non repudiation and end to end security for electric
play

Non-Repudiation and End-to-End Security for Electric-Vehicle - PowerPoint PPT Presentation

May 17, 2023 •28 likes •928 views

Non-Repudiation and End-to-End Security for Electric-Vehicle Charging Innovative Smart Grid Technologies Europe 2019 September 30 th , 2019 1/40 Pol Van Aubel Authors Pol Van Aubel pol.vanaubel@cs.ru.nl Erik Poll erikpoll@cs.ru.nl This

  1. Non-Repudiation and End-to-End Security for Electric-Vehicle Charging Innovative Smart Grid Technologies Europe 2019 September 30 th , 2019 1/40 Pol Van Aubel

  2. Authors Pol Van Aubel pol.vanaubel@cs.ru.nl Erik Poll erikpoll@cs.ru.nl This work is supported by the Joost Rijneveld European Regional Development joost@joostrijneveld.nl Fund (ERDF), Rijksoverheid, and Province of Gelderland, as part of the project Charge & Go. 2/40 Pol Van Aubel

  3. Overview The EV-charging infrastructure The need for security End-to-end security Conclusions

  4. Where is the EV-charging infrastructure? Source: openchargemap.io 3/40 Pol Van Aubel

  5. Where is the EV-charging infrastructure? Source: openchargemap.io 4/40 Pol Van Aubel

  6. Where is the EV-charging infrastructure? Source: openchargemap.io 5/40 Pol Van Aubel

  7. Where is the EV-charging infrastructure? Source: openchargemap.io 6/40 Pol Van Aubel

  8. Where is the EV-charging infrastructure? Source: openchargemap.io 7/40 Pol Van Aubel

  9. What is the EV-charging infrastructure? Source: EV Related Protocol Study – ElaadNL 8/40 Pol Van Aubel

  10. Most important aspects Many roles, fulfilled by many different parties. • 9/40 Pol Van Aubel

  11. Most important aspects Many roles, fulfilled by many different parties. • The only way for some of these to communicate is via other parties . • 9/40 Pol Van Aubel

  12. Overview The EV-charging infrastructure The need for security End-to-end security Conclusions

  13. What could go wrong? Fraud • 10/40 Pol Van Aubel

  14. What could go wrong? Fraud • Vandalism • 10/40 Pol Van Aubel

  15. What could go wrong? Fraud • Vandalism • Activism • 10/40 Pol Van Aubel

  16. What could go wrong? Fraud • Vandalism • Activism • – “Chaos Computer Club hacks e-motor charging stations” https://www.ccc.de/en/updates/2017/e-motor 10/40 Pol Van Aubel

  17. What could go wrong? Fraud • Vandalism • Activism • – “Chaos Computer Club hacks e-motor charging stations” https://www.ccc.de/en/updates/2017/e-motor Grid destabilization • 10/40 Pol Van Aubel

  18. What could go wrong? Fraud • Vandalism • Activism • – “Chaos Computer Club hacks e-motor charging stations” https://www.ccc.de/en/updates/2017/e-motor Grid destabilization • – Horus Scenario: hacking PV-installations https://horusscenario.com/ 10/40 Pol Van Aubel

  19. What could go wrong? Fraud • Vandalism • Activism • – “Chaos Computer Club hacks e-motor charging stations” https://www.ccc.de/en/updates/2017/e-motor Grid destabilization • – Horus Scenario: hacking PV-installations https://horusscenario.com/ – “Public Plug-in Electric Vehicles + Grid Data: Is a New Cyberattack Vector Viable?” https://arxiv.org/abs/1907.08283 10/40 Pol Van Aubel

  20. What could go wrong? Privacy breaches • 11/40 Pol Van Aubel

  21. What could go wrong? Privacy breaches • – Customer location is sensitive information! 11/40 Pol Van Aubel

  22. What could go wrong? Privacy breaches • – Customer location is sensitive information! – What other information should be secret? 11/40 Pol Van Aubel

  23. What could go wrong? Privacy breaches • – Customer location is sensitive information! – What other information should be secret? – GDPR compliance is not straightforward. 11/40 Pol Van Aubel

  24. Current state of security Authentication / authorization with RFID cards • 12/40 Pol Van Aubel

  25. Current state of security Authentication / authorization with RFID cards • Some TLS, lacking clear instructions • 12/40 Pol Van Aubel

  26. Envisioned state of security Strong authentication using challenge-response • 13/40 Pol Van Aubel

  27. Envisioned state of security Strong authentication using challenge-response • TLS everywhere, standardized & specified well • 13/40 Pol Van Aubel

  28. Envisioned state of security Strong authentication using challenge-response • TLS everywhere, standardized & specified well • Better implementations and testing • 13/40 Pol Van Aubel

  29. Are we done then? I S O 1 5 1 1 8 EV Charge Point O C P P O C P I eMSP CPO 14/40 Pol Van Aubel

  30. Are we done then? I S O 1 5 1 1 8 TLS TLS EV Charge Point O C P P TLS O C P I TLS TLS eMSP CPO 15/40 Pol Van Aubel

  31. We’re not done TLS protects the network traffic between individual parties. • 16/40 Pol Van Aubel

  32. We’re not done TLS protects the network traffic between individual parties. • Provides confidentiality and authenticity for the data • only while being communicated between these parties. 16/40 Pol Van Aubel

  33. Trust We have to trust that every party doesn’t send what it shouldn’t, • 17/40 Pol Van Aubel

  34. Trust We have to trust that every party doesn’t send what it shouldn’t, • doesn’t change what it relays, • 17/40 Pol Van Aubel

  35. Trust We have to trust that every party doesn’t send what it shouldn’t, • doesn’t change what it relays, • doesn’t peek at what it shouldn’t see, • 17/40 Pol Van Aubel

  36. Trust We have to trust that every party doesn’t send what it shouldn’t, • doesn’t change what it relays, • doesn’t peek at what it shouldn’t see, • doesn’t later dispute sending something, • 17/40 Pol Van Aubel

  37. Trust We have to trust that every party doesn’t send what it shouldn’t, • doesn’t change what it relays, • doesn’t peek at what it shouldn’t see, • doesn’t later dispute sending something, • for whatever reason. 17/40 Pol Van Aubel

  38. Overview The EV-charging infrastructure The need for security End-to-end security Conclusions

  39. What is end-to-end security? Main aspects: confidentiality. • 18/40 Pol Van Aubel

  40. What is end-to-end security? Main aspects: confidentiality. • authenticity. • 18/40 Pol Van Aubel

  41. What is end-to-end security? Main aspects: confidentiality. • authenticity. • non-repudiation. • 18/40 Pol Van Aubel

  42. What is end-to-end security? Main aspects: confidentiality. • authenticity. • non-repudiation. • from end to end: • 18/40 Pol Van Aubel

  43. What is end-to-end security? Main aspects: confidentiality. • authenticity. • non-repudiation. • from end to end: • – from the initial sending party on one side, 18/40 Pol Van Aubel

  44. What is end-to-end security? Main aspects: confidentiality. • authenticity. • non-repudiation. • from end to end: • – from the initial sending party on one side, – to the eventual receiving party on the other side, 18/40 Pol Van Aubel

  45. What is end-to-end security? Main aspects: confidentiality. • authenticity. • non-repudiation. • from end to end: • – from the initial sending party on one side, – to the eventual receiving party on the other side, – regardless of how many parties are in between. 18/40 Pol Van Aubel

  46. This is not end-to-end! I S O 1 5 1 1 8 TLS TLS EV Charge Point O C P P TLS O C P I TLS TLS eMSP CPO 19/40 Pol Van Aubel

  47. And it doesn’t provide non-repudiation! Long-term guarantee of authenticity • 20/40 Pol Van Aubel

  48. And it doesn’t provide non-repudiation! Long-term guarantee of authenticity • Proof that a message was produced by that party • 20/40 Pol Van Aubel

  49. And it doesn’t provide non-repudiation! Long-term guarantee of authenticity • Proof that a message was produced by that party • – (very useful in disputes!) 20/40 Pol Van Aubel

  50. An example message Charge Session Start sent from EV to CPO EV ID Time CP Location Contract ID €/kWh 2019-09-30 51°49'30.6"N 101 12501932 0.21 14:50 5°52'06.5"E 21/40 Pol Van Aubel

  51. An example message Charge Session Start sent from EV to CPO EV ID Time CP Location Contract ID €/kWh 2019-09-30 51°49'30.6"N 101 12501932 0.21 14:50 5°52'06.5"E Charge Session Start sent from CPO to eMSP EV ID Time Contract ID €/kWh 2019-09-30 101 12501932 0.21 14:50 21/40 Pol Van Aubel

  52. An example message Charge Session Start sent from EV to CPO EV ID Time CP Location Contract ID €/kWh 2019-09-30 51°49'30.6"N 101 12501932 0.21 14:50 5°52'06.5"E Charge Session Start sent from CPO to eMSP EV ID Time Contract ID €/kWh 2019-09-30 101 12501932 0.21 14:50 CP Location is dropped because the eMSP doesn’t need it. 21/40 Pol Van Aubel

  53. Adding authenticity & non-repudiation – naïvely Charge Session Start sent from EV to CPO EV ID Time CP Location Contract ID €/kWh 2019-09-30 51°49'30.6"N 101 12501932 0.21 14:50 5°52'06.5"E 22/40 Pol Van Aubel

  54. Adding authenticity & non-repudiation – naïvely Charge Session Start sent from EV to CPO EV ID Time CP Location Contract ID €/kWh 2019-09-30 51°49'30.6"N 101 12501932 0.21 14:50 5°52'06.5"E Charge Session Start sent from CPO to eMSP EV ID Time Contract ID €/kWh 2019-09-30 101 12501932 0.21 14:50 22/40 Pol Van Aubel

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard

Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard

Introduction to Computer Security Formal Security Models Pavel Laskov Wilhelm Schickard Institute for Computer Science Security instruments learned so far Symmetric and asymmetric cryptography confidentiality, integrity, non-repudiation

319 views • 29 slides
Extreme Geomagnetic Storm Societal Impacts Presented at: Electric Infrastructure Security Summit

Extreme Geomagnetic Storm Societal Impacts Presented at: Electric Infrastructure Security Summit

Extreme Geomagnetic Storm Societal Impacts Presented at: Electric Infrastructure Security Summit London September 20, 2010 Bronius Cikotas Member, Board of Advisors Electric Infrastructure Security Council 7104 Roxanne Road, Alexandria VA ,

201 views • 18 slides
Presentation made to the ELCIC Convention regarding Repudiation of the Doctrine of Discovery July

Presentation made to the ELCIC Convention regarding Repudiation of the Doctrine of Discovery July

Presentation made to the ELCIC Convention regarding Repudiation of the Doctrine of Discovery July 10, 2015 Jennifer Henry Thank you for the warm welcome. I am honoured to be here with you. I am grateful to be here on the land of peoples of

376 views • 5 slides
F = ma Electricity and atoms results from the properties of the electric force The structure

F = ma Electricity and atoms results from the properties of the electric force The structure

21.1 #4: Electric charge & force Electric force : one of the fundamental forces of nature Electric charge : property that determines the strength the electric force Charge is analogous to mass for gravity But 2 kinds of electric charge:

231 views • 11 slides
Electric Bicycles Electric Bicycle Although the Electric Bicycle is not a new invention, it

Electric Bicycles Electric Bicycle Although the Electric Bicycle is not a new invention, it

Electric Bicycles Electric Bicycle Although the Electric Bicycle is not a new invention, it is until recent years that significant advances have been obtained in motor/size efficiency and energy storage (battery). Its current

749 views • 20 slides
Security Protocols Part 9 SSL Protocol Recap Digital Certificate Authentication

Security Protocols Part 9 SSL Protocol Recap Digital Certificate Authentication

Security Protocols Part 9 SSL Protocol Recap Digital Certificate Authentication Integrity Non-repudiation CA (Certification Authority) Issue digital certificates (via digital signature) Publish/Distribute digital

491 views • 13 slides
Driving on Sunshine Electric Vehicles And Solar Electric Autos are not a New Concept Electric

Driving on Sunshine Electric Vehicles And Solar Electric Autos are not a New Concept Electric

Driving on Sunshine Electric Vehicles And Solar Electric Autos are not a New Concept Electric Autos are not a New Concept 1909 Baker Electric Thats over ONE HUNDRED Years Ago Even in the Modern Era GM EV-1 Toyota RAV4 EV 1996-1999

1.16k views • 83 slides
USES OF ELECTRICITY The main uses of electricity are in: q Electric heating q Electric lighting

USES OF ELECTRICITY The main uses of electricity are in: q Electric heating q Electric lighting

GRADE 11 PR PRACTICAL EL ELECTR ECTRIC IC CIR CIRCU CUITR ITRY USES OF ELECTRICITY The main uses of electricity are in: q Electric heating q Electric lighting q Electric motors ELECTRIC HEATING Electricity is very important in

353 views • 16 slides
An Inside Look at Electric Reliability 2018 Electric Reliability Report Stockton, California

An Inside Look at Electric Reliability 2018 Electric Reliability Report Stockton, California

An Inside Look at Electric Reliability 2018 Electric Reliability Report Stockton, California December 13, 2019 Delivering Safe and Reliable Electric Service Steven Calvert P.E. Senior Manager, Electric System Reliability Agenda Safety and

438 views • 22 slides
Sales Director UK / Ireland WHAT IS AN ELECTRIC ARC ?... - An Electric Arc is a type of explosion

Sales Director UK / Ireland WHAT IS AN ELECTRIC ARC ?... - An Electric Arc is a type of explosion

Protecting against Arc Flash in todays workplace Danny Hemmings Sales Director UK / Ireland WHAT IS AN ELECTRIC ARC ?... - An Electric Arc is a type of explosion involving discharge of voltage and energy from electrical equipment - Electric

280 views • 26 slides
Signing HTTP Requests and Responses Dave Tonge, OAuth Security Workshop 2019 Use case:

Signing HTTP Requests and Responses Dave Tonge, OAuth Security Workshop 2019 Use case:

Signing HTTP Requests and Responses Dave Tonge, OAuth Security Workshop 2019 Use case: Non-repudiation for backend JSON API calls Example 1: A payment request sent as a JSON payload to an API endpoint Example 2: A JSON API response from

369 views • 5 slides
Electric motors for electric vehicles Auke Hoekstra - Senior Advisor Electric Mobility, Eindhoven

Electric motors for electric vehicles Auke Hoekstra - Senior Advisor Electric Mobility, Eindhoven

Electric motors for electric vehicles Auke Hoekstra - Senior Advisor Electric Mobility, Eindhoven University of Technology @aukehoekstra SparkCity.org Permanent Magnet Synchronous Reluctance Induction What is the best motor for your EV

511 views • 14 slides
11/16/2016 Welcome Mike Kraft, MRO SAC Member Basin Electric Power Cooperative Please submit

11/16/2016 Welcome Mike Kraft, MRO SAC Member Basin Electric Power Cooperative Please submit

11/16/2016 Welcome Mike Kraft, MRO SAC Member Basin Electric Power Cooperative Please submit questions to the meeting moderator. Questions will be answered at the end of the webinar. MRO Security Advisory Council NOTICE The MRO Security

607 views • 25 slides
Electric Machine Simulation T Electric Machine Simulation Technology chnology St Steve Har e

Electric Machine Simulation T Electric Machine Simulation Technology chnology St Steve Har e

Electric Machine Simulation T Electric Machine Simulation Technology chnology St Steve Har e Hartridge ridge Direct Director or, Electric & , Electric & Hybrid V Hybrid Vehicles hicles Agenda Ag Intro/Session description Intr

416 views • 30 slides
What Does an Electric Vehicle Replace? Consumer Demand for Gasoline and Electric Vehicles

What Does an Electric Vehicle Replace? Consumer Demand for Gasoline and Electric Vehicles

What Does an Electric Vehicle Replace? Consumer Demand for Gasoline and Electric Vehicles Benjamin Leard with Jerry Xing and Shanjun Li Electric Vehicle Sales September 2019 electric vehicle (EV) sales: ~33,000 out of 1.5 million light- duty

465 views • 13 slides
ELECTRIC SECTOR MANAGED SECURITY SERVICES: A LOOK AHEAD NOVEMBER 7, 2013 BILL MENTER DIRECTOR,

ELECTRIC SECTOR MANAGED SECURITY SERVICES: A LOOK AHEAD NOVEMBER 7, 2013 BILL MENTER DIRECTOR,

ANNUAL INDUSTRY WORKSHOP NOVEMBER 6-7, 2013 ELECTRIC SECTOR MANAGED SECURITY SERVICES: A LOOK AHEAD NOVEMBER 7, 2013 BILL MENTER DIRECTOR, VIASAT TRUSTWORTHY CYBER INFRASTRUCTURE FOR THE POWER GRID | TCIPG.ORG 1 UNIVERSITY OF ILLINOIS |

203 views • 5 slides
Consens ut & Blockchain S P Suresh Chennai Mathematical In st itute Formal M eu hods Upd au e

Consens ut & Blockchain S P Suresh Chennai Mathematical In st itute Formal M eu hods Upd au e

Consens ut & Blockchain S P Suresh Chennai Mathematical In st itute Formal M eu hods Upd au e Me eu ing IIT Mandi July 17 , 2017 Ti e Bitcoin revolution it upon ut Wh au it Bitcoin ? Bitcoin: an exciting new currency sy st em digital

681 views • 28 slides
SHAREHOLDERS GENERAL MEETING 16 APRIL 2015 This presentation contains certain forward-looking

SHAREHOLDERS GENERAL MEETING 16 APRIL 2015 This presentation contains certain forward-looking

SHAREHOLDERS GENERAL MEETING 16 APRIL 2015 This presentation contains certain forward-looking statements based on current expectations, forecasts and assumptions that involve risks and uncertainties. These statements are based on information

1.43k views • 97 slides
COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract Demo/Walkthrough OVERVIEW What is a Blockchain? Bitcoin. Blockchain design considerations. Smart contract. ERC-20 Ethereum Smart Contract demonstration.

549 views • 26 slides
Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel

Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel

Candidates Day 2016 Modeling the Energy Consumption of Blockchain Consensus Algorithms Daniel Lopresti, Interim Dean P.C. Rossin College of Engineering and Applied Science April 15, 2016 July 30, 2018 Ryan Cole Liang Cheng CSE Department

453 views • 12 slides
Cryptography V: Digital Signatures Computer Security Lecture 6 David Aspinall School of

Cryptography V: Digital Signatures Computer Security Lecture 6 David Aspinall School of

Cryptography V: Digital Signatures Computer Security Lecture 6 David Aspinall School of Informatics University of Edinburgh 31st January 2013 Outline Basics Constructing signature schemes Security of signature schemes ElGamal DSA

1.15k views • 91 slides
CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA

CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA

BLOCKCHAIN IN CYBERSECURITY: USAGE AND Abdullah Hamdan CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA Blockchain Security applications Blockchain Security challenges Conclusion 2 INTRODUCTION

413 views • 12 slides
su ppl y chain in t eg r a t ion T H E P R O B L E M S W E M A N A G E Mo st S u

su ppl y chain in t eg r a t ion T H E P R O B L E M S W E M A N A G E Mo st S u

Sof tw a r e blockchain s ol ut ion fo r su ppl y chain in t eg r a t ion T H E P R O B L E M S W E M A N A G E Mo st S u ppl y Chain s t oda y feed on da t a f r om diffe r en t and di s connec t ed s o ur ce s . ( ERP ' s , PLM '

209 views • 17 slides
I-XCHANGE: TELKOMs Solution towards New Era of Inter-Intra Enterprises Integration INDRA

I-XCHANGE: TELKOMs Solution towards New Era of Inter-Intra Enterprises Integration INDRA

TELKOM I-XCHANGE: TELKOMs Solution towards New Era of Inter-Intra Enterprises Integration INDRA M. UTOYO PT. Telekomunikasi Indonesia, Tbk. IIWAS2002, Bandung, 10-12 September 2002 TELKOM Background: Business Trigger The need for

438 views • 9 slides

More recommend