基于云的智能电表网络安全防御

2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS) Pub Date : 2020-07-01 DOI:10.1109/ICVRIS51417.2020.00132

Zhang Zhongdong, Cai Ziwen, Yang Jinfeng, Qian Bin, Xiao Yong

{"title":"基于云的智能电表网络安全防御","authors":"Zhang Zhongdong, Cai Ziwen, Yang Jinfeng, Qian Bin, Xiao Yong","doi":"10.1109/ICVRIS51417.2020.00132","DOIUrl":null,"url":null,"abstract":"In Advanced Metering Infrastructure (AMI), smart meters (SM) implement encryption with Embedded Secure Access Module (ESAM) to implement secure communication. However, it may be attacked by malicious adversaries once the ESAM is cracked. Since SM has limited communication and computing resources and cannot detect malicious code, a cloud based cyber security protection approach is proposed to detect malware online. Firstly, the closed and fixed operating environment is utilized to establish and maintain a white list of legal processes in the cloud security server. Thereafter, the malware detection agent is installed in SM, and all operating processes are enumerated by it. The hash code of each process can be calculated as its identity and submitted to the cloud security server. The SM with malware could be identified by comparing it with the whitelist. SM needs only calculate and upload hash code of processes, which is affordable to SM with limited computing & communication resources. The proposed approach can help harden cyber security defense of AMI.","PeriodicalId":162549,"journal":{"name":"2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Cloud Based Cyber Security Defense of Smart Meters\",\"authors\":\"Zhang Zhongdong, Cai Ziwen, Yang Jinfeng, Qian Bin, Xiao Yong\",\"doi\":\"10.1109/ICVRIS51417.2020.00132\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In Advanced Metering Infrastructure (AMI), smart meters (SM) implement encryption with Embedded Secure Access Module (ESAM) to implement secure communication. However, it may be attacked by malicious adversaries once the ESAM is cracked. Since SM has limited communication and computing resources and cannot detect malicious code, a cloud based cyber security protection approach is proposed to detect malware online. Firstly, the closed and fixed operating environment is utilized to establish and maintain a white list of legal processes in the cloud security server. Thereafter, the malware detection agent is installed in SM, and all operating processes are enumerated by it. The hash code of each process can be calculated as its identity and submitted to the cloud security server. The SM with malware could be identified by comparing it with the whitelist. SM needs only calculate and upload hash code of processes, which is affordable to SM with limited computing & communication resources. The proposed approach can help harden cyber security defense of AMI.\",\"PeriodicalId\":162549,\"journal\":{\"name\":\"2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-07-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICVRIS51417.2020.00132\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICVRIS51417.2020.00132","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

在AMI (Advanced Metering Infrastructure)中，智能电表通过ESAM (Embedded Secure Access Module)加密实现通信安全。但是，一旦ESAM被破解，就有可能受到恶意攻击。针对SM通信和计算资源有限，无法检测恶意代码的特点，提出了一种基于云的网络安全防护方法，实现在线检测恶意代码。首先，利用封闭固定的运行环境，在云安全服务器上建立并维护法律流程白名单。然后在SM中安装恶意软件检测代理，并枚举所有的操作进程。每个进程的哈希码可以计算为其身份，并提交给云安全服务器。通过与白名单的比较，可以识别出恶意SM。SM只需要计算和上传进程的哈希码，这对于计算和通信资源有限的SM来说是可以承受的。该方法有助于加强AMI的网络安全防御。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Cloud Based Cyber Security Defense of Smart Meters

In Advanced Metering Infrastructure (AMI), smart meters (SM) implement encryption with Embedded Secure Access Module (ESAM) to implement secure communication. However, it may be attacked by malicious adversaries once the ESAM is cracked. Since SM has limited communication and computing resources and cannot detect malicious code, a cloud based cyber security protection approach is proposed to detect malware online. Firstly, the closed and fixed operating environment is utilized to establish and maintain a white list of legal processes in the cloud security server. Thereafter, the malware detection agent is installed in SM, and all operating processes are enumerated by it. The hash code of each process can be calculated as its identity and submitted to the cloud security server. The SM with malware could be identified by comparing it with the whitelist. SM needs only calculate and upload hash code of processes, which is affordable to SM with limited computing & communication resources. The proposed approach can help harden cyber security defense of AMI.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2020 International Conference on Virtual Reality and Intelligent Systems (ICVRIS)

自引率

0.00%

发文量