Visible to the public A Design and Implementation Method of IPSec Security Chip for Power Distribution Network System Based on National Cryptographic Algorithms

TitleA Design and Implementation Method of IPSec Security Chip for Power Distribution Network System Based on National Cryptographic Algorithms
Publication TypeConference Paper
Year of Publication2019
AuthorsXi, W., Suo, S., Cai, T., Jian, G., Yao, H., Fan, L.
Conference Name2019 IEEE 3rd Information Technology, Networking, Electronic and Automation Control Conference (ITNEC)
Date Publishedmar
ISBN Number978-1-5386-6243-4
Keywordsauthentication, authentication function, authentication gateway, authorisation, composability, computer network security, cryptographic protocols, distribution application layer encryption authentication device, distribution master station, distribution network system, Distribution system, Dual Encryption, Encryption, IP networks, IPSec protocol, IPSec security chip, Logic gates, master cipher machine, master system, Metrics, Microelectronics Security, national cryptographic algorithm, network layer communication security, Network security, power distribution automation system, power distribution network system, power distribution protection, power engineering computing, power system security, Protocols, pubcrawl, resilience, Resiliency, security protection scheme, sercurity chip, the power distribution automation system, Virtual private networks, VPN gateway
Abstract

The target of security protection of the power distribution automation system (the distribution system for short) is to ensure the security of communication between the distribution terminal (terminal for short) and the distribution master station (master system for short). The encryption and authentication gateway (VPN gateway for short) for distribution system enhances the network layer communication security between the terminal and the VPN gateway. The distribution application layer encryption authentication device (master cipher machine for short) ensures the confidentiality and integrity of data transmission in application layer, and realizes the identity authentication between the master station and the terminal. All these measures are used to prevent malicious damage and attack to the master system by forging terminal identity, replay attack and other illegal operations, in order to prevent the resulting distribution network system accidents. Based on the security protection scheme of the power distribution automation system, this paper carries out the development of multi-chip encapsulation, develops IPSec Protocols software within the security chip, and realizes dual encryption and authentication function in IP layer and application layer supporting the national cryptographic algorithm.

URLhttps://ieeexplore.ieee.org/document/8729305
DOI10.1109/ITNEC.2019.8729305
Citation Keyxi_design_2019