Caching-based Multicast Message Authentication in Time-critical Industrial Control Systems

Tefek, Utku; Esiner, Ertem; Mashima, Daisuke; Chen, Binbin; Hu, Yih-Chun

doi:10.1109/infocom48880.2022.9796767

Cited by 8 publications

(3 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…IEC 62351 recommends different authentication and encryption algorithms to secure the channels between publisher and subscriber of GOOSE and SV messages [11]. For instance, references [12][13][14][15] provide IT-based solutions for securing GOOSE and SV messages. In [12,13], light weight message authentication code (MAC) algorithms are proposed to secure the GOOSE messages, whereas [14,15] introduce caching-based MAC and Less-online/More-offline MAC signatures with reduced computational complexities to secure GOOSE and SV messages.…”

Section: Introductionmentioning

confidence: 99%

“…For instance, references [12][13][14][15] provide IT-based solutions for securing GOOSE and SV messages. In [12,13], light weight message authentication code (MAC) algorithms are proposed to secure the GOOSE messages, whereas [14,15] introduce caching-based MAC and Less-online/More-offline MAC signatures with reduced computational complexities to secure GOOSE and SV messages. These cyber security algorithms do not however deal with the case of an attack on the end device itself (i.e., when the end devise is compromised).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A novel hybrid cybersecurity scheme against false data injection attacks in automated power systems

Hussain,

Hemmati

et al. 2023

Prot Control Mod Power Syst

View full text Add to dashboard Cite

The conventional power systems are evolving as smart grids. In recent times cyberattacks on smart grids have been increasing. Among different attacks, False Data Injection (FDI) is considered as an emerging threat that has significant impact. By exploiting the vulnerabilities of IEC 61850 Generic Object-Oriented Substation Events (GOOSE) and Sampled Values (SV) attackers can launch different FDI attacks. In this paper, a real-time set up capable of simulating FDI on GOOSE and SV protocols is developed to evaluate the impact of such attacks on power grid. IEC 62351 stipulates cybersecurity guidelines for GOOSE and SV, but only at communication or Information Technology (IT) level. Hence there is a need to develop a holistic security both at IT and Operation Technology (OT) level. In this regard, a novel sequence content resolver-based hybrid security scheme suitable to tackle FDI attacks on GOOSE and SV is proposed. Furthermore, the computational performance of the proposed hybrid security scheme is presented to demonstrate its applicability to the time critical GOOSE and SV protocols.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A novel hybrid cybersecurity scheme against false data injection attacks in automated power systems

Hussain,

Hemmati

et al. 2023

Prot Control Mod Power Syst

View full text Add to dashboard Cite

show abstract

“…However, in 8,10 it was proved that the digital signatures result in high computational delays and hence not suitable for time critical GOOSE messages with stringent 3 ms timing requirements. Recently published IEC 62351-6 standard proposed light weight message authentication code (MAC) algorithms to secure the GOOSE messages [11][12][13] . Authors in 14 introduced cachingbased MAC and less-online/more-offline MAC signatures which further reduces computational delays.…”

mentioning

confidence: 99%

A novel hybrid methodology to secure GOOSE messages against cyberattacks in smart grids

Hussain

Iqbal

Zanero

et al. 2023

Sci Rep

View full text Add to dashboard Cite

IEC 61850 is emerging as a popular communication standard for smart grids. Standardized communication in smart grids has an unwanted consequence of higher vulnerability to cyber-attacks. Attackers exploit the standardized semantics of the communication protocols to launch different types of attacks such as false data injection (FDI) attacks. Hence, there is a need to develop a cybersecurity testbed and novel mitigation strategies to study the impact of attacks and mitigate them. This paper presents a testbed and methodology to simulate FDI attacks on IEC 61850 standard compliant Generic Object-Oriented Substation Events (GOOSE) protocol using real time digital simulator (RTDS) together with open-source tools such as Snort and Wireshark. Furthermore, a novel hybrid cybersecurity solution by the name of sequence content resolver is proposed to counter such attacks on the GOOSE protocol in smart grids. Utilizing the developed testbed FDI attacks in the form of replay and masquerade attacks on are launched and the impact of attacks on electrical side is studied. Finally, the proposed hybrid cybersecurity solution is implemented with the developed testbed and its effectiveness is demonstrated.

show abstract

A Security Policy Engine for Building Energy Management Systems

Lim,

Ong,

Tefek

et al. 2023

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Caching-based Multicast Message Authentication in Time-critical Industrial Control Systems

Cited by 8 publications

References 31 publications

A novel hybrid cybersecurity scheme against false data injection attacks in automated power systems

A novel hybrid cybersecurity scheme against false data injection attacks in automated power systems

A novel hybrid methodology to secure GOOSE messages against cyberattacks in smart grids

A Security Policy Engine for Building Energy Management Systems

Contact Info

Product

Resources

About