A Design and Implementation Method of IPSec Security Chip for Power Distribution Network System Based on National Cryptographic Algorithms
| Title | A Design and Implementation Method of IPSec Security Chip for Power Distribution Network System Based on National Cryptographic Algorithms |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Xi, W., Suo, S., Cai, T., Jian, G., Yao, H., Fan, L. |
| Conference Name | 2019 IEEE 3rd Information Technology, Networking, Electronic and Automation Control Conference (ITNEC) |
| Date Published | mar |
| ISBN Number | 978-1-5386-6243-4 |
| Keywords | authentication, authentication function, authentication gateway, authorisation, composability, computer network security, cryptographic protocols, distribution application layer encryption authentication device, distribution master station, distribution network system, Distribution system, Dual Encryption, Encryption, IP networks, IPSec protocol, IPSec security chip, Logic gates, master cipher machine, master system, Metrics, Microelectronics Security, national cryptographic algorithm, network layer communication security, Network security, Networked Control Systems Security, power distribution automation system, power distribution network system, power distribution protection, power engineering computing, power system security, Predictive Metrics, Protocols, pubcrawl, resilience, Resiliency, security protection scheme, sercurity chip, the power distribution automation system, Virtual private networks, VPN gateway |
| Abstract | The target of security protection of the power distribution automation system (the distribution system for short) is to ensure the security of communication between the distribution terminal (terminal for short) and the distribution master station (master system for short). The encryption and authentication gateway (VPN gateway for short) for distribution system enhances the network layer communication security between the terminal and the VPN gateway. The distribution application layer encryption authentication device (master cipher machine for short) ensures the confidentiality and integrity of data transmission in application layer, and realizes the identity authentication between the master station and the terminal. All these measures are used to prevent malicious damage and attack to the master system by forging terminal identity, replay attack and other illegal operations, in order to prevent the resulting distribution network system accidents. Based on the security protection scheme of the power distribution automation system, this paper carries out the development of multi-chip encapsulation, develops IPSec Protocols software within the security chip, and realizes dual encryption and authentication function in IP layer and application layer supporting the national cryptographic algorithm. |
| URL | https://ieeexplore.ieee.org/document/8729305 |
| DOI | 10.1109/ITNEC.2019.8729305 |
| Citation Key | xi_design_2019 |
- Predictive Metrics
- national cryptographic algorithm
- network layer communication security
- network security
- Networked Control Systems Security
- power distribution automation system
- power distribution network system
- power distribution protection
- power engineering computing
- power system security
- Microelectronics Security
- Protocols
- pubcrawl
- resilience
- Resiliency
- security protection scheme
- sercurity chip
- the power distribution automation system
- Virtual private networks
- VPN gateway
- Distribution system
- authentication function
- authentication gateway
- authorisation
- composability
- computer network security
- Cryptographic Protocols
- distribution application layer encryption authentication device
- distribution master station
- distribution network system
- authentication
- Dual Encryption
- encryption
- IP networks
- IPSec protocol
- IPSec security chip
- Logic gates
- master cipher machine
- master system
- Metrics