Impact of Cyber-attacks on EV Charging Coordination: The Case of Single Point of Failure

Gümrükcü, Erdem; Ali, Arsalan; Muriithi, Grace; Joglekar, Charukeshi; Aboulebdeh, Ahmed; Zehir, Mustafa Alparslan; Papari, Behnaz; Monti, Antonello

doi:10.1109/gpecom55404.2022.9815727

Cited by 19 publications

(12 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additional work by other authors can be reviewed in [32][33][34][35][36][37][38][39][40][41][42][43][44][45][46][47][48]. As can be seen from the review, the use of Kali Linux [49] in the process of studying the network security level of PEDs has not been proposed.…”

Section: Related Workmentioning

confidence: 99%

“…The mobile workstation is connected to this port and, with the installed monitoring tools, it monitors the traffic exchanged between the PED and the monitoring center. Additional work by other authors can be reviewed in [32][33][34][35][36][37][38][39][40][41][42][43][44][45][46][47][48]. As can be seen from the review, the use of Kali Linux [49] in the process of studying the network security level of PEDs has not been proposed.…”

Section: Experiemtnal Setupmentioning

confidence: 99%

See 1 more Smart Citation

Study the Level of Network Security and Penetration Tests on Power Electronic Device

Nedyalkov

2024

Computers

View full text Add to dashboard Cite

This work demonstrates the feasibility of using Kali Linux in the process of power electronic device research. The novelty in this work is the use of Kali Linux in the process of power electronic device research. This operating system is mainly used for the penetration testing of various communication devices but not for power electronic device research. The aim of this work is to study the level of network security (the type of security vulnerabilities that a power electronic device has) and whether the data exchange between the power electronic device and the monitoring and control center is secure. Additionally, penetration testing has been carried out. Kali Linux was used to implement these tasks. Penetration testing was performed to verify how the studied power electronic device reacted to various TCP DoS attacks—could it be accessed, was it blocked, etc. Kali Linux and some of the tools built into the operating system—Nmap, hping3, Wireshark, Burp Suite Community Edition—were used for this study. During the penetration tests, a characterization of the traffic being processed/generated by the studied power electronic device was carried out to evaluate and analyze what impact each TCP DoS attack had on the device’s performance. In order to conduct the study, an experimental setup was designed. This experimental network was not connected to other networks, so the cyber attacks were controlled and confined within the experimental network. The research carried out validated the use of Kali Linux for the study of power electronic devices. From the obtained results, it is found that the studied power electronic device provides a certain level of network security, but the data exchange is insecure.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Experiemtnal Setupmentioning

confidence: 99%

Study the Level of Network Security and Penetration Tests on Power Electronic Device

Nedyalkov

2024

Computers

View full text Add to dashboard Cite

show abstract

“…Cyberattacks could also have serious negative effects on users, the distribution network operator, and the charging coordinator by exchanging sensitive information, which could have unavoidable technical and financial repercussions [16]. Researchers have also found flaws that might cause regional or nationwide disruptions in EVSE devices, communications to EVs, and cloud services provided by EVSE vendors, third-party systems, and grid operators [4].…”

Section: Evcharging Apps and Their Vulnerabilitiesmentioning

confidence: 99%

Untitled

2024

IJCSIT

View full text Add to dashboard Cite

The security of Electric Vehicle (EV) charging has gained momentum after the increase in the EV adoption in the past few years. Mobile applications have been integrated into EV charging systems that mainly use a cloud-based platform to host their services and data. Like many complex systems, cloud systems are susceptible to cyberattacks if proper measures are not taken by the organization to secure them. In this paper, we explore the security of key components in the EV charging infrastructure, including the mobile application and its cloud service. We conducted an experiment that initiated a Man in the Middle attack between an EV app and its cloud services. Our results showed that it is possible to launch attacks against the connected infrastructure by taking advantage of vulnerabilities that may have substantial economic and operational ramifications on the EV charging ecosystem. We conclude by providing mitigation suggestions and future research directions.

show abstract

“…For instance, Kaspersky Lab reported a security breach in an EV charging application, which would let a remote attacker intrude into the charging system and tamper the system through the Wi-Fi connection [32]. A security breach was also reported in the EVlink chargers produced by Schneider Electric [33]. The breach would allow an attacker to bypass the authentication credentials, send malware, and deactivate the charging system.…”

Section: Cybersecurity Of Bmsmentioning

confidence: 99%

Cyber-Physical Cloud Battery Management Systems: Review of Security Aspects

et al. 2023

View full text Add to dashboard Cite

Battery management systems (BMSs) are critical to ensure the efficiency and safety of high-power battery energy storage systems (BESSs) in vehicular and stationary applications. Recently, the proliferation of battery big data and cloud computing advancements has led to the development of a new generation of BMSs, named Cloud BMS (CBMS), aiming to improve the performance and safety of BESSs. The CBMS is a cyber-physical system with connectivity between the physical BMS and a cloud-based virtual BMS, which is realized through a communication channel such as Internet of Things. Compared to the traditional BMS, the CBMS offers significantly higher computational resources, leveraging the implementation of advanced digital twin models and best-in-class algorithms in the BMS software, which will provide superior performances. However, as for any other CPS, the CBMS creates vulnerabilities against cyberattacks and if not properly secured, could end up damaging the BESS and/or causing dangerous, expensive, and life-threatening situations. Cybersecurity of the CBMSs has thus become a trending topic and several works have been published in this area in recent years. This paper conducts a scoping review to address different topics related to BMS cybersecurity. The CBMS architecture is presented, and the potential cyberattack surfaces are identified. Different possible attack scenarios, including attack points, attack types, and their impact at the component level (BMS and BESS) and system level (vehicle or grid), are discussed. In addition, the paper provides a review of potential countermeasures to protect the CBMS against cyberattacks. The paper also includes a review of the applicable standards and regulations that relate to this trending topic. Finally, based on the reviewed gaps, potential future research domains on BMS cybersecurity topics are identified and presented at the end of the paper.

show abstract

Impact of Cyber-attacks on EV Charging Coordination: The Case of Single Point of Failure

Cited by 19 publications

References 21 publications

Study the Level of Network Security and Penetration Tests on Power Electronic Device

Study the Level of Network Security and Penetration Tests on Power Electronic Device

Untitled

Cyber-Physical Cloud Battery Management Systems: Review of Security Aspects

Contact Info

Product

Resources

About