Security Reinforce Strategy For Power Distribution Cyber-physical System

The widespread use of information technology promotes the informatization,automation and interaction of the modem power distribution networks,which evolves it an information-physical integrated cyber-physical system.Communication,which is the foundation of the power distribution system,should be efficient and secure to fulfill the requirements of the informatization,automation and interaction.With the challenges form the increasingly deteriorated external cyberspace and cross spaces risks,the current security architectures show deficiency and fail to adapt with the development of the power distribution cyber physical systems.To fill in the gap,we propose security reinforce strategy for power distribution networks,which includes the following two aspects:(1)Injecting malicious control commands is a cutting-edge cyber-attack against power distribution networks,which could cause large-scale black-out.The today's detection mechanisms which based on extracting the operation rules in power system have three shortcomings:1)rely on the expert experience,2)rules extraction and maintenance are difficult and 3)the overhead of rule matching increases with the scale of the network.By utilizing the context coherence between the measurement information and the control commands,we propose a new malicious-command-detection algorithm for power distribution network which based on word2vec.We simulate various operation conditions with labeled experiment dataset and validate the algorithm on a simulation testbed.(2)To strike a balance between the real-time data transmission and the limited calculation capacity and the overhead of the traditional digital signature algorithm,we propose a lightweight authentication algorithm using One-Time Signature(OTS).Considering the extreme overhead of regular OTS,we optimize the OTS algorithm with the guidance of the characteristics of the distribution control in the power systems and design a key management scheme for the multi-terminal authentication.We also validate our scheme on an embedded platform.The results demonstrate that the algorithm can fulfill the time-critical requirements in power distribution networks efficiently.For now,there are over 300 prototypes which are equipped with our algorithm operating in the certain area of X city.