【摘要】：隨著風(fēng)電場規(guī)模的擴(kuò)大,風(fēng)電并網(wǎng)容量的不斷提高,給電網(wǎng)穩(wěn)定性控制帶來了挑戰(zhàn),功率控制子站是實(shí)現(xiàn)調(diào)度系統(tǒng)對(duì)風(fēng)電場統(tǒng)一管理的有效手段�，F(xiàn)有功率控制子站針對(duì)有功無功邏輯控制進(jìn)行研究較多,但對(duì)系統(tǒng)的信息安全研究較少,例如操作系統(tǒng)的漏洞、以及現(xiàn)有軟件平臺(tái)對(duì)病毒的入侵,報(bào)文的明碼傳輸存在運(yùn)行信息泄密的風(fēng)險(xiǎn)及安全生產(chǎn)被惡意控制等安全問題。本文著眼于功率控制子站系統(tǒng)的信息安全功能,在嵌入式硬件平臺(tái)方面基于目前公司現(xiàn)有的通用硬件平臺(tái)增加安全芯片,為系統(tǒng)構(gòu)建最底層的可信基礎(chǔ)；在嵌入式軟件平臺(tái)架構(gòu)中增加關(guān)于TPM安全芯片的驅(qū)動(dòng)程序和可信軟件層TCG軟件棧,通過TPM驅(qū)動(dòng)和TCG軟件棧結(jié)合構(gòu)建實(shí)時(shí)可信的嵌入式操作系統(tǒng)軟硬件架構(gòu)；基于此軟硬件框架,通過研究內(nèi)核與組件庫、配置可信鏈模型及加載機(jī)制構(gòu)建安全安全可信嵌入式軟件平臺(tái),以及具備自主知識(shí)產(chǎn)權(quán)的安全可信特性的可編程邏輯實(shí)時(shí)運(yùn)行環(huán)境組件：研究具備加密和認(rèn)證、入侵檢測的安全功能組件設(shè)計(jì)方法；設(shè)計(jì)telnet和ftp通用服務(wù),文件傳輸,通用規(guī)約接入轉(zhuǎn)出基礎(chǔ)框架等各方面的通信機(jī)制,并且在通用規(guī)約處理基礎(chǔ)框架下對(duì)典型電力系統(tǒng)應(yīng)用規(guī)約做詳細(xì)分析和設(shè)計(jì)；最后在數(shù)據(jù)應(yīng)用層,對(duì)以太網(wǎng)服務(wù)的原始數(shù)據(jù)流進(jìn)行通信加解密嘗試,減少數(shù)據(jù)明碼傳輸?shù)娘L(fēng)險(xiǎn)。上位軟件作為功率控制子站的人機(jī)界面接口,一方面實(shí)現(xiàn)對(duì)全站設(shè)備的關(guān)鍵信息進(jìn)行監(jiān)視,另一方面具有對(duì)設(shè)備的控制功能,詳細(xì)分析了涉及安全操作的三個(gè)模塊：通信模塊、邏輯組態(tài)及用戶權(quán)限管理的功能,分別針對(duì)這三個(gè)模塊進(jìn)行功能分解,并對(duì)重點(diǎn)實(shí)現(xiàn)的功能進(jìn)行了分析與軟件設(shè)計(jì)。
[Abstract]:With the expansion of wind farm scale and the continuous improvement of wind power grid capacity, it brings challenges to the stability control of power grid. Power control sub-station is an effective means to realize the unified management of wind farm in dispatching system. The existing power control substations focus on active and reactive power logic control, but there are few researches on the information security of the system, such as the vulnerability of the operating system and the intrusion of the existing software platform to the virus. There are some security problems in message transmission, such as the risk of leakage of running information and the malicious control of safe production. This paper focuses on the information security function of the power control sub-station system and adds the security chip to the embedded hardware platform based on the existing common hardware platform of the company to build the lowest trusted foundation for the system. The driver of TPM security chip and the TCG software stack of trusted software layer are added to the embedded software platform architecture. The real-time trusted embedded operating system hardware and software architecture is constructed by combining TPM driver and TCG software stack. Based on this software and hardware framework, a secure and trusted embedded software platform is constructed by studying the kernel and component library, configuring the trusted chain model and loading mechanism. And the programmable logic real-time running environment component which has the independent intellectual property right's security trustworthiness characteristic: the research has the encryption and the authentication, the intrusion detection security function component design method; Design the communication mechanism of telnet and ftp universal service, file transfer, general protocol access and out of the basic framework, and make a detailed analysis and design of typical power system application protocol under the general protocol processing basic framework; Finally, in the data application layer, we try to encrypt and decrypt the raw data stream of Ethernet service to reduce the risk of data transmission. As the man-machine interface of the power control sub-station, the upper software can monitor the key information of the whole station equipment on the one hand, and control the equipment on the other. The functions of logical configuration and user rights management are divided into three modules, and the key functions are analyzed and the software is designed.
【學(xué)位授予單位】：華北電力大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2015
【分類號(hào)】：TM614;TP309

【參考文獻(xiàn)】

相關(guān)期刊論文 前4條

1 梁瀟;高昆侖;徐志博;鄭曉];;美國電力行業(yè)信息安全工作現(xiàn)狀與特點(diǎn)分析[J];電網(wǎng)技術(shù);2011年12期

2 雷體文;蔡迅華;曾宇;;基于消息機(jī)制的變電站智能通訊管理機(jī)[J];自動(dòng)化與信息工程;2007年01期

3 林俐;謝永俊;朱晨宸;汪寧渤;;基于優(yōu)先順序法的風(fēng)電場限出力有功控制策略[J];電網(wǎng)技術(shù);2013年04期

4 李光明;紀(jì)一鳴;;風(fēng)電場綜合監(jiān)控系統(tǒng)實(shí)施研究[J];吉林電力;2012年05期

相關(guān)博士學(xué)位論文 前1條

1 霍文捷;嵌入式處理器安全運(yùn)行機(jī)制的研究與設(shè)計(jì)[D];華中科技大學(xué);2010年

相關(guān)碩士學(xué)位論文 前2條

1 張小平;基于VxWorks的PLC通信管理模件的研究與開發(fā)[D];河海大學(xué);2007年

2 王臻;基于嵌入式操作系統(tǒng)網(wǎng)絡(luò)安全技術(shù)的研究[D];哈爾濱工業(yè)大學(xué);2008年

，

本文編號(hào)：2298795