focus area secure and reliable secure and reliable
play

Focus Area: Secure and Reliable Secure and Reliable Computing Base - PDF document

Jan 31, 2024 •140 likes •310 views

Trustworthy Cyber Infrastructure for the Power Grid Presentations Focus Area: Secure and Reliable Secure and Reliable Computing Base Presenter: Sean Smith, Dartmouth College TCIP Industry Day October 17, 2007 University of Illinois

  1. Trustworthy Cyber Infrastructure for the Power Grid Presentations Focus Area: Secure and Reliable Secure and Reliable Computing Base Presenter: Sean Smith, Dartmouth College TCIP Industry Day October 17, 2007 University of Illinois • Dartmouth College • Cornell University • Washington State University Personnel • PIs/Senior Staff • Graduate Students – Sergey Bratus (Dartmouth) – John Baek (Dartmouth) – George Gross (UIUC) – Paul Dabrowski (UIUC) – Carl A. Gunter (UIUC) – William Healy (UIUC) – Zbigniew Kalbarczyk (UIUC) Zbigniew Kalbarczyk (UIUC) – Alex Iliev (Dartmouth) Al Ili (D h) – Ravi Iyer (UIUC) – Peter Klemperer (UIUC) – Pete Sauer (UIUC) – Michael LeMay (UIUC) – Sean Smith (Dartmouth) – Suvda Myagmar (UIUC) – Karthik Pattabiraman (UIUC) • Alumni – Ashwin Ramaswamy (Dartmouth) – Nihal D’Cunha (M.S., Dartmouth) – Patrick Tsang (Dartmouth) – Allen Harvey (B.A., Dartmouth) – Jianqing Zhang (UIUC) Jianqing Zhang (UIUC) – Evan Sparks (B.A., Dartmouth) • Undergraduates – Justin Deinlein (UIUC) – Alex Latham (Dartmouth) • High School – Axel Hansen (Dartmouth) University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 1

  2. Trustworthy Cyber Infrastructure for the Power Grid Presentations Base Area Approach Focus : Move from perimeter security to platform security in the power • grid cyber infrastructure Focus : Secure power infrastructure by ensuring security of • infrastructure applications infrastructure applications – Derive security requirements from application logic Project Approach : • – Identify : security problems in near-term, middle-term, long-term power grid cyber infrastructure – Secure : apply current security technology into base devices, as well as developing new security technology and applying it – Deploy : evaluate solutions in testbed grid scenarios New Thrust (from last year): • – Develop vertical links into protocols group University of Illinois • Dartmouth College • Cornell University • Washington State University Base Area Projects University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 2

  3. Trustworthy Cyber Infrastructure for the Power Grid Presentations 1. Fast Crypto for SCADA (near-term deployability ) • Identify: – Communications between SCADA devices susceptible to eavesdrop, modification, replay – …but need to have low latency – A bump-in-the-wire (BITW) approach adds security without replacing entire infrastructure – Existing BITW approaches do not provide high security integrity with low latency • Secure: – YASIR: a BITW with high security integrity and low latency, for legacy SCADA – (and some public key results too) • Deploy: – Initial proof-of-concept hw University of Illinois • Dartmouth College • Cornell University • Washington State University YASIR: Yet Another Security Retrofit • BITW for legacy SCADA • Low latency : • High security ≤ 18 byte-times, – – Data integrity , optional data – irrespective of message length confidentiality • Builds on Wright et al’s trick: – 80-bit security level – BITW receiver transforms integrity failure – Strong attacker model – – …to CRC error, flagged by SCADA to CRC error flagged by SCADA • Prototype: • NIST-standardized, patent-free crypto – Modbus/ASCII, Modbus/RTU, – HMAC, SHA-1, AES-CTR DNP3 • Formal security analysis – IEC 60870-5 University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 3

  4. Trustworthy Cyber Infrastructure for the Power Grid Presentations Our Contribution • Part of research into more general problem of securing communications despite resource constraints – Batch paring delegation (e.g., for ECC public key) – Secure crypto precomputation with insecure memory (e.g., for DSA signatures) University of Illinois • Dartmouth College • Cornell University • Washington State University 2. Attested Meters: Security Architecture for Advanced Meters (middle-term deployability ) • Identify: – Advanced Meters enable advanced functionality • Remote measurement • Demand response and demand control Demand response and demand control • Improved monitoring and control for the grid – But computation leads to security and privacy vulnerabilities • Secure: – Create a secure, private, and extensible architecture for future advanced meters – Attested Metering : • Apply trusted computing (TC) • and virtualization and virtualization • to secure Advanced Metering network communications and computation (ANSI C12, ZigBee) – …and develop new, lightweight trusted computing technology for the special case of meters • Deploy: – Initial prototypes, industry discussions University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 4

  5. Trustworthy Cyber Infrastructure for the Power Grid Presentations New Architectures • New functionality: emergency-response networking over mesh- connected advanced electric meters – After Katrina, surveillance camera mesh was only network infrastructure to survive. – It was retasked to carry municipal communications. y p – Advanced meters with mesh networks will soon be widely deployed, why not use them? – Use secure distributed consensus protocol to determine when network should switch into emergency-response mode – Meters already include battery backup for outage notification… • Our previous results: countermeasures against… – Unethical customer Unethical customer • May attempt to modify metering messages to steal service • Has legitimate physical access to meter, could modify it – Overly-intrusive MDMA: Could use high-resolution metering data to determine behavior of metered residents – Publicity seeker: Cracker or virus author seeking physical disruption to garner publicity University of Illinois • Dartmouth College • Cornell University • Washington State University New Platforms • Hardware-assisted embedded attestation scheme: – Continuous Embedded System Integrity Using Remote Firmware Attestation (CESIum) – Much simpler than TPM p – Maintains a log of all firmware revisions installed on a microcontroller – Provides the complete log during remote attestation operations CESIum – Main advantages: • Simplicity = low cost, power µC µC • Complete record of firmware revisions, not just current Sensor firmware like TPM • Not heavily dependent on OS correctness Power Main University of Illinois • Dartmouth College • Cornell University • Washington State University 10 University of Illinois Dartmouth College Cornell University Washington State University 5

  6. Trustworthy Cyber Infrastructure for the Power Grid Presentations 3. Reconfigurable Hardening (middle-term and longer ) • Identify: – Security vulnerabilities due to hardware or software flaws pose a significant hazard to power grid applications. – Application and OS sw has long history of vulnerabilities – Patching applications and OS (or replacing hardware) difficult in power grid settings • Secure: – Build application-aware security and reliability solutions into the underlying hardware itself – Make it reconfigurable , to allow evolution and customization – Result: intrusion tolerance for critical infrastructure • Deploy: – SEL 3351 Data aggregator and SEL 421 Relay. University of Illinois • Dartmouth College • Cornell University • Washington State University Approach (Automated Design Flow) • Explore processor level solutions to achieve low-cost, high-performance, scalable Application security and reliability checking in the same Source framework – small footprint techniques that do not require large amount of extra hardware or require large amount of extra hardware or Analysis Analysis software • Automated End-to-End Compilation Framework for checks derivation – from C-program to FPGA Hardware Hardware Software Check Compiler • Enhanced compiler transforms checks to Synthesis VHDL hardware description for synthesis • Integration with Reliability and Security Engine (RSE) : – RSE in the pipeline of the DLX and RSE in the pipeline of the DLX and LEON3 processors (poster) SW/HW – Prototyped on FPGA-based hardware “Linking” – Low performance overhead (2%) demonstrated on embedded benchmarks Protected FPGA Application Instantiation University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 6

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively manage a diversified portfolio of quality Australian property assets , delivering long term benefits For our Investors We are a secure , reliable

820 views • 33 slides
2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively manage a diversified portfolio of quality Australian property assets , delivering long term benefits For our Investors We are a secure , reliable

518 views • 32 slides
Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a

Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a

Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a Secure Sustainable Power System 17 th August 2011 Outline Agenda Chair: Dick Lewis, Manager, Grid Operations Planning 10.00 a.m. Registration (Tea

833 views • 70 slides
Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure

Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure

Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure and trusted by customers, partners and society part of the vital infra of NL Contents Whats the problem? Whats everyone up to? Are

527 views • 33 slides
CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT

CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT

CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT TELEVISION TRANSMISSION CONNECTING WHATS NEXT MOTIVATION (1) Evolving to NextGen TV is unlike the NTSC DTV conversion. Channel sharing

645 views • 25 slides
Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web Performance Matters to the Business Your organization depends on your web applications to do business from customer facing eCommerce, banking or travel

281 views • 6 slides
Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today?

Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today?

Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today? Among open-source databases, MongoDB is a complete production-ready solution Self-managing MongoDB is worthwhile , for the best AWS performance at

444 views • 20 slides
To provide secure, safe and reliable operation, control and despatch of generation facilities.

To provide secure, safe and reliable operation, control and despatch of generation facilities.

VISION 01 To provide secure, safe and reliable operation, control and despatch of generation facilities. MISSION 02 To contribute in the development of prosperous Pakistan by managing smooth and economical transmission and despatch system

892 views • 18 slides
PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable

PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable

PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable health information among stakeholders and regional networks Vision to develop a framework for the efficient exchange of patient-centric health

478 views • 21 slides
Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport

Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport

Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport Deniz Gurkan, Nicholas Bastin, Stuart Baxley University of Houston Funded by the U.S. Department of Energy and the U.S. Department of Homeland

541 views • 15 slides
FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar A Practical Approach To Lowering The Cost Of Solar Randy King Alex Afanasyev Jeff Thompson Jeff Burke Lixia Zhang Residential Solar Installer

153 views • 12 slides
NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public

NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public

NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public Safety & First Responders 2017 PUBLIC SAFETY BROADBAND STAKEHOLDER MEETING 1 #PSCR2017 Introductions Bill Fisher NIST, National

453 views • 29 slides
Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1

Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1

Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1 Sharif University of Technology March 6, 2018 IoT-aided Smart Grid Amir Safdarian IoT and Smart Grid The IoT is defined as a network that can

372 views • 18 slides
The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart

The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart

The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart White 4 Sep 2020 Institute for Sustainable Futures isf.uts.edu.au SUMMARY The Rous region, and Rous County Council, provided inspiration

640 views • 17 slides
CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of

CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of

CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of participating computers old dream of computer science The design of a world-wide, fully transparent distributed file system for simultaneous

1.05k views • 102 slides
Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable

Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable

Trustworthy Cyber Infrastructure for the Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable Computing Base Presenters: Sean Smith, Ravi Iyer, and Carl Gunter TCIP Year 1 Review, December 11, 2006

346 views • 17 slides
Slide 7 / 115 Slide 8 / 115 Living and Nonliving Characteristics of Living Things Categorize

Slide 7 / 115 Slide 8 / 115 Living and Nonliving Characteristics of Living Things Categorize

Slide 1 / 115 Slide 2 / 115 3 rd Grade PSI Growth and Development of Organisms 2015-12-06 www.njctl.org Slide 3 / 115 Slide 4 / 115 Set Up: Germination Lab Table of Contents Before we begin, we need to set up the Germination Lab! Click on

481 views • 20 slides
BioNB 4240 Name____________________________________________ Carl D. Hopkins

BioNB 4240 Name____________________________________________ Carl D. Hopkins

BioNB 4240 1. NEUROETHOLOGY: AN INTRODUCTION Carl D. Hopkins Dept. Neurobiology & Behavior Aug. 24, 2011 1 2 BioNB 4240 Name____________________________________________ Carl D. Hopkins

483 views • 6 slides
Experience in the design of fundamental couplers. S. Kazakov 09/04/2018 What is the main

Experience in the design of fundamental couplers. S. Kazakov 09/04/2018 What is the main

Experience in the design of fundamental couplers. S. Kazakov 09/04/2018 What is the main coupler of superconducting cavity and what is its purpose? The coupler is device between RF source and superconductive cavity. One side of coupler is

1.4k views • 49 slides
On D n Des esign gn and nd Enh nhancem cement of of Sm Smart Grid H Hone oneypot S

On D n Des esign gn and nd Enh nhancem cement of of Sm Smart Grid H Hone oneypot S

On D n Des esign gn and nd Enh nhancem cement of of Sm Smart Grid H Hone oneypot S System em f for or P Practical Col Collec ection of of T Thr hrea eat In Intelli lligence - Long prelimina nary w work p pap aper -

483 views • 12 slides
HULLS 2011 Hunter College, New York Saturday, 7 th May, 2011 (tweet : @dsbigham #hulls)

HULLS 2011 Hunter College, New York Saturday, 7 th May, 2011 (tweet : @dsbigham #hulls)

Douglas S. Bigham, Ph.D. San Diego State University HULLS 2011 Hunter College, New York Saturday, 7 th May, 2011 (tweet : @dsbigham #hulls) Gender is pervasive social histories / social access freedoms / mobility sanctions /

481 views • 28 slides
TDDC17 16 Frelsningar 6 Labs (1) Introduction to AI [Doherty] Intelligent

TDDC17 16 Frelsningar 6 Labs (1) Introduction to AI [Doherty] Intelligent

Course Contents TDDC17 16 Frelsningar 6 Labs (1) Introduction to AI [Doherty] Intelligent Agents (2,3) Search [Doherty] Search Seminar 1 (4,5,6) Knowledge Representation Bayesian Networks Introduction to

554 views • 19 slides
ROBOTICS 01PEEQW Basilio Bona DAUIN Politecnico di Torino What is Robotics? Robotics is

ROBOTICS 01PEEQW Basilio Bona DAUIN Politecnico di Torino What is Robotics? Robotics is

ROBOTICS 01PEEQW Basilio Bona DAUIN Politecnico di Torino What is Robotics? Robotics is the study and design of robots Robots can be used in different contexts and are classified as 1. Industrial robots 2. Humanoid & biomimetic

596 views • 40 slides
Introduction Welcome! Who am I? Who are you? A brief history of robotics COMP 150:

Introduction Welcome! Who am I? Who are you? A brief history of robotics COMP 150:

Introduction Welcome! Who am I? Who are you? A brief history of robotics COMP 150: Probabilistic Robotics for Human-Robot Interaction Instructor: Jivko Sinapov www.cs.tufts.edu/~jsinapov Syllabus Who am I? The course

136 views • 13 slides

More recommend