减轻基于 CIM 的智能电网内部威胁的授权框架

IF 4.8 2区 工程技术 Q2 ENERGY & FUELS
Payam Mahmoudi-Nasr
{"title":"减轻基于 CIM 的智能电网内部威胁的授权框架","authors":"Payam Mahmoudi-Nasr","doi":"10.1016/j.segan.2024.101572","DOIUrl":null,"url":null,"abstract":"<div><div>A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.</div></div>","PeriodicalId":56142,"journal":{"name":"Sustainable Energy Grids & Networks","volume":"40 ","pages":"Article 101572"},"PeriodicalIF":4.8000,"publicationDate":"2024-11-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An authorization framework to mitigate insider threat in CIM-based smart grid\",\"authors\":\"Payam Mahmoudi-Nasr\",\"doi\":\"10.1016/j.segan.2024.101572\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.</div></div>\",\"PeriodicalId\":56142,\"journal\":{\"name\":\"Sustainable Energy Grids & Networks\",\"volume\":\"40 \",\"pages\":\"Article 101572\"},\"PeriodicalIF\":4.8000,\"publicationDate\":\"2024-11-22\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Sustainable Energy Grids & Networks\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2352467724003023\",\"RegionNum\":2,\"RegionCategory\":\"工程技术\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"ENERGY & FUELS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Sustainable Energy Grids & Networks","FirstCategoryId":"5","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2352467724003023","RegionNum":2,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"ENERGY & FUELS","Score":null,"Total":0}
引用次数: 0

摘要

智能电网(SG)以分布式信息系统的集成数据为基础,通用信息模型(CIM)提供了标准数据基础设施。在智能电网中,恶意的内部操作人员可以通过破坏系统流程导致电力系统大面积故障。当他/她可以访问具有合法权限的集成数据并窃取、删除或修改这些数据时,攻击的严重性就会增加。本文提出了一种授权框架,以减轻在基于 CIM 的 SG 中不正确履行职责的内部操作员的数据访问权限。在所提出的方法中,CIM 类的可访问性是根据操作员信任度和所发布 SQL 命令的关键性级别来确定的。操作员信任度的值是根据其性能定期或在检测到异常情况时计算得出的。建议的方法还能检测操作员性能的异常。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
An authorization framework to mitigate insider threat in CIM-based smart grid
A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
Sustainable Energy Grids & Networks
Sustainable Energy Grids & Networks Energy-Energy Engineering and Power Technology
CiteScore
7.90
自引率
13.00%
发文量
206
审稿时长
49 days
期刊介绍: Sustainable Energy, Grids and Networks (SEGAN)is an international peer-reviewed publication for theoretical and applied research dealing with energy, information grids and power networks, including smart grids from super to micro grid scales. SEGAN welcomes papers describing fundamental advances in mathematical, statistical or computational methods with application to power and energy systems, as well as papers on applications, computation and modeling in the areas of electrical and energy systems with coupled information and communication technologies.
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
确定
请完成安全验证×
copy
已复制链接
快去分享给好友吧!
我知道了
右上角分享
点击右上角分享
0
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信