Author:
Hussain Shahbaz,Iqbal Atif,Hussain S. M. Suhail,Zanero Stefano,Shikfa Abdullatif,Ragaini Enrico,Khan Irfan,Alammari Rashid
Abstract
AbstractIEC 61850 is emerging as a popular communication standard for smart grids. Standardized communication in smart grids has an unwanted consequence of higher vulnerability to cyber-attacks. Attackers exploit the standardized semantics of the communication protocols to launch different types of attacks such as false data injection (FDI) attacks. Hence, there is a need to develop a cybersecurity testbed and novel mitigation strategies to study the impact of attacks and mitigate them. This paper presents a testbed and methodology to simulate FDI attacks on IEC 61850 standard compliant Generic Object-Oriented Substation Events (GOOSE) protocol using real time digital simulator (RTDS) together with open-source tools such as Snort and Wireshark. Furthermore, a novel hybrid cybersecurity solution by the name of sequence content resolver is proposed to counter such attacks on the GOOSE protocol in smart grids. Utilizing the developed testbed FDI attacks in the form of replay and masquerade attacks on are launched and the impact of attacks on electrical side is studied. Finally, the proposed hybrid cybersecurity solution is implemented with the developed testbed and its effectiveness is demonstrated.
Publisher
Springer Science and Business Media LLC
Reference27 articles.
1. Mazur, D. C., Entzminger, R. A. & Kay, J. A. Enhancing traditional process SCADA and historians for industrial and commercial power systems with energy (Via IEC 61850). IEEE Trans. Ind. Appl. 52(1), 76–82 (2016).
2. Aftab, M. A., Hussain, S. S., Ali, I. & Ustun, T. S. IEC 61850 based substation automation system: A survey. Int. J. Electr. Power Energy Syst. 120, 106008 (2020).
3. Chattopadhyay, A., Ukil, A., Jap, D. & Bhasin, S. Toward threat of implementation attacks on substation security: Case study on fault detection and isolation. IEEE Trans. Ind. Inf. 14, 2442–2451 (2017).
4. El Hariri, M. et al. The iec 61850 sampled measured values protocol: Analysis, threat identification, and feasibility of using nn forecasters to detect spoofed packets. Energies 12, 3731 (2019).
5. Kush, N. S., Ahmed, E., Branagan, M. & Foo, E. Poisoned GOOSE: Exploiting the GOOSE protocol. In Proceedings of the Twelfth Australasian Information Security Conference (AISC 2014)[Conferences in Research and Practice in Information Technology, Volume 149], 2014, pp. 17–22.
Cited by
2 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. A Smart Grid Ontology: Vulnerabilities, Attacks, and Security Policies;2023 IEEE Conference on Communications and Network Security (CNS);2023-10-02
2. Cybersecurity in A Hybrid Microgrid Testbed;2023 IEEE 20th International Conference on Mobile Ad Hoc and Smart Systems (MASS);2023-09-25