Secured access control architecture consideration for smart grids

A. Mutsvangwa, B. Nleya, B. Nleya
{"title":"Secured access control architecture consideration for smart grids","authors":"A. Mutsvangwa, B. Nleya, B. Nleya","doi":"10.1109/POWERAFRICA.2016.7556606","DOIUrl":null,"url":null,"abstract":"Hybrid power systems are rapidly becoming a standard for all smart grids as we gear towards cleaner alternative energy sources. However their management is quite complex due to the different power generating sources which leads to complex management due to the multitudes of data exchange involved. Despite its attractive features, Hybrid Smart Grids remain vulnerable to security threats. In this paper, we summarize some of these potential security issues by exploring data access control mechanisms that ensure privacy to customers. We hereby propose a security model based on attribute-based encryption (ABE). The entire grid network is subdivided into clusters each with its own remote terminal unit (RTU) as well as a gateway smart meter. User data in a given cluster is aggregated and sent to the local substation where it is monitored by the RTU. RTUs and users have attributes and cryptographic keys distributed by several key distribution centers (KDC). RTUs send data encrypted under a set of attributes. Users can decrypt information provided they have valid attributes. The access control scheme is quite resilient because of its being distributed in nature and does not rely on a single KDC to distribute keys. The encryption algorithm is based on Diffie-Hellman key establishment protocol and hash-based message authentication code, which allows smart meters at different clusters of the smart grid to mutually authenticate prior to data/information exchange and in the process maintaining low latency as well as relatively fewer authentication associated messages. Overall the control scheme is relatively collusion resistant.","PeriodicalId":177444,"journal":{"name":"2016 IEEE PES PowerAfrica","volume":"32 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"10","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE PES PowerAfrica","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/POWERAFRICA.2016.7556606","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 10

Abstract

Hybrid power systems are rapidly becoming a standard for all smart grids as we gear towards cleaner alternative energy sources. However their management is quite complex due to the different power generating sources which leads to complex management due to the multitudes of data exchange involved. Despite its attractive features, Hybrid Smart Grids remain vulnerable to security threats. In this paper, we summarize some of these potential security issues by exploring data access control mechanisms that ensure privacy to customers. We hereby propose a security model based on attribute-based encryption (ABE). The entire grid network is subdivided into clusters each with its own remote terminal unit (RTU) as well as a gateway smart meter. User data in a given cluster is aggregated and sent to the local substation where it is monitored by the RTU. RTUs and users have attributes and cryptographic keys distributed by several key distribution centers (KDC). RTUs send data encrypted under a set of attributes. Users can decrypt information provided they have valid attributes. The access control scheme is quite resilient because of its being distributed in nature and does not rely on a single KDC to distribute keys. The encryption algorithm is based on Diffie-Hellman key establishment protocol and hash-based message authentication code, which allows smart meters at different clusters of the smart grid to mutually authenticate prior to data/information exchange and in the process maintaining low latency as well as relatively fewer authentication associated messages. Overall the control scheme is relatively collusion resistant.
对智能电网安全访问控制体系结构的考虑
随着我们转向更清洁的替代能源,混合动力系统正迅速成为所有智能电网的标准。然而,由于不同的发电来源,它们的管理相当复杂,这导致了由于涉及大量数据交换而导致的复杂管理。尽管具有吸引人的特点,但混合智能电网仍然容易受到安全威胁。在本文中,我们通过探索确保客户隐私的数据访问控制机制,总结了其中一些潜在的安全问题。在此,我们提出了一种基于属性加密(ABE)的安全模型。整个电网被细分为集群,每个集群都有自己的远程终端单元(RTU)和一个网关智能电表。给定集群中的用户数据被聚合并发送到由RTU监控的本地变电站。rtu和用户拥有由多个密钥分发中心(KDC)分发的属性和加密密钥。rtu发送的数据在一组属性下加密。用户只要具有有效的属性,就可以解密信息。访问控制方案具有很大的弹性,因为它本质上是分布式的,不依赖于单个KDC来分发密钥。加密算法基于Diffie-Hellman密钥建立协议和基于哈希的消息认证码,允许智能电网不同集群的智能电表在数据/信息交换之前相互认证,并且在此过程中保持低延迟和相对较少的认证关联消息。总的来说,控制方案是相对抗合谋的。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 求助全文
来源期刊
自引率
0.00%
发文量
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信