Cybersecurity based on IEC 62351 and IEC 62443 for IEC 61850 systems

2020 ◽  
Author(s):  
D. Dolezilek ◽  
D. Gammel ◽  
W. Fernandes
Keyword(s):  
Iec 61850 ◽  
Iec 62351 ◽  
Iec 62443

scholarly journals A Survey on Vulnerabilities and Countermeasures in the Communications of the Smart Grid

Electronics ◽  
2021 ◽  
Vol 10 (16) ◽  
pp. 1881
Author(s):  
Jesús Lázaro ◽  
Armando Astarloa ◽  
Mikel Rodríguez ◽  
Unai Bidarte ◽  
Jaime Jiménez
Keyword(s):  
Smart Grid ◽  
Real Time ◽  
International Electrotechnical Commission ◽  
Communication Infrastructure ◽  
Iec 61850 ◽  
Best Effort ◽  
Electrical Grid ◽  
Informational Technology ◽  
Iec 62351 ◽  
Time Critical

Since the 1990s, the digitalization process has transformed the communication infrastructure within the electrical grid: proprietary infrastructures and protocols have been replaced by the IEC 61850 approach, which realizes interoperability among vendors. Furthermore, the latest networking solutions merge operational technologies (OTs) and informational technology (IT) traffics in the same media, such as time-sensitive networking (TSN)—standard, interoperable, deterministic, and Ethernet-based. It merges OT and IT worlds by defining three basic traffic types: scheduled, best-effort, and reserved traffic. However, TSN demands security against potential new cyberattacks, primarily, to protect real-time critical messages. Consequently, security in the smart grid has turned into a hot topic under regulation, standardization, and business. This survey collects vulnerabilities of the communication in the smart grid and reveals security mechanisms introduced by international electrotechnical commission (IEC) 62351-6 and how to apply them to time-sensitive networking.

scholarly journals IEC 62351-4 Security Implementations for IEC 61850 MMS Messages

IEEE Access ◽  
2020 ◽  
Vol 8 ◽  
pp. 123979-123985
Author(s):  
Taha Selim Ustun ◽  
S. M. Suhail Hussain
Keyword(s):  
Iec 61850 ◽  
Iec 62351

scholarly journals A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges

2020 ◽  
Vol 16 (9) ◽  
pp. 5643-5654 ◽  
Author(s):  
S. M. Suhail Hussain ◽  
Taha Selim Ustun ◽  
Akhtar Kalam
Keyword(s):  
Iec 61850 ◽  
Iec 62351

Security Monitoring of IEC 61850 Substations Using IEC 62351-7 Network and System Management

2021 ◽  
pp. 1-1
Author(s):  
Abdullah Albarakati ◽  
Chantale Robillard ◽  
Mark Karanfil ◽  
Marthe Kassouf ◽  
Mourad Debbabi ◽  
...  
Keyword(s):  
System Management ◽  
Iec 61850 ◽  
Security Monitoring ◽  
Iec 62351

scholarly journals IEC 61850 and IEC 62351 Cyber Security Acceleration Workshop

2012 ◽  
Author(s):  
Samuel L. Clements ◽  
Thomas W. Edgar ◽  
David O. Manz
Keyword(s):  
Cyber Security ◽  
Iec 61850 ◽  
Iec 62351

scholarly journals S-GoSV: Framework for Generating Secure IEC 61850 GOOSE and Sample Value Messages

Energies ◽  
2019 ◽  
Vol 12 (13) ◽  
pp. 2536 ◽  
Author(s):  
Shaik Mullapathi Farooq ◽  
S.M. Suhail Hussain ◽  
Taha Selim Ustun
Keyword(s):  
Digital Signature ◽  
Automation System ◽  
Message Authentication ◽  
Message Authentication Code ◽  
Authentication Code ◽  
Iec 61850 ◽  
Digital Signature Algorithm ◽  
Iec 62351 ◽  
Secure Hash Algorithm ◽  
Operation Control

Standardized communication plays an important role in substation automation system (SAS). IEC 61850 is a de-facto standard in SAS. It facilitates smooth communication between different devices located in the substation by achieving interoperability. Generic Object-Oriented Substation Event (GOOSE) and Sample Value (SV) messages developed according to IEC 61850 enable efficient monitoring and operation control of SAS. IEC 61850 is very popular due to its flexible and robust modeling. As the number of critical infrastructures that employed IEC 61850 increases, it is important to study cybersecurity aspects as well. To this end, this paper develops a software framework, S-GoSV (Secure GOOSE and SV), that generates custom GOOSE and Sample Value messages. Furthermore, security features are added to protect them from different security attacks within a substation. IEC 62351-6 specifies digital signatures to achieve node authentication and messages integrity. Therefore, S-GoSV implements RSASSA-PKCS1-v1_5 digital signature algorithm based on RFC 2313. Performance studies show that digital signature algorithms based on RSA signing and verification take long times and do not conform to timing requirements stipulated by IEC 61850 for power system communication. To address this, Message Authentication Code (MAC) based digital signature algorithm, Keyed Hash-Message Authentication Code- Secure Hash Algorithm (HMAC-SHA256), is additionally implemented in S-GoSV framework for securing GOOSE messages.

Sign in / Sign up

Export Citation Format

Share Document