A tailored authentication and key management for smart grid

Smart Grid (SG) is a vulnerable system and can be attacked even from aboard, attacks that may cause different level of costly issues and harms on the society as well as on the system devices. Furthermore, in SG we have a variety of subsystems and applications as well as networks which are working together as a System of System (SoS) model. Therefore one of the most challenging topic in the SG development is security and privacy. Designing a mutual authentication scheme and then a key management protocol are the first tailored steps of designing and implementing the security aspects of any system like SG. In this paper we improve and implement the Secure Remote Password protocol to reach a mutual authentication scheme between a Home Area Network (HAN) Smart Meter (SM) and an authentication server in SG using an initial password. We propose using the Public Key Infrastructure for the SG communications, for instance between SM and aggregator (outside of HAN). Also, in order to have an efficient key management protocol, we follow an enhanced model of the Identity-Based cryptography so-called EIBC. Our proposed mechanisms are capable of preventing various attacks, and at the same time, improves the network overhead caused by the key management controlling packets. In fact, mostly by generating and broadcasting only one function periodically by the key generator entity, our protocol simply refreshes entire nodes public/private key pairs as well as multicast required keys, if any.

[1]  Lihua Liu,et al.  Improvement of One Password-Based Authenticated Key Exchange Protocol , 2009, 2009 Second International Symposium on Information Science and Engineering.

[2]  Steven M. Bellovin,et al.  Encrypted key exchange: password-based protocols secure against dictionary attacks , 1992, Proceedings 1992 IEEE Computer Society Symposium on Research in Security and Privacy.

[3]  V. C. M. Leung,et al.  EIBC: Enhanced Identity-Based Cryptography, a conceptual design , 2012, 2012 IEEE International Systems Conference SysCon 2012.

[4]  Victor C. M. Leung,et al.  Smart grid authentication and key management for unicast and multicast communications , 2011, 2011 IEEE PES Innovative Smart Grid Technologies.

[5]  Thomas D. Wu The Secure Remote Password Protocol , 1998, NDSS.

[6]  Patrick D. McDaniel,et al.  Security and Privacy Challenges in the Smart Grid , 2009, IEEE Security & Privacy.

[7]  Zijian Zhang,et al.  Verifier-based password authenticated key exchange protocol via elliptic curve , 2010, 2010 IEEE International Conference on Information Theory and Information Security.

[8]  Peter Sweeney,et al.  Simple authenticated key agreement algorithm , 1999 .

[9]  Francine Krief,et al.  Using OTP with PAKE: An Optimized Implementation of a Synchronization Window , 2011, 2011 4th IFIP International Conference on New Technologies, Mobility and Security.

[10]  Wen-Shenq Juang,et al.  Robust and Efficient Password-Authenticated Key Agreement Using Smart Cards , 2008, IEEE Transactions on Industrial Electronics.

[11]  Bin Hu,et al.  Multigate Communication Network for Smart Grid , 2011, Proceedings of the IEEE.

[12]  Hung-Min Sun,et al.  Simple authenticated key agreement protocol resistant to password guessing attacks , 2002, OPSR.

[13]  Whitfield Diffie,et al.  New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.

[14]  Victor C. M. Leung,et al.  A survey of technical requirements and consumer application standards for IP-based smart grid AMI network , 2011, The International Conference on Information Networking 2011 (ICOIN2011).

[15]  Ding Xiao-fei,et al.  Password Authenticated Key Exchange Protocol with Stronger Security , 2009, 2009 First International Workshop on Education Technology and Computer Science.