作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程

• 安全技术 • 上一篇    下一篇

移动APP端电网用户访问控制方案

李明,方圆,刘军,俞骏豪   

  1. (国网安徽省电力公司信息通信分公司,合肥 230061)
  • 收稿日期:2017-01-25 出版日期:2018-04-15 发布日期:2018-04-15
  • 作者简介:李明(1971—),男,高级工程师,主研方向为企业信息化、信息安全;方圆,工程师、硕士;刘军,高级工程师;俞俊豪,工程师、硕士。

User Access Control Scheme for Electrified Wire Netting on Mobile APP

LI Ming,FANG Yuan,LIU Jun,YU Junhao   

  1. (Information and Communication Branch,State Grid Anhui Electric Power Company,Hefei 230061,China)
  • Received:2017-01-25 Online:2018-04-15 Published:2018-04-15

摘要: 针对电力企业中敏感数据保护和用户安全访问问题,提出一种在电网环境下的用户访问控制方案。当用户需要查询相关数据时,就必须与电力系统的内网服务器产生交互,从内网服务器获取需要的数据。在此过程中,恶意用户可能假冒合法用户的身份向服务器发出请求,非法获得数据。通过建立多授权机构,采用属性加密技术,对APP用户进行授权从而控制用户对数据的访问,防止恶意用户对电网系统造成安全威胁。通过对敏感数据进行加密处理,保证敏感数据的机密性。分析和评估结果表明,该方案具有较好的安全性,计算代价较低。

关键词: 电力系统, 访问控制, 敏感数据保护, 属性加密, 机密性

Abstract: For sensitive data protection and user security access issues in electric power enterprise,this paper proposes an access control scheme for user of electrified wire netting.When the user wants to query the data,he must interact with the network server in the power system,and obtain the required data from the internal network server.In this process,the malicious user may fake the legitimate user to make a request and obtains the data illegally.Users are authorized and controlled to access the data through building attribute authorities and using attribute-based encryption to prevent the malicious user from threating the power grid system.The scheme also encrypts the sensitive data and ensures the confidentiality of sensitive data.The results of analysis and evaluation show that the proposed scheme has better security and lower computing cost.

Key words: electric system, access control, sensitive data protection, attribute encryption, confidentiality

中图分类号: