论文信息 - TSB: Trusted sensing base for the power grid

TSB: Trusted sensing base for the power grid

To protect large-scale power-grid critical infrastructures, efficient security and intrusion prevention techniques are required to prevent remote adversaries from attacking the computational and data resources. Traditionally, trusted computing base solutions, i.e., a small easy-to-verify software and/or hardware component, act as the trust root for the overall execution. In this paper, we present Trusted Sensing Base (TSB), a new data trust root solution for power grid infrastructures. In particular, TSB is attached to exact data acquisition points, where sensors obtain power measurements. TSB's main responsibility is to encrypt analog power current and voltage signals, and feed the sensors, such as phasor measurement units (PMUs), with encrypted signals. Therefore, the proposed TSB solution prevents remote adversarial parties from accessing or modifying the acquired data on a sensor without being detected even if they succeed in full system penetration and completely compromise of the sensor. We have implemented a complete hardware working prototype of TSB, and evaluated it on a real-world power grid testbed infrastructure. Our experimental results show that TSB significantly improves the power grid security with minimal deployment and performance overhead on the power grid operations.

[1] Patrick D. McDaniel,et al. Security and Privacy Challenges in the Smart Grid , 2009, IEEE Security & Privacy.

[2] F. Farzan,et al. Cyber-related risk assessment and critical asset identification within the power grid , 2010, IEEE PES T&D 2010.

[3] Dacfey Dzung,et al. Network Security for Substation Automation Systems , 2001, SAFECOMP.

[4] Bernhard Kauer. OSLO: Improving the Security of Trusted Computing , 2007, USENIX Security Symposium.

[5] Dong-Joo Kang,et al. Proposal strategies of key management for data encryption in SCADA network of electric power systems , 2009 .

[6] L. Tong,et al. Malicious Data Attacks on Smart Grid State Estimation: Attack Strategies and Countermeasures , 2010, 2010 First IEEE International Conference on Smart Grid Communications.

[7] Peng Ning,et al. False data injection attacks against state estimation in electric power grids , 2011, TSEC.

[8] Tal Garfinkel,et al. Terra: a virtual machine-based platform for trusted computing , 2003, SOSP '03.

[9] William H. Sanders,et al. Cost-aware systemwide intrusion defense via online forensics and on-demand detector deployment , 2010, SafeConfig '10.

[10] G. Manimaran,et al. Vulnerability Assessment of Cybersecurity for SCADA Systems , 2008, IEEE Transactions on Power Systems.

[11] Rakesh Bobba,et al. PBES: a policy based encryption system with application to data sharing in the power grid , 2009, ASIACCS '09.