Change search
Link to record
Permanent link

Direct link
BETA
Björkman, Gunnar
Publications (2 of 2) Show all publications
Rossebo, J. E. Y., Wolthuis, R., Fransen, F., Björkman, G. & Medeiros, N. (2017). An Enhanced Risk-Assessment Methodology for Smart Grids. Computer, 50(4), 62-71
Open this publication in new window or tab >>An Enhanced Risk-Assessment Methodology for Smart Grids
Show others...
2017 (English)In: Computer, ISSN 0018-9162, E-ISSN 1558-0814, Vol. 50, no 4, p. 62-71Article in journal (Refereed) Published
Abstract [en]

Cyberattacks on power grids are pushing threat and risk assessment to another complexity level. As part of its scope, the EU's Security for Smart Electricity Grids (SEGRID) project was tasked with building on existing methods to address the interdependencies characteristic of a smart grid. The authors describe the resulting methodology.

Place, publisher, year, edition, pages
IEEE COMPUTER SOC, 2017
National Category
Computer Sciences
Identifiers
urn:nbn:se:kth:diva-210387 (URN)10.1109/MC.2017.106 (DOI)000403456700011 ()2-s2.0-85018988372 (Scopus ID)
Note

QC 20170704

Available from: 2017-07-04 Created: 2017-07-04 Last updated: 2018-01-13Bibliographically approved
Korman, M., Välja, M., Björkman, G., Ekstedt, M., Vernotte, A. & Lagerström, R. (2017). Analyzing the effectiveness of attack countermeasures in a SCADA system. In: Proceedings - 2017 2nd Workshop on Cyber-Physical Security and Resilience in Smart Grids, CPSR-SG 2017 (part of CPS Week): . Paper presented at 2nd Workshop on Cyber-Physical Security and Resilience in Smart Grids, CPSR-SG 2017, 21 April 2017 (pp. 73-78). Association for Computing Machinery, Inc
Open this publication in new window or tab >>Analyzing the effectiveness of attack countermeasures in a SCADA system
Show others...
2017 (English)In: Proceedings - 2017 2nd Workshop on Cyber-Physical Security and Resilience in Smart Grids, CPSR-SG 2017 (part of CPS Week), Association for Computing Machinery, Inc , 2017, p. 73-78Conference paper (Refereed)
Abstract [en]

The SCADA infrastructure is a key component for power grid operations. Securing the SCADA infrastructure against cyber intrusions is thus vital for a well-functioning power grid. However, the task remains a particular challenge, not the least since not all available security mechanisms are easily deployable in these reliability-critical and complex, multi-vendor environments that host modern systems alongside legacy ones, to support a range of sensitive power grid operations. This paper examines how effective a few countermeasures are likely to be in SCADA environments, including those that are commonly considered out of bounds. The results show that granular network segmentation is a particularly effective countermeasure, followed by frequent patching of systems (which is unfortunately still difficult to date). The results also show that the enforcement of a password policy and restrictive network configuration including whitelisting of devices contributes to increased security, though best in combination with granular network segmentation.

Place, publisher, year, edition, pages
Association for Computing Machinery, Inc, 2017
Keywords
Cyber security, SCADA system, Security controls, Threat modeling, Vulnerability assessment, Electric power system security, Electric power transmission networks, Legacy systems, SCADA systems, Smart power grids, Multi-vendor environment, Network configuration, Network segmentation, Power grid operations, Vulnerability assessments, Network security
National Category
Computer Systems
Identifiers
urn:nbn:se:kth:diva-216532 (URN)10.1145/3055386.3055393 (DOI)2-s2.0-85019036296 (Scopus ID)9781450349789 (ISBN)
Conference
2nd Workshop on Cyber-Physical Security and Resilience in Smart Grids, CPSR-SG 2017, 21 April 2017
Note

QC 20171128

Available from: 2017-11-28 Created: 2017-11-28 Last updated: 2017-11-28Bibliographically approved
Organisations

Search in DiVA

Show all publications