A Survey of Protocol-Level Challenges and Solutions for Distributed Energy Resource Cyber-Physical Security

The increasing proliferation of distributed energy resources (DERs) on the smart grid has made distributed solar and wind two key contributors to the expanding attack surface of the network; however, there is a lack of proper understanding and enforcement of DER communications security requirements. With vendors employing proprietary methods to mitigate hosts of attacks, the literature currently lacks a clear organization of the protocol-level vulnerabilities, attacks, and solutions mapped to each layer of the logical model such as the OSI stack. To bridge this gap and pave the way for future research by the authors in determining key DER security requirements, this paper conducts a comprehensive review of the key vulnerabilities, attacks, and potential solutions for solar and wind DERs at the protocol level. In doing so, this paper serves as a starting point for utilities, vendors, aggregators, and other industry stakeholders to develop a clear understanding of the DER security challenges and solutions, which are key precursors to comprehending security requirements.

• Publication year

  2018

• Venue

  Energies

• Publication date

  2018-09-06

• Fields of study

  Computer Science, Engineering, Environmental Science

• Identifiers
  DOI 10.3390/EN11092360
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• The Impact of Dragonfly Malware on Industrial Control Systems

  2020cited by this paper
• Future Directions to the Application of Distributed Fog Computing in Smart Grid Systems

  2019cited by this paper
• Primary frequency control and dynamic grid support for vehicle-to-grid in transmission systems

  2018cited by this paper
• Implementing Security for Critical Infrastructure Wide-Area Networks

  2018cited by this paper
• A Tri-Modular Human-on-the-Loop Framework for Intelligent Smart Grid Cyber-Attack Visualization

  2018cited by this paper
• Smart grids security challenges: Classification by sources of threats

  2018cited by this paper
• An improved secret key update for multiple intersymbol obfuscation in physical layer security

  2017cited by this paper
• Authenticated anonymous secure on demand routing protocol in VANET (Vehicular adhoc network)

  2017cited by this paper
• Internet of Things (IoT) communication protocols: Review

  2017cited by this paper
• Design of framework and analysis of Internet of things at data link layer

  2017cited by this paper
• A review on security and privacy issues in wireless sensor networks

  2017cited by this paper
• Approaches to Modeling the Impact of Cyber Attacks on a Mission

  2017cited by this paper
• Cyber attack models for smart grid environments

  2017cited by this paper
• Enhanced utility-scale photovoltaic units with frequency support functions and dynamic grid support for transmission systems

  2017cited by this paper
• Trends and Future Directions of Research for Smart Grid IoT Sensor Networks

  2017cited by this paper
• A survey on ARP cache poisoning and techniques for detection and mitigation

  2017cited by this paper
• An efficient MQTT framework for control and protection of networked cyber-physical systems

  2017cited by this paper
• Powerful IEDs, ethernet networks and their effects on IEC 61850-based electric power utilities security

  2017cited by this paper
• Cyber Security Assessment of Distributed Energy Resources

  2017cited by this paper
• Cross layer approach for detection and prevention of Sinkhole Attack using a mobile agent

  2017cited by this paper
• An interactive visualization tool for teaching ARP spoofing attack

  2017cited by this paper
• Orchestration of reliable three-layer networks

  2017cited by this paper
• Secure group communication schemes for dynamic heterogeneous distributed computing

  2017cited by this paper
• Cyber security vulnerability assessment for Smart substations

  2016cited by this paper
• DDoS attack algorithm using ICMP flood

  2016cited by this paper
• Telecommunication traffic through submarine cables: Security and vulnerabilities

  2016cited by this paper
• A Survey of Man In The Middle Attacks

  2016cited by this paper
• Research on the effects of transport protocols on the application performance based on OPNET

  2016cited by this paper
• Adaptive cross-layer-based TCP congestion control for 4G wireless mobile cloud access

  2016cited by this paper
• A comprehensive study on security attacks on SSL/TLS protocol

  2016cited by this paper
• The importance of testing Smart Grid IEDs against security vulnerabilities

  2016cited by this paper
• Development of unidirectional security gateway appliance using intel 82580EB NIC interface

  2016cited by this paper
• Rapid migration of VMs on a datacenter under cyber attack over optical infrastructure

  2016cited by this paper
• Security Implications of Transport Layer Protocols in Power Grid Synchrophasor Data Communication

  2016cited by this paper
• Packet scheduling attacks on shipboard networked control systems

  2015cited by this paper
• Cyber security attacks on network with transition mechanisms

  2015cited by this paper
• Analysis of UDP DDoS flood cyber attack and defense mechanisms on Web Server with Linux Ubuntu 13

  2015cited by this paper
• Short Paper: IP spoofing detection for preventing DDoS attack in Cloud Computing

  2015cited by this paper
• Performance Comparison of TCP, UDP, and TFRC in Wired Networks

  2015cited by this paper
• Smart Home Communication Technologies and Applications: Wireless Protocol Assessment for Home Area Network Resources

  2015cited by this paper
• A survey on security assessment of metering infrastructure in Smart Grid systems

  2015cited by this paper
• Defending mechanisms for protecting power systems against intelligent attacks

  2015cited by this paper
• What protection engineers need to know about networking

  2015cited by this paper
• Integrity based relationships and trustworthy communication between network participants

  2014cited by this paper
• Electric utility enterprise architecture to support the Smart Grid- Enterprise architecture for the Smart Grid

  2014cited by this paper
• The Enhancement of Communication Technologies and Networks for Smart Grid Applications

  2014cited by this paper
• Layered Defense in Depth Model for IT Organizations

  2014cited by this paper
• Unified Field Area Network Architecture for Distribution Automation Internet of Things Field Infrastructure

  2014cited by this paper
• A Survey of Ethernet LAN Security

  2013cited by this paper
• An Enhanced Security for TCP/IP Protocol Suite

  2013cited by this paper
• Detecting SIP flooding attacks on IP Multimedia Subsystem (IMS)

  2012cited by this paper
• IEC61850 substation experiences DPSP 2012

  2012cited by this paper
• Cyber-power system security in a smart grid environment

  2012cited by this paper
• Cyber intrusion of wind farm SCADA system and its impact analysis

  2011cited by this paper
• Comparative Evaluation of Spoofing Defenses

  2011cited by this paper
• IP network-based trust management system

  2011cited by this paper
• Light weight approach for IP-ARP spoofing detection and prevention

  2011cited by this paper
• Research based on OSI model

  2011cited by this paper
• A Distributed Intrusion Detection System against flooding Denial of Services attacks

  2011cited by this paper
• Analysis and application of Wireshark in TCP/IP protocol teaching

  2010cited by this paper
• Wireless transmission of RS232 interface signal based on ZigBee

  2010cited by this paper
• Real time test bed development for power system operation, control and cyber security

  2010cited by this paper
• The Security and Promotion Method of Transport Layer of TCP/IP Agreement

  2010cited by this paper
• Research on the network security based on radiated virus

  2010cited by this paper
• Analyze and Evaluate the performance of SCTP at transport layer

  2010cited by this paper
• FTTH network survivability security based on massive fiber optic mechanical switch in consolidated central office

  2010cited by this paper
• Maximizing Ethernet Security by Switch-Based Single Secure Domain

  2010cited by this paper
• NIST Framework and Roadmap for Smart Grid Interoperability Standards, Release 1.0

  2010cited by this paper
• UDP based chat application

  2010cited by this paper
• A link-layer-based self-replicating vulnerability discovery agent

  2010cited by this paper
• Demystifying and Rate Limiting ICMP hosted DoS/DDoS Flooding Attacks with Attack Productivity Analysis

  2009cited by this paper
• A Taxonomy of Attacks on the DNP3 Protocol

  2009cited by this paper
• Centralized control type monitoring system of electricity meter based on BACnet (a data communication protocol for building automation and control networks)

  2009cited by this paper
• Malicious JavaScript Insertion through ARP Poisoning Attacks

  2009cited by this paper
• Transport Level Address for application level communication

  2009cited by this paper
• Controlling IP Spoofing through Interdomain Packet Filters

  2008cited by this paper
• Quantum Cryptography For Secure Optical Networks

  2007cited by this paper
• Context Information based Cyber Security Defense of Protection System

  2007cited by this paper
• OSI Reference Model - The ISO Model of Architecture for Open Systems Interconnection

  2007cited by this paper
• Security Issues in the TCP/IP Suite

  2007cited by this paper
• Interoperability Context-Setting Framework

  2007cited by this paper
• Control Systems Cyber Security: Defense-in-Depth Strategies

  2006cited by this paper
• Communications Link Layer Security

  2006cited by this paper
• A Thin Security Layer Protocol over IP Protocol on TCP/IP Suite for Security Enhancement

  2006cited by this paper
• Improving Network Infrastructure Security by Partitioning Networks Running Spanning Tree Protocol

  2006cited by this paper
• Analysis of low-rate TCP DoS attack against FAST TCP

  2006cited by this paper
• An Architecture for Multi-Security Level Network Traffic

  2006cited by this paper
• Integrated TCP/IP protocol software testing for vulnerability detection

  2003cited by this paper
• Building blocks of a simulation environment of the OSI network layer of packet-switching networks

  2003cited by this paper
• Security features in Ethernet switches for access networks

  2003cited by this paper
• Transport layer proxy for stateful UDP packet filtering

  2002cited by this paper
• Data security on Ethernet LANs

  2000cited by this paper
• Fairness issues for mixed TCP/OSI internets

  1991cited by this paper
• Traffic flow confidentiality security service in OSI computer network architecture

  1990cited by this paper
• An open network management architecture: OSI/NM Forum architecture and concepts

  1990cited by this paper
• End-to-end encryption at the network layer

  1989cited by this paper
• Security problems in the TCP/IP protocol suite

  1989cited by this paper
• A security standard for LANs

  1989cited by this paper
• OSI upper layer protocol requirements for TMN operations

  1988cited by this paper
• Security in the OSI model

  1988cited by this paper

• Cybersecurity of Cyber-Physical Systems in the Quantum Era: A Systematic Literature Review-Based Approach

  2026cites this paper
• A comprehensive review of DERMS for smart and secure energy networks: standards, protocols, and security considerations

  2025influential citation
• Cybersecurity In Blockchain and Potential Risk of Undressed Fraud In Crypto

  2025cites this paper
• Cyber–Physical–Social Security of High‐DER‐Penetrated Smart Grids: Threats, Countermeasures, and Challenges

  2025cites this paper
• Communication Technologies for DER-Centric Power Distribution Systems: A Comparative Analysis and Cyber-Resilience Guidelines

  2024influential citation
• Performance, privacy and security issues at the TCP internet layer

  2024cites this paper
• Experimental Study of an Industrial Data Transmission Network in the Automatic Control System of a Wind Turbine

  2024cites this paper
• A Survey on Cyber-Physical Security of Active Distribution Networks in Smart Grids

  2024cites this paper
• A Review of Smart Photovoltaic Systems Which Are Using Remote-Control, AI, and Cybersecurity Approaches

  2024cites this paper
• A Comprehensive Threat Modelling Analysis for Distributed Energy Resources

  2024cites this paper
• Cyber Threats and Resilience in Smart Grids and Microgrids: A Cybersecurity Perspective on Challenges and Innovations

  2024cites this paper
• Assessing the impact of cybersecurity attacks on energy systems

  2023cites this paper
• Impact, Vulnerabilities, and Mitigation Strategies for Cyber-Secure Critical Infrastructure

  2023influential citation
• Internet of Things (IoT) security dataset evolution: Challenges and future directions

  2023cites this paper
• Security analysis of digitized substations: A systematic review of GOOSE messages

  2023cites this paper
• What Drives Recommendation Intention and Loyalty of Online for Offline (O4O) Consumers?

  2023cites this paper
• Countermeasuring MITM Attacks in Solar-Powered PON-Based FiWi Access Networks

  2023cites this paper
• Model Based Risk Assessment and Risk Mitigation Framework for Cyber-Physical Systems

  2023cites this paper
• Disruptive Effects of Denial-of-Service (DoS)Attacks on Microgrid Distributed Control: Altered Communication Topology, Voltage Stability, and Accurate Power Allocation

  2023cites this paper
• Analyzing the Effects of Interference and Packet Loss on Consensus-Based Secondary Control in Islanded AC Microgrid

  2023cites this paper
• A Study on Self-Security of Smart Inverters

  2023cites this paper
• Cybersecurity challenges in IoT-based smart renewable energy

  2023cites this paper
• Towards a Testbed for Critical Industrial Systems: SunSpec Protocol on DER Systems as a Case Study

  2022cites this paper
• Distributed Energy Resources Cybersecurity Outlook: Vulnerabilities, Attacks, Impacts, and Mitigations

  2022influential citation
• Cyberphysical Security of Grid Battery Energy Storage Systems

  2022influential citation
• Electric Vehicle Charging: A Survey on the Security Issues and Challenges of the Open Charge Point Protocol (OCPP)

  2022cites this paper
• Cyber–physical vulnerability and resiliency analysis for DER integration: A review, challenges and research needs

  2022cites this paper
• Solutions for Digital Interaction of a Resilient Energy Community in a Service-oriented Framework

  2022cites this paper
• REAL SIMULATION OF A "WAR DRIVING" ATTACK ON A WIRELESS NETWORK

  2022cites this paper
• Cluster Head Federates for Distributed Energy Resources

  2022cites this paper
• SiNED-Ancillary Services for Reliable Power Grids in Times of Progressive German Energiewende and Digital Transformation

  2021cites this paper
• Cybersecurity Certification Recommendations for Interconnected Grid Edge Devices and Inverter Based Resources

  2021cites this paper
• Conceptualization of a new generation of smart energy systems and the transition toward them using anticipatory systems

  2021cites this paper
• Cybersecurity Considerations for Grid-Connected Batteries with Hardware Demonstrations

  2021cites this paper
• Detection of False Data Injection of PV Production

  2021cites this paper
• Resilience in an Evolving Electrical Grid

  2021influential citation
• Countering FDI Attacks on DERs Coordinated Control System Using FMI-Compatible Cosimulation

  2021cites this paper
• Impact Analysis of Cyber Attacks on Smart Grid: A Review and Case Study

  2021cites this paper
• Intelligent Buildings in Smart Grids: A Survey on Security and Privacy Issues Related to Energy Management

  2021cites this paper
• A Multidimensional Holistic Framework for the Security of Distributed Energy and Control Systems

  2020cites this paper
• Taxonomy of Security Threats in Energy Systems

  2020cites this paper
• Module-OT: A Hardware Security Module for Operational Technology

  2020cites this paper
• Adapting big data standards, maturity models to smart grid distributed generation: critical review

  2020cites this paper
• Power system effects and mitigation recommendations for DER cyberattacks

  2019cites this paper
• Communications for Exploiting Flexible Resources in the Framework of Smart Grids in Islands

  2019cites this paper
• Recommended Functionalities for Improving Cybersecurity of Distributed Energy Resources

  2019cites this paper
• Evaluation of Missing Data Imputation Methods for an Enhanced Distributed PV Generation Prediction

  2019cites this paper
• Case study on the effects of partial solar eclipse on distributed PV systems and management areas

  2019cites this paper
• An Overview of Distributed Energy Resource (DER) Interconnection: Current Practices and Emerging Solutions

  2019cites this paper
• Behavior Analysis and Anomaly Detection for a Digital Substation on Cyber-Physical System

  2019cites this paper
• Assessing the Impact of Cybersecurity Attacks on Power Systems

  2019cites this paper