Design And Implement A Secure Communication System For Monitoring And Control Of Wind Turbines

Wind farm, as a distributed energy system, in which wind power is used to generate electricity, there are a lot of particularity for operating, controlling, maintaining and paralleling in grid; and wind turbines made by different manufacturers communicates with outside systems through private protocols, that bring difficulties to stable operating and unified manage and security running.Therefore, complying to Standard IEC 61400-25(Communications for monitoring and control of wind power plants) and Standard IEC 62351(Power systems management and associated information exchange - Data communications security), a secure communication system for monitoring and control is constructed to effectively manage and control relevant data and status, in order to safety access and supervisory control whole situation in wind farm and operation conditions of wind turbines .In the thesis, the secure communication system is detailed designed, access control module and communication security module are specific studies; and critical realization of the system and modules is presented. The work can be summarized in following points:(1) Aiming at communications requirements for supervisory control in wind farm, according to information model, information exchange model and the mapping of communication protocol proposed in IEC 61400-25, the embedded server is build on ARM (including MMS server ensuring real-time communication based on C/S and Web server ensuring non-realtime communication based on B/S); users communicate with embedded server to exchange information, guaranteeing integrality of communication functions and enhancing the rate of data transmission, to realize monitoring and control data and status in wind turbines.(2) Aiming at communications security requirements for supervisory control of wind turbines, according to RBAC and SSL suggested in IEC 62351, access control module and communication security module are designed in the system; access control module is constituted of authentication component and role-authority analysis component, to carry out authentication and authorization trough authority distribution after verifying the identity of users; communication security module is programmed by MatrixSSL, by means of security functions such as certificate authentication, encryption and decryption algorithm, MAC authentication and so on to ensure confidentiality, integrality, availability and non-repudiation ect.(3) Aiming at security problems appeared in process of realize access control module and communication security module,according to hardware encryption technology,through loading Ciper Algorithm Chip drive program, by API invoking Nation Ciper Algorithm Chip cryptogram(hash function SCH, symmetric cryptographic algorithm SSF33,asymmetric cryptographic algorithm ECC), the flow of secret keys management, algorithm execution, high-rate encryption and decryption is accomplished to fulfill ciper operation functions according with national security interests demand.(4)Aiming at the secure communication system for monitoring and control of wind turbines constructed according to IEC 61400-25 and IEC 62351,the system is concretely implemented from hardware-software facets; Usability and accuracy of each module is tested through a series of verifying softwares; finally the system is proved to fully meet demands of supervisory control communication of wind turbine through instance analysis. The system can make great significance to turbines manufacturers themselves for independent developing advanced, secured, standardized wind turbines and enhance the international competitiveness of wind turbines enterprises. With the development and maturation of technology, the system can be ported to in wind turbine controller.