Research And Application Of Secure Access Control Model Of SCADA System For Wind Power Farm

With the application of network and information technology in wind power generation, secure access control of SCADA system for wind power farm becomes more and more important, which is a key to ensure the information and control reliability. IEC 61400-25 has been developed in order to provide a uniform communication basis for the monitoring and control of wind power plant, the standard is reuse of IEC 61850. According to IEC 61400-25 and IEC 61850, also considering the demands of practical application, the author proposes a secure access control model of SCADA system for wind power farm under network environment and designs a secure interface unit (SIU), this thesis emphasis researches on the realization and application of secure access control of SCADA system for wind power farm. The work can be summarized in the following points:(1) The Key of secure access control of SCADA system for wind power farm is authentication, information security of messages and access control via analysis of its demands of secure access control. Combining to the demands of secure access control, the paper introduces some basic knowledge which relates to the thesis in detail. Then according to the characteristic of a typical GH (Garrad Hassan) SCADA system for wind power farm, the paper concretely introduces and analyzes its secure access function.(2) In allusion to the demands of secure access control of SCADA system for wind power farm, the author designs a secure access control model of SCADA system for wind power farm,then concretely analyzes and designs its correlated modules. The realization of secure access control mode of SCADA system for wind power farm is described, from the authentication, the distribution of authorisation, the information security processing, the creation of virtual access view, the roles and its relevant settings of access policy for system, and so on. Firstly, combining to Handshake Protocol, the identity authentication is implemented by use of secure remote password (SRP) based secure password identification while users access. Secondly, in allusion to the secure demands of commands that users transmit, the secure processing of the APDU of IEC60870-5-104 protocol is implemented by use of Record Protocol. Thirdly, the virtual access view of IEC 61850 is adopted to execute the policy of access control. Finally, the feasibility of secure access control of SCADA system for wind power farm under network environment is proved by emulator. (3) In allusion to the function modules which are referred in the secure access control model of SCADA system for wind power farm, the author defines some interface function of security standard for the secure interface unit and realizes some function in ZTEIC security control platform based on real application circumstance, then specificates the close relationship between SCADA system for wind power farm under network environment and information security. The process of secure access control of SCADA system for wind power farm is described in detail through the concrete analysis of the application. It shows that the way can meet the demands of secure access control of wind power farm through the analysis on the security and real-time of the proposed model.