Security Analysis and Auditing of IEC61850-Based Automated Substations

Premaratne, Upeka; Samarabandu, Jagath; Sidhu, T.S.; Beresh, Robert; Jian-cheng, Tan

doi:10.1109/tpwrd.2010.2043122

Cited by 33 publications

(15 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [63] authors developed a scheme to audit the security of IEC 61850 automated substation. The audit scheme consists of security metrics which quantify the security of the network.…”

Section: B Review Of Security Attacks In Iec 61850 Power Utility Autmentioning

confidence: 99%

A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges

Hussain

Ustun

Kalam

2020

IEEE Trans. Ind. Inf.

108

View full text Add to dashboard Cite

Smart grid is the nexus of advanced Information and Communication Technologies (ICT) and legacy power systems. With increasing awareness on vulnerabilities of smart grids to cyber-attacks, cybersecurity is becoming a prime concern. Earlier, it was assumed that power system communication protocols are very specialized and different, so the "security by obscurity" approach would be sufficient. However, with the standardization of communication protocols for power utilities and emergence of power market, this approach is no longer valid. IEC 62351 standard has been published to provide security recommendations for different power system communication protocols including IEC 61850. IEC 61850 is emerging as the most promising and popular power system communication standard. Therefore, in this paper, a detail analysis of security threats, possible attacks and security requirements for IEC 61850 communication is presented. Building on this, the security considerations presented in IEC 62351 for securing different IEC 61850 messages such as Generic Object-Oriented Substation Events (GOOSE), Sampled Values (SV), Routable-GOOSE (R-GOOSE), Routable-SV (R-SV) and Manufacturing Message Specification (MMS) messages have been presented in great detail.

show abstract

“…In [63] authors developed a scheme to audit the security of IEC 61850 automated substation. The audit scheme consists of security metrics which quantify the security of the network.…”

Section: B Review Of Security Attacks In Iec 61850 Power Utility Autmentioning

confidence: 99%

A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges

Hussain

Ustun

Kalam

2020

IEEE Trans. Ind. Inf.

108

View full text Add to dashboard Cite

show abstract

“…Availability in the substation is disrupted by disabling and shutting down the IED operation [18,19]. -Password Cracking Attacks: the purpose of this attack is for the attacker to gain unauthorized access to a system or device.…”

Section: Iec 61850 Security Considerationsmentioning

confidence: 99%

MACsec Layer 2 Security in HSR Rings in Substation Automation Systems

et al. 2017

View full text Add to dashboard Cite

Abstract:The smart-grid concept takes the communications from the enclosed and protected environment of a substation to the wider city or nationwide area. In this environment, cyber security takes a key role in order to secure the communications. The challenge is to be able to secure the grid without impacting the latency while, at the same time, maintaining compatibility with older devices and non secure services. At the lower level, added security must not interfere with the redundancy and the latency required for the real-time substation automation communications. This paper studies how to integrate IEEE MAC Security standard (MACsec) in the substation environment, especially when used in substation system communications that have stringent response time requirements and zero recovery time as defined in IEC 62439-3.

show abstract

“…A recent work specializing in IEC 61850-based SAS proposed a scheme based on a security metric for IEDs [5]. The metric assigns a score to each IED by identifying the IED's vulnerabilities and checking their countermeasures.…”

Section: Other Schemes For Sas and Scada Control Systemsmentioning

confidence: 99%

A Novel Network Modeling and Evaluation Approach for Security Vulnerability Quantification in Substation Automation Systems

Lee

Lim

et al. 2013

IEICE Trans. Inf. & Syst.

View full text Add to dashboard Cite

SUMMARYWith the proliferation of smart grids and the construction of various electric IT systems and networks, a next-generation substation automation system (SAS) based on IEC 61850 has been agreed upon as a core element of smart grids. However, research on security vulnerability analysis and quantification for automated substations is still in the preliminary phase. In particular, it is not suitable to apply existing security vulnerability quantification approaches to IEC 61850-based SAS because of its heterogeneous characteristics. In this paper, we propose an IEC 61850-based SAS network modeling and evaluation approach for security vulnerability quantification. The proposed approach uses network-level and device groupings to categorize the characteristic of the SAS. In addition, novel attack scenarios are proposed through a zoning scheme to evaluate the network model. Finally, an MTTC (Mean Time-to-Compromise) scheme is used to verify the proposed network model using a sample attack scenario.

show abstract

Security Analysis and Auditing of IEC61850-Based Automated Substations

Cited by 33 publications

References 11 publications

A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges

A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges

MACsec Layer 2 Security in HSR Rings in Substation Automation Systems

A Novel Network Modeling and Evaluation Approach for Security Vulnerability Quantification in Substation Automation Systems

Contact Info

Product

Resources

About