《电力自动化设备》

引用本文:	罗华峰,许艾,陆承宇,阮黎翔,杜奇伟,王申强.基于MMS替代协议的变电站安全通信技术研究及应用[J].电力自动化设备,2021,41(12):
	LUO Huafeng,XU Ai,LU Chengyu,RUAN Lixiang,DU Qiwei,WANG Shenqiang.Research and application of substation safety communication technology based on MMS alternative protocol[J].Electric Power Automation Equipment,2021,41(12):

【打印本页】【HTML】【下载PDF全文】【查看/发表评论】【EndNote】【RefMan】【BibTex】

←前一篇|后一篇→

过刊浏览高级检索

本文已被：浏览 3075次下载 1274次
字体:加大+\|默认\|缩小-
基于MMS替代协议的变电站安全通信技术研究及应用
罗华峰¹, 许艾², 陆承宇¹, 阮黎翔¹, 杜奇伟³, 王申强²
1.国网浙江省电力有限公司电力科学研究院，浙江杭州 310014;2.北京四方继保工程技术有限公司，北京 100085;3.国网浙江省电力有限公司，浙江杭州 310007

摘要:

目前，绝大多数变电站基于IEC61850标准建设，站内通信协议主要包括制造报文规范(MMS)、面向通用对象的变电站事件(GOOSE)、采样测量值(SMV)等，在工程应用实践中逐渐暴露出一些不足与安全隐患。为此，基于MMS替代协议，重点介绍了其实现的功能与安全防护技术。在功能方面，MMS替代协议增加了多个服务，并优化了现有MMS协议的不足；在安全防护技术方面，MMS替代协议的应用层实现了基于SM2算法与调度证书的双向身份认证，杜绝未授权设备的非法接入、攻击，从协议源头杜绝设备连接的不安全性；MMS替代协议的传输层实现了基于SM2算法与调度证书的全链路加密、认证，确保传输数据报文防伪造、防抵赖、防窃取，保护数据报文的机密性、完整性。测试结果表明MMS替代协议在工程应用中具有一定的参考意义。

关键词: MMS替代协议 SM2算法变电站安全通信身份认证加密

DOI：10.16081/j.epae.202107013

分类号:TM73

基金项目:国网浙江省电力有限公司科技项目(5211DS19002W)

Research and application of substation safety communication technology based on MMS alternative protocol

LUO Huafeng¹, XU Ai², LU Chengyu¹, RUAN Lixiang¹, DU Qiwei³, WANG Shenqiang²

1.Research Institute of State Grid Zhejiang Electric Power Co.,Ltd.,Hangzhou 310014, China;2.Beijing Sifang Jibao Engineering Technology Co.,Ltd.,Beijing 100085, China;3.State Grid Zhejiang Electric Power Co.,Ltd.,Hangzhou 310007, China

Abstract:

At present, most substations are built based on IEC61850 standard, and the in-station communication protocols mainly include MMS(Manufacturing Message Specification),GOOSE(Generic Objective-Orient Substation Event),SMV(Sampling Measurement Value),and so on, which gradually exposes some deficiencies and security risks in engineering application practice. Therefore, based on MMS alternative protocol, its function and safety protection technology are introduced emphatically. In terms of functionality, the MMS alternative protocol adds multiple services and optimizes the shortcomings of the existing MMS protocol. In terms of safety protection technology, the application layer of MMS alternative protocol realizes the two-way identity authentication based on SM2 algorithm and scheduling certificate, which can prevent illegal access and attack of unauthorized devices and eliminate the insecurity of device connection from the source of protocol. The transmission layer of MMS alternative protocol realizes the full link encryption and authentication based on SM2 algorithm and scheduling certificate, which ensures that the transmitted data message is anti-forgery, anti-repudiation and anti-theft, and protects the confidentiality and integrity of data message. The test results show that the MMS alternative protocol has certain reference significance in engineering application.

Key words: MMS alternative protocol SM2 algorithm substation safety communication identity authentication encryption

用微信扫一扫