Authentication and Integrity in the Smart Grid: An Empirical Study in Substation Automation Systems

The smart grid is an emerging technology that integrates power infrastructures with information technologies to enable intelligent energy managements. As one of the most important facilities of power infrastructures, electrical substations undertake responsibilities of energy transmissions and distributions by operating interconnected electrical devices in a coordinated manner. Accordingly, it imposes a great challenge on information security, since any falsifications may trigger mal-operations, and result in damages to power usage. In this paper, we aim at authentication and integrity protections in substation automation systems (SAS), by an experimental approach on a small scale SAS prototype, in which messages are transmitted with commonly-used data origin authentication schemes, such as RSA, Message Authentication Code, and One-Time Signature. Through experimental results, we find that, current security solutions cannot be applied directly into the SAS due to insufficient performance considerations in response to application constraints, including limited device computation capabilities, stringent timing requirements and high data sampling rates. Moreover, intrinsic limitations of security schemes, such as complicated computations, shorter key valid time and limited key supplies, can easily be hijacked by malicious attackers, to undermine message deliveries, thus becoming security vulnerabilities. Our experimental results demonstrate guidelines in design of novel security schemes for the smart grid.

• Publication year

  2012

• Venue

  Int. J. Distributed Sens. Networks

• Publication date

  2012-06-01

• Fields of study

  Computer Science, Engineering, Environmental Science

• Identifiers
  DOI 10.1155/2012/175262
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• From jammer to gambler: Modeling and detection of jamming attacks against time-critical traffic

  2011cited by this paper
• Cascading Failures : Extreme Properties of Large Blackouts in the Electric Grid

  2011cited by this paper
• Power System Commissioning and Maintenance Practice

  2011cited by this paper
• Multicast Authentication in the Smart Grid With One-Time Signature

  2011influential reference
• A survey on the communication architectures in smart grid

  2011cited by this paper
• A Survey of Wireless Communications for the Electric Power System

  2010cited by this paper
• NIST Framework and Roadmap for Smart Grid Interoperability Standards, Release 1.0

  2010cited by this paper
• Design Principles for Power Grid Cyber-Infrastructure Authentication Protocols

  2010cited by this paper
• Review and evaluation of security threats on the communication networks in the smart grid

  2010cited by this paper
• Flexible multicast authentication for time-triggered embedded control network applications

  2009cited by this paper
• Time Valid One-Time Signature for Time-Critical Multicast Data Authentication

  2009influential reference
• Protective Relays: Their Theory, Design, and Practical Operation

  2008cited by this paper
• Implementation Issues with IEC 61850 Based Substation Automation Systems

  2008cited by this paper
• Testing of complex IEC 61850 based substation automation systems

  2008cited by this paper
• Demand Response in Electricity Markets: An Overview

  2007cited by this paper
• A survey on communication networks for electric system automation

  2006cited by this paper
• IED modelling for IEC61850 based substation automation system performance simulation

  2006cited by this paper
• Toward smarter current relays for power grids

  2006cited by this paper
• One-Time Signatures Revisited: Have They Become Practical?

  2005cited by this paper
• A taxonomy of multicast data origin authentication: Issues and solutions

  2004influential reference
• Better than BiBa: Short One-Time Signatures with Fast Signing and Verifying

  2002influential reference
• The BiBa one-time signature and broadcast authentication protocol

  2001cited by this paper
• Efficient and Secure Source Authentication for Multicast

  2001influential reference
• Efficient authentication and signing of multicast streams over lossy channels

  2000influential reference
• Efficient Authentication and Signing of Multicast Streams over Lossy Channels

  2000cited by this paper
• Multicast security: a taxonomy and some efficient constructions

  1999cited by this paper
• A Certified Digital Signature

  1989cited by this paper
• IEC 61850 Communication Networks and Systems In Substations: An Overview for Users

  1988cited by this paper
• A method for obtaining digital signatures and public-key cryptosystems

  1978cited by this paper

• A Survey on Man-in-the-Middle Attacks in Distributed Energy Resources (DER) and Industrial Control System(ICS) Environments

  2025cites this paper
• An Improved Machine Learning Based Improved GOOSE Protocol for Fault Detection

  2024cites this paper
• Analysis of Message Authentication Solutions for IEC 61850 in Substation Automation Systems

  2022cites this paper
• Security Challenges in Internet of Things (IoT) Integrated Power and Energy (PaE) Systems

  2022cites this paper
• Cyber Security Strategies for the Protection of Electrical Substations

  2022cites this paper
• Data and Communication Infrastructure in Smart Grids

  2021cites this paper
• An Adaptive Encryption-as-a-Service Architecture Based on Fog Computing for Real-Time Substation Communications

  2020cites this paper
• Evaluating Cryptographic Algorithms in IEC 61850 Networks

  2019cites this paper
• Uma avaliação de Algoritmos Criptográficos em Redes IEC 61850: Uma Abordagem Prática

  2019cites this paper
• Experimental Comparison of Multicast Authentication for Wide Area Monitoring Systems

  2018influential citation
• A Secure and Efficient Framework to Read Isolated Smart Grid Devices

  2017cites this paper
• Review on cyber vulnerabilities of communication protocols in industrial control systems

  2017cites this paper
• Smart Meter Data Privacy: A Survey

  2017cites this paper
• Review on cyber vulnerabilities of communication protocols in industrial control systems

  2017cites this paper
• Efficiency optimisation signature scheme for time-critical multicast data origin authentication

  2016cites this paper
• Data-centric threats and their impacts to real-time communications in smart grid

  2016cites this paper
• Sistema de ayuda a la selección de soluciones de protección de datos personales, para los productos y servicios en "Internet de las Cosas"

  2016cites this paper
• Secure DNP3 Services Scheme in Smart Grid Link Layer Based on GCM-AES

  2016cites this paper
• A method for describing industrial control system network attack using object Petri net

  2016cites this paper
• Trust system architecture for securing GOOSE communication in IEC 61850 substation network

  2016cites this paper
• Security and Feasibility of Power Line Communication System

  2015cites this paper
• Camouflage Traffic: Minimizing Message Delay for Smart Grid Applications under Jamming

  2015cites this paper
• City Research Online

  2015cites this paper
• A Secure Communication Architecture for Distributed Microgrid Control

  2015cites this paper
• Securing DC and hybrid microgrids

  2015cites this paper
• Minimizing Message Delay of Time-Critical Traffic for Wireless Smart Grid Applications Under Jamming

  2015cites this paper
• Authenticated Smart Powercomm: A Review

  2015cites this paper
• SECURE REAL-TIME SMART GRID COMMUNICATIONS: A MICROGRID PERSPECTIVE

  2015cites this paper
• One-time symmetric key based cloud supported secure smart meter reading

  2014cites this paper
• Survey in Smart Grid and Smart Home Security: Issues, Challenges and Countermeasures

  2014cites this paper
• Electromagnetic compatibility studies within smart grid automated substations

  2014cites this paper
• Domino of the smart grid: An empirical study of system behaviors in the interdependent network architecture

  2013cites this paper
• An Empirical Study of Communication Infrastructures Towards the Smart Grid: Design, Implementation, and Evaluation

  2013cites this paper
• Authenticated Blind Issuing of Symmetric Keys for Mobile Access Control System without Trusted Parties

  2013cites this paper
• Secure and Efficient Report Protocol for Networked Smart Grid Systems Using Linear Map

  2013cites this paper
• Game Optimization for Time-Critical Multicast Data Origin Authentication: Trade Off between Security and Efficiency

  2013cites this paper
• Device authentication protocol for smart grid systems using homomorphic hash

  2012cites this paper