中文摘要：

现有的配电终端缺乏有效的保护机制,存在诸多安全问题,因此将可信计算的思想引入到配电终端,设计适用于配电终端的电力可信模块ETM,针对配电终端设备的特点,结合当前国家电网的CA架构,提出一套基于可信计算的配电终端密钥管理方案。引入可信计算的配电终端可以实现平台的完整性保护、安全的数据加解密以及有效的身份验证,可与现有的电力CA系统做到无缝结合。

英文摘要：

Because of the lack of effective protection mechanism, existing distribution terminals face many security problems. Therefore, the trusted computing was introduced into distribution terminals and the ETM （electrical trusted module） suitable for terminals was designed. According to the characteristics of distribution terminals, combining the state grid CA system, a key management system for distribution terminals based on the trusted computing was put forward. Distribution terminals based on the trusted computing can realize the integrity protection, the security of data encryption and decryption, and effective identity authentication. Also they can be combined with the existing power CA system seamlessly.