Research On Attack Technology Apply To Identifying Of Communication Network Vulnerability Of Intelligent Substation

With the development of smart grid in China,the openness and complexity of the intelligent substation Communication network is increasing,and the challenge of network security and the threat of intrusion are deepened.In order to improve the security level of intelligent substation Communication Network,this paper studies a kind of attack technology used in intelligent substation Communication Network Vulnerability identification,and develops the attack data source GEESE2.0.The main work of the thesis is as follows:(1)Firstly,the development of intelligent substation is analyzed,and the security situation of current substation communication network is illustrated with concrete examples.Secondly,it introduces the background and content of the IEC 61850 standard,including the composition and principle of MMS message,SV message and Goose message,and analyzes the data structure and application requirement of the universal object-oriented substation message in detail.Then,according to the network security problem of intelligent substation,the paper analyzes the root cause of the security problem and enumerates the challenges/threats that the intelligent substation may face,and gives the corresponding countermeasures.Finally,the specific network attack forms in the intelligent substation are classified in detail.Introducing the background and content of IEC 61850 standard,describes the composing and principle of MMS message,SV message,GOOSE message,and analyzes the data structure and application requirement of the general-purpose object-oriented substation message.(2)In order to meet the needs of the actual substation communication network security,the GEESE2.0 is developed for the GOOSE function.GEESE2.0 can be used to identify vulnerabilities in intelligent substation communication networks by inserting harmful data into intelligent substation communication networks.The realization of GEESE2.0 function mainly includes attribute module,DataSet module,Goose packet information module and sending method module.(3)In allusion to deceptive attack,the simulation test of three kinds of deceptive attacks,such as high state value attack,high rate flood attack and semantic attack,is carried out by using simulation test model,and the validity of GEESE2.0 is verified.(4)Through the construction of an experimental platform similar to the actual substation system,and a deception attack on the intelligent electronic devices,the experimental results show that there is a flaw in the actual substation communication network that the data in the GOOSE packet is tampered with.Finally,the paper summarizes the work done in this paper,and explains the future problems worthy of further study.