摘要
在智能电网环境中,电力运营商和消费者通过智能电表进行大量高精度的用电数据的实时监测,用户机密数据持续暴露于未经授权的访问,在这种传统通信模式下,智能电表对家庭用户能源消耗的细粒度测量造成了严重的隐私安全问题,而现有的静态访问控制方法并不满足智能电网环境基于上下文的动态访问特性。针对此问题,提出一种基于物联网通信协议(MQTT协议)的访问控制方案,通过在MQTT协议中对树型结构的主题列表设计基于ABAC访问控制模型的动态上下文授权策略,并在WSO2系统使用XACML策略语言实现了提出的访问控制方案。性能评估结果表明,该方案能在较低的通信开销内支持动态的访问控制,以解决智能电网中用户的用电信息未经授权而泄露的隐私安全问题。
In the smart grid environment,power suppliers and consumers used smart meters to monitor a large number of high-precision power consumption data in real time,and users’ confidential data was continuously exposed to unauthorized access.In this traditional communication mode,the fine-grained measurement of household users’ energy consumption by smart meters posed serious privacy and security issues,while existing static access control methods didn’t meet the context-based dynamic access characteristics of the smart grid environment.To solve this problem,this paper proposed an access control scheme based on the Internet of Things communication protocol(MQTT protocol).By designing a dynamic context authorization policy based on the ABAC access control model for the topic list in the tree structure in the MQTT protocol,the proposed access control scheme was implemented using XACML policy language in WSO2 system.The performance evaluation results show that the scheme can support dynamic access control with low communication overhead,so as to solve the privacy security problem of unauthorized leakage of user electricity consumption information in smart grid.
作者
邵瑞雪
田秀霞
Shao Ruixue;Tian Xiuxia(School of Computer Science&Technology,Shanghai University of Electric Power,Shanghai 201306,China)
出处
《计算机应用研究》
CSCD
北大核心
2022年第11期3436-3443,共8页
Application Research of Computers
基金
国家自然科学基金面上项目(61772327)
国网甘肃省电力公司电力科学研究院横向项目(H2019-275)
上海市大数据管理系统工程研究中心开放课题(H2020-216)。
