Abstract:
Aiming at the various security risks faced by intelligent grid relay protection devices during operation and maintenance (e.g., malicious code injection, supply chain attacks) and addressing the shortcomings of traditional embedded protection devices in terms of active immunity and endogenous security, this paper proposes a security enhancement scheme based on trusted computing technology. Through in-depth research on multiple aspects including the trusted adaptation system architecture of relay protection devices, selection and hardware adaptation of trusted roots, trusted boot process, trusted enhancement of operating systems, device-end trusted configuration management command sets, and trusted alerting, auditing, and data collection, this study designs a comprehensive trusted computing solution covering hardware adaptation, trusted boot, runtime protection, configuration management, and audit tracing. Experimental results demonstrate that the proposed scheme can effectively improve the safety and reliability of relay protection devices while meeting the overall business performance of the device, and has good application prospects and promotion value.