电力系统是国家发展的重要基石，电力信息系统的安全性必须得到保障。现有的电力信息系统的安全方法主要基于RSA等加密算法，面临互联网算力提升和量子计算机的威胁。本文根据电力系统对信息安全的迫切需求，以及量子保密通信技术在信息安全领域中的无条件安全性，探索量子保密通信技术在电力信息系统中的应用。具体地，通过对作为互联网信息技术基础的标准SSL协议过程及其安全要素的详细解析，本文设计了同互联网基础相容的一种量子安全增强方法——利用预置量子随机数(基于量子随机数发生设备、量子密钥分发网络)进行的随机数源强化，并在开源OPENSSL VPN平台上进行相应的实验验证。实验结果表明，本文提出的利用量子随机数源进行量子化改造的方案能够实现系统安全的根本性改善，同时不显著增加系统复杂度或系统开销，因此能够对电力信息系统安全实现增强。

Power system is the basis of the development of states. The security of the power information system must be guaranteed. In the power information system, most of existing security methods are based on encryption algorithms like RSA algorithm, up against the threaten of increasing computing power of Internet and quantum computer. According to the urgent demand for information security of power system and the unconditional security of quantum security communication, this paper explores the application of quantum security communication in power information system. Specifically, By detailed analysis of the procedure and security factors of the standard SSL protocol, this paper designed a security enhancement method which is compatible with the existing Internet protocol basis. The proposed method enhanced the source of random number by preset quantum random number (based on quantum random number generator or quantum key distribution network). Implemented on the OPENSSL VPN evaluation platform, experiments showed that the proposed security enhancement method could improve the security level of power information systems without tremendous increase in system complexity or cost.

国家电网公司科技项目,国家自然科学基金项目（面上项目，重点项目，重大项目）