CN-121982802-A - Intelligent lock control system and method for secondary screen cabinet of transformer substation based on dynamic authority management

Abstract

The invention relates to a transformer substation secondary screen cabinet intelligent lock control system and method based on dynamic authority management, the system comprises an intelligent lock control management platform and at least one field terminal equipment group, the field terminal equipment group consists of an intelligent lockset arranged on the secondary screen cabinet and a mobile authorization terminal held by a user. The intelligent lock control management platform is communicated with an external electronic work ticket system through a work ticket interface module, acquires work ticket data, and responds to an unlocking request of the mobile authorization terminal through a dynamic authority management module to dynamically generate an unlocking authorization credential. The intelligent lockset performs local verification on the received authorization credential, performs unlocking operation after verification is passed, and returns operation state information to the management platform in real time. The invention realizes the refined dynamic authorization, ensures the traceability of the whole process, improves the safety of the system, realizes the real-time visual management of the state and promotes the closed loop of the management flow.

Inventors

• CHEN GUANGHUI
• ZOU HAO
• WANG ZHEN
• ZHANG ZHEN
• CUI RUI
• LIU YANMEI
• XUE ZHEN

Assignees

• 国网山东省电力公司泰安供电公司

Dates

Publication Date

20260505

Application Date

20251223

Claims (10)

1. 1. The intelligent lock control system for the secondary screen cabinet of the transformer substation based on dynamic authority management is characterized by comprising an intelligent lock control management platform and at least one field terminal equipment group; the field terminal equipment group comprises an intelligent lockset arranged on the secondary screen cabinet and a mobile authorization terminal held by a user; The intelligent lock control management platform comprises a work ticket interface module and a dynamic authority management module; The work ticket interface module is used for communicating with an external electronic work ticket system and acquiring work ticket data comprising a work time range, a work equipment range and work personnel information; the dynamic authority management module is used for responding to an unlocking request from the mobile authorization terminal and dynamically generating an unlocking authorization credential according to the work ticket data; The mobile authorization terminal is used for sending the unlocking request to the intelligent lock control management platform, and receiving and forwarding the unlocking authorization credential to a target intelligent lockset; The intelligent lockset is used for carrying out local verification on the received unlocking authorization certificate, executing unlocking operation after verification is passed, and simultaneously, transmitting operation state information back to the intelligent lock control management platform through the communication network.
2. 2. The system of claim 1, wherein the dynamic generation of the unlocking authority credentials in the dynamic authority management module is specifically: Verifying the validity of the unlocking request according to the work ticket data; After verification is passed, a dynamic authority token is generated as the unlocking authorization credential, wherein the dynamic authority token at least comprises a user identifier, a target lockset identifier, a valid time window and a digital signature based on an asymmetric encryption algorithm.
3. 3. The system of claim 2, wherein the process of generating the dynamic rights token in the dynamic rights management module comprises: Splicing the user identifier, the target lockset identifier, the start-stop time of the effective time window, the associated work ticket identifier and a random number according to a preset rule to form plaintext data; calculating a hash value of the plaintext data using a hash algorithm; Signing the hash value by using a private key of the intelligent lock control management platform to generate signature data; And combining and encoding the plaintext data and the signature data, and outputting the dynamic permission token.
4. 4. The system of claim 3, wherein the process of locally verifying the unlocking authority credentials by the intelligent lock comprises: receiving and decoding the dynamic permission token, and separating the plaintext data and the signature data; Analyzing a target lockset identifier and an effective time window from the plaintext data; checking whether the analyzed target lock mark is consistent with the mark of the lock; Checking whether the current time is within the effective time window; Checking the signature data by using a pre-stored public key of the intelligent lock control management platform, and re-calculating a hash value of the plaintext data to verify the validity of the signature; An unlocking operation is performed if and only if all checks pass.
5. 5. The system of claim 4, wherein the hash algorithm is a national encryption SM3 algorithm and the asymmetric encryption algorithm is a national encryption SM2 algorithm.
6. 6. The system of claim 5, wherein the smart lock further comprises a state sensing module comprising a door magnetic sensor and a deadbolt position sensor; the door magnetic sensor is used for detecting the opening and closing states of the screen cabinet door; The lock tongue position sensor is used for detecting whether the lock tongue is in a complete locking position or not; The intelligent lockset is configured to report the changes of the door state and the lock tongue state to the intelligent lock control management platform in real time.
7. 7. The system of claim 6, wherein the smart lock further comprises a lock logic control module in signal communication with the door sensor and the deadbolt position sensor configured to: generating a lock closing signal only when the door magnetic sensor outputs a first signal indicating that the door is closed; And after receiving feedback indicating that the locking action is completed, if the lock tongue position sensor outputs a second signal indicating that the lock tongue is in place, sending 'locked' state information to the intelligent lock control management platform.
8. 8. The intelligent lock control method for the secondary screen cabinet of the transformer substation based on dynamic authority management is characterized by comprising the following steps of: Step S1, a step of sending an unlocking request, wherein: the mobile authorization terminal sends an unlocking request to the intelligent lock control management platform, wherein the request comprises a user identifier, a target lockset identifier and an associated work ticket identifier; Step S2, verifying the validity of the request, wherein: The intelligent lock control management platform verifies the validity of the request, dynamically generates an unlocking authorization certificate with timeliness after the verification is passed, and sends the unlocking authorization certificate to the mobile authorization terminal; Step S3, transmitting unlocking authorization credentials, wherein: The mobile authorization terminal transmits the unlocking authorization certificate to the target intelligent lockset; step S4, verifying unlocking authorization credentials and unlocking, wherein: the target intelligent lockset decodes and analyzes the received certificate, and sequentially executes the steps of lockset identity matching verification, time validity verification and digital signature verification; Step S5, information returning, wherein: and the target intelligent lockset transmits unlocking events and subsequent door state and lock state information back to the intelligent lock control management platform.
9. 9. The method according to claim 8, wherein the step S2 specifically includes: Verifying the validity of the unlocking request, and generating a dynamic authority token as an unlocking authority credential by the intelligent lock control management platform after the verification is passed; the dynamic rights token is created by: Splicing the user identifier, the target lockset identifier, the start-stop time of the effective time window, the associated work ticket identifier and a random number according to a preset rule to form plaintext data; calculating a hash value of the plaintext data by using a hash algorithm, wherein the hash algorithm is a national cipher SM3 algorithm; Signing the hash value by using a private key of the intelligent lock control management platform to generate signature data; And combining and encoding the plaintext data and the signature data, and outputting the dynamic permission token.
10. 10. The method according to claim 9, wherein the local authentication in step S4 comprises: The target intelligent lockset decodes and analyzes the received unlocking authorization credential to separate plaintext data and signature data, analyzes a target lockset identifier and an effective time window from the plaintext data, and sequentially executes the steps of lockset identity matching verification, time validity verification and digital signature verification; the step of lock identity matching verification is to verify whether the analyzed target lock identification is consistent with the lock identification; Checking whether the current time is in the valid time window or not; The step of digital signature verification, which uses a pre-stored public key of an intelligent lock control management platform to check the signature data and recalculates the hash value of the plaintext data to verify the validity of the signature; and if and only if all the checks pass, the main controller in the lockset drives the lock body to execute unlocking action.

Description

Intelligent lock control system and method for secondary screen cabinet of transformer substation based on dynamic authority management Technical Field The invention relates to the technical field of safe operation and maintenance of power systems, in particular to an intelligent lock control system and method for a secondary screen cabinet of a transformer substation based on dynamic authority management. Background The transformer substation is used as a core link in a power grid and carries vital power transmission and distribution tasks. Inside the transformer substation, the secondary equipment protection screen cabinets play an extremely critical role, and through a series of precise control, protection and monitoring functions, the main equipment can be ensured to normally operate in a safe and reliable environment, so that solid guarantee is provided for the safe and stable operation of the whole power grid. The secondary equipment protection screen cabinets not only can monitor the running state of the main equipment in real time, but also can take protection measures rapidly when abnormal conditions occur, prevent faults from expanding, ensure the continuous power supply capacity of the power grid, and are important defense lines for maintaining the safe and stable running of the power grid. At present, the door of the protective screen of most substations still adopts the mechanical locks of the traditional mechanical padlock or the universal key, and has the obvious defects that the authority management is disordered, the traditional locks cannot realize accurate authorization, the electronic record is lacked, the operation details cannot be accurately traced, the lock management is separated from a work flow system, the working range can be enlarged at will by workers, the management depends on manual supervision, the state cannot be perceived in real time, and a management blind area exists, which is the defect of the prior art. In view of the above, the present invention provides an intelligent lock control solution capable of implementing flexible authorization, precise recording, status feedback and deep integration with a secure workflow, so as to fundamentally improve the technical level of security management of a transformer substation, so as to solve the above-mentioned drawbacks existing in the prior art. Disclosure of Invention The invention aims to provide a system and a method for intelligent lock control of a secondary screen cabinet of a transformer substation based on dynamic authority management, aiming at the defects of the prior art, so as to solve the technical problems. In order to achieve the above purpose, the present invention provides the following technical solutions: the invention provides a transformer substation secondary screen cabinet intelligent lock control system based on dynamic authority management, which comprises an intelligent lock control management platform and at least one field terminal equipment group; The intelligent lock control management platform comprises a work ticket interface module and a dynamic authority management module; the field terminal equipment group comprises an intelligent lockset arranged on the secondary screen cabinet and a mobile authorization terminal held by a user; The work ticket interface module is used for communicating with an external electronic work ticket system to acquire work ticket data comprising the work time range, the work equipment range and the information of the work personnel; the dynamic authority management module is used for responding to an unlocking request from the mobile authorization terminal and dynamically generating an unlocking authorization credential according to the working ticket data, realizing dynamic authorization, ensuring that each unlocking operation has a definite authorization basis and improving the safety; The mobile authorization terminal is used for sending an unlocking request to the intelligent lock control management platform, receiving and forwarding unlocking authorization credentials to the target intelligent lock, wherein the unlocking request comprises a user identifier, a target lock identifier and an associated work ticket identifier; The intelligent lockset is used for carrying out local verification on the received unlocking authorization certificate, executing unlocking operation after verification is passed, simultaneously transmitting operation state information back to the intelligent lock control management platform through a communication network, ensuring the safety of the unlocking operation through the local verification, and realizing the whole-course monitoring of the operation through the state back. Further, in the dynamic authority management module, the dynamically generated unlocking authority credential specifically includes: Checking the validity of the unlocking request according to the work ticket data acquired by the work ticket interface module, a