肖力炀,毕玉冰,刘超飞,刘鹏飞,崔逸群,潘瑞丰

• 1:西安热工研究院有限公司
• 2:华能(浙江)能源开发有限公司玉环分公司

摘要(Abstract)：

针对电厂数据信息安全问题及数据资产难以集中管控等现状，设计了一种针对电厂场景下的数据全生命周期安全保护原型系统。首先，详细分析了目前电厂数据保护场景领域特殊性和存在问题；其次，针对电厂数据分类分级没有行业标准的缺点，提出了一种自动化分类分级方法，对电厂数据进行标准化的定级和分类；最后，在系统开发方面根据电厂数据保护范围和功能需求分析，完成了原型系统的功能架构设计和技术架构设计。本系统从数据资产梳理、自动化分类分级、全生命周期管理、安全评估等方面给出了具体的工作步骤，提供了电厂数据安全保护的整套解决方案，为后续有效实现电厂数据全生命周期安全提供了依据。

关键词(KeyWords)： 数据保护;分级分类;数据安全;网络安全;系统原型

Abstract:

Keywords:

基金项目(Foundation): 中国华能集团有限公司总部科技项目（HNKJ21-H29）~~

作者(Author): 肖力炀,毕玉冰,刘超飞,刘鹏飞,崔逸群,潘瑞丰

DOI: 10.19666/j.rlfd.202405163

参考文献(References)：

• [1]中国信息通信研究院.中国数字经济发展白皮书(2020)[EB/OL].(2020-12-01)[2024-02-10]. https://bai jiahao.baidu.com/s?id=1671829565921459468&wfr=spi der&for=pc.
• [2] China Academy of Information and Communications Technology. White paper on the development of China’s digital economy(2020)[EB/OL].(2020-12-01)[2024-02-10]. https://baijiahao.baidu.com/s?id=1671829565921459468&wfr=spider&for=pc.
• [3]黄万忠.数字化转型下的数据安全管理实践[J].软件和集成电路, 2022(1):40-41.HUANG Wanzhong. Data security management practice under digital transformation[J]. Software and Integrated Circuits, 2022(1):40-41.
• [4]陈如明.大数据时代的挑战价值与应对策略[J].移动通信, 2012(17):14-15.CHEN Ruming. The challenges, values, and response strategies in the era of big data[J]. Mobile Communications, 2012(17):14-15.
• [5]龙震岳,钱扬,邹洪,等.电网企业网络信息安全的威胁与攻防新技术研究[J].现代电子技术, 2015, 38(21):100-104.LONG Zhenyue, QIAN Yang, ZOU Hong, et al. Threat to network information security and study on new defense technologies in power grid enterprises[J].Modern Electronics Technique, 2015, 38(21):100-104.
• [6] YUAN X P, WANG H Y, YUAN Y, et al. Design of an intelligent decision model for power grid fault location and isolation based on topology analysis[J].International Journal of Thermofluids, 2024(21):1-10.
• [7]应欢,刘松华,韩丽芳,等.电力工业控制系统安全技术综述[J].电力信息与通信技术, 2018, 16(3):56-63.YING Huan, LIU Songhua, HAN Lifang, et al. Overview of power industry control system security technology[J].Electric Power ICT, 2018, 16(3):56-63.
• [8]吴泽君.利用数据泄漏防护保护企业数据安全[J].计算机安全, 2010(1):81-85.WU Zejun. Using data leakage protection to protect enterprise data security[J]. Computer Security, 2010(1):81-85.
• [9]赵梦.基于大数据环境的网络安全态势感知[J].信息网络安全, 2016(9):90-93.ZHAO Meng. Network security situation awareness based on big data[J]. Netinfo Security, 2016(9):90-93.
• [10] KUMAR S V, ANNAMALAI A, BAPTIST J L A.Cybersecurity challenges in energy sector(virtual power plants):can edge computing principles be applied to enhance security?[J]. Energy Informatics, 2021, 4(1):1-21.
• [11]梅傲,陈子文.总体国家安全观视域下我国数据安全监管的制度构建[J].电子政务, 2023(11):104-115.MEI Ao, CHEN Ziwen. Institutional construction of data security supervision in China from the perspective of overall national security concept[J]. E-Government,2023(11):104-115.
• [12]何天玲.电力数据通信网安全防护方案的分析和研究[J].电力信息与通信技术, 2020, 18(1):74-79.HE Tianling. Analysis and research on network security protection scheme in power data communication network[J]. Power Information and Communication Technology,2020, 18(1):74-79.
• [13]梅传强,盛浩.数据安全刑法保护的模式转换:从管理安全到利用安全[J/OL].重庆大学学报(社会科学版), 2024:1-18.[2024-11-05]. http://kns.cnki.net/kcms/detail/50.1023.C.20240125.1612.004.html.MEI Chuanqiang, SHENG Hao. Mode transformation of criminal law protection of data security:from management security to utilization security[J]. Journal of Chongqing University(Social Science Edition), 2024:1-18.[2024-11-05]. http://kns.cnki.net/kcms/detail/50.1023.C.20240125. 1612.004.html.
• [14]管磊,胡光俊,王专.基于大数据的网络安全态势感知技术研究[J].信息网络安全, 2016(9):45-50.GUAN Lei, HU Guangjun, WANG Zhuan. Research on network security situational awareness technology based on big data[J]. Netinfo Security, 2016(9):45-50.
• [15]裘宇超.基于多源异构大数据的发电厂安全管控系统分析[J].集成电路应用, 2023, 40(12):70-72.QIU Yuchao. Analysis of power plant safety control system based on multi source heterogeneous big data[J].Integrated Circuit Application, 2023, 40(12):70-72.
• [16] CHOHWAN O, HYEON D K, IK J L. Application of data driven modeling and sensitivity analysis of constitutive equations for improving nuclear power plant safety analysis code[J]. Nuclear Engineering and Technology, 2023, 55(1):131-143.
• [17]朱磊.探讨智慧电厂下的数据网络安全体系[J].电子元器件与信息技术, 2021, 5(9):252-254.ZHU Lei. Exploring the data network security system under smart power plants[J]. Electronic Components and Information Technology, 2021, 5(9):252-254.
• [18]陈驰,马红霞,赵延帅.基于分类分级的数据资产安全管控平台设计与实现[J].计算机应用, 2016, 36(增刊1):265-268.CHEN Chi, MA Hongxia, ZHAO Yanshuai. Data security control platform based on hierarchical classification:design and implementation[J]. Computer Applications, 2016, 36(Suppl.1):265-268.
• [19]周亮,张晓娟,邱意民,等.电力数据分类分级方法研究[J].电力信息与通信技术, 2023, 21(4):25-30.ZHOU Liang, ZHANG Xiaojuan, QIU Yimin, et al.Research on power data classification and grading method[J]. Electric Power Information and Communication Technology, 2023, 21(4):25-30.
• [20]陈亚茹,洪鑫,张红斌,等.铁路运输调度领域数据分级及保护策略研究[J].铁道运输与经济, 2024, 46(2):134-141.CHEN Yaru, HONG Xin, ZHANG Hongbin, et al. Data classification and protection strategy in railway transportation dispatching[J]. Railway Transportation and Economics, 2024, 46(2):134-141.
• [21]张晓艺,戴逸聪.水利数据分类分级及安全保护技术[J].人民长江, 2023, 54(增刊2):232-237.ZHANG Xiaoyi, DAI Yicong. Water conservancy data classification and security protection technology[J].People’s Yangtze River, 2023, 54(Suppl.2):232-237.
• [22]陈韬,马平男.基于分类分级的银行数据资产安全管理体系设计[J].信息与电脑(理论版), 2023, 35(20):130-132.CHEN Tao, MA Pingnan. Design of bank data asset security management system based on classification and grading[J]. Information and Computer(Theoretical Edition), 2023, 35(20):130-132.
• [23] GASPARETTO A, MARCUZZO M, ZANGARI A, et al.A survey on text classification algorithms:from text to predictions[J]. Information, 2022, 13(2):83.
• [24]王继晔,张少博,叶润泽,等.基于深度学习的交通运输行业数据自动分级方法研究[J].应用科技, 2024,51(2):145-150.WANG Jiye, ZHANG Shaobo, YE Runze, et al. Research on automatic classification method of transportation industry data based on deep learning[J]. Applied Science and Technology, 2024, 51(2):145-150.
• [25] MIKOLOV T, SUTSKEVER I, CHEN K, et al.Distributed representations of words and phrases and their compositionality[J]. Advances in Neural Information Processing Systems, 2013, 3111-3119.
• [26]段丁阳.数据资产安全管控技术平台的设计与实现[D].北京:北京交通大学, 2017:1.DUAN Dingyang. Design and implementation of data assets security management and control platform[D].Beijing Jiaotong University, 2017:1.
• [27]林奕夫,陈雪,许媛媛,等.基于零信任安全模型的电力敏感数据访问控制方法[J].信息安全研究, 2024,10(1):88-93.LIN Yifu, CHEN Xue, XU Yuanyuan, et al. Power sensitive data access control method based on zero trust security model[J]. Information Security Research, 2024,10(1):88-93.