kth.sePublications KTH
EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Load Balancing of Renewable Energy: A Cyber Security Analysis
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.
KTH, School of Electrical Engineering and Computer Science (EECS), Computer Science, Network and Systems Engineering.
Show others and affiliations
2018 (English)In: Energy Informatics, E-ISSN 2520-8942, Vol. 1, article id 5Article in journal (Refereed) Published
Abstract [en]

Background

In the coming years, the increase of automation in electricity distribution grids, controlled by ICT, will bring major consequences to the cyber security posture of the grids. Automation plays an especially important role in load balancing of renewable energy where distributed generation is balanced to load in a way that the grid stability is ensured. Threats to the load balancing and the smart grid in general arise from the activities of misbehaving or rouge actors in combination with poor design, implementation, or configuration of the system that makes it vulnerable. It is urgent to conduct an in-depth analysis about the feasibility and imminency of these potential threats ahead of a cyber catastrophy. This paper presents a cyber security evaluation of the ICT part of the smart grid with a focus on load balancing of renewable energy.

Method

The work builds on a load balancing centered smart grid reference architecture model that is designed as part of the evaluation with the help of SCADA system and smart grid experts. The smart grid load balancing architecture represented by the model is then analyzed using a threat modelling approach that is encapsulated in a tool called securiCAD. Countermeasures are introduced in the model to measure how much each improve the cyber security of the smart grid.

Results

The analysis shows that the main threat comes from the internet and is directly dependant on the level of internet access office users have coupled with their level of access on the OT zone. Supply chain attacks are also of great concern, i.e. the compromising of the software/hardware vendor with the objective of feeding rogue updates to assets, typically to install a backdoor. The general takeaway defense-wise is that it is of the utmost importance to increase efforts in securing the smart Grid in all the ways possible as they appear to be generally complementary.

Discussion

The obtained results raise concerns whether the architecture of the smart grid still remains satisfactory in today’s state of the cyberspace and the increased presence and sophistication of cyber threats. There are also concerns whether the proposed security measures, regardless of their evaluated effectiveness, are realistically implementable from both financial and practical point of view.

Conclusions

There is no silver bullet available to achieve full protection against cyber attacks. The smart grid remains a network of IT/OT machines with dataflows going between them. State-sponsored hackers given enough time and regardless of the defences in place will eventually make their way into a critical infrastructure such as the smart grid. While mitigations will not eliminate the threats, they will increase the cyber resilience of the infrastructure by increasing both its time frame and effectiveness. As such, in a time where usability, efficiency and practicality are at the front of every domain, innovations regarding these aspects should really be carried out with strong security in mind.
Place, publisher, year, edition, pages
Springer, 2018. Vol. 1, article id 5
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:kth:diva-230939DOI: 10.1186/s42162-018-0010-xScopus ID: 2-s2.0-85064612403OAI: oai:DiVA.org:kth-230939DiVA, id: diva2:1220398
Funder
StandUp
Note

QCR 20180620. QC 20191024

Available from: 2018-06-18 Created: 2018-06-18 Last updated: 2024-03-15Bibliographically approved
In thesis
1. Improving IT Architecture Modeling Through Automation: Cyber Security Analysis of Smart Grids
Open this publication in new window or tab >>Improving IT Architecture Modeling Through Automation: Cyber Security Analysis of Smart Grids
2018 (English)Doctoral thesis, comprehensive summary (Other academic)
Abstract [en]

Contemporary organizations depend on IT to reach their goals but the organizations are constantly adapting to changing market conditions and these changes need to be reflected in the IT architecture. Modeling is often used to manage complex architectures allowing to abstract details and focus on the most important aspects. Metamodels are central to modeling and used as a mechanism for modeling different phenomena and describing evolving designs such as IT architectures. However, it can be difficult to model IT architecture especially in large organizations due to the amount and diversity of systems, software, data, et cetera. Previous studies have found problems with metamodels and the support modeling tools provide to the users. The topics mentioned by numerous authors are lacking cyber security analysis capabilities and the support for automated model creation using enterprise data. These two topics are studied in this thesis with the focus on smart grids. 

The contribution of this thesis is to offer support for IT architecture modeling processes with the following propositions that are described in four papers. The contribution includes a metamodel extension for analyzing insider threats and reachability (Paper A), a framework for automatic modeling (Paper B), a framework for improving semantic accuracy and granularity matching in automatic modeling (Paper C) and a reference model for cyber security analysis of smart grid load balancing (Paper D).
Abstract [sv]

Idag är många verksamheter beroende av IT för att nå sina mål. Organisationer anpassar sig dock ständigt till förändrade marknadsförhållanden och dessa förändringar måste återspeglas i IT-arkitekturen. Modellering används ofta för att hantera komplexa system, då det möjliggör abstraktion av detaljer och fokus på de viktigaste delarna av systemet. Metamodeller är viktiga för modellering och används som ett verktyg för att modellera fenomen för olika IT-arkitekturer. Att modellera IT-arkitekturer kan dock vara svårt, särskilt i stora organisationer med många olika system, program, data osv. Tidigare forskning har funnit problem med metamodeller och verktygsstöd. Ämnen som nämns av många författare är problemen med hotanalyskapacitet och stöd för automatiserad modelluppbyggnad från företagsdata. Dessa två ämnen studeras i denna avhandling med fokus på smarta elnät.

Bidraget i denna avhandling är att erbjuda stöd för IT-arkitekturmodelleringsprocesser med följande förslag som beskrivs i fyra papper. Bidraget innefattar en utvidgad metamodell för att analysera interoperabilitet och tillgänglighet avseende cybersäkerhet (artikel A), ett ramverk för automatisk modellering (artikel B), ett ramverk för förbättring av semantisk noggrannhet och granularitetsmatchning i automatisk modellering (artikel C) och en referensmodell för analys av cybersäkerhet vid lastbalansering av smarta elnät (artikel D).
Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2018. p. 44
Series
TRITA-EECS-AVL ; 2018:63
National Category
Other Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Electrical Engineering
Identifiers
urn:nbn:se:kth:diva-235347 (URN)978-91-7729-931-8 (ISBN)
Public defence
2018-10-15, F3, Lindstedtsvägen 26, Stockholm, 15:00 (English)
Opponent
Supervisors
Note

QC 20180924

Available from: 2018-09-24 Created: 2018-09-22 Last updated: 2022-06-26Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Vernotte, AlexandreVälja, MargusKorman, MatusBjörkman, GunnarEkstedt, MathiasLagerström, Robert

Search in DiVA

By author/editor
Vernotte, AlexandreVälja, MargusKorman, MatusBjörkman, GunnarEkstedt, MathiasLagerström, Robert
By organisation
Network and Systems Engineering
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 523 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG
|
KTH Library
|
DiVA support
|
Register in DiVA
|
Posting your thesis
|
SwePub
|
About Open Access