Research of Container Security Reinforcement Multi-Service APP Deployment for New Power System on Substation

Abstract

In order to adapt to the scene of multi business coexistence in the new power system and support the integrated deployment of various business functions conveniently, the substation control system needs to adopt the open “platform & app” mode. The problems of fuzzy security boundary caused by the integration and deployment of different functional apps by lack of protection measures, different operating environment and APP isolation difficulties. This paper proposes a general call policy restriction method of domestic operating system based on Docker container, which aims to provide a practical security protection reinforcement scheme for any container.