發(fā)布時間：2018-06-15 02:04

  本文選題：信息安全 + 電力CPS系統(tǒng)�。� 參考：《長沙理工大學》2015年碩士論文

【摘要】：電力系統(tǒng)是現(xiàn)代社會的關鍵性基礎設施。近年來,發(fā)展智能電網(wǎng)已在世界范圍內形成共識。在智能化過程中,電力網(wǎng)與信息網(wǎng)不斷融合而構成CPS(Cyber-Physical System)系統(tǒng)。信息化是實現(xiàn)智能電網(wǎng)的基礎,一方面可以挖掘和實現(xiàn)新功能,另一方面又會帶來新的安全風險。信息系統(tǒng)的異常乃至于通過網(wǎng)絡發(fā)起的攻擊都可能穿透信息系統(tǒng)和物理系統(tǒng)的邊界,影響電網(wǎng)安全。因此,電力物理信息系統(tǒng)(Cyber-Physical System,CPS)系統(tǒng)的信息安全問題已發(fā)展為當前亟待解決的難題。鑒于攻擊模式和對象因目的不同而有明顯差異,論文從攻擊方視角出發(fā),根據(jù)攻擊目的將針對電力物理信息系統(tǒng)的攻擊分為無特定目標、以經(jīng)濟利益目的和以破壞電網(wǎng)穩(wěn)定為目的三類。首先結合北美電網(wǎng)信息系統(tǒng)異常導致的大停電數(shù)據(jù)分析了無特定目的網(wǎng)絡攻擊對電網(wǎng)的影響;在謀取經(jīng)濟利益為目的的攻擊模式分析中,作者概述了當前防竊電檢測中的兩種主要思路;在以破壞電網(wǎng)穩(wěn)定為目的的攻擊模式分析中,作者根據(jù)可選攻擊對象不同而分別進行了闡述,可為電力系統(tǒng)信息安全分析和防護方法研究提供新的視角。傳統(tǒng)上,電力系統(tǒng)以網(wǎng)絡隔離、訪問控制為基礎進行網(wǎng)絡安全防護。震網(wǎng)病毒的出現(xiàn)證明關鍵性設施是沒有保護措施的。有特定目標的類似震網(wǎng)病毒可以根據(jù)SCADA數(shù)據(jù)表結構獲取電網(wǎng)各線路及對應控制端口信息;再輔以線路拓撲連接等信息進行結構脆弱性分析,誘使關鍵線路跳閘,甚至誘發(fā)連鎖故障大停電。作者運用復雜網(wǎng)絡相關理論,構造連鎖故障模型,并結合IEEE39節(jié)點系統(tǒng)仿真分析在不同信息透明度下攻擊方可能選擇的攻擊策略,為研究針對性防御手段提供依據(jù)。為滿足智能電網(wǎng)雙向互動的需求,電力公司構建了高級量測體系(Advanced Metering Infrastructure,AMI)。智能電表作為高級量測體系的基礎,其大范圍部署的同時也引進了安全風險。根據(jù)AMI結構及數(shù)據(jù)信息傳輸路徑,分析了智能電表安全威脅來源。網(wǎng)絡病毒作為威脅源之一,很多時候防不勝防,論文最后設計了基于CPU負荷率的智能電表入侵檢測方法,并結合地理信息系統(tǒng)(Geographic Information System,GIS)以及時檢測出已感染智能電表并處理之。
[Abstract]:Power system is the key infrastructure of modern society. In recent years, the development of smart grids in the world has formed a consensus. In the process of intelligentization, the power network and information network merges continuously to form the CPS Cyber-Physical system. Informatization is the basis of smart grid. On the one hand, it can mine and realize new functions, on the other hand, it will bring new security risks. The anomaly of information system and even the attack through network can penetrate the boundary of information system and physical system and affect the security of power grid. Therefore, the problem of information security in the Cyber-physical system (CPS) system has developed into a difficult problem to be solved. In view of the obvious difference between the attack mode and the object according to the purpose, this paper divides the attack against the electric power physical information system into no specific targets according to the attack purpose from the perspective of the attacking party. There are three kinds of purposes: economic benefit and stability of power grid. Firstly, combined with the outage data caused by the abnormal information system of North American power grid, the impact of non-specific network attack on the power grid is analyzed, and the attack mode of seeking economic benefits is analyzed. In this paper, the author summarizes the two main ideas in the detection of electricity theft, and in the analysis of the attack mode aimed at destroying the stability of the power grid, according to the different targets of the attack, the author expounds respectively, It can provide a new perspective for information security analysis and protection methods of power system. Traditionally, network security protection is based on network isolation and access control. The emergence of the earthquake net virus proves that the key facilities are not protected. Similar seismic network viruses with specific targets can obtain the information of each line and corresponding control ports according to SCADA data table structure, and then carry out structural vulnerability analysis with information such as line topology connection to induce key lines to trip. Even induced cascading failure blackouts. Based on the theory of complex network, the author constructs a cascading fault model, and analyzes the possible attack strategies chosen by the attacker under different information transparency, combining with the simulation of IEEE39-bus system, which provides the basis for the study of targeted defense methods. To meet the demand for two-way interaction in the smart grid, power companies have built an advanced measurement system, Advanced Metering Infrastructure Ammig. As the basis of the advanced measurement system, intelligent ammeter is deployed in a wide range and also introduces security risks. According to the structure of AMI and the path of data transmission, the source of security threat of intelligent ammeter is analyzed. As one of the threat sources, the network virus is often prevented from being prevented. In the end, an intelligent meter intrusion detection method based on CPU load rate is designed, which is combined with Geographic Information system (GIS) to detect and deal with the infected intelligent meter in time.
【學位授予單位】：長沙理工大學
【學位級別】：碩士
【學位授予年份】：2015
【分類號】：TP309;TM73;TM933.4

【參考文獻】

相關期刊論文 前10條

1 蘇盛;吳長江;馬鈞;曾祥君;;基于攻擊方視角的電力CPS網(wǎng)絡攻擊模式分析[J];電網(wǎng)技術;2014年11期

2 佟為明;張希棟;李中偉;林景波;;基于橢圓曲線密碼的數(shù)據(jù)集中器通信報文混合密碼算法[J];電力系統(tǒng)自動化;2014年04期

3 彭勇;江常青;向憧;張淼;謝豐;戴忠華;陳冬青;高海輝;;關鍵基礎設施信息物理攻擊建模和影響評價[J];清華大學學報(自然科學版);2013年12期

4 薛禹勝;謝云云;文福拴;董朝陽;;關于電力系統(tǒng)相繼故障研究的評述[J];電力系統(tǒng)自動化;2013年19期

5 郭創(chuàng)新;陸海波;俞斌;馬韜韜;;電力二次系統(tǒng)安全風險評估研究綜述[J];電網(wǎng)技術;2013年01期

6 彭勇;江常青;謝豐;戴忠華;熊琦;高洋;;工業(yè)控制系統(tǒng)信息安全研究進展[J];清華大學學報(自然科學版);2012年10期

7 陳來軍;梅生偉;陳穎;;智能電網(wǎng)信息安全及其對電力系統(tǒng)生存性的影響[J];控制理論與應用;2012年02期

8 曹崢;楊鏡非;劉曉娜;;BP神經(jīng)網(wǎng)絡在反竊電系統(tǒng)中的研究與應用[J];水電能源科學;2011年09期

9 劉念;張建華;;互動用電方式下的信息安全風險與安全需求分析[J];電力系統(tǒng)自動化;2011年02期

10 王博;游大海;尹項根;陳慶前;;基于多因素分析的復雜電力系統(tǒng)安全風險評估體系[J];電網(wǎng)技術;2011年01期

，

本文編號：2020064