智能电网隐私保护研究

发布时间：2018-03-27 19:43

本文选题：智能电网　切入点：隐私保护　出处：《华东交通大学》2017年硕士论文

【摘要】：智能电网作为新一代的电力系统,采用了先进的技术实现了双向通信,新技术的应用也带来许多新问题。随着大量智能终端设备智能电表的部署,用户侧信息安全问题更加突出;同时随着智能电网云存储技术的应用,其面临的安全威胁也日益加剧。通过对用户侧智能电表及云存储中隐私数据的分析,会对用户的个人隐私和智能电网的安全稳定运行造成极大危害。针对智能电网用户侧智能电表和云存储中隐私数据泄漏的问题进行深入研究,主要完成了以下几方面工作:首先,深入分析了智能电网用户侧智能电表隐私数据的安全威胁和安全需求,给出一种基于对称密码算法和安全数据聚合的隐私保护方案,该方案使用了对称密码算法对用户侧的智能电表的实时用电数据进行了加密,然后再用同态加密的方法将加密后的数据进行聚合后传输,其主要安全特性包括设备认证、数据机密性和完整性,并通过安全数据聚合实现对用户隐私数据的保护;同时采用TRC校验电路的方式解决对智能电表威胁较大的差分故障攻击。然后,研究了智能电网云存储的特性和现有隐私数据访问控制的不足,给出一种基于属性角色的智能电网云访问控制方案。该方案在CP-ABE加密方案的基础上,通过建立特权角色并为其赋属性集,用户不直接获得访问权限,而是通过与特权角色进行属性集验证来获得角色,再通过特权角色授权进而解密资源的访问结构密文获得资源的访问权限,这样保证了用户与权限的逻辑分离,只有获得权限的的用户才能获得访问资源,确保了智能电网数据在云存储中的隐私保护。最后,构建了智能电网隐私保护系统仿真模拟平台,该平台在ARM+FPGA的基础上进行设计,采用了动态可重构技术设计了一款通用型密码安全芯片,在通信的过程中利用微处理器控制FPGA配置文件的动态加载。最后将设计的基于对称密码算法和安全数据聚合的智能电网隐私保护方案在该平台上进行仿真模拟。同时对基于属性角色的智能电网云访问控制方案,在搭建的仿真平台中模拟。结果表明,对智能电网用户侧智能电表以及智能电网云存储中涉及的隐私数据保护方案的研究,可以有效提高智能电网隐私数据的安全性。
[Abstract]:As a new generation of power system, smart grid adopts advanced technology to realize two-way communication, and the application of new technology also brings many new problems. At the same time, with the application of smart grid cloud storage technology, its security threat is becoming more and more serious. Through the analysis of user side intelligent meter and privacy data in cloud storage, It will do great harm to the personal privacy of users and the safe and stable operation of smart grid. In view of the problem of privacy data leakage in smart grid user side smart meter and cloud storage, The main work is as follows: firstly, the security threats and security requirements of smart meter privacy data on smart grid user side are analyzed, and a privacy protection scheme based on symmetric cipher algorithm and secure data aggregation is proposed. The scheme uses symmetric cipher algorithm to encrypt the real-time electric data of the intelligent meter on the user side, and then uses homomorphic encryption method to aggregate the encrypted data and transmit the encrypted data. The main security features of the scheme include equipment authentication. Data confidentiality and integrity, and the security of data aggregation to achieve the protection of user privacy data; at the same time, the use of TRC verification circuit to solve the threat to intelligent meter differential fault attack. Then, This paper studies the characteristics of cloud storage in smart grid and the shortcomings of existing privacy data access control, and presents a scheme of cloud access control for smart grid based on attribute role, which is based on CP-ABE encryption scheme. By creating a privileged role and assigning it to an attribute set, the user does not directly obtain access, but instead obtains the role by validating the attribute set with the privileged role. Then the privilege role authorization is used to decrypt the access structure of the resource ciphertext to obtain the access right of the resource, which ensures the logical separation between the user and the permission, and only the user who obtains the permission can obtain the access resource. The privacy protection of smart grid data in cloud storage is ensured. Finally, a simulation platform of smart grid privacy protection system is constructed, which is designed on the basis of ARM FPGA. A general cryptographic security chip is designed by using dynamic reconfigurable technology. In the process of communication, the microprocessor is used to control the dynamic loading of FPGA configuration file. Finally, the privacy protection scheme of smart grid based on symmetric cipher algorithm and secure data aggregation is simulated on the platform. At the same time, the cloud access control scheme of smart grid based on attribute role is discussed. The simulation results show that the research on smart grid user side smart meter and privacy data protection scheme in smart grid cloud storage can effectively improve the security of smart grid privacy data.
【学位授予单位】：华东交通大学
【学位级别】：硕士
【学位授予年份】：2017
【分类号】：TM76

【参考文献】