An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations
The trend of transforming substations into smart automated facilities has led to their swift digitalization and automation. To facilitate data exchange among equipment within these substations, the IEC 61850 standard has become the predominant standard. However, this standardization has inadvertentl...
| Main Authors: | , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2023-01-01
|
| Series: | IEEE Open Access Journal of Power and Energy |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/10065529/ |
| _version_ | 1827379755519836160 |
|---|---|
| author | S. M. Suhail Hussain Mohd Asim Aftab Shaik Mullapathi Farooq Ikbal Ali Taha Selim Ustun Charalambos Konstantinou |
| author_facet | S. M. Suhail Hussain Mohd Asim Aftab Shaik Mullapathi Farooq Ikbal Ali Taha Selim Ustun Charalambos Konstantinou |
| author_sort | S. M. Suhail Hussain |
| collection | DOAJ |
| description | The trend of transforming substations into smart automated facilities has led to their swift digitalization and automation. To facilitate data exchange among equipment within these substations, the IEC 61850 standard has become the predominant standard. However, this standardization has inadvertently made these substations more susceptible to cyberattacks, which is a significant concern given the confidential information that is transmitted. As a result, cybersecurity in substations is becoming an increasingly critical topic. IEC 62351 standard provides guidelines and considerations for securing the IEC 61850 messages to mitigate their vulnerabilities. While securing Generic Object-Oriented Substation Event (GOOSE) messages has received considerable attention in literature, the same level of scrutiny has not been applied to Sampled Value (SV) messages despite their susceptibility to cyberattacks and similar frame format. This paper presents the impact of replay and masquerade attacks on SV messages. It also develops a scheme for securing SV messages against these attacks. Due to high sampling rate and time critical nature of SV messages, the time complexity of security scheme is critical for its applicability to SV messages. Hence, in this work, SV emulators have been developed in order to send these modified secure SV messages and investigate their timing performance. The results show that the proposed scheme can mitigate replay and masquerade attacks on SV messages while providing the necessary high sampling rate and stringent timing requirements. |
| first_indexed | 2024-03-08T13:21:45Z |
| format | Article |
| id | doaj.art-80b0041d6e624c22bcf3201f41b0b5f7 |
| institution | Directory Open Access Journal |
| issn | 2687-7910 |
| language | English |
| last_indexed | 2024-03-08T13:21:45Z |
| publishDate | 2023-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Open Access Journal of Power and Energy |
| spelling | doaj.art-80b0041d6e624c22bcf3201f41b0b5f72024-01-18T00:01:57ZengIEEEIEEE Open Access Journal of Power and Energy2687-79102023-01-011030431510.1109/OAJPE.2023.325579010065529An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated SubstationsS. M. Suhail Hussain0https://orcid.org/0000-0002-7779-8140Mohd Asim Aftab1https://orcid.org/0000-0002-1546-8349Shaik Mullapathi Farooq2https://orcid.org/0000-0003-3630-8974Ikbal Ali3https://orcid.org/0000-0001-9630-8007Taha Selim Ustun4Charalambos Konstantinou5https://orcid.org/0000-0002-3825-3930Electrical Engineering Department, King Fahd University of Petroleum and Minerals (KFUPM), Dhahran, Saudi ArabiaComputer, Electrical and Mathematical Sciences and Engineering (CEMSE) Division, King Abdullah University of Science and Technology (KAUST), Thuwal, Saudi ArabiaSchool of Computer Science and Engineering, Vellore Institute of Technology (VIT), Vellore, IndiaDepartment of Electrical Engineering, Jamia Millia Islamia (a Central University), New Delhi, IndiaFukushima Renewable Energy Institute, AIST (FREA), Koriyama, JapanComputer, Electrical and Mathematical Sciences and Engineering (CEMSE) Division, King Abdullah University of Science and Technology (KAUST), Thuwal, Saudi ArabiaThe trend of transforming substations into smart automated facilities has led to their swift digitalization and automation. To facilitate data exchange among equipment within these substations, the IEC 61850 standard has become the predominant standard. However, this standardization has inadvertently made these substations more susceptible to cyberattacks, which is a significant concern given the confidential information that is transmitted. As a result, cybersecurity in substations is becoming an increasingly critical topic. IEC 62351 standard provides guidelines and considerations for securing the IEC 61850 messages to mitigate their vulnerabilities. While securing Generic Object-Oriented Substation Event (GOOSE) messages has received considerable attention in literature, the same level of scrutiny has not been applied to Sampled Value (SV) messages despite their susceptibility to cyberattacks and similar frame format. This paper presents the impact of replay and masquerade attacks on SV messages. It also develops a scheme for securing SV messages against these attacks. Due to high sampling rate and time critical nature of SV messages, the time complexity of security scheme is critical for its applicability to SV messages. Hence, in this work, SV emulators have been developed in order to send these modified secure SV messages and investigate their timing performance. The results show that the proposed scheme can mitigate replay and masquerade attacks on SV messages while providing the necessary high sampling rate and stringent timing requirements.https://ieeexplore.ieee.org/document/10065529/Substation automationIEC 61850IEC 62351cybersecuritypower system communicationsample values |
| spellingShingle | S. M. Suhail Hussain Mohd Asim Aftab Shaik Mullapathi Farooq Ikbal Ali Taha Selim Ustun Charalambos Konstantinou An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations IEEE Open Access Journal of Power and Energy Substation automation IEC 61850 IEC 62351 cybersecurity power system communication sample values |
| title | An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations |
| title_full | An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations |
| title_fullStr | An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations |
| title_full_unstemmed | An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations |
| title_short | An Effective Security Scheme for Attacks on Sample Value Messages in IEC 61850 Automated Substations |
| title_sort | effective security scheme for attacks on sample value messages in iec 61850 automated substations |
| topic | Substation automation IEC 61850 IEC 62351 cybersecurity power system communication sample values |
| url | https://ieeexplore.ieee.org/document/10065529/ |
| work_keys_str_mv | AT smsuhailhussain aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT mohdasimaftab aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT shaikmullapathifarooq aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT ikbalali aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT tahaselimustun aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT charalamboskonstantinou aneffectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT smsuhailhussain effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT mohdasimaftab effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT shaikmullapathifarooq effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT ikbalali effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT tahaselimustun effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations AT charalamboskonstantinou effectivesecurityschemeforattacksonsamplevaluemessagesiniec61850automatedsubstations |