A power data security transmission method and system based on hybrid encryption

Abstract

This invention discloses a method and system for secure transmission of power data based on hybrid encryption, relating to the field of secure power data transmission technology. The method includes obtaining AES public key ciphertext and calculating its hash value; transmitting data packets to the data receiver via TLS / SSL protocol and verifying the power data ciphertext; decrypting the power data ciphertext based on the verification result; and storing and managing the public key information of both parties through a blockchain. The method described in this invention enhances the tamper-proof capability of information during transmission, improves the quality of secure data transmission, enhances the security isolation and protection of power data during internet transmission, reduces the probability of data tampering or forgery, and thus provides strong support for the security requirements of data transmission in high-frequency and big data scenarios. It also improves the transparency and traceability of public key management, providing comprehensive protection for the secure transmission of power data.

Description

Technical Field

[0001] This invention relates to the field of secure power data transmission technology, specifically to a secure power data transmission method and system based on hybrid encryption. Background Technology

[0002] In today's information age, the importance of secure data transmission is becoming increasingly prominent, especially in the field of power data management. With the popularization of the Internet of Things and smart grids, a large amount of power data needs to be transmitted over the network, and the security and privacy protection of this data has become the focus of research. Traditional encryption technologies such as AES (Advanced Encryption Standard) and SSL / TLS (Secure Sockets Layer / Transport Layer Security) protocols provide certain security guarantees for data transmission, but they face increasing challenges in practical applications. In recent years, although encryption technologies and security protocols have continued to improve, more efficient and reliable technical solutions still need to be explored for the secure transmission of power data.

[0003] Existing technologies still have many shortcomings in the secure transmission of power data. Regarding data encryption, the traditional AES encryption algorithm suffers from low data transmission efficiency when processing large amounts of power data due to the computational complexity of its encryption and decryption processes, making it difficult to meet the needs of real-time monitoring and rapid response. In terms of data integrity verification, while existing TLS / SSL protocols can guarantee data security during transmission, their verification mechanisms are inadequate against increasingly sophisticated network attack methods, and data integrity and tamper-proof capabilities need improvement. Public key management and updating are another weak link in existing technologies. The leakage or invalidation of public keys directly affects the security of data transmission. Currently, public key storage and updates often rely on centralized management systems, which not only increases the risk of single points of failure but also results in low synchronization and updating efficiency in distributed network environments, making it difficult to adapt to rapidly changing network conditions. Existing technologies lack consideration for the unique attributes of power data during data transmission verification, making it difficult to optimize the encryption and verification processes for the characteristics of power data, thus affecting the overall performance of data transmission. Therefore, how to achieve efficient and secure transmission of power data has become an urgent technical problem to be solved in this field. Summary of the Invention

[0004] In view of the above-mentioned problems, the present invention is proposed.

[0005] Therefore, the technical problem solved by this invention is that existing encrypted data transmission technologies have low ciphertext integrity verification capabilities, poor data verification efficiency, and insufficient public key information management, as well as the problem of how to ensure the security and efficiency of data transmission through hybrid encryption technology.

[0006] To address the aforementioned technical problems, this invention provides the following technical solution: a method for secure transmission of power data based on hybrid encryption, comprising: obtaining AES public key ciphertext and calculating its hash value; transmitting the data packet to the data receiver via TLS / SSL protocol and verifying the power data ciphertext; decrypting the power data ciphertext based on the verification result, and storing and managing the public key information of both parties through a blockchain.

[0007] As a preferred embodiment of the hybrid encryption-based secure transmission method for power data described in this invention, the step of obtaining the AES public key ciphertext includes AES-encrypted power data, ECC-encrypted AES public key, and generation of a digital signature.

[0008] AES encrypted power data involves the data sender encrypting the power data using the symmetric encryption algorithm AES to obtain the ciphertext of the power data.

[0009] ECC encryption of the AES public key involves encrypting the AES public key using the asymmetric encryption algorithm ECC to obtain the AES public key ciphertext.

[0010] Generating a digital signature involves using the data sender's ECC private key and the ECDSA algorithm to generate a digital signature from the encrypted AES public key ciphertext, thus verifying the authenticity of the data's source and its tamper-proof capabilities.

[0011] As a preferred embodiment of the power data secure transmission method based on hybrid encryption described in this invention, the calculation of the hash value includes using the SHA-256 algorithm to calculate the hash value of the power data ciphertext and perform data integrity verification.

[0012] As a preferred embodiment of the power data secure transmission method based on hybrid encryption described in this invention, the data receiver transmitted via TLS / SSL protocol includes the data sender assembling a complete data packet and transmitting the data packet to the data receiver via TLS / SSL protocol. The data packet includes power data ciphertext, AES public key ciphertext, data hash value, digital signature, unique identifier of the sender, and timestamp.

[0013] The encrypted data includes both power data ciphertext and AES public key ciphertext.

[0014] Data integrity and whether it has been tampered with are verified based on data hash values ​​and digital signatures.

[0015] The sender's unique identifier records the identity information of the data sender.

[0016] The timestamp records the time when the data was sent.

[0017] As a preferred embodiment of the power data secure transmission method based on hybrid encryption described in this invention, the verification of the power data ciphertext includes hash value verification and digital signature verification.

[0018] Hash value verification involves the data receiver recalculating the hash value of the received encrypted power data and performing a consistency check with the hash value in the data packet. If the check passes, it means that the data is consistent.

[0019] Digital signature verification involves the data recipient using the sender's identity identifier to query the data sender's ECC public key from the blockchain, using the data sender's ECC public key and the ECDSA algorithm to verify the digital signature, confirming that the data comes from a legitimate sender and that the data has not been tampered with.

[0020] As a preferred embodiment of the power data secure transmission method based on hybrid encryption described in this invention, the step of decrypting the ciphertext of the power data based on the verification result includes performing the decryption process when the hash value verification and digital signature verification are correct, and terminating the decryption process and sending an error code to the data sender if the verification fails.

[0021] The decryption process involves using the queried data sender's ECC public key to decrypt the AES public key ciphertext using the ECC algorithm to obtain the AES public key, and then using the AES public key to decrypt the power data ciphertext using the AES algorithm to obtain the original power data.

[0022] As a preferred embodiment of the hybrid encryption-based secure transmission method for power data described in this invention, the method of storing and managing the public key information of both parties through blockchain includes encrypting the ECC public keys of the power data sending server and receiving server with AES keys, verifying digital signatures, binding the public keys with corresponding device IDs or user IDs to confirm the uniqueness of the identity, setting a clear validity period for each public key, and establishing a dynamic public key update mechanism.

[0023] The dynamic public key update mechanism involves generating a new ECC key pair when the public key expires or needs to be updated due to security risks, submitting an update request through the blockchain, including the new public key, device ID, version number of the original public key, and an update proof signed with the old private key. After the blockchain nodes verify the legality of the update request, the new public key is written into the block through the consensus mechanism, generating a new public key version record.

[0024] Another objective of this invention is to provide a power data security transmission system based on hybrid encryption, which can transmit data packets to the data receiver via the TLS / SSL protocol and verify the encrypted power data, thus solving the problem that current traditional data transmission security technologies lack sufficient protection for data verification and validity.

[0025] As a preferred embodiment of the power data security transmission system based on hybrid encryption described in this invention, it includes a public key ciphertext acquisition module, a data transmission verification module, and a decryption and storage module.

[0026] The public key ciphertext acquisition module is used to acquire the AES public key ciphertext and calculate its hash value; the data transmission verification module is used to transmit data packets to the data receiver via the TLS / SSL protocol and verify the power data ciphertext; the decryption and storage module is used to decrypt the power data ciphertext based on the verification result and store and manage the public key information of both parties through the blockchain.

[0027] A computer device includes a memory and a processor, the memory storing a computer program, the processor executing the computer program to implement a method for secure transmission of power data based on hybrid encryption.

[0028] A computer-readable storage medium having a computer program stored thereon, the computer program being executed by a processor to implement the steps of a method for secure transmission of power data based on hybrid encryption.

[0029] The beneficial effects of this invention are as follows: The hybrid encryption-based secure transmission method for power data provides this invention obtains AES public key ciphertext and calculates hash values, enhancing the anti-tampering capability of information during transmission, improving the quality of secure data transmission, and effectively reducing the risk of data leakage. By transmitting data packets to the data receiver via TLS / SSL protocol and verifying the power data ciphertext, the invention improves the security isolation and protection of power data during internet transmission, reducing the probability of data tampering or forgery. This provides strong support for the data transmission security requirements in high-frequency and big data scenarios. Based on the verification results, the power data ciphertext is decrypted, and the public key information of both parties is stored and managed through blockchain, improving the security of data transmission and enhancing the transparency and traceability of public key management. This provides comprehensive protection for the secure transmission of power data. This invention achieves better results in terms of data transmission security, data integrity verification, and public key management flexibility. Attached Figure Description

[0030] To more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings used in the following description of the embodiments will be briefly introduced. Obviously, the drawings described below are only some embodiments of the present invention. For those skilled in the art, other drawings can be obtained based on these drawings without creative effort.

[0031] Figure 1 The first embodiment of the present invention provides an overall flowchart of a method for secure transmission of power data based on hybrid encryption.

[0032] Figure 2 The second embodiment of the present invention provides a flowchart of a power data encryption method for secure transmission of power data based on hybrid encryption.

[0033] Figure 3 The diagram below shows a data transmission method for a power data security transmission method based on hybrid encryption, as provided in the second embodiment of the present invention.

[0034] Figure 4 The second embodiment of the present invention provides a data verification flowchart for a method for secure transmission of power data based on hybrid encryption.

[0035] Figure 5 The flowchart below illustrates a method for secure transmission of power data based on hybrid encryption, provided as a second embodiment of the present invention.

[0036] Figure 6 The following is an overall flowchart of a power data security transmission system based on hybrid encryption, provided for the third embodiment of the present invention. Detailed Implementation

[0037] To make the above-mentioned objects, features, and advantages of the present invention more apparent and understandable, specific embodiments of the present invention will be described in detail below with reference to the accompanying drawings. Obviously, the described embodiments are only a part of the embodiments of the present invention, and not all of them. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative effort should fall within the protection scope of the present invention.

[0038] Example 1, referring to Figure 1 As one embodiment of the present invention, a method for secure transmission of power data based on hybrid encryption is provided, comprising:

[0039] S1: Obtain the AES public key ciphertext and calculate its hash value.

[0040] Furthermore, obtaining the AES public key ciphertext includes AES-encrypted power data, ECC-encrypted AES public key, and generating a digital signature.

[0041] AES encrypted power data involves the data sender encrypting the power data using the symmetric encryption algorithm AES to obtain the ciphertext of the power data.

[0042] ECC encryption of the AES public key involves encrypting the AES public key using the asymmetric encryption algorithm ECC to obtain the AES public key ciphertext.

[0043] Generating a digital signature involves using the data sender's ECC private key and the ECDSA algorithm to generate a digital signature from the encrypted AES public key ciphertext, thus verifying the authenticity of the data's source and its tamper-proof capabilities.

[0044] It should be noted that calculating the hash value includes using the SHA-256 algorithm to calculate the hash value of the encrypted power data and to perform data integrity verification.

[0045] It should also be noted that by obtaining the AES public key ciphertext and calculating the hash value, this step ensures the security and integrity of the power data. The data sender uses AES to encrypt the power data, obtaining ciphertext, and uses ECC to encrypt the AES public key to generate AES public key ciphertext, effectively preventing the leakage of sensitive data during transmission and ensuring that only authorized recipients can decrypt the data. Any minor data change will lead to a change in the hash value. To ensure the uniqueness and integrity of the data, the SHA-256 algorithm is used to calculate the hash value, providing a reliable foundation for subsequent data verification. This is especially important when handling sensitive data, ensuring data confidentiality and providing an effective means of integrity verification. The hash value is transmitted along with the data packet. The receiver can recalculate the hash value upon receipt and compare it with the hash value sent by the sender to verify the consistency of the data. This mechanism effectively prevents data tampering in actual operation and improves the overall security of the system. Combined with the ciphertext form of the ECC-encrypted public key, not only is the security of the public key improved, but it also prevents threats such as man-in-the-middle attacks and data interception. By strengthening the data encryption mechanism and integrity verification, a secure and reliable data foundation is provided.

[0046] S2: Transmit the data packet to the data receiver via the TLS / SSL protocol and verify the encrypted power data.

[0047] Furthermore, the data receiver, including the data sender, assembles a complete data packet via the TLS / SSL protocol and transmits the data packet to the data receiver. The data packet includes encrypted power data, AES public key encrypted data, data hash value, digital signature, unique identifier of the sender, and timestamp.

[0048] The encrypted data includes both power data ciphertext and AES public key ciphertext.

[0049] Data integrity and whether it has been tampered with are verified based on data hash values ​​and digital signatures.

[0050] The sender's unique identifier records the identity information of the data sender.

[0051] The timestamp records the time when the data was sent.

[0052] It should be noted that verifying encrypted power data includes hash value verification and digital signature verification.

[0053] Hash value verification involves the data receiver recalculating the hash value of the received encrypted power data and performing a consistency check with the hash value in the data packet. If the check passes, it means that the data is consistent.

[0054] Digital signature verification involves the data recipient using the sender's identity identifier to query the data sender's ECC public key from the blockchain, using the data sender's ECC public key and the ECDSA algorithm to verify the digital signature, confirming that the data comes from a legitimate sender and that the data has not been tampered with.

[0055] It should also be noted that transmitting data packets to the data receiver via the TLS / SSL protocol effectively ensures the security and privacy of data in a public network environment. Using TLS / SSL ensures that all data is encrypted during transmission, preventing unauthorized access or tampering. The integrity and legitimacy of the data packets are fully guaranteed before transmission. The sender integrates the encrypted power data, AES public key ciphertext, hash value, digital signature, unique sender identifier, and timestamp information into a robust security encapsulation. At the receiver, the key to this process is verifying the hash value and digital signature; recalculating the hash value ensures... The received data is accurate and error-free, avoiding the risks of unauthorized tampering. By using blockchain to query the sender's ECC public key and the receiver to verify the digital signature, the legitimacy of the sender's identity is further confirmed, ensuring the trustworthiness of the data source and effectively improving the protection capabilities of the entire communication process. This provides a solid security guarantee for enterprises or institutions when handling sensitive information. The timestamps recorded during transmission ensure the time consistency of the data and enhance the management of data timeliness. Through the implementation of the TLS / SSL protocol, data security in complex network environments is improved, providing strong support for meeting the stringent requirements for data integrity and security in modern communication processes.

[0056] S3: Decrypt the encrypted power data based on the verification result, and store and manage the public key information of both parties through the blockchain.

[0057] Furthermore, the decryption of encrypted power data based on the verification results includes proceeding with the decryption process if the hash value verification and digital signature verification are correct, and terminating the decryption process and sending an error code to the data sender if the verification fails.

[0058] The decryption process involves using the queried data sender's ECC public key to decrypt the AES public key ciphertext using the ECC algorithm to obtain the AES public key, and then using the AES public key to decrypt the power data ciphertext using the AES algorithm to obtain the original power data.

[0059] It should be noted that the public key information of both parties is stored and managed through the blockchain, including the ECC public keys of the power data sending server and receiving server, the encryption AES key, and the verification of digital signatures. The public keys are bound to the corresponding device ID or user ID to confirm the uniqueness of the identity. A clear validity period is set for each public key, and a dynamic public key update mechanism is established.

[0060] The dynamic public key update mechanism involves generating a new ECC key pair when the public key expires or needs to be updated due to security risks, submitting an update request through the blockchain, including the new public key, device ID, version number of the original public key, and an update proof signed with the old private key. After the blockchain nodes verify the legality of the update request, the new public key is written into the block through the consensus mechanism, generating a new public key version record.

[0061] It should also be noted that a rigorous verification process to determine whether to decrypt data effectively prevents unauthorized access. Only after both hash value verification and digital signature verification pass will the recipient proceed to decrypt the encrypted power data. Using the ECC public key to decrypt the AES public key ciphertext ensures that even if an attacker obtains the data packet, they cannot easily decrypt the valid data, thus protecting sensitive information. Combining blockchain technology with the storage and management of public key information enhances overall security and efficiency. The decentralized nature of blockchain guarantees the immutability of public key information, creating a secure and transparent trust environment within the system. Based on blockchain... The blockchain's dynamic public key update mechanism ensures the rapid generation and updating of new ECC key pairs when public keys expire or face security risks, increasing the system's resilience and self-healing capabilities. Through the blockchain's consensus mechanism, it effectively enhances the system's security and trustworthiness. Combining public key binding information with device information ensures the uniqueness of identity, further reducing the risk of identity forgery and providing new ideas and methods for promoting secure data transmission in smart grid and IoT environments. By achieving secure decryption and efficient public key management, it provides strong protection for secure data transmission while enhancing the system's flexibility in responding to potential future security threats.

[0062] Example 2, refer to Figures 2-5 As an embodiment of the present invention, a method for secure transmission of power data based on hybrid encryption is provided. To verify the beneficial effects of the present invention, scientific demonstration is carried out through economic benefit calculations and simulation experiments.

[0063] First, the experiment selected 1000 independent power data samples, each containing a user identifier, power consumption type, power consumption, and timestamp. At the data transmission end, the power data was encrypted using the AES-256 encryption algorithm. (Reference...) Figure 2This describes the power data encryption process. During encryption, a randomly generated 256-bit key, AES_KEY, is used to encrypt the power data, resulting in the ciphertext CIPHERTEXT_DATA. Subsequently, the AES_KEY is encrypted using the ECC-521 algorithm to generate the AES public-key ciphertext CIPHERTEXT_AES_KEY. The data sender possesses a pair of ECC keys, ECC_PRIV and ECC_PUB. ECC_PRIV is used to encrypt the AES_KEY, while ECC_PUB will be used for subsequent decryption at the data receiver. After public-key encryption, the SHA-256 hash algorithm is used to calculate the hash value HASH_VALUE of CIPHERTEXT_DATA to ensure data integrity. This hash value is transmitted along with the data packet for verification by the data receiver. Next, refer to... Figure 3 This indicates the data transmission process. The data sender uses the ECC_PRIV and ECDSA algorithms to generate a digital signature DIGITAL_SIGNATURE for CIPHERTEXT_AES_KEY. This digital signature is used to verify the authenticity of the data source and the data's tamper-proof capability. During data transmission, the data sender packages CIPHERTEXT_DATA, CIPHERTEXT_AES_KEY, HASH_VALUE, DIGITAL_SIGNATURE, the sender's unique identifier SENDER_ID, and a timestamp, and sends it to the data receiver via the TLS / SSL protocol, ensuring data security during transmission. (See reference...) Figure 4 This represents the data verification process. After receiving the data packet, the data receiver first recalculates the hash value of CIPHERTEXT_DATA and compares it with the received HASH_VALUE to verify data consistency. Then, the data receiver queries the ECC_PUB corresponding to SENDER_ID through the blockchain network and uses the public key and ECDSA algorithm to verify DIGITAL_SIGNATURE to confirm the data's legitimacy and lack of tampering. After successful verification, the data receiver uses ECC_PUB to decrypt CIPHERTEXT_AES_KEY to recover AES_KEY. Subsequently, it uses AES_KEY to decrypt CIPHERTEXT_DATA to obtain the original power data. (Refer to...) Figure 5This represents the power data decryption process. The experiment stores and manages the ECC_PUBs of both the data sender and receiver through a blockchain network. The blockchain network assigns a unique device ID or user ID to each public key and sets an expiration date, establishing a mechanism for dynamically updating public keys. When a public key update is needed, the data sender generates a new ECC key pair and submits an update request through the blockchain network, including the new public key, device ID, original public key version number, and an update proof signed with the old private key. After verifying the legality of the update request, the blockchain nodes write the new public key into the block through a consensus mechanism, completing the public key update. The experimental results show that this invention is innovative and practical in the secure transmission of power data, and has advantages in ensuring the uniqueness and security of public key information.

[0064] Example 3, referring to Figure 6 As an embodiment of the present invention, a power data security transmission system based on hybrid encryption is provided, including a public key ciphertext acquisition module, a data transmission verification module, and a decryption and storage module.

[0065] The public key ciphertext acquisition module is used to obtain the AES public key ciphertext and calculate its hash value; the data transmission verification module is used to transmit data packets to the data receiver via the TLS / SSL protocol and verify the power data ciphertext; the decryption and storage module is used to decrypt the power data ciphertext based on the verification result and store and manage the public key information of both parties through the blockchain.

[0066] If a function is implemented as a software functional unit and sold or used as an independent product, it can be stored in a computer-readable storage medium. Based on this understanding, the technical solution of this invention, or the part that contributes to the prior art, or a part of the technical solution, can be embodied in the form of a software product. This computer software product is stored in a storage medium and includes several instructions to cause a computer device (which may be a personal computer, server, or network device, etc.) to execute all or part of the steps of the methods of the various embodiments of this invention. The aforementioned storage medium includes various media capable of storing program code, such as USB flash drives, portable hard drives, read-only memory (ROM), random access memory (RAM), magnetic disks, or optical disks.

[0067] The logic and / or steps represented in the flowchart or otherwise described herein, for example, can be considered as a sequenced list of executable instructions for implementing logical functions, and can be embodied in any computer-readable medium for use by, or in conjunction with, an instruction execution system, apparatus, or device (such as a computer-based system, a processor-included system, or other system that can fetch and execute instructions from, an instruction execution system, apparatus, or device). For the purposes of this specification, "computer-readable medium" can be any means that can contain, store, communicate, propagate, or transmit programs for use by, or in conjunction with, an instruction execution system, apparatus, or device.

[0068] More specific examples (a non-exhaustive list) of computer-readable media include: electrical connections (electronic devices) having one or more wires, portable computer disk drives (magnetic devices), random access memory (RAM), read-only memory (ROM), erasable and editable read-only memory (EPROM or flash memory), fiber optic devices, and portable optical disc read-only memory (CDROM). Furthermore, computer-readable media can even be paper or other suitable media on which programs can be printed, because programs can be obtained electronically, for example, by optically scanning the paper or other medium, followed by editing, interpreting, or otherwise processing as necessary, and then stored in computer memory.

[0069] It should be understood that various parts of the present invention can be implemented using hardware, software, firmware, or a combination thereof. In the above embodiments, multiple steps or methods can be implemented using software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, it can be implemented using any one or a combination of the following techniques known in the art: discrete logic circuits having logic gates for implementing logical functions on data signals, application-specific integrated circuits (ASICs) having suitable combinational logic gates, programmable gate arrays (PGAs), field-programmable gate arrays (FPGAs), etc. It should be noted that the above embodiments are only used to illustrate the technical solutions of the present invention and are not intended to limit it. Although the present invention has been described in detail with reference to preferred embodiments, those skilled in the art should understand that modifications or equivalent substitutions can be made to the technical solutions of the present invention without departing from the spirit and scope of the technical solutions of the present invention, and all such modifications or substitutions should be covered within the scope of the claims of the present invention.

[0070] It should be noted that the above embodiments are only used to illustrate the technical solutions of the present invention and are not intended to limit it. Although the present invention has been described in detail with reference to preferred embodiments, those skilled in the art should understand that modifications or equivalent substitutions can be made to the technical solutions of the present invention without departing from the spirit and scope of the technical solutions of the present invention, and all such modifications or substitutions should be covered within the scope of the claims of the present invention.

Claims

1. A hybrid encryption-based power data secure transmission method, characterized in that, include: Obtain the AES public key ciphertext and calculate its hash value; The data packet is transmitted to the data receiver via the TLS / SSL protocol, and the encrypted power data is verified. The encrypted power data is decrypted based on the verification result, and the public key information of both parties is stored and managed through the blockchain. The process of obtaining the AES public key ciphertext includes AES-encrypted power data, ECC-encrypted AES public key, and generating a digital signature. AES encrypted power data involves the data sender encrypting the power data using the symmetric encryption algorithm AES to obtain the ciphertext of the power data; ECC encryption of the AES public key involves encrypting the AES public key using the asymmetric encryption algorithm ECC to obtain the AES public key ciphertext. Generating a digital signature involves using the data sender's ECC private key and the ECDSA algorithm to generate a digital signature from the encrypted AES public key ciphertext, thereby verifying the authenticity of the data's source and its tamper-proof capability. The verification of encrypted power data includes hash value verification and digital signature verification. Hash value verification involves the data receiver recalculating the hash value of the received encrypted power data and performing a consistency check with the hash value in the data packet. If the check passes, it means that the data is consistent. Digital signature verification involves the data recipient using the sender's identity identifier to query the data sender's ECC public key from the blockchain, using the data sender's ECC public key and the ECDSA algorithm to verify the digital signature, confirming that the data comes from a legitimate sender and that the data has not been tampered with. The method of storing and managing the public key information of both parties through blockchain includes encrypting the ECC public key of the power data sending server and receiving server, encrypting the AES key, verifying the digital signature, binding the public key with the corresponding device ID or user ID to confirm the uniqueness of the identity, setting a clear validity period for each public key, and establishing a dynamic public key update mechanism. The dynamic public key update mechanism involves generating a new ECC key pair when the public key expires or needs to be updated due to security risks, submitting an update request through the blockchain, including the new public key, device ID, version number of the original public key, and an update proof signed with the old private key. After the blockchain nodes verify the legality of the update request, the new public key is written into the block through the consensus mechanism, generating a new public key version record. 2.The hybrid encryption based power data secure transmission method of claim 1, wherein: The hash value calculation includes using the SHA-256 algorithm to calculate the hash value of the encrypted power data and to perform data integrity verification. 3.The hybrid encryption based power data secure transmission method of claim 2, wherein: The data receiver transmitted via TLS / SSL protocol includes the data sender assembling a complete data packet and transmitting the data packet to the data receiver via TLS / SSL protocol. The data packet includes power data ciphertext, AES public key ciphertext, data hash value, digital signature, unique identifier of the sender, and timestamp. The encrypted data includes both power data ciphertext and AES public key ciphertext. The integrity of the data and whether it has been tampered with are verified based on the data hash value and digital signature. The sender's unique identifier records the identity information of the data sender; The timestamp records the time when the data was sent. 4.The hybrid encryption based power data secure transmission method of claim 3, wherein: The decryption of encrypted power data based on the verification result includes proceeding with the decryption process when the hash value verification and digital signature verification are correct, and terminating the decryption process and sending an error code to the data sender if the verification fails. The decryption process involves using the queried data sender's ECC public key to decrypt the AES public key ciphertext using the ECC algorithm to obtain the AES public key, and then using the AES public key to decrypt the power data ciphertext using the AES algorithm to obtain the original power data.

5. A system employing the hybrid encryption-based power data secure transmission method according to any one of claims 1 to 4, characterized in that: It includes a public key ciphertext acquisition module, a data transmission verification module, and a decryption and storage module; The public key ciphertext acquisition module is used to acquire the AES public key ciphertext and calculate its hash value; The data transmission verification module is used to transmit data packets to the data receiver via the TLS / SSL protocol and to verify the encrypted power data. The decryption and storage module is used to decrypt the encrypted power data based on the verification result, and to store and manage the public key information of both parties through the blockchain. 6.A computer device, comprising a memory and a processor, wherein the memory stores a computer program, and the computer device is configured to perform the method according to any one of claims 1-5 when the computer program is executed by the processor. When the processor executes the computer program, it implements the steps of the power data secure transmission method based on hybrid encryption as described in any one of claims 1 to 4.

7. A computer-readable storage medium having a computer program stored thereon, characterized in that, When the computer program is executed by the processor, it implements the steps of the power data secure transmission method based on hybrid encryption as described in any one of claims 1 to 4.

Images