presentations
play

Presentations Trustworthy Cyber Infrastructure for Power (TCIP) - PDF document

Jan 28, 2023 •105 likes •256 views

Trustworthy Cyber Infrastructure for the Power Grid Presentations Trustworthy Cyber Infrastructure for Power (TCIP) Protection Detection and Response Mechanisms Klara Nahrstedt , Illinois , Zbigniew Kalbarczyk , Illinois University of

  1. Trustworthy Cyber Infrastructure for the Power Grid Presentations Trustworthy Cyber Infrastructure for Power (TCIP) Protection Detection and Response Mechanisms Klara Nahrstedt , Illinois , Zbigniew Kalbarczyk , Illinois University of Illinois • Dartmouth College • Cornell University • Washington State University Control Communication Architecture From presentation by D. Whitehead, “Communication and Control in Power Systems”, TCIP Summer School , June 2008 University of Illinois • Dartmouth College • Cornell University • Washington State University 1 University of Illinois • Dartmouth College • Cornell University • Washington State University

  2. Trustworthy Cyber Infrastructure for the Power Grid Presentations Presentation Methodology Power-Grid supporting Digital Networks and Distributed Systems (Presenter: Klara Nahrstedt) (Presenter: Klara Nahrstedt) Power-Grid supporting Computing Base (Presenter: Zbigniew Kalbarczyk) University of Illinois • Dartmouth College • Cornell University • Washington State University Characteristics and Goals for Control Networks and Devices • Characteristics – Mission-oriented – Stable • Goals Real-time availability to sustain the critical functions of the 1. power grid Integrity to trustworthy deliver correct commands and data 2. Confidentiality to safeguard trade secrets 3. • Trends – Update /replace existing devices, networks, software with low cost commodity infrastructure such as Linux, Windows, Intel-based processors, Mesh Networks, WiFi, Zigbee, Internet protocols (TCP/IP), … University of Illinois • Dartmouth College • Cornell University • Washington State University 2 University of Illinois • Dartmouth College • Cornell University • Washington State University

  3. Trustworthy Cyber Infrastructure for the Power Grid Presentations Power-Grid supporting Digital Network: State of the Art • Network State of the Art IEC 61850 – No routable traffic in many cases between substations and control centers – Serial lines between sensors and RTUs in substations and RTUs in substations – One way digital communication from the substation to the control center, – Hierarchical organization between substations and control centers – No wireless or very little wireless network deployment • Real-Time State of the Art – Separate networks for real-time and management traffic • Network Security State of the Art – Security by obscurity or perimeter security University of Illinois • Dartmouth College • Cornell University • Washington State University The Problem Space • Real-Time Availability is not addressed adequately under new trends – Real-Time Problems: Service-oriented model instead of mission- oriented model, Low stability since software changes constantly (new patches) , Difficulties in maintaining configurations in real-time conditions conditions • Real-Time Management Problem • Cyber-Security is not addressed adequately – Security problems: Attacks on Integrity by polluting data, losing data • Key Management Problem • Authorization, Authentication, Access Control Problem • Attack Management Problem – Security problems: Attacks on Confidentiality by attacking Ethernet – Security problems: Attacks on Confidentiality by attacking Ethernet switches, IP traffic routers; end devices to get to data • Key Management Problem • Authorization, Authentication, Access Control Problem • Attack Management Problem University of Illinois • Dartmouth College • Cornell University • Washington State University 3 University of Illinois • Dartmouth College • Cornell University • Washington State University

  4. Trustworthy Cyber Infrastructure for the Power Grid Presentations Approach: End-to-End Real-Time Trust Provisioning via Protection, Detection, Response Coordinator ISO Level Control Center Backup Ethernet / IP-Network (Secure, Real-time, Level Monitored) Ethernet / IP-Network (Secure, Real-time, Monitored) “Smart” Data Gateway/Hub Network Private IP-Based Level Network (Secure, Real-time, Private IP-Based Private IP-Based Monitored) Network Network (Secure, Real-time, (Secure, Real-time, Monitored) Monitored) Metering and Load Control “Smart” Gateway/Hub IED IED IED DFR Local HMI Substation Level Ethernet / IP-Network (Secure, Real-time, Monitored) IED IED IED IED Sensor/Actuator Level University of Illinois • Dartmouth College • Cornell University • Washington State University Approach Control Center • Protect, Detect, Respond Functions Functions Protection Detection Response Functions – Protect: Prevent (Plan, Admit, Reserve) violations, Enforce (Schedule, Encrypt, Sign) real- Data ti time availability, integrity and il bilit i t it d confidentiality Private IP-Based Network (Secure, Real-time, – Detect: Monitor, Assess and Monitored) Functions Functions Alert violations, threats, Protection Detection Response Functions vulnerabilities, misbehaviors, errors IEDIEDIED DFR Local HMI – Respond: Act against abnormal events , Issue reconfigurations, IED IED IED IED Functions Functions Protection Detection Response Bridge new and legacy entities Functions along the end-to-end path, Substation Contain misbehaved entities University of Illinois • Dartmouth College • Cornell University • Washington State University 4 University of Illinois • Dartmouth College • Cornell University • Washington State University

  5. Trustworthy Cyber Infrastructure for the Power Grid Presentations Protect, Detect, Respond Framework Protect: Enforce & Prevent Detect Respond Power Grid Protocols: SCADA Data IEC 61850, DNP3, ICCP, MODBUS Detect Violation of Key Encryption/ Keys Setup Re-keying Keys Man. Decryption Protocols Confidentiality Password Change Per-Packet Authentication, AAA Detection of Access Privileges Role Authorization, Access Control AAA Violations Control Change Trust Negotiation Q alit Quality of of Real Real-time Delivery QoS Monitoring Service QoS Time Scheduling Detection of QoS Admission, Adaptation Degradation Man. Reservation Vulnerabilities/Attack Assessment, Monitoring, Attack Detection , Containment and Recovery Man. University of Illinois • Dartmouth College • Cornell University • Washington State University Current Research Thrusts (1): Key Management • Problem: – Allocate and distribute keys to heterogeneous devices in Power Grid over diverse networks Control Center/SCADA – Allow cryptographic functions for confidentiality and integrity y g y DNSSEC DNSSEC – Recover from attacks when keys are compromised • Idea: DomainCert – Simplified key management – Resource-efficient combinatorial public key management approach Gateway Gateway DNSSEC • Results so far: Cache SMOCK – Domain Cert: simplified PKI / DNSSEC certificate management – SMOCK: resource-efficient group key scheme for legacy devices Legacy New IED IED Devices Devices • In progress : – Integrated hierarchical key management with diverse key schemes University of Illinois • Dartmouth College • Cornell University • Washington State University 5 University of Illinois • Dartmouth College • Cornell University • Washington State University

  6. Trustworthy Cyber Infrastructure for the Power Grid Presentations Current Research Thrusts (2): AAA Management • Problem: – Achieve confidentiality, integrity and availability in dynamic and evolvable fashion – Allow for robust, flexible and high performance authorization across organizations • Idea: – Data Plane Security Architecture – Authorization via trust negotiation • Results so far: Alice at Control Center 1 Control Center 2 – GridStat with transparent inter-changable security modules assigned on a per status variable granularity – Trustbuilder2 framework – Integrated Gridstat and TrustBuilder2 Access? – ABUSE: enabling human users to draw Employee at NERC- correct trust conclusions about “secure” email certified control center? (Validated against Aug 2003 transcripts) Audit policy? P • Audit policy In progress: Employee ID – Exploration of end-to-end AAA/Security Architectures Access granted Service University of Illinois • Dartmouth College • Cornell University • Washington State University (2) Trust Negotiation State Consistency Example Scenario The scenario: Alice can be either a power operator or an internal auditor in Control Center 1, though these roles are mutually exclusive. As an internal auditor, she can also act as an information classifier. Alice wishes to access a remote service available to power operators who are information classifiers, and forces the use of an inconsistent system state to accomplish this. Alice at Control Center 1 Alice at Control Center 1 Control Center 2 Control Center 2 X Inconsistent Alice requests access to the status database State! Certified power operator in NERC-certified control center? Information classifier? Power operator credential. Audit Policy? √ P Certified audit policy. √ √ Information classifier certificate. Access granted! Service University of Illinois • Dartmouth College • Cornell University • Washington State University 6 University of Illinois • Dartmouth College • Cornell University • Washington State University

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

4-H PRESENTATIONS 4-H Presentations What are 4-H Presentations? 4-H Presentations are a huge

4-H PRESENTATIONS 4-H Presentations What are 4-H Presentations? 4-H Presentations are a huge

North Carolina 4-H 4-H PRESENTATIONS 4-H Presentations What are 4-H Presentations? 4-H Presentations are a huge part of North Carolina 4-H. It is one of the most successful way to help a young person learn how to do a public speech. It

746 views • 17 slides
Business Presentations Business Presentations Business presentations can be to inform

Business Presentations Business Presentations Business presentations can be to inform

Business Presentations Business Presentations Business presentations can be to inform to promote to sell to solve problems Business Presentations How is a business presentation different to a public speech?

644 views • 23 slides
Oral Presentations Oral Presentations Oral presentations are one of the most common assignments

Oral Presentations Oral Presentations Oral presentations are one of the most common assignments

Oral Presentations Oral Presentations Oral presentations are one of the most common assignments in college courses. Scholars, professionals, and students in all fields desire to disseminate the new knowledge they produce, and this is often

387 views • 6 slides
4-H PRESENTATIONS North Carolina 4-H 4-H PRESENTATIONS 4-H Presentations What are 4-H

4-H PRESENTATIONS North Carolina 4-H 4-H PRESENTATIONS 4-H Presentations What are 4-H

North Carolina 4-H 4-H PRESENTATIONS North Carolina 4-H 4-H PRESENTATIONS 4-H Presentations What are 4-H Presentations? 4-H Presentations are a huge part of North Carolina 4-H. It is one of the most successful way to help a young person

359 views • 19 slides
AVAILABLE PRESENTATIONS Mr. Steinberger can be booked for any of the following presentations. Mr.

AVAILABLE PRESENTATIONS Mr. Steinberger can be booked for any of the following presentations. Mr.

AVAILABLE PRESENTATIONS Mr. Steinberger can be booked for any of the following presentations. Mr. Steinberger will entertain as he educates, drawing his audience in and adapting his presentation to the audiences interests and comments,

444 views • 9 slides
Modeling images The order of presentations will be chosen randomly Subhransu Maji Remaning

Modeling images The order of presentations will be chosen randomly Subhransu Maji Remaning

Administrivia This is the last lecture! Next two will be project presentations by you Upload your presentations on Moodle by 11 AM, Thursday, Dec. 8 6 min presentation + 2 mins of questions Modeling images The order of presentations

100 views • 9 slides
CS 5150 Software Engineering 24. Presentations William Y. Arms Presentations The following

CS 5150 Software Engineering 24. Presentations William Y. Arms Presentations The following

Cornell University Computing and Information Science CS 5150 Software Engineering 24. Presentations William Y. Arms Presentations The following material has guidance for software presentations in general with hints about preparing for the

253 views • 13 slides
Resident Presentations 2019-2020 PGY-3 Presentations Two Presentations: 1. Grand Rounds The

Resident Presentations 2019-2020 PGY-3 Presentations Two Presentations: 1. Grand Rounds The

Resident Presentations 2019-2020 PGY-3 Presentations Two Presentations: 1. Grand Rounds The allotted time is 50 minutes. Grand rounds may be on any topic in medicine that interests the presenter. The topic must be approved by the Associate

763 views • 6 slides
PRESENTATION GUIDELINES for SAAHE 2017 Platform presentations (oral presentations) All

PRESENTATION GUIDELINES for SAAHE 2017 Platform presentations (oral presentations) All

PRESENTATION GUIDELINES for SAAHE 2017 Platform presentations (oral presentations) All presenters must upload their presentations the morning before the session starts or during tea or lunch time. The IT support person will be available in the

305 views • 5 slides
Effective Presentations Tips & Best Practices 2016 The body of your presentation should flow

Effective Presentations Tips & Best Practices 2016 The body of your presentation should flow

Effective Presentations Tips & Best Practices Presentation Skills There are several aspects to successful presentations. To learn more about preparing and delivering speeches or presentations, we suggest starting with the Lions Learning

225 views • 5 slides
Project Presentations EE595 Capstone Design Presentations Thursday, Dec 15 EMS-E250

Project Presentations EE595 Capstone Design Presentations Thursday, Dec 15 EMS-E250

EE595 Capstone Design Project Presentations EE595 Capstone Design Presentations Thursday, Dec 15 EMS-E250 Presentations Team 6: 8:00 9:50AM urHOME Modular Home Control System Joshua Cabaniss, Nishit Patel, Usman Querishi, Justing

675 views • 31 slides
4-H Presentations 2020 4-H Presentations at A Glance Age Categories: 8-10, 11-13 & 14-18

4-H Presentations 2020 4-H Presentations at A Glance Age Categories: 8-10, 11-13 & 14-18

4-H Presentations 2020 4-H Presentations at A Glance Age Categories: 8-10, 11-13 & 14-18 Animal Science Horse Objective: To increase the level of horse knowledge and expertise. Topics Include: horse selection, feeding, health, management,

366 views • 12 slides
A guide to oral presentations Oral presentations can be a confronting way to present your

A guide to oral presentations Oral presentations can be a confronting way to present your

A guide to oral presentations Oral presentations can be a confronting way to present your research. However, presentations are also one of the most fruitful sources of personal growth in your university education. The following is a guide to

318 views • 3 slides
PRESENTATIONS PRESENTATIONS are ideal for first time visitations as they serve as an introduction

PRESENTATIONS PRESENTATIONS are ideal for first time visitations as they serve as an introduction

Rave avens nspeak aks School Visitation Presentations & Programs Interactive, Inspiring and Informative Each presentation reinforces the teachings of First Nations People by encouraging communication and sharing. Please visit

390 views • 7 slides
Powerful Presentations The Sound Of Silence Use Pauses For Powerful Presentations When we are

Powerful Presentations The Sound Of Silence Use Pauses For Powerful Presentations When we are

Powerful Presentations The Sound Of Silence Use Pauses For Powerful Presentations When we are presenting and especially when we are new to speaking in front of audiences we often speed ahead afraid of leaving blank spaces. Successful sales

40 views • 3 slides
Advocacy Presentations: Advocacy Presentations: chiropractic.on.ca Backgrounder & How-To

Advocacy Presentations: Advocacy Presentations: chiropractic.on.ca Backgrounder & How-To

Advocacy Presentations: Advocacy Presentations: chiropractic.on.ca Backgrounder & How-To Guide Background The OCA has created a comprehensive strategy to promote the benefits of chiropractic care in general and, more specifically, to

89 views • 5 slides
Instant OS Updates via Userspace Checkpoint-and-Restart Sanidhya Kashyap , Changwoo Min,

Instant OS Updates via Userspace Checkpoint-and-Restart Sanidhya Kashyap , Changwoo Min,

Instant OS Updates via Userspace Checkpoint-and-Restart Sanidhya Kashyap , Changwoo Min, Byoungyoung Lee, Taesoo Kim, Pavel Emelyanov OS updates are prevalent And OS updates are unavoidable Prevent known, state-of-the-art attacks

1.08k views • 79 slides
Vulnerability disclosure Dont forget overall goal: improve software safety Consider

Vulnerability disclosure Dont forget overall goal: improve software safety Consider

Vulnerability disclosure Dont forget overall goal: improve software safety Consider incentives for researchers, software vendors, customers Supply chain can be complex Software component developers Open source Resellers

621 views • 20 slides
Security Risk Assessment and Risk Treatment for Integrated Modular Communication Hamid Asgari,

Security Risk Assessment and Risk Treatment for Integrated Modular Communication Hamid Asgari,

Security Risk Assessment and Risk Treatment for Integrated Modular Communication Hamid Asgari, Senior Member IEEE , Sarah Haines, and Adrian Waller Thales UK Limited, Research & Technology, Worton Drive, Worton Grange Business Park, Reading

635 views • 7 slides
Microservices stress-free and without increased heart-attack risk Uwe Friedrichsen (codecentric AG)

Microservices stress-free and without increased heart-attack risk Uwe Friedrichsen (codecentric AG)

Microservices stress-free and without increased heart-attack risk Uwe Friedrichsen (codecentric AG) microxchg Berlin, 12. February 2015 @ufried Uwe Friedrichsen | uwe.friedrichsen@codecentric.de | http://slideshare.net/ufried |

893 views • 46 slides
Advanced Man-at-the-end Attacks and Defenses Bjorn De Sutter ISSISP 2018 Canberra 1

Advanced Man-at-the-end Attacks and Defenses Bjorn De Sutter ISSISP 2018 Canberra 1

Advanced Man-at-the-end Attacks and Defenses Bjorn De Sutter ISSISP 2018 Canberra 1 Lecture Overview 1. Advanced MATE attacks models tools & techniques 2. Protected code comprehension processes 3. Advanced MATE defenses 4.

1.79k views • 114 slides
CREST Workshop Rick Schantz, Partha Pal, Aaron Paulos, Joe Loyall, Kurt Rohloff Distributed

CREST Workshop Rick Schantz, Partha Pal, Aaron Paulos, Joe Loyall, Kurt Rohloff Distributed

Multiple Views on Multiplicity Computing: Opportunities Viewed through a Cyber-Security Lens CREST Workshop Rick Schantz, Partha Pal, Aaron Paulos, Joe Loyall, Kurt Rohloff Distributed Systems Technology Group March 23, 2012 1982: R&D

489 views • 29 slides
Data Transmission Analog and Digital Impairments Capacity ITS323: Introduction to Data

Data Transmission Analog and Digital Impairments Capacity ITS323: Introduction to Data

ITS323 Data Transmission Terminology Time Domain Frequency Domain Data Transmission Analog and Digital Impairments Capacity ITS323: Introduction to Data Communications Sirindhorn International Institute of Technology Thammasat University

813 views • 44 slides
Multi-rate Signal Processing 6. Quadrature Mirror Filter (QMF) Bank Electrical & Computer

Multi-rate Signal Processing 6. Quadrature Mirror Filter (QMF) Bank Electrical & Computer

6 Quadrature Mirror Filter (QMF) Bank Appendix: Detailed Derivations Multi-rate Signal Processing 6. Quadrature Mirror Filter (QMF) Bank Electrical & Computer Engineering University of Maryland, College Park Acknowledgment: ENEE630 slides

531 views • 38 slides

More recommend