建立变电站的安全体系结构

2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies Pub Date : 2011-12-01 DOI:10.1109/ISGTEurope.2011.6162824

Shailendra Fuloria, Ross J. Anderson

{"title":"建立变电站的安全体系结构","authors":"Shailendra Fuloria, Ross J. Anderson","doi":"10.1109/ISGTEurope.2011.6162824","DOIUrl":null,"url":null,"abstract":"The security of the electricity delivery system has received much attention recently with increasing focus on Smart Grids. While substations used to be protected by concrete walls and barbed wire, today the industry is getting worried about attacks over the communication infrastructure. In this paper, we analyse the primary threats and present a first cut of a security architecture. We suggest security policy options for utilities, as well as protocols to do key management for substations. We conclude that the priority should be to secure the electronic perimeter of substation—as this has the maximum impact. Authentication should be done at the level of the substation station room rather the substation bays. Using cryptography for authentication inside substation bays does not have significant benefits, but is likely to bring fragility instead.","PeriodicalId":419250,"journal":{"name":"2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"Towards a security architecture for substations\",\"authors\":\"Shailendra Fuloria, Ross J. Anderson\",\"doi\":\"10.1109/ISGTEurope.2011.6162824\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The security of the electricity delivery system has received much attention recently with increasing focus on Smart Grids. While substations used to be protected by concrete walls and barbed wire, today the industry is getting worried about attacks over the communication infrastructure. In this paper, we analyse the primary threats and present a first cut of a security architecture. We suggest security policy options for utilities, as well as protocols to do key management for substations. We conclude that the priority should be to secure the electronic perimeter of substation—as this has the maximum impact. Authentication should be done at the level of the substation station room rather the substation bays. Using cryptography for authentication inside substation bays does not have significant benefits, but is likely to bring fragility instead.\",\"PeriodicalId\":419250,\"journal\":{\"name\":\"2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2011-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISGTEurope.2011.6162824\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISGTEurope.2011.6162824","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

近年来，随着智能电网的发展，电力输送系统的安全性日益受到人们的关注。虽然变电站过去是由混凝土墙和铁丝网保护的，但今天该行业开始担心对通信基础设施的攻击。在本文中，我们分析了主要的威胁，并提出了一个安全架构的第一步。我们建议为公用事业提供安全策略选项，以及为变电站进行密钥管理的协议。我们的结论是，首要任务应该是确保变电站的电子边界，因为这有最大的影响。认证应在变电站站房而不是变电站仓一级进行。在变电站箱体内使用加密技术进行认证并没有显著的好处，反而可能带来脆弱性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Towards a security architecture for substations

The security of the electricity delivery system has received much attention recently with increasing focus on Smart Grids. While substations used to be protected by concrete walls and barbed wire, today the industry is getting worried about attacks over the communication infrastructure. In this paper, we analyse the primary threats and present a first cut of a security architecture. We suggest security policy options for utilities, as well as protocols to do key management for substations. We conclude that the priority should be to secure the electronic perimeter of substation—as this has the maximum impact. Authentication should be done at the level of the substation station room rather the substation bays. Using cryptography for authentication inside substation bays does not have significant benefits, but is likely to bring fragility instead.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2011 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies

自引率

0.00%

发文量