with a Beidou access gateway; the Beidou security communication protocol comprises key negotiation processes and encrypted communication processes; 所述密钥协商流程是指北斗安全通信协议采用证书型密钥协商方式,使用SM2证书来实现通信双方的双向身份认证,通信的双方首先根据身份认证协议互相验证对方的合法性,保证只有合法终端才能建立通信通道,在此基础上利用密钥交换协议生成一个动态的安全的对称加密密钥;所述密钥协商流程包含如下步骤:The key negotiation process means that the Beidou security communication protocol adopts the certificate-based key negotiation method, and uses the SM2 certificate to realize the two-way identity authentication of both parties in the communication. Only the terminal can establish a communication channel, and on this basis, a dynamic and secure symmetric encryption key is generated by using the key exchange protocol; the key negotiation process includes the following steps: S1:密钥协商请求报文的处理;S1: Processing of the key agreement request message; 北斗数传终端首先通过硬件随机数发生器产生32字节的随机数X;然后以网关公钥为加密密钥,对随机数X进行SM2算法的加密运算生成随机数密文Apubkey(X),并将随机数密文A通过北斗卫星通信发送到北斗接入网关;A的长度为128个字节,密钥协商请求报文1发送A的前64字节,密钥协商请求报文2发送A的后64字节;The Beidou data transmission terminal first generates a 32-byte random number X through the hardware random number generator; then, using the gateway public key as the encryption key, the random number X is encrypted by the SM2 algorithm to generate the random number ciphertext Apubkey(X), Send the random number ciphertext A to the Beidou access gateway through Beidou satellite communication; the length of A is 128 bytes, the key negotiation request message 1 sends the first 64 bytes of A, and the key negotiation request message 2 sends The last 64 bytes of A; S2:密钥协商确认报文的处理;S2: Processing of the key agreement confirmation message; 北斗接入网关接收到北斗数传终端发来的随机数密文A之后,对随机数密文A以网关私钥key为解密密钥进行SM2算法的解密操作得到明文随机数X;After receiving the random number ciphertext A sent by the Beidou data transmission terminal, the Beidou access gateway performs the decryption operation of the SM2 algorithm on the random number ciphertext A with the gateway private key key as the decryption key to obtain the plaintext random number X; 经过上述密钥协商处理过程,北斗数传终端与北斗接入网关完成了整个密钥协商流程,完成了双向身份认证和协商出相同的会话密钥X,之后就可以使用会话密钥X通信过程进行安全加密防护。After the above key negotiation process, the Beidou data transmission terminal and the Beidou access gateway complete the entire key negotiation process, complete the two-way identity authentication and negotiate the same session key X, and then the session key X can be used for the communication process Secure encryption protection. 4.如权利要求3所述的基于北斗短报文通讯传输的智能表接入系统,其特征在于:所述加密通信流程包含如下步骤:4. the intelligent meter access system based on Beidou short message communication transmission as claimed in claim 3, is characterized in that: described encrypted communication process comprises the steps: S100:北斗数传终端发送通信数据的处理;S100: the processing of the communication data sent by the Beidou data transmission terminal; 北斗数传终端想要发送明文数据DATA1到北斗接入网关;由于SM4算法的特性,需要对明文数据DATA1进行填充处理;之后以会话密钥X为加密密钥对填充过后的DATA1进行SM4算法的加密操作得到密文数据G=EX(DATA1),将密文数据G通过北斗卫星通信发送给北斗接入网关;北斗接入网关接收到密文数据G后,首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥对密文数据G进行解密操作并根据规则进行反填充处理得到明文数据DATA1;The Beidou data transmission terminal wants to send the plaintext data DATA1 to the Beidou access gateway; due to the characteristics of the SM4 algorithm, the plaintext data DATA1 needs to be filled; then the filled DATA1 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data G=EX(DATA1) is obtained by the encryption operation, and the ciphertext data G is sent to the Beidou access gateway through Beidou satellite communication; after the Beidou access gateway receives the ciphertext data G, the data integrity is first checked by the CRC16 algorithm Verify, then use the session key X as the decryption key to decrypt the ciphertext data G and perform anti-padding processing according to the rules to obtain plaintext data DATA1; S200:北斗接入网关发送通信数据的处理;S200: the processing of the communication data sent by the Beidou access gateway; 北斗接入网关想要发送明文数据DATA2到北斗数传终端;由于SM4算法的特性,需要对明文数据DATA2进行填充处理;之后以会话密钥X为加密密钥对填充过后的DATA2进行SM4算法的加密操作得到密文数据H=EX(DATA2),将密文数据H北斗卫星通信发送给北斗数传终端;北斗数传终端接收到密文数据H后,首先通过CRC16算法对数据进行完整性校验,之后以会话密钥X为解密钥对密文数据H进行解密操作并根据规则进行反填充处理得到明文数据DATA2。The Beidou access gateway wants to send the plaintext data DATA2 to the Beidou data transmission terminal; due to the characteristics of the SM4 algorithm, the plaintext data DATA2 needs to be filled; then the filled DATA2 is processed by the SM4 algorithm with the session key X as the encryption key. The ciphertext data H=EX(DATA2) is obtained by the encryption operation, and the ciphertext data H is sent to the Beidou data transmission terminal by Beidou satellite communication; after the Beidou data transmission terminal receives the ciphertext data H, the integrity of the data is first checked by the CRC16 algorithm. Then, the ciphertext data H is decrypted with the session key X as the decryption key, and the plaintext data DATA2 is obtained by performing anti-filling processing according to the rules.
CN201911067667.2A 2019-11-04 2019-11-04 Smart meter access system based on Beidou short message communication transmission Pending CN110798309A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911067667.2A CN110798309A (en) 2019-11-04 2019-11-04 Smart meter access system based on Beidou short message communication transmission

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911067667.2A CN110798309A (en) 2019-11-04 2019-11-04 Smart meter access system based on Beidou short message communication transmission

Publications (1)

Publication Number Publication Date
CN110798309A true CN110798309A (en) 2020-02-14

Family

ID=69442622

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911067667.2A Pending CN110798309A (en) 2019-11-04 2019-11-04 Smart meter access system based on Beidou short message communication transmission

Country Status (1)

Country Link
CN (1) CN110798309A (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112367570A (en) * 2020-10-29 2021-02-12 福信富通科技股份有限公司 Emergency instruction system based on wireless intercom system and method thereof
CN112367664A (en) * 2020-09-23 2021-02-12 国家电网有限公司 Method and device for safely accessing external equipment to intelligent electric meter
CN112383917A (en) * 2020-10-21 2021-02-19 华北电力大学 Beidou secure communication method and system based on quotient and secret algorithm
CN113132083A (en) * 2021-04-02 2021-07-16 四川省计算机研究院 Safety authentication system, method and device applied to Beidou navigation system
CN113301566A (en) * 2021-05-25 2021-08-24 广州瀚信通信科技股份有限公司 Two-standard four-real data security access system based on 5G edge calculation
CN113676445A (en) * 2021-07-05 2021-11-19 国网上海能源互联网研究院有限公司 Method and system suitable for transmitting files of power distribution Internet of things
CN113726527A (en) * 2021-09-28 2021-11-30 河南国科量子通信技术应用研究院 Quantum safety data protection method in field operation scene
CN114339632A (en) * 2021-12-15 2022-04-12 贵州航天计量测试技术研究所 SM4 packet encryption algorithm-based Beidou short message encryption and decryption method
CN116074811A (en) * 2023-04-06 2023-05-05 深圳华大北斗科技股份有限公司 eSim-based Beidou short message communication method, eSim-based Beidou short message communication device and storage medium

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100169645A1 (en) * 2008-12-30 2010-07-01 Mcgrew David A Key transport in authentication or cryptography
WO2014139341A1 (en) * 2013-03-13 2014-09-18 福建联迪商用设备有限公司 Key management method and system
CN106790038A (en) * 2016-12-16 2017-05-31 湖南国科微电子股份有限公司 The safe transmission method of Big Dipper chip data, device and terminal
CN108768501A (en) * 2018-05-29 2018-11-06 吉林大学 A kind of oil field Data transfer system and method based on Beidou satellite communication
CN109194656A (en) * 2018-09-10 2019-01-11 国家电网有限公司 A kind of method of distribution wireless terminal secure accessing
CN208862838U (en) * 2018-11-06 2019-05-14 惠州市鸿业电力信息科技有限公司 Power concentrator and electric power data acquisition system based on Beidou satellite communication

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100169645A1 (en) * 2008-12-30 2010-07-01 Mcgrew David A Key transport in authentication or cryptography
WO2014139341A1 (en) * 2013-03-13 2014-09-18 福建联迪商用设备有限公司 Key management method and system
CN106790038A (en) * 2016-12-16 2017-05-31 湖南国科微电子股份有限公司 The safe transmission method of Big Dipper chip data, device and terminal
CN108768501A (en) * 2018-05-29 2018-11-06 吉林大学 A kind of oil field Data transfer system and method based on Beidou satellite communication
CN109194656A (en) * 2018-09-10 2019-01-11 国家电网有限公司 A kind of method of distribution wireless terminal secure accessing
CN208862838U (en) * 2018-11-06 2019-05-14 惠州市鸿业电力信息科技有限公司 Power concentrator and electric power data acquisition system based on Beidou satellite communication

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
杨储华: "基于国密算法的北斗短报文安全防护系统的研究与实现", 计 算 机 与 现 代 化, 15 April 2019 (2019-04-15), pages 1 - 4 *
马军: "基于北斗电力应用的新能源电厂调度数据安全采集研究", 通信网络, 30 June 2019 (2019-06-30), pages 1 - 4 *

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112367664A (en) * 2020-09-23 2021-02-12 国家电网有限公司 Method and device for safely accessing external equipment to intelligent electric meter
CN112367664B (en) * 2020-09-23 2024-03-01 国家电网有限公司 A method and device for securely connecting external equipment to a smart meter
CN112383917A (en) * 2020-10-21 2021-02-19 华北电力大学 Beidou secure communication method and system based on quotient and secret algorithm
CN112367570A (en) * 2020-10-29 2021-02-12 福信富通科技股份有限公司 Emergency instruction system based on wireless intercom system and method thereof
CN113132083A (en) * 2021-04-02 2021-07-16 四川省计算机研究院 Safety authentication system, method and device applied to Beidou navigation system
CN113301566A (en) * 2021-05-25 2021-08-24 广州瀚信通信科技股份有限公司 Two-standard four-real data security access system based on 5G edge calculation
CN113301566B (en) * 2021-05-25 2022-07-12 广州瀚信通信科技股份有限公司 Two-standard four-real data security access system based on 5G edge calculation
CN113676445A (en) * 2021-07-05 2021-11-19 国网上海能源互联网研究院有限公司 Method and system suitable for transmitting files of power distribution Internet of things
CN113726527A (en) * 2021-09-28 2021-11-30 河南国科量子通信技术应用研究院 Quantum safety data protection method in field operation scene
CN114339632A (en) * 2021-12-15 2022-04-12 贵州航天计量测试技术研究所 SM4 packet encryption algorithm-based Beidou short message encryption and decryption method
CN116074811A (en) * 2023-04-06 2023-05-05 深圳华大北斗科技股份有限公司 eSim-based Beidou short message communication method, eSim-based Beidou short message communication device and storage medium

Similar Documents

Publication Publication Date Title
CN110798309A (en) Smart meter access system based on Beidou short message communication transmission
CN111478902B (en) Power edge gateway equipment and sensing data uplink storage method based on same
CN115001717B (en) Terminal equipment authentication method and system based on identification public key
CN110753344B (en) NB-IoT-based smart meter secure access system
WO2023108396A1 (en) Intelligent measurement method for power grid
CN111769937A (en) A Two-Party Authenticated Key Agreement Protocol for Smart Grid Advanced Measurement System
CN103795541B (en) Secure communication method of electricity information acquisition system of 230M wireless private network channel
CN113079215B (en) Block chain-based wireless security access method for power distribution Internet of things
CN108683511A (en) A kind of secure accessing platform based on Big Dipper short message communication
CN114398627B (en) A quantum cryptography cloud application system and method for power dispatching based on zero trust
CN110798474A (en) Power data transmission security protection system based on Beidou short message communication
CN111770092A (en) A kind of numerical control system network security architecture and secure communication method and system
CN103491093A (en) Smart power grid user access authorization method
CN110912872A (en) New energy power plant dispatching data acquisition system based on Beidou electric power application
CN109905371A (en) Two-way encrypted authentication system and its application method
CN104243437A (en) Communication safety protection method for by means of wireless public network
Zhang et al. A secure revocable fine-grained access control and data sharing scheme for SCADA in IIoT systems
CN112491908A (en) Security certification management system based on block chain big data
CN107864040A (en) A kind of intelligent grid big data information management system based on safe cloud computing
CN114124514B (en) A power-wide Internet of Things security protection system
CN110299993B (en) Remote safe meter reading method based on improved IBOOE algorithm
CN113507513A (en) A ubiquitous power Internet of Things transaction data management method based on zk-snark
CN110519211A (en) A kind of video monitoring safety certification acquisition system and method based on equipment identities certification
Liu et al. Research on terminal security technology of ubiquitous power Internet of Things based on PUF and SM3
CN113591103B (en) An identity authentication method and system between smart terminals in the power Internet of Things

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20200214

RJ01 Rejection of invention patent application after publication