A new intrusion prevention system for protecting Smart Grids from ICMPv6 vulnerabilities

Smart Grid is an integrated power grid with a reliable, communication network running in parallel towards providing two way communications in the grid. It's trivial to mention that a network like this would connect a huge number of IP-enabled devices. IPv6 that offers 18-bit address space becomes an obvious choice in this context. In a smart grid, functionalities like neighborhood discovery, autonomic address configuration of a node or its router identification may often be invoked whenever newer equipments are introduced for capacity enhancement at some level of hierarchy. In IPv6, these basic functionalities like neighborhood discovery, autonomic address configuration of networking require to use Internet Control Message Protocol version 6 (ICMPv6). Such usage may lead to security breaches in the grid as a result of possible abuses of ICMPv6 protocol. In this paper, some potential newer attacks on Smart Grid have been discussed. Subsequently, intrusion prevention mechanisms for these attacks are proposed to plugin the threats.

[1]  Wayne F. Boyer,et al.  Study of Security Attributes of Smart Grid Systems- Current Cyber Security Issues , 2009 .

[2]  Michele Zorzi,et al.  Interoperable and globally interconnected Smart Grid using IPv6 and 6LoWPAN , 2012, 2012 IEEE International Conference on Communications (ICC).

[3]  Daniele Miorandi,et al.  A Holistic View of Security and Privacy Issues in Smart Grids , 2012, SmartGridSec.

[4]  Zubair A. Baig,et al.  A trust-based mechanism for protecting IPv6 networks against stateless address auto-configuration attacks , 2011, 2011 17th IEEE International Conference on Networks.

[5]  E. Doheny United States Agency for International Development , 2011 .

[6]  Victor C. M. Leung,et al.  Specification-based Intrusion Detection for home area networks in smart grids , 2011, 2011 IEEE International Conference on Smart Grid Communications (SmartGridComm).

[7]  Chi-Cheng Chuang,et al.  Three-Dimensional Location-Based IPv6 Addressing for Wireless Sensor Networks in Smart Grid , 2012, 2012 IEEE 26th International Conference on Advanced Information Networking and Applications.

[8]  Mihui Kim A survey on guaranteeing availability in smart grid communications , 2012, 2012 14th International Conference on Advanced Communication Technology (ICACT).

[9]  Yang Xiao,et al.  Cyber Security and Privacy Issues in Smart Grids , 2012, IEEE Communications Surveys & Tutorials.

[10]  B.F. Wollenberg,et al.  Toward a smart grid: power delivery for the 21st century , 2005, IEEE Power and Energy Magazine.

[11]  Todd Baumeister,et al.  Literature Review on Smart Grid Cyber Security , 2010 .

[12]  William H. Sanders,et al.  Intrusion Detection for Advanced Metering Infrastructures: Requirements and Architectural Directions , 2010, 2010 First IEEE International Conference on Smart Grid Communications.

[13]  Eric Vyncke,et al.  IPv6 Security , 2008 .

[14]  Tanja Zseby,et al.  Is IPv6 Ready for the Smart Grid? , 2012, 2012 International Conference on Cyber Security.

[15]  Sureswaran Ramadass,et al.  A Study on Detecting ICMPv6 Flooding Attack based on IDS , 2013 .

[16]  S. Mauw,et al.  Specification-based intrusion detection for advanced metering infrastructures , 2022 .

[17]  Chi-Cheng Chuang,et al.  Lightweight spatial IP address configuration for IPv6-based wireless sensor networks in smart grid , 2012, 2012 IEEE Sensors.

[18]  William H. Sanders,et al.  Specification-Based Intrusion Detection for Advanced Metering Infrastructures , 2011, 2011 IEEE 17th Pacific Rim International Symposium on Dependable Computing.

[19]  Joseph G. Tront,et al.  Using an IPv6 moving target defense to protect the Smart Grid , 2012, 2012 IEEE PES Innovative Smart Grid Technologies (ISGT).