CN106161046B - Communication security defense system facing electric power optical transmission network and control method thereof - Google Patents

Communication security defense system facing electric power optical transmission network and control method thereof Download PDF

Info

Publication number
CN106161046B
CN106161046B CN201510116096.2A CN201510116096A CN106161046B CN 106161046 B CN106161046 B CN 106161046B CN 201510116096 A CN201510116096 A CN 201510116096A CN 106161046 B CN106161046 B CN 106161046B
Authority
CN
China
Prior art keywords
communication
information
network
fault
service
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510116096.2A
Other languages
Chinese (zh)
Other versions
CN106161046A (en
Inventor
郭云飞
郭经红
梁云
倪明
刘世栋
王瑶
李炳林
卜宪德
田文锋
余文杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NANJING NANRUI GROUP CO
State Grid Corp of China SGCC
State Grid Jiangsu Electric Power Co Ltd
Smart Grid Research Institute of SGCC
Original Assignee
NANJING NANRUI GROUP CO
State Grid Corp of China SGCC
State Grid Jiangsu Electric Power Co Ltd
Smart Grid Research Institute of SGCC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by NANJING NANRUI GROUP CO, State Grid Corp of China SGCC, State Grid Jiangsu Electric Power Co Ltd, Smart Grid Research Institute of SGCC filed Critical NANJING NANRUI GROUP CO
Priority to CN201510116096.2A priority Critical patent/CN106161046B/en
Publication of CN106161046A publication Critical patent/CN106161046A/en
Application granted granted Critical
Publication of CN106161046B publication Critical patent/CN106161046B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/14Network analysis or design
    • H04L41/145Network analysis or design involving simulating, designing, planning or modelling of a network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B10/00Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
    • H04B10/25Arrangements specific to fibre transmission
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/06Management of faults, events, alarms or notifications

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The invention discloses a communication security defense system facing to an electric power optical transmission network and a control method thereof, the communication security defense system comprises a wide area information acquisition module, a communication network reliability evaluation module, a communication fault analysis expert knowledge base, a communication risk monitoring and early warning module and a communication security defense multi-channel defense line, the wide area information acquisition module is adopted to acquire topology information, link information and warning information of the electric power optical transmission network in real time, the communication network reliability and fault positioning analysis and the intelligent coordination processing strategy are generated through the communication fault risk monitoring and early warning module and the decision control module, the invention can solve the problems of coordination processing of multiple faults and rapid recovery of service paths of the complex optical transmission network under the interconnection background of the cross-regional large power grid.

Description

Communication security defense system facing electric power optical transmission network and control method thereof
Technical Field
The invention relates to a defense system and a control method thereof in the technical field of power system communication, in particular to a communication security defense system and a control method thereof for a power optical transmission network.
Background
The transmission of the power control service is mainly characterized by low bandwidth requirement and high real-time requirement, the current power control service is mainly carried on an SDH optical fiber network, the protection modes are mainly double optical fiber protection and SDH looped network protection, and the power control service mainly transmits information through a 2M channel because the bandwidth requirement of the power control service is not high. The electric power control services mainly comprise control services such as protection, stability and telecontrol, and the transmission modes and real-time requirements of different electric power control services are different. For protection service, the transmission time of a digital channel for transmitting pilot protection information of a transmission line is not more than 12 ms; the transmission time of the point-to-point digital channel is not more than 5 ms; for stable service, the communication between the main station and any sub-station is in a point-to-point mode, and the channel delay between the main station and the sub-station or between the sub-station and the execution station which are communicated with each other is less than or equal to 10 ms; for wide area vector measurement service, the time difference between the dynamic data time stamp transmitted by the PMU device in real time and the data output time is regulated to be less than 30 ms. If the real-time control of the power system is to be realized, the measurement data of each plant station must be transmitted to the control center in a very short time, especially when the transient stability of the system is automatically controlled, the longest time delay for the system to complete the measurement and transmission of PMU data cannot exceed 25ms, and the substation system is generally accessed to the transmission network through a 2M channel. However, with the continuous development of the WAMS system and the implementation of the closed-loop control function, the bandwidth requirement, the transmission speed and the reliability requirement of the transmission network may be higher.
At present, power grid real-time control services such as protection, stability and the like are directly carried by a power optical transmission network through a 2M interface, along with the construction of extra-high voltage and trans-regional interconnected power grids, the transmission range of the power grid control services such as protection, stability and the like is wider, the transmission distance is longer, and the power grid control services may span different network levels and different network management domains of a power optical communication network. At present, service paths of an electric power optical communication network are mostly constructed in different domains and are managed autonomously, the influence of a power grid control system on a communication system is not considered, effective monitoring and real-time communication fault early warning are often lacked for the real-time operation condition of a cross-layer cross-domain communication service path, especially the cross-layer cross-domain communication service path under the condition of multiple faults may have incomplete fault information collection, and network bandwidth resources cannot be dispatched in a unified mode, so that important services cannot be recovered and protected effectively. Therefore, a technical solution for communication security defense of the power optical transmission network in a cross-regional large power grid environment needs to be provided.
Disclosure of Invention
In order to solve the defects in the prior art, the invention aims to provide a communication security defense system facing an electric power optical transmission network and a control method thereof. The following presents a simplified summary in order to provide a basic understanding of some aspects of the disclosed embodiments. This summary is not an extensive overview and is intended to neither identify key/critical elements nor delineate the scope of such embodiments. Its sole purpose is to present some concepts in a simplified form as a prelude to the more detailed description that is presented later.
The purpose of the invention is realized by adopting the following technical scheme:
the invention provides a communication security defense system facing an electric power optical transmission network, which is respectively connected with the electric power optical transmission network and a power grid stability control system; the improvement is that the communication security defense system comprises:
(1) wide area information acquisition module: the system comprises a communication network, a power grid control system and a data acquisition module, wherein the power grid control system is used for acquiring network topology resource information, real-time operation state information and real-time data information in the power grid control system influencing communication operation of the communication network;
(2) communication risk monitoring and early warning module: the system is used for communication risk monitoring and early warning issuing;
(3) communication failure expert analysis library: the system is used for determining the root information, the fault influence range and the service influence degree of the alarm fault;
(4) communication network reliability evaluation module: the system is used for evaluating the reliability of a communication network with three layers of a physical equipment layer, a transmission network layer and a service bearing layer;
(5) a communication control decision module: the method is used for solving communication faults and realizing the timely recovery of the service path;
(6) communication security defense multi-defense line: including preventive control measures, emergency control measures, corrective control restoration measures.
Furthermore, the wide area information acquisition module acquires network topology information and real-time operation state information of a global network and real-time data information in a power grid stability control system influencing the operation of the communication system from each level of power optical transmission network and different network domains; the real-time information comprises global link resource information, global service routing information and global alarm information; the real-time data information comprises lightning stroke, influence information of short circuit on the optical cable, and time delay error code threshold index information of the power grid control strategy on the communication link.
Further, the wide area information acquisition module acquires global multi-layer multi-domain network topology resource information, link resource information, service routing information and real-time operation state alarm information of a network from each level of communication network management system through a standard CORBA (Common Object Request Broker Architecture) interface, and acquires external environment information and power grid fault information influencing communication management or equipment operation from a power grid stability control system by adopting a standard E language format, so as to provide basic data and technical means for communication network fault early warning analysis and decision control.
Further, the communication risk monitoring and early warning module carries out communication risk monitoring and early warning release according to the network topology resources and real-time operation state information of the global network, real-time data information in a power grid stability control system influencing the operation of the communication system and a network reliability evaluation module in the communication network reliability evaluation module, wherein the network topology resources and the real-time operation state information are acquired by the wide area information acquisition module;
the network reliability evaluation module comprises physical equipment layer evaluation, transmission network layer evaluation and service bearing layer evaluation; the physical equipment layer evaluation comprises the evaluation of the software and hardware composition of the equipment, the evaluation of key performance indexes (such as bit error rate, transmission delay and switching time) and the evaluation of the running state of the equipment; the transmission network layer evaluation comprises optical cable reliability evaluation, link reachability index evaluation and network bandwidth load intensity evaluation; the service bearing layer evaluation comprises service bearing importance evaluation, service channel organization factor evaluation and routing association factor evaluation.
Furthermore, the communication fault expert analysis library intelligently analyzes and positions the real-time fault alarm information according to the global real-time alarm information of the wide area information acquisition module and an alarm matching strategy, and determines the root information of the alarm fault, the influence range of the fault and the influence degree on the service.
Furthermore, the communication control decision module receives the global real-time warning information and the fault early warning information issued by the communication risk monitoring and early warning module, performs communication fault root-cause positioning through the communication fault expert analysis library, and invokes a communication security defense multi-defense line to perform coordination processing on the communication early warning fault and the real-time fault according to the performance index requirements of the power grid service on the communication channel, the multi-level of the electric power optical transmission network and a communication coordination mechanism among different network domains, so as to solve the communication fault in time and realize the timely recovery of the service path.
Further, the following modes are adopted to carry out coordination processing on the communication early warning fault and the real-time fault:
a) for the non-occurrence faults, adopting preventive control measures in a communication multi-defense line to carry out network optimization and service path optimization to avoid risks, wherein the preventive control measures comprise a path establishing strategy for forming a service path, an optimization measure for the service path with the risks and a measure for reducing the time delay of the service path;
b) for the fault with the service interruption, adopting an emergency control measure in a communication multi-channel defense line and carrying out ring network switching and standby channel switching according to a protection mode preset by the service to recover the service in time;
c) for services without looped network protection and standby channels, the communication security defense system collects network topology information and real-time running state information of a global optical transmission network through a wide area information collection module, adopts emergency control measures in a communication multi-channel defense line, and utilizes an automatic rerouting algorithm to uniformly schedule global link resource information so as to realize rapid recovery of service paths;
d) for the service which can not be recovered by adopting the method, the correction recovery control measures in the communication multi-defense line are adopted, the service is recovered by utilizing the modes of optical cable channel roundabout, public network renting and wireless communication emergency communication, and after the network fault is manually eliminated, the service is recovered to the original bearing channel.
The invention also provides a control method of the communication security defense system, and the improvement is that the control method comprises the following steps:
1) the communication control decision module receives global real-time warning information and fault early warning information issued by the communication risk monitoring and early warning module, and calls a communication fault analysis expert knowledge base to locate faults through a fault matching algorithm;
2) positioning a fault source and analyzing a fault influence range according to a communication fault analysis expert knowledge base, managing a global optical transmission network range on a management platform of the communication security defense system, scheduling global link resource information according to a communication coordination mechanism among a plurality of layers of an electric power optical transmission network and different network domains, and realizing optimization of a service path and timely recovery of a fault;
3) the communication security defense system acquires external environment information and power grid fault information of the power grid stability control system influencing communication management or equipment operation through real-time information interaction with the power grid stability control system to perform decision optimization and resource scheduling, so that the influence of the power grid operation on communication is avoided;
4) and the communication decision control module calls a communication multi-defense line to avoid the risk of communication fault occurrence or timely recover the communication service path with the fault according to the fault analysis communication equipment and the influence range of the link and the non-communication stage with the influence.
Compared with the closest prior art, the technical scheme provided by the invention has the following excellent effects:
1. the system provided by the invention solves the problem of communication safety coordination defense of the trans-regional power optical transmission network under the complex large power grid environment through the multi-level power optical transmission network and the communication coordination mechanism among different network domains, realizes timely evasion of communication faults and quick recovery of power communication services under the condition of multiple faults, and improves the guarantee capability of the power optical transmission network on safe and stable operation of power grid production.
2. According to the communication security defense system facing the electric power optical transmission network and the control method thereof, through wide area information acquisition of the electric power optical transmission network under a cross-regional interconnection large power grid environment, communication fault early warning and multi-fault coordination defense are realized in time and space through global resource scheduling and communication multi-protection lines; the communication security defense system and the power grid security and stability system exchange information, the influence on communication under the condition of power grid fault is comprehensively considered, and richer information and control means are provided for communication security defense decision control.
For the purposes of the foregoing and related ends, the one or more embodiments include the features hereinafter fully described and particularly pointed out in the claims. The following description and the annexed drawings set forth in detail certain illustrative aspects and are indicative of but a few of the various ways in which the principles of the various embodiments may be employed. Other benefits and novel features will become apparent from the following detailed description when considered in conjunction with the drawings and the disclosed embodiments are intended to include all such aspects and their equivalents.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention and together with the description serve to explain the principles of the invention and not to limit the invention. In the drawings:
FIG. 1 is a block diagram of a communication security defense system provided by the present invention;
fig. 2 is a schematic diagram of an optical transmission network structure module information acquisition module according to an embodiment of the present invention;
fig. 3 is a reliability evaluation module of the power optical transmission network provided by the present invention;
FIG. 4 is a block diagram of a communication security defense analysis and decision control module provided in the present invention;
fig. 5 is a flowchart of the multi-layer multi-domain network path restoration calculation provided by the present invention.
Detailed Description
The following describes embodiments of the present invention in further detail with reference to the accompanying drawings.
The following description and the drawings sufficiently illustrate specific embodiments of the invention to enable those skilled in the art to practice them. Other embodiments may incorporate structural, logical, electrical, process, and other changes. The examples merely typify possible variations. Individual components and functions are optional unless explicitly required, and the sequence of operations may vary. Portions and features of some embodiments may be included in or substituted for those of others. The scope of embodiments of the invention encompasses the full ambit of the claims, as well as all available equivalents of the claims. Embodiments of the invention may be referred to herein, individually or collectively, by the term "invention" merely for convenience and without intending to voluntarily limit the scope of this application to any single invention or inventive concept if more than one is in fact disclosed.
As shown in fig. 1, the invention provides a communication security multi-defense line coordination defense system facing an electric power optical transmission network, which comprises a wide area information acquisition module, a communication network reliability evaluation module, a communication fault analysis expert knowledge base, a communication risk monitoring and early warning module, a communication decision control module and a communication security defense multi-defense line. Wherein:
(1) the wide area information acquisition module acquires network topology resources and real-time operation state information of a global network from each level of power optical transmission networks and different network domains and data information in a power grid stability control system influencing the operation of a communication system, wherein the real-time information of the power optical transmission network acquired by the wide area information acquisition module comprises global network topology information, global link resource information, global service routing information and global alarm information.
The wide area information acquisition module acquires global-range multilayer multi-domain network topology information, link resource information, service routing information and real-time running state alarm information of the network from all levels of communication professional network management systems through a standard CORBA interface, and acquires external environment information and power grid fault information which may influence communication management or equipment running from a power grid stability control system by adopting a standard E language format, so that basic data and technical means are provided for communication network fault early warning analysis and decision control.
(2) The communication risk monitoring and early warning module carries out communication risk monitoring and early warning release according to real-time data information of the wide area information acquisition module and a network reliability evaluation method in the communication network reliability evaluation module, wherein reliability evaluation is mainly carried out from three layers of a physical equipment layer, a transmission network layer and a service bearing layer, the physical equipment layer is mainly evaluated from software and hardware composition, key performance indexes and equipment running states of equipment, the transmission network layer is mainly evaluated from the aspects of optical cable reliability, link accessibility indexes, network bandwidth load intensity and the like, and the service bearing layer is mainly evaluated from the aspects of service bearing importance, service channel organization factors, route correlation factors and the like.
(3) And the communication fault expert analysis library intelligently analyzes and positions the alarm information according to the real-time alarm information of the wide area information acquisition module and an alarm matching strategy, and determines the root information of the alarm fault, the influence range of the fault and the influence degree on the service.
(4) Communication network reliability evaluation module: the system is used for evaluating the reliability of the communication network from three levels of a physical equipment layer, a transmission network layer and a service bearing layer, and comprises physical equipment layer evaluation, transmission network layer evaluation and service bearing layer evaluation, wherein the physical equipment layer evaluation mainly evaluates the software and hardware composition, key performance indexes and equipment running state of equipment, the transmission network layer evaluation mainly evaluates the optical cable reliability, link accessibility indexes, network bandwidth load strength and the like, and a service bearing layer evaluation module mainly evaluates the service bearing importance, service channel organization factors, route association factors and the like;
(5) the communication control decision module receives fault early warning release information and real-time fault warning information, carries out fault root positioning through an expert knowledge base, calls a communication security defense multi-defense line to carry out coordination processing according to the performance index requirement of the power grid service on a communication channel and a communication coordination mechanism among multiple layers of the power optical transmission network and different network domains, solves communication faults in time and realizes quick recovery of a service path.
(6) Communication security defense multi-defense line: including preventive control measures, emergency control measures, corrective control restoration measures. The invention also provides a control method of the communication security defense system, which comprises the following steps:
1) the communication decision control module receives and receives fault early warning and issuing fault early warning information, real-time fault warning information and calls a communication fault analysis expert knowledge base to carry out fault positioning through a fault matching algorithm;
2) the method comprises the steps that fault root source positioning and fault influence range analysis are carried out according to an office expert knowledge base, and due to the fact that multi-layer and multi-domain network resource information is obtained in an overall defense system, resource scheduling can be carried out in the range of a global optical transmission network managed by the communication security defense platform according to the communication coordination mechanism among multiple layers of an electric power optical transmission network and different network domains, and optimization of a service path and rapid recovery of faults are achieved;
3) the communication security defense system acquires external environment information and power grid fault information which may influence communication management or equipment operation of the power grid stability control system through real-time information interaction with the power grid control system to perform decision optimization and resource scheduling, so that the influence of the power grid operation on communication is avoided;
4) the communication decision control module can coordinate and call a communication multi-defense line to avoid the risk of communication failure or timely recover the failed communication service path according to the influence range and the influence generation impassable stage of the failure on the communication equipment and the link.
Examples
(1) As shown in fig. 2, assuming that a certain provincial electric power optical transmission network is composed of provincial and urban two levels, wherein the urban optical transmission network can be divided into a plurality of domains, the communication security defense multi-defense line coordination defense system can acquire network topology information, link resource information, service routing information and alarm information of the global optical transmission network through the wide area information acquisition module.
(2) As shown in fig. 3, the communication risk monitoring and early warning module performs communication risk monitoring and early warning issue according to the real-time data information of the wide area information acquisition module and according to a network reliability evaluation method in the communication network reliability evaluation module, where reliability evaluation mainly performs evaluation from three layers, namely a physical device layer, a transmission network layer and a service bearer layer, the physical device layer mainly performs evaluation from software and hardware composition of devices, key performance indexes and device operating states, the transmission network layer mainly performs evaluation from aspects such as optical cable reliability, link accessibility indexes and network bandwidth load strength, and the service bearer layer mainly performs evaluation from aspects such as service bearer importance, service channel organization factors and routing association factors, where risk levels are classified according to the size of service path fault probability as shown in table 1 below:
TABLE 1 Risk level Classification Table based on service Path failure probability
Probability range of service 0.0~0.5 0.5~0.8 0.8~1.0
Risk class definition Level 1 Stage 2 Grade 3
For communication service paths with risk levels higher than 3, risk early warning information is issued, and a decision control module is informed to perform decision control;
(3) as shown in fig. 4, the communication decision control module mainly performs real-time analysis on the received fault release information in the communication risk monitoring and early warning module and on the warning information in the wide area information acquisition module, performs intelligent analysis and warning positioning on the warning information according to a warning matching strategy, determines the root information of the warning fault, the influence range of the fault and the influence degree on the service, and processes the communication early warning fault and the real-time fault in the following ways:
a) for faults which do not occur, the network optimization and the business path optimization are mainly carried out by adopting preventive control measures in a communication multi-defense line to avoid risks, wherein the preventive control measures mainly comprise a path establishing strategy for forming a business path, the optimization of the business path with the risks and the generation of measures for reducing the time delay of the business path;
b) for the fault with service interruption, emergency control measures in a communication multi-channel defense line are mainly adopted for processing, and the services are timely recovered by the modes of looped network switching, standby channel switching and the like according to a preset protection mode of the services;
c) for services without ring network protection and standby channels, emergency control measures in a communication multi-defense line are mainly adopted for processing, and as a defense system of a communication security defense multi-defense line coordination module can acquire network topology information and link resource information of a global optical transmission network through a wide area information acquisition module, an automatic rerouting algorithm can be adopted, global link resources are uniformly scheduled, and the rapid recovery of service paths is realized, and the specific realization flow is shown in fig. 5;
d) for the service which can not be recovered by the method, correction recovery control measures in a communication multi-defense line are mainly adopted for processing, the service can be recovered as soon as possible by adopting emergency communication modes such as optical cable channel roundabout, public network renting, wireless communication and the like, and after the network fault is manually eliminated, the service is recovered to the original bearing channel.
Unless specifically stated otherwise, terms such as processing, computing, calculating, determining, displaying, or the like, may refer to an action and/or process of one or more processing or computing systems or similar devices that manipulates and transforms data represented as physical (e.g., electronic) quantities within the processing system's registers and memories into other data similarly represented as physical quantities within the processing system's memories, registers or other such information storage, transmission or display devices. Information and signals may be represented using any of a variety of different technologies and techniques. For example, data, instructions, commands, information, signals, bits, symbols, and chips that may be referenced throughout the above description may be represented by voltages, currents, electromagnetic waves, magnetic fields or particles, optical fields or particles, or any combination thereof.
It should be understood that the specific order or hierarchy of steps in the processes disclosed is an example of exemplary approaches. Based upon design preferences, it is understood that the specific order or hierarchy of steps in the processes may be rearranged without departing from the scope of the present disclosure. The accompanying method claims present elements of the various steps in a sample order, and are not intended to be limited to the specific order or hierarchy presented.
In the foregoing detailed description, various features are grouped together in a single embodiment for the purpose of streamlining the disclosure. This method of disclosure is not to be interpreted as reflecting an intention that the claimed embodiments of the subject matter require more features than are expressly recited in each claim. Rather, as the following claims reflect, invention lies in less than all features of a single disclosed embodiment. Thus, the following claims are hereby expressly incorporated into the detailed description, with each claim standing on its own as a separate preferred embodiment of the invention.
What has been described above includes examples of one or more embodiments. It is, of course, not possible to describe every conceivable combination of components or methodologies for purposes of describing the aforementioned embodiments, but one of ordinary skill in the art may recognize that many further combinations and permutations of various embodiments are possible. Accordingly, the embodiments described herein are intended to embrace all such alterations, modifications and variations that fall within the scope of the appended claims. Furthermore, to the extent that the term "includes" is used in either the detailed description or the claims, such term is intended to be inclusive in a manner similar to the term "comprising" as "comprising" is interpreted when employed as a transitional word in a claim. Furthermore, any use of the term "or" in the specification of the claims is intended to mean a "non-exclusive or".
Finally, it should be noted that: although the present invention has been described in detail with reference to the above embodiments, those skilled in the art can make modifications and equivalents to the embodiments of the present invention without departing from the spirit and scope of the present invention, which is set forth in the claims of the present application.

Claims (3)

1. A communication security defense system facing to an electric power optical transmission network is connected with the electric power optical transmission network and a power grid stability control system respectively; wherein the communication security defense system comprises:
(1) wide area information acquisition module: the system comprises a communication network, a power grid control system and a data acquisition module, wherein the power grid control system is used for acquiring network topology resource information, real-time operation state information and real-time data information in the power grid control system influencing communication operation of the communication network;
(2) communication risk monitoring and early warning module: the system is used for communication risk monitoring and early warning issuing;
(3) communication failure expert analysis library: the system is used for determining the root information, the fault influence range and the service influence degree of the alarm fault;
(4) communication network reliability evaluation module: the system is used for evaluating the reliability of a communication network with three layers of a physical equipment layer, a transmission network layer and a service bearing layer;
(5) a communication control decision module: the method is used for solving communication faults and realizing the timely recovery of the service path;
(6) communication security defense multi-defense line: the method comprises preventive control measures, emergency control measures and correction control recovery measures; the wide area information acquisition module acquires network topology information and real-time operation state information of a global network and real-time data information in a power grid stability control system influencing the operation of a communication system from all levels of power optical transmission networks and different network domains; the real-time running state information comprises global link resource information, global service routing information and global alarm information; the real-time data information comprises lightning stroke, influence information of short circuit on the optical cable and time delay error code threshold index information of the power grid control strategy on the communication link;
the wide area information acquisition module acquires global-range multilayer multi-domain network topology resource information, link resource information, service routing information and real-time running state alarm information of a network from each level of communication network management system through a standard CORBA interface, and acquires external environment information and power grid fault information influencing communication management or equipment running from a power grid stability control system by adopting a standard E language format, so as to provide basic data and technical means for communication network fault early warning analysis and decision control;
the communication control decision module receives global real-time warning information and fault early warning information issued by the communication risk monitoring and early warning module, carries out communication fault root positioning through a communication fault expert analysis library, and calls a communication safety defense multi-defense line to carry out coordination processing on communication early warning faults and real-time faults according to the performance index requirements of power grid services on communication channels, the multi-level of the power optical transmission network and a communication coordination mechanism among different network domains, so as to solve the communication faults in time and realize the timely recovery of service paths;
the following modes are adopted to carry out coordination processing on the communication early warning fault and the real-time fault:
a) for the non-occurrence faults, adopting preventive control measures in a communication multi-defense line to carry out network optimization and service path optimization to avoid risks, wherein the preventive control measures comprise a path establishing strategy for forming a service path, an optimization measure for the service path with the risks and a measure for reducing the time delay of the service path;
b) for the fault with the service interruption, adopting an emergency control measure in a communication multi-channel defense line and carrying out ring network switching and standby channel switching according to a protection mode preset by the service to recover the service in time;
c) for services without looped network protection and standby channels, the communication security defense system collects network topology information and real-time running state information of a global optical transmission network through a wide area information collection module, adopts emergency control measures in a communication multi-channel defense line, and utilizes an automatic rerouting algorithm to uniformly schedule global link resource information so as to realize rapid recovery of service paths;
d) for the service which can not be recovered by adopting the method, adopting a correction recovery control measure in a communication multi-defense line, recovering the service by utilizing the modes of optical cable channel roundabout, public network renting and wireless communication emergency communication, and recovering the service to the original bearing channel after the network fault is manually eliminated;
the communication risk monitoring and early warning module carries out communication risk monitoring and early warning release according to the network topology resources and the real-time operation state information of the global network, the real-time data information in the power grid stability control system influencing the operation of the communication system and the network reliability evaluation module in the communication network reliability evaluation module, which are acquired by the wide area information acquisition module; the network reliability evaluation module comprises physical equipment layer evaluation, transmission network layer evaluation and service bearing layer evaluation; the physical equipment layer evaluation comprises the evaluation of the software and hardware composition of the equipment, the evaluation of key performance indexes and the evaluation of the running state of the equipment; the transmission network layer evaluation comprises optical cable reliability evaluation, link reachability index evaluation and network bandwidth load intensity evaluation; the service bearing layer evaluation comprises service bearing importance evaluation, service channel organization factor evaluation and routing association factor evaluation.
2. The communication security defense system of claim 1, wherein the communication failure expert analysis library intelligently analyzes and positions the real-time failure alarm information according to the global real-time alarm information of the wide area information acquisition module and an alarm matching strategy, and determines the root information of the alarm failure, the influence range of the failure and the influence degree on the service.
3. A control method of a communication security defense system according to any one of claims 1 to 2, characterized by comprising the steps of:
1) the communication control decision module receives global real-time warning information and fault early warning information issued by the communication risk monitoring and early warning module, and calls a communication fault analysis expert knowledge base to locate faults through a fault matching algorithm;
2) positioning a fault source and analyzing a fault influence range according to a communication fault analysis expert knowledge base, managing a global optical transmission network range on a management platform of the communication security defense system, scheduling global link resource information according to a communication coordination mechanism among a plurality of layers of an electric power optical transmission network and different network domains, and realizing optimization of a service path and timely recovery of a fault;
3) the communication security defense system acquires external environment information and power grid fault information of the power grid stability control system influencing communication management or equipment operation through real-time data information interaction with the power grid stability control system to perform decision optimization and resource scheduling, so that the influence of the power grid operation on communication is avoided;
4) and the communication decision control module calls a communication multi-defense line to avoid the risk of communication fault occurrence or timely recover the communication service path with the fault according to the fault analysis communication equipment and the influence range of the link and the non-communication stage with the influence.
CN201510116096.2A 2015-03-18 2015-03-18 Communication security defense system facing electric power optical transmission network and control method thereof Active CN106161046B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510116096.2A CN106161046B (en) 2015-03-18 2015-03-18 Communication security defense system facing electric power optical transmission network and control method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510116096.2A CN106161046B (en) 2015-03-18 2015-03-18 Communication security defense system facing electric power optical transmission network and control method thereof

Publications (2)

Publication Number Publication Date
CN106161046A CN106161046A (en) 2016-11-23
CN106161046B true CN106161046B (en) 2021-01-15

Family

ID=58063363

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510116096.2A Active CN106161046B (en) 2015-03-18 2015-03-18 Communication security defense system facing electric power optical transmission network and control method thereof

Country Status (1)

Country Link
CN (1) CN106161046B (en)

Families Citing this family (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107147514B (en) * 2017-03-10 2020-12-01 北京国电通网络技术有限公司 Power communication network optimization resource configuration method and system
CN106888124B (en) * 2017-03-24 2020-03-03 广州捷能电力科技有限公司 High-reliability power optical transmission network line planning system
WO2019047072A1 (en) * 2017-09-06 2019-03-14 富璟科技(深圳)有限公司 Database detection method and terminal
CN107634863A (en) * 2017-10-25 2018-01-26 北京百悟科技有限公司 Distributed monitoring device and method for domain name mapping disaster tolerance service
CN108092824B (en) * 2018-01-15 2020-05-01 淮阴师范学院 Control system diagnosis method based on complex dynamic network
CN108650124B (en) * 2018-05-03 2021-07-02 广州供电局有限公司 WebGIS-based power grid communication early warning system
CN108924673B (en) * 2018-06-12 2021-12-03 中国电力科学研究院有限公司 Method and system for self-healing multipoint faults of optical channel
CN109818808B (en) * 2019-03-12 2022-05-10 国网福建省电力有限公司 Fault diagnosis method and device and electronic equipment
CN110808864A (en) * 2019-11-12 2020-02-18 国家电网有限公司 Communication early warning method, device and system
CN110932976A (en) * 2019-12-12 2020-03-27 国家电网有限公司大数据中心 Meteorological disaster-based power grid fault service recovery method, device and equipment
CN111628898B (en) * 2020-07-31 2020-11-24 北京东方通科技股份有限公司 Method and system for establishing network communication service influence analysis model
CN114070707A (en) * 2020-11-10 2022-02-18 北京市天元网络技术股份有限公司 Internet performance monitoring method and system
CN112132491B (en) * 2020-11-25 2021-02-09 中国电力科学研究院有限公司 Power grid monitoring and alarming system and method based on power grid topology analysis
CN113419908B (en) * 2021-05-31 2023-02-03 西南电子技术研究所(中国电子科技集团公司第十研究所) Method for monitoring failure mode of digital communication module
CN113726555A (en) * 2021-08-02 2021-11-30 华迪计算机集团有限公司 System and method suitable for auxiliary analysis alarm of data communication network
CN114826389B (en) * 2022-04-27 2024-04-19 浙江广联有线电视传输中心 Optical cable line safety level assessment method and assessment system thereof

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103617562A (en) * 2013-12-04 2014-03-05 国家电网公司 System and method for intelligently processing power grid warning messages
CN104301137A (en) * 2014-09-23 2015-01-21 国家电网公司 Method and system for analyzing influences of electric power communication faults on services

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103617562A (en) * 2013-12-04 2014-03-05 国家电网公司 System and method for intelligently processing power grid warning messages
CN104301137A (en) * 2014-09-23 2015-01-21 国家电网公司 Method and system for analyzing influences of electric power communication faults on services

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
A new coordinated approach to state estimation in integrated power systems;Ali Reza Abbasi, Ali Reza Seif;《Electrical Power and Energy Systems》;20130131;第152-158页 *
时空协调的大停电防御框架三各道防线内部的优化和不同防线之间的协调;薛禹胜;《电力***自动化》;20060210;第30卷(第3期);第2-5页第1.1-1.8节 *
自适应自然环境的电网安全稳定协调防御***的应用设计;王昊昊,徐泰山等;《电力***自动化》;20140510;第38卷(第9期);第1章1.1、第二章2.1-2.12及图1 *

Also Published As

Publication number Publication date
CN106161046A (en) 2016-11-23

Similar Documents

Publication Publication Date Title
CN106161046B (en) Communication security defense system facing electric power optical transmission network and control method thereof
Appasani et al. A review on synchrophasor communication system: communication technologies, standards and applications
Xu et al. On the resilience of modern power systems: A comprehensive review from the cyber-physical perspective
CN105515188B (en) A kind of power distribution network centralization feeder automation fault handling method
CN112187518B (en) Intelligent fusion terminal area topology identification method and system
CN101924391B (en) Electric distribution network feeder automation system based on wireless ad hoc network and networking method thereof
Ghasemkhani et al. Optimal design of a wide area measurement system for improvement of power network monitoring using a dynamic multiobjective shortest path algorithm
CN110048507B (en) Automatic inspection method and system for power distribution automation system
CN104601383B (en) A kind of power telecom network fault piecewise analysis method
CN111400295B (en) Power distribution network power failure event analysis method and device and storage medium
Siddikov et al. Communication architecture of solar energy monitoring systems for telecommunication objects
CN105790990A (en) Method and system for monitoring and managing power distribution and utilization communication business
CN110429714A (en) A kind of cloud platform intelligent distribution system based on big data
Liu et al. Application of 5G network slicing technology in smart grid
CN110221183A (en) Distribution Network Failure method for early warning and system towards non-power distribution automation overlay area
CN114745791B (en) Power service slice arrangement and resource allocation method and device
Jha et al. Risk identification and risk assessment of communication networks in smart grid cyber-physical systems
Meloni et al. An IoT architecture for wide area measurement systems: A virtualized PMU based approach
Wang et al. Electricity services based dependability model of power grid communication networking
CN111064278B (en) Method for realizing accurate load control service based on edge Internet of things proxy
Li et al. P-cycle based protection scheme with cycle multiplexing and capacity balance for multicast service in substation communication network
Guo et al. Research on reliability evaluation model and path optimization for power communication network
CN109756365A (en) Fault analysis method and system for power communication network
CN103023136A (en) Power information communication optimization backbone transmission network system
CN106656790A (en) OpenFlow business data transmission method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant