In the current commercial monitoring and control systems, some systems are deployed overseas, necessitating the design of a security communication scheme to ensure the safety of data and communication between foreign sites and the domestic central system. This paper analyzes the network topology and data communication characteristics between a commercial monitoring and control center system and its sites, and surveys the current status of domestic security communication equipment. Based on this analysis, a security gateway solution suitable for communication in the monitoring and control network is designed.By adding security gateways in pairs at foreign stations and the central system, the solution implements techniques such as data encryption, signature authentication, and data integrity verification to ensure communication security. Using symmetric/asymmetric encryption and decryption algorithms based on national cryptographic standards to encrypt business data, thereby preventing data exposure on the network. The key agreement process is based on asymmetric cryptographic algorithms, establishing secure associations through key negotiation to generate and share symmetric keys, ensuring that third parties cannot decrypt or forge data packets, thus effectively protecting communication security.