Module-OT: A Hardware Security Module for Operational Technology

Hupp, Will; Hasandka, Adarsh; de Carvalho, Ricardo Siqueira; Saleem, Danish

doi:10.1109/TPEC48276.2020.9042540

Module-OT: A Hardware Security Module for Operational Technology

Conference · Thu Mar 19 00:00:00 EDT 2020

DOI:https://doi.org/10.1109/TPEC48276.2020.9042540· OSTI ID:1669443

Hupp, Will; Hasandka, Adarsh; de Carvalho, Ricardo Siqueira; Saleem, Danish

Increased penetration levels of renewable energy and other types of distributed energy resources (DERs) on the modern electric grid-combined with technological advancements for electric system monitoring and control-introduce new cyberattack vectors and increase the cyberattack surface of energy systems. According to the IEEE Std. 1547-2018, DERs must use Modbus, Distributed Network Protocol 3 (DNP3), or Smart Energy Profile 2.0 (SEP2) as their communication protocol. Previous research identified several vulnerabilities and security breaches in each one of these communication protocols; despite this, existing standards for DERs do not recommend cybersecurity measures. In order to reduce vulnerabilities in power distribution systems, this paper presents a novel open-source hardware security module that improves both information and operational security to better protect data and communications on the distribution grid. The security hardware is called “module for operational technology,” or simply Module-OT, and it has been validated and tested in an emulated distribution system application. Module-OT is integrated within a communication system in the transport layer of the Open Systems Interconnection (OSI) model. It improves system security through encryption, authentication, authorization, certificate management, and user access control. The main advancement of Module-OT is the addition of hardware cryptographic acceleration that improves the overall communication performance in terms of end-to-end latency.

🛈

OSTI does not have a digital full text copy available. For more information, please see document availability, search WorldCat, or search Google Scholar.

Research Organization:: National Renewable Energy Laboratory (NREL), Golden, CO (United States)

Sponsoring Organization:: USDOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER)

DOE Contract Number:: AC36-08GO28308

OSTI ID:: 1669443

Report Number(s):: NREL/CP-5R00-77159; MainId:26105; UUID:3f9350db-b4fa-4c46-ad45-0f7af885f9df; MainAdminID:13682

Country of Publication:: United States

Language:: English

Similar Records

ModuleOT: A Hardware Security Module for Operational Technology: Preprint

Conference · Wed Feb 12 23:00:00 EST 2020 · OSTI ID:1600897

Module-OT: A Turnkey Solution for Securing Energy Systems

Conference · Tue Sep 27 00:00:00 EDT 2022 · OSTI ID:1890744

A Photovoltaic MPPT Charge Controller Real-Time Testbed for Cybersecurity Applications

Conference · Wed Nov 29 23:00:00 EST 2023 · OSTI ID:2569623

Related Subjects

70 PLASMA PHYSICS AND FUSION TECHNOLOGY
cryptography
data protection
distribution networks
power grids
power system interconnection
power system security
telecommunication security

Module-OT: A Hardware Security Module for Operational Technology

Citation Formats

Similar Records

Related Subjects