kth.sePublications
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Generating Threat Models and Attack Graphs based on the IEC 61850 System Configuration description Language
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.ORCID iD: 0000-0002-9546-9463
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.ORCID iD: 0000-0003-3922-9606
2021 (English)In: Proceedings of the 2021 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems, Association for Computing Machinery (ACM) , 2021Conference paper, Published paper (Refereed)
Abstract [en]

Due to our dependency on electricity, it is vital to keep our powersystems secure from cyber attacks. However, because power sys-tems are being digitalized and the infrastructure is growing increasingly complicated, it is difficult to gain an overview and secure the entire system. An overview of the potential security vulnerabilities can be achieved with threat modeling. The Meta AttackLanguage (MAL) is a formalism that enables the development ofthreat modeling languages that can be used to automatically generate attack graphs and conduct simulations over them. In this article we present the MAL-based language SCL-Lang which has been created based on the System description Configuration Language (SCL) as defined in the IEC 61850 standard. With SCL-Lang one can create threat models of substations based on their SCL files and automatically find information regarding potential cyber attack paths in the substation automation system configuration. This enables structured cyber security analysis for evaluating various design scenarios before implementation
Place, publisher, year, edition, pages
Association for Computing Machinery (ACM) , 2021.
Keywords [en]
IEC 61850, substation, cyber security, threat modeling language, attack graphs, Meta Attack Language, System Configuration description Language
National Category
Computer Sciences Computer Systems
Research subject
Computer Science; Information and Communication Technology; Electrical Engineering
Identifiers
URN: urn:nbn:se:kth:diva-294123DOI: 10.1145/3445969.3450421ISI: 000932746800013Scopus ID: 2-s2.0-85107425400OAI: oai:DiVA.org:kth-294123DiVA, id: diva2:1553545
Conference
2021 ACM Workshop on Secure and Trustworthy Cyber-Physical Systems
Funder
SweGRIDS - Swedish Centre for Smart Grids and Energy Storage
Note

Part of proceedings; ISBN 9781450383196, QC 20230117

Available from: 2021-05-10 Created: 2021-05-10 Last updated: 2023-09-21Bibliographically approved

Open Access in DiVA

fulltext(1349 kB)243 downloads
File information
File name FULLTEXT01.pdfFile size 1349 kBChecksum SHA-512
acf0145cd6358e849aa60555268a1666f8e73422e7194fd3938b22cdc9185c49d56bd92f15745c5831062e769c693d5afed6a3a0b3729e1942235ca286c23b79
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopus

Authority records

Rencelj Ling, EnglaEkstedt, Mathias

Search in DiVA

By author/editor
Rencelj Ling, EnglaEkstedt, Mathias
By organisation
Network and Systems Engineering
Computer SciencesComputer Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 243 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 397 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Library
|
DiVA support
|
Register in DiVA
|
Posting your thesis
|
SwePub