Hsu et al. (2022) proposed a cryptographic scheme within the public key infrastructure to bolster the security of smart grid meters. Their proposal involved developing the Certificate Management over CMS mechanism to establish Simple Certificate Enrollment Protocol and Enrollment over Secure Transport protocol. Additionally, they implemented Online Certificate Status Protocol (OCSP) services to independently query the status of certificates. However, their implementation featured a single OCSP server handling all query requests. Considering the typical scenario in smart grid PKI environments with over tens of thousands of end-meters, we introduced a Hybrid Online Certificate Status Protocol mechanism. This approach decreases demand of query resources from the client to OCSP servers collaborating with Certificate Revocation Lists. Our simulations, mimicking meter behavior, demonstrated increased efficiency, creating a more robust architecture tailored to the smart grid meter landscape.
翻译:Hsu等人(2022年)提出了一种在公钥基础设施内的加密方案,以增强智能电网电表的安全性。他们的方案包括开发基于CMS的证书管理机制,以建立简单证书注册协议和安全传输注册协议。此外,他们实施了在线证书状态协议(OCSP)服务,以独立查询证书状态。然而,其实施方案采用单一的OCSP服务器处理所有查询请求。考虑到智能电网PKI环境中通常存在超过数万台终端电表的典型场景,我们引入了一种混合在线证书状态协议机制。该方法通过与证书撤销列表(CRL)协同工作,降低了从客户端到OCSP服务器的查询资源需求。我们模拟电表行为的仿真实验表明,该机制提高了效率,为智能电网电表环境构建了更鲁棒的架构。