尽管加密方法由于耗时较大而不被IEC62351 推荐用于GOOSE 等实时报文，但许多电力工程实践中仍加密GOOSE 报文以加强网络信息安全性． 文中以经典的对称加密算法Ｒijndael 为例，从密钥长度、分组长度和分组模式等方面分析影响GOOSE 报文加密耗时的因素． 结合GOOSE 的域含义，提出基于关键信息的GOOSE 加密方法，在保证报文信息保密的基础上减少耗时; 同时，利用GOOSE 报文的StNum、SqNum 和T 等具有时间同步意义的信息防止经典的报文重放攻击，利用GOOSE 报文的CＲC 验证码保障报文的完整性． 嵌入式平台的耗时特性表明，文中提出的GOOSE 报文加解密方法满足GOOSE报文的实时性要求．

Although IEC62351 suggests no encryption algorithm for GOOSE and other real-time packets due to the huge time consumption of encryption algorithms,many practical power projects still encrypt GOOSE packets to strengthen the security of network information.In this paper,the classical Rijndael symmetric encryption algorithm is adopted as an example to analyze such factors affecting the time consumption of GOOSE packets encryption as the secret key length,the packet length and the packet mode.Then,in order to reduce the time consumption without weakening the packet confidentiality,a GOOSE encryption method based on critical information is proposed with the combination of packet domain implication.Moreover,GOOSE messages such as StNum,SqNum and T,which possess time synchronization functions，are used to prevent replay attacks,and the CRC verification code in GOOSE packets is used to ensure the integrity of the message.Finally,the time-consuming characteristics of the proposed GOOSE encryption and decryption algorithms are tested on an embedded platform,and the results show that the proposed method meets the real-time requirements of power systems well.