a high assurance smart meter
play

A High Assurance Smart Meter Using Protected Module Architectures - PowerPoint PPT Presentation

Aug 15, 2022 •464 likes •915 views

empty An Implementation of A High Assurance Smart Meter Using Protected Module Architectures Jan Tobias Mhlberg jantobias.muehlberg@cs.kuleuven.be iMinds-DistriNet, KU Leuven, Celestijnenlaan 200A, B-3001 Belgium WISTP @ Heraklion,

  1. empty An Implementation of A High Assurance Smart Meter Using Protected Module Architectures Jan Tobias Mühlberg jantobias.muehlberg@cs.kuleuven.be iMinds-DistriNet, KU Leuven, Celestijnenlaan 200A, B-3001 Belgium WISTP @ Heraklion, September 2016 Joint work with: Sara Cleemput, Mustafa A. Mustafa, Jo Van Bulck, Bart Preneel, Frank Piessens 1 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  2. empty “The remote cyber attacks directed against Ukraine’s electricity infrastructure were bold and successful. The cyber operation was highly synchronised and the adversary was willing to maliciously operate a SCADA system to cause power outages, followed by destructive attacks to disable SCADA and communications to the field.” — [LAC16] 2 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  3. empty Smart Metering Architecture Component overview of the UK’s Smart Metering Implementation Programme (SMIP) Image: [Dep15] 3 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  4. empty Smart Metering Architecture Meter Components [Dep14] • Clock • Data Store • Electricity measuring element • HAN & WAN Interface • (Aux.) Load Switch • Random Number Generator • User Interface • Communication via ZigBee: HAN, WAN Image: smsmetering.co.uk 4 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  5. empty Smart Metering Architecture Meter Components [Dep14] • Clock • Data Store • Electricity measuring element • HAN & WAN Interface • (Aux.) Load Switch • Random Number Generator • User Interface • Communication via ZigBee: HAN, WAN Ideal Attacker Model • Attacker has physical access • Attacker has no time constraints • Attacker could be legitimate user Image: smsmetering.co.uk 4 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  6. empty High Assurance Smart Metering [CMP16] HASM Data Load Switch Security log Tariffs Storage log Operational Metrology log Credit balance parameters Smart Meter Load (Metrology) Main processor Switch Computations Data Central Clock Second concentrator system DC Top-up CS processor User security security security Interface Load (Display) Switch Communications security Local generation Top-up gateway Other utility HAN gateway Smart meter technician meter • HASM design suggests physical component separation to increase security and verifiability ? Attacker model and exact security guarantees unspecified ? Impact on implementation? May depend on platform. 5 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  7. empty Securing Distributed Embedded Computing Can we provide strong security guarantees (confidentiality, software integrity, mutual authentication – think of Intel SGX or ARM TrustZone) for distributed embedded applications? 6 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  8. empty Securing Distributed Embedded Computing Can we provide strong security guarantees (confidentiality, software integrity, mutual authentication – think of Intel SGX or ARM TrustZone) for distributed embedded applications? Idea • A distributed application is deployed as multiple protected modules on distributed computing nodes • Modules mutually authenticate each other and exchange encrypted messages • Protected driver modules facilitate I/O 6 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  9. empty Securing Distributed Embedded Computing Can we provide strong security guarantees (confidentiality, software integrity, mutual authentication – think of Intel SGX or ARM TrustZone) for distributed embedded applications? Idea • A distributed application is deployed as multiple protected modules on distributed computing nodes • Modules mutually authenticate each other and exchange encrypted messages • Protected driver modules facilitate I/O • Scenario: Smart Meter, Load Switch, Central System, Home Area Network 6 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  10. empty Securing Distributed Embedded Computing Can we provide strong security guarantees (confidentiality, software integrity, mutual authentication – think of Intel SGX or ARM TrustZone) for distributed embedded applications? Idea • A distributed application is deployed as multiple protected modules on distributed computing nodes • Modules mutually authenticate each other and exchange encrypted messages • Protected driver modules facilitate I/O • Scenario: Smart Meter, Load Switch, Central System, Home Area Network Security Guarantees • We get a chain of mutual trust among application modules • Security of each module independent from other software • Output is guaranteed to be reproducible, based on the applications source code and the input events 6 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  11. empty Protected Module Architectures PMAs provide • Strong isolation of software components in Protected Modules → Confidentiality → Code Integrity and Control Flow Integrity • Remote attestation → e.g. Load Switch and meter core • Secure remote communication → No spoofing or replay of signals • Minimal hardware-only TCB 7 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  12. empty Protected Module Architectures PMAs provide • Strong isolation of software components in Protected Modules → Confidentiality → Code Integrity and Control Flow Integrity • Remote attestation → e.g. Load Switch and meter core • Secure remote communication → No spoofing or replay of signals • Minimal hardware-only TCB • Server/Desktop: Intel SGX [MAB + 13], ARM TrustZone [AF04], TrustVisor [MLQ + 10], Fides [SP12] • Embedded: SMART [EFPT12], TrustLite [KSSV14], TyTAN [BEMS + 15], Sancus [NAD + 13] 7 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  13. empty Protected Module Architectures PMAs provide • Strong isolation of software components in Protected Modules → Confidentiality → Code Integrity and Control Flow Integrity • Remote attestation → e.g. Load Switch and meter core • Secure remote communication → No spoofing or replay of signals • Minimal hardware-only TCB • Server/Desktop: Intel SGX [MAB + 13], ARM TrustZone [AF04], TrustVisor [MLQ + 10], Fides [SP12] • Embedded: SMART [EFPT12], TrustLite [KSSV14], TyTAN [BEMS + 15], Sancus [NAD + 13] A Partial Solution to Software Security on Lightweight Embedded Controllers • There is no free lunch! 7 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  14. empty Sancus: A PMA for Embedded Devices and IoT TI MSP430: designed for low cost and low power consumption • Runs 4.5 years on a single AAA cell and almost 13 years on an AA battery [Sea08] • openMSP430 at http://opencores.org 8 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  15. empty Sancus: A PMA for Embedded Devices and IoT TI MSP430: designed for low cost and low power consumption • Runs 4.5 years on a single AAA cell and almost 13 years on an AA battery [Sea08] • openMSP430 at http://opencores.org Safety and security? • No MMU, no hierarchical protection domains, etc. • Successful attacker has full control over a node: • Modify all code and data • Perform I/O 8 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  16. empty Sancus: A PMA for Embedded Devices and IoT TI MSP430: designed for low cost and low power consumption • Runs 4.5 years on a single AAA cell and almost 13 years on an AA battery [Sea08] • openMSP430 at http://opencores.org Safety and security? • No MMU, no hierarchical protection domains, etc. • Successful attacker has full control over a node: • Modify all code and data • Perform I/O • DoS, forge sensor readings or node identity 8 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  17. empty Sancus: A PMA for Embedded Devices and IoT TI MSP430: designed for low cost and low power consumption • Runs 4.5 years on a single AAA cell and almost 13 years on an AA battery [Sea08] • openMSP430 at http://opencores.org Safety and security? • No MMU, no hierarchical protection domains, etc. • Successful attacker has full control over a node: • Modify all code and data • Perform I/O • DoS, forge sensor readings or node identity • Even without an attacker: bugs and software ageing 8 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  18. empty Sancus: A PMA for Embedded Devices and IoT TI MSP430: designed for low cost and low power consumption • Runs 4.5 years on a single AAA cell and almost 13 years on an AA battery [Sea08] • openMSP430 at http://opencores.org Safety and security? • No MMU, no hierarchical protection domains, etc. • Successful attacker has full control over a node: • Modify all code and data • Perform I/O • DoS, forge sensor readings or node identity • Even without an attacker: bugs and software ageing • We develop an Protected Module Architecture on top of the openMSP430: Sancus 8 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

  19. empty Sancus: A PMA for Embedded Devices and IoT 9 /24 Jan Tobias Mühlberg A High Assurance Smart Meter

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Getting smarter: N Zs smart meter success story Presented to SACOSS Smart Meter Forum December

Getting smarter: N Zs smart meter success story Presented to SACOSS Smart Meter Forum December

Getting smarter: N Zs smart meter success story Presented to SACOSS Smart Meter Forum December 2014 Not this But this Similar, just smaller Similar, just smaller Market New Zealand Australia NEM Generation capacity 10 GW 50 GW

439 views • 29 slides
Load Hiding to Preserve Privacy from Smart Meter Measurements Ryan Fraser Advisor: Dr. Kevin

Load Hiding to Preserve Privacy from Smart Meter Measurements Ryan Fraser Advisor: Dr. Kevin

Load Hiding to Preserve Privacy from Smart Meter Measurements Ryan Fraser Advisor: Dr. Kevin Tomsovic Ailin Asadinejad Final Project Presentation July 14, 2016 Knoxville, Tennessee Smart Meters United States Smart Meter Use, 2014 Provide

196 views • 15 slides
Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon

Sustainability and Smart Grid Implementing a Non residential Smart Metering System PaperCon 2011 Page 195 Smart Grid Popular Topics in the News Smart Grid Smart Meter Smart Meter Micro Grid Distributive Generation Most talk is

427 views • 39 slides
Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid

Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid

Applications of Data Science to Mini-Grid Smart Meter and Survey Data 3 rd Africa Smart Grid Forum - Kigali, Rwanda October 4, 2018 Nathan Williams nwilliams@cmu.edu Department of Engineering and Public Policy Status of Electrification in

398 views • 25 slides
Pacific Power Keeping Warm Workshop Helping Customers Manage Costs by utilizing Smart Meter

Pacific Power Keeping Warm Workshop Helping Customers Manage Costs by utilizing Smart Meter

Pacific Power Keeping Warm Workshop Helping Customers Manage Costs by utilizing Smart Meter Technology March 14, 2019 Were here for our customers, every step of the way. From high tech startups to young families just starting out, your

478 views • 19 slides
Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid

Modernizing T&D on the Electric Grid 11/29/2011 Mark Nealon System Meter & Smart Grid Ameren Missouri PSC Smart Grid Technical Conference 1 What is the Smart Grid? What Smart Grid means to Ameren Transform Amerens grid to

341 views • 7 slides
FPSC Joint IOU Presentation Smart Meter Workshop September 20, 2012 Paul Talley, Gulf Power

FPSC Joint IOU Presentation Smart Meter Workshop September 20, 2012 Paul Talley, Gulf Power

FPSC Joint IOU Presentation Smart Meter Workshop September 20, 2012 Paul Talley, Gulf Power Company Contents The Evolution of Metering The Benefits of Smart Meters Smart Grid Technologies Public Concerns The Evolution of

323 views • 16 slides
A Test of Commercially Available Products for Estimating End Uses from Smart Meter Data May 14,

A Test of Commercially Available Products for Estimating End Uses from Smart Meter Data May 14,

A Test of Commercially Available Products for Estimating End Uses from Smart Meter Data May 14, 2016 Prepared by: Michael Baker Gina Hicks Santiago Rodriguez-Anderson SBW Consulting, Inc. Objectives of the Test Bed n Assist in the

408 views • 16 slides
Meter Data February 2016 Version 4.0 Agenda Meter Data Submit Meter Data Meter

Meter Data February 2016 Version 4.0 Agenda Meter Data Submit Meter Data Meter

Meter Data February 2016 Version 4.0 Agenda Meter Data Submit Meter Data Meter Agent Reports Market Participant Reports Common Questions/Errors 2 Submit Meter Data 5-Minute Intervals Actual meter values should be

473 views • 30 slides
Security and Reliability of the Internet Of Things (IoT): A Smart Meter Case Study

Security and Reliability of the Internet Of Things (IoT): A Smart Meter Case Study

Security and Reliability of the Internet Of Things (IoT): A Smart Meter Case Study KarthikPattabiraman Farid Molazem Tabrizi, Maryam Raiyat, Abraham Chan, Ivan Beschastnikh University of British Columbia (UBC) My Research Building

693 views • 51 slides
Meter Technical Details for Smart Meters (CP1388) Education Session Adam Lattimore 20 June

Meter Technical Details for Smart Meters (CP1388) Education Session Adam Lattimore 20 June

Meter Technical Details for Smart Meters (CP1388) Education Session Adam Lattimore 20 June 2013 Agenda Smart Metering Journey CP1388 Solution CP1388 Progression & Next Steps Open Discussion Are there any new points

860 views • 63 slides
Smart Energy and Water Meter (SEWM) An I nnovative Approach Towards Groundwater Monitoring and

Smart Energy and Water Meter (SEWM) An I nnovative Approach Towards Groundwater Monitoring and

Smart Energy and Water Meter (SEWM) An I nnovative Approach Towards Groundwater Monitoring and Management The Case of Khorasan Razavi Province, I ran By: Hassan Kashi: RSA Electronics Co. (Presenter) Alireza Ameri & Ehsan Mohammad Zadeh:

411 views • 24 slides
SEFRAM 7880 series TV Meter SEFRAM 7880 series TV Meter Overview SEFRAM 7880 series TV Meter

SEFRAM 7880 series TV Meter SEFRAM 7880 series TV Meter Overview SEFRAM 7880 series TV Meter

SEFRAM 7880 series TV Meter SEFRAM 7880 series TV Meter Overview SEFRAM 7880 series TV Meter Overview Panoramic LCD touch screen : 10 inches Display High Definition TV programs MPEG4-H.264 and H.265 (HEVC) Display analog TV

770 views • 41 slides
CAN CLOUD COMPUTING SYSTEMS OFFER HIGH ASSURANCE WITHOUT LOSING KEY CLOUD PROPERTIES? CS6410

CAN CLOUD COMPUTING SYSTEMS OFFER HIGH ASSURANCE WITHOUT LOSING KEY CLOUD PROPERTIES? CS6410

1 CAN CLOUD COMPUTING SYSTEMS OFFER HIGH ASSURANCE WITHOUT LOSING KEY CLOUD PROPERTIES? CS6410 Ken Birman, Cornell University High Assurance in Cloud Settings 2 A wave of applications that need high assurance is fast approaching

672 views • 40 slides
Meter Data David Daniels Settlements Analyst Agenda Meter Data Submit Meter Data

Meter Data David Daniels Settlements Analyst Agenda Meter Data Submit Meter Data

Meter Data David Daniels Settlements Analyst Agenda Meter Data Submit Meter Data Meter Agent Reports Market Participant Reports Common Questions/Errors 2 Submit Meter Data 5-Minute Intervals Actual meter values

728 views • 28 slides
Consumer empowerment and protection in a smart meter world 31 January 2013 Agenda 1.

Consumer empowerment and protection in a smart meter world 31 January 2013 Agenda 1.

Consumer empowerment and protection in a smart meter world 31 January 2013 Agenda 1. Introductions 10:00 2. Ofgem presentation: intro to the project, purpose of the 10:10 workshop, some example policy questions 3. Energy UK presentation

467 views • 20 slides
Mississippi Board of Nursing Request for Proposal No. 3733 License Management System RFP 3733

Mississippi Board of Nursing Request for Proposal No. 3733 License Management System RFP 3733

Mississippi Board of Nursing Request for Proposal No. 3733 License Management System RFP 3733 The Mississippi Board of Nursing (MBON) is seeking a web-based COTS License Management System for a field- proven product based on current

285 views • 13 slides
GLOBAL PROBLEM Virtually every aspect of our global society is dependent on reliable power and

GLOBAL PROBLEM Virtually every aspect of our global society is dependent on reliable power and

GLOBAL PROBLEM Virtually every aspect of our global society is dependent on reliable power and communication 2 GOTHAM SOLUTION A single integrated solution which is applicable to many verticals Agriculture, Utility, Emergency Management

607 views • 17 slides
Hands-On Network Security: Practical Tools & Methods Security Training Course Dr. Charles J.

Hands-On Network Security: Practical Tools & Methods Security Training Course Dr. Charles J.

Hands-On Network Security: Practical Tools & Methods Security Training Course Dr. Charles J. Antonelli The University of Michigan 2012 Hands-On Network Security Module 6 Firewalls & VPNs Topics Firewall Fundamentals Case

881 views • 51 slides
Why didnt England colonize in the 1500s? - Religious conflict King Henry VII, 1530s,

Why didnt England colonize in the 1500s? - Religious conflict King Henry VII, 1530s,

Why didnt England colonize in the 1500s? - Religious conflict King Henry VII, 1530s, split with catholic church -Spain was an ally until midway through 1500s. -- Elizabeth becomes queen 1558, Protestantism secured, growing conflict with

502 views • 20 slides
A B rie f In tro d u c tio n to th e H is to ry o f C o m p u tin g - 5 W

A B rie f In tro d u c tio n to th e H is to ry o f C o m p u tin g - 5 W

In tro to h isto ry o f co m p u tin g 4 .5 A B rie f In tro d u c tio n to th e H is to ry o f C o m p u tin g - 5 W hat computers were used for, who made them: Operating system s, applications and

254 views • 6 slides
Adventures in Load Balancing at Scale: Successes, Fizzles, and Next Steps Rusty Lusk Mathematics

Adventures in Load Balancing at Scale: Successes, Fizzles, and Next Steps Rusty Lusk Mathematics

Adventures in Load Balancing at Scale: Successes, Fizzles, and Next Steps Rusty Lusk Mathematics and Computer Science Division Argonne National Laboratory Outline Introduction Two abstract programming models Load balancing and

538 views • 28 slides
Black Ops 2006 pattern recognition Dan Kaminsky DoxPara Research Who Am I? Coauthor of

Black Ops 2006 pattern recognition Dan Kaminsky DoxPara Research Who Am I? Coauthor of

Black Ops 2006 pattern recognition Dan Kaminsky DoxPara Research Who Am I? Coauthor of several book series Hack Proofing Your Network Stealing The Network Formerly of Cisco and Avaya Presently partnering with IOActive

1.17k views • 58 slides
Smart metering architecture to enable and simulate novel services in smart grids Edoardo Patti

Smart metering architecture to enable and simulate novel services in smart grids Edoardo Patti

IEEE International Conference on Innovative Smart Grid Technologies Smart metering architecture to enable and simulate novel services in smart grids Edoardo Patti Francesco Arrigo Dept. Of Control and Computer Dept. of Energy Engineering,

1.33k views • 114 slides

More recommend