CN-122027254-A - Flexible gray scale self-adaptive safety protection system for novel power system

Abstract

The invention is applicable to the technical field of network security of power systems, and provides a flexible gray scale self-adaptive safety protection system for a novel power system, which comprises a power equipment subsystem, a power network subsystem and a power control subsystem, wherein the power control subsystem is used for dynamically calculating the safety gray scale reflecting the comprehensive threat degree based on power grid real-time operation data and generating a corresponding self-adaptive safety protection strategy and control instruction through the three-layer cooperative architecture of the power equipment subsystem, the power network subsystem and the power control subsystem; and finally, the power equipment subsystem dynamically adjusts the safety verification rule and the running state of the power equipment subsystem according to the issued strategy. According to the invention, through dynamic quantification of the safety gray level, the safety strategy is deeply embedded and flexibly adjusted to the control links of core services such as power generation, power distribution, energy storage, power utilization and the like, so that the overall capability of the novel power system for coping with unknown threats and maintaining stable operation is effectively improved.

Inventors

• MENG LIANG
• XIE PENGYU
• ZENG MINGFEI
• XIE MING
• LIAN YUTING
• XIE JING
• LEI XIANGYU
• CHEN ZHI
• LIN KONGSHENG
• Wu Mingzhan

Assignees

• 广西电网有限责任公司

Dates

Publication Date

20260512

Application Date

20260129

Claims (10)

1. 1. The flexible gray scale self-adaptive safety protection system for the novel power system is characterized by comprising a plurality of power equipment subsystems, a power network subsystem and a power control subsystem; the power equipment subsystem is arranged on the power generation side, the energy storage side, the power distribution side and the power utilization side of the novel power system and is used for executing power supply, power distribution, energy storage and power utilization functions, collecting local electric operation data and equipment state data, and receiving and executing control instructions from the power control subsystem; The power network subsystem is connected with the power equipment subsystem and the power control subsystem and is used for transmitting power energy and control information, and the power network subsystem is also used for carrying out safety verification and coordination control on the transmitted control information based on the real-time topology and the running state of the novel power system; The power control subsystem is used for receiving data acquired by the power equipment subsystem through the power network subsystem, calculating the safety gray level of the novel power system based on the acquired data, generating a corresponding self-adaptive safety protection strategy and a control instruction according to the safety gray level, and issuing the self-adaptive safety protection strategy and the control instruction to the power equipment subsystem through the power network subsystem; The safety gray level is dynamically calculated based on a power supply reliability index, a device health state index, a network topology stability index and an attack influence evaluation index of the novel power system and is used for quantifying the network security threat level currently faced by the novel power system; And the power equipment subsystem adjusts a safety verification rule required by executing a control instruction according to the received self-adaptive safety protection strategy, and adjusts an operation state according to the control instruction so as to realize flexible safety protection adaptive to the safety gray level.
2. 2. The flexible gray scale adaptive safety protection system for a novel power system of claim 1, wherein the power equipment subsystem comprises a distributed power control device, an energy storage converter device, an intelligent power distribution device and a flexible load device; The distributed power supply control device is used for controlling the grid connection of the distributed power generation units, collecting power generation power, voltage and frequency data and executing power adjustment instructions of the power generation side; The energy storage converter device is used for controlling the charge and discharge process of the energy storage battery, collecting the charge state, charge and discharge power and temperature data of the converter, and executing a charge and discharge mode switching instruction; the intelligent power distribution device is used for executing switching operation, fault isolation and power flow adjustment of a power distribution network line, collecting line current, voltage and switching state data and executing a topology switching instruction; The flexible load device is used for adjusting the power consumption curves of the interruptible load and the transferable load, collecting load power, power consumption time period and user side voltage data, and executing load switching and power limit instructions.
3. 3. The flexible gray scale adaptive safety protection system for a novel power system of claim 1, wherein the power network subsystem comprises a power energy transmission channel and a power control information transmission channel; the power energy transmission channel is composed of a transformer substation, a converter station, a distribution line and power electronic interface equipment and is used for transmitting electric energy among the plurality of power equipment subsystems; The power control information transmission channel comprises edge forwarding nodes deployed at the station side, regional aggregation nodes deployed at the network hub side and core management nodes connected to the power control subsystem and used for transmitting control information among the power equipment subsystems and between the power equipment subsystems and the power control subsystem.
4. 4. A flexible gray scale adaptive safety protection system for a novel power system according to claim 3, wherein said power control information transmission channel is used for safety verification of said control information transmitted, comprising: The core management node receives an original control instruction and a current safety gray level from the power control subsystem, and attaches a first-level safety package to the original control instruction based on a safety strategy corresponding to the safety gray level to generate a first safety signaling, wherein the first-level safety package comprises a core management node digital signature; the core management node issues the first security signaling to a regional aggregation node on a target path; The regional aggregation node verifies the message integrity of the first security signaling and the authenticity of the digital signature, and after the verification is passed, a second-level security package is added to the first security signaling to generate a second security signaling, and the second security signaling is forwarded to a downstream edge forwarding node; after verifying the validity of the second security signaling, the edge forwarding node distributes the second security signaling to a target power equipment subsystem, so that the power equipment subsystem performs verification on a control instruction in the second security signaling according to a preset verification rule and then performs the verification.
5. 5. A flexible gray scale adaptive safety protection system for a new power system according to claim 3, characterized in that said power network subsystem is adapted for coordinated control based on the real-time topology and operational status of said new power system, in particular by said core management node, comprising: The core management node acquires the network topology connection relation of the novel power system and the tide running state of each line in real time; When a control instruction aiming at a target power equipment subsystem is received, the core management node carries out safety check based on the network topology connection relation and the power flow running state, and judges whether the control instruction is executed or not to cause line overload, voltage out-of-limit or influence power supply reliability; If the check passes, triggering a security packaging and forwarding flow of the control instruction by the core management node; If the verification is not passed, the core management node starts a coordination control strategy matched with the safety gray level according to the safety gray level.
6. 6. The flexible gray scale adaptive safety protection system for a novel power system of claim 1, wherein the safety gray scale is dynamically calculated based on the following quantifiable evaluation index: the power supply reliability index is obtained by calculation based on the voltage qualification rate, the frequency qualification rate and the power supply availability rate of the monitoring points in the novel power system; The equipment health state index is obtained by calculation based on the online rate, the average fault interval time and the predictive maintenance health degree of key equipment in the power equipment subsystem; the network topology stability index is obtained based on the topology connectivity, the tide entropy and the N-1 passing rate of the novel power system through calculation; the attack influence evaluation index is obtained by calculation based on the complexity, success probability and potential influence range of the detected network attack event on the system function.
7. 7. The flexible gray scale adaptive safety protection system for a new power system of claim 6, wherein calculating the safety gray scale comprises: respectively carrying out standardized processing on the power supply reliability index, the equipment health state index, the network topology stability index and the attack influence evaluation index to obtain standard scores of the indexes; dynamically distributing weights for standard scores of all indexes based on the current operation condition and the safety strategy of the novel power system; according to a weighted fusion algorithm, integrating the weighted index standard scores into a comprehensive safety score; Mapping the comprehensive security score to one of a plurality of preset ordered security gray levels, wherein the security gray levels are used for defining security protection intensity and response strategies of different levels.
8. 8. The flexible gray scale adaptive safety protection system for a novel power system of claim 7, wherein said generating a corresponding adaptive safety protection strategy from said safety gray scale comprises: Invoking a basic security policy template corresponding to the security gray level from a preset policy library, wherein the preset policy library stores basic security policy templates associated with each security gray level, and the templates define signature verification intensity of a control instruction under the current gray level, communication encryption level among devices, abnormal behavior detection threshold value and fault isolation response flow; and carrying out on-line adjustment on parameters in the called basic strategy template by combining the real-time topology and load distribution of the novel power system and the specific type of the power equipment subsystem to generate a final issued self-adaptive safety protection strategy and control instruction.
9. 9. The flexible gray scale adaptive safety protection system for the novel power system according to claim 2, wherein the power equipment subsystem further comprises a local safety coordinator, wherein the local safety coordinator is respectively in communication connection with the distributed power supply control device, the energy storage converter device, the intelligent power distribution device and the flexible load device; The local safety coordinator is used for receiving and storing the self-adaptive safety protection strategy from the power control subsystem, and respectively configuring corresponding local safety verification rules for the distributed power supply control device, the energy storage converter device, the intelligent power distribution device and the flexible load device according to the current safety gray level in the self-adaptive safety protection strategy.
10. 10. The flexible gray scale adaptive safety protection system for a new power system of claim 9, wherein said local safety verification rules include at least one of: A digital signature verification algorithm of the control instruction and a valid time window of the signature; a whitelist of instruction types allowed for execution by each device, parameter range thresholds allowed by each instruction; consistency check logic when interactive data transmission is carried out between adjacent devices; A local autonomous control policy that is enabled when communication is interrupted.

Description

Flexible gray scale self-adaptive safety protection system for novel power system Technical Field The invention relates to the technical field of network security of power systems, in particular to a flexible gray scale self-adaptive security protection system for a novel power system. Background At present, a layered security architecture is generally adopted in a network protection system of an electric power system, fixed access control logic is applied to an electric power equipment layer, communication traffic is filtered and monitored according to a predefined feature library or black-white list rule in the electric power network layer, and centralized log analysis and strategy issuing are carried out through a management platform in the electric power control layer. The core of this protection mode is to try to establish a fixed defense barrier between the trusted internal network and the untrusted external environment by means of preset static security rules and boundary protection means. However, when the prior art is applied to a novel power system featuring high-proportion new energy and high power electronics, a static rule base and a protection strategy cannot adapt to dynamic service environments of real-time parallel/off-grid, topology frequent heavy and transient and changeable running states of source, network, load and storage equipment in the novel power system. And secondly, the boundary type safety assembly is separated from core business logics such as power generation, transmission and distribution of a power system, and the intensity adjustment of safety protection cannot be coordinated with key operation states such as voltage stability, frequency deviation, load level and the like of a power grid in real time. This results in difficulty in dynamically adaptively adjusting the security strength to cope with real-time changing operating conditions and network threats while guaranteeing the power supply reliability of the novel power system when subjected to complex network attacks. Disclosure of Invention The invention provides a flexible gray scale self-adaptive safety protection system for a novel power system, which is used for solving the problems that when a complex network attack is suffered, the power supply reliability of the novel power system is difficult to be ensured, and meanwhile, the safety protection intensity is dynamically and adaptively adjusted to cope with the running state and the network threat which change in real time. The invention provides a flexible gray scale self-adaptive safety protection system for a novel power system, which comprises a plurality of power equipment subsystems, a power network subsystem and a power control subsystem, wherein the power equipment subsystems are connected with the power network subsystem; the power equipment subsystem is arranged on the power generation side, the energy storage side, the power distribution side and the power utilization side of the novel power system and is used for executing power supply, power distribution, energy storage and power utilization functions, collecting local electric operation data and equipment state data, and receiving and executing control instructions from the power control subsystem; The power network subsystem is connected with the power equipment subsystem and the power control subsystem and is used for transmitting power energy and control information, and the power network subsystem is also used for carrying out safety verification and coordination control on the transmitted control information based on the real-time topology and the running state of the novel power system; The power control subsystem is used for receiving data acquired by the power equipment subsystem through the power network subsystem, calculating the safety gray level of the novel power system based on the acquired data, generating a corresponding self-adaptive safety protection strategy and a control instruction according to the safety gray level, and issuing the self-adaptive safety protection strategy and the control instruction to the power equipment subsystem through the power network subsystem; The safety gray level is dynamically calculated based on a power supply reliability index, a device health state index, a network topology stability index and an attack influence evaluation index of the novel power system and is used for quantifying the network security threat level currently faced by the novel power system; And the power equipment subsystem adjusts a safety verification rule required by executing a control instruction according to the received self-adaptive safety protection strategy, and adjusts an operation state according to the control instruction so as to realize flexible safety protection adaptive to the safety gray level. Further, the power equipment subsystem comprises a distributed power supply control device, an energy storage converter device, an intelligent power distribution device an