Experimental Setup for Grid Control Device Software Updates in Supply Chain Cyber-Security
- Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345
- School of Computer Science Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345
Supply chain cyberattacks that exploit insecure third-party software are a growing concern for the security of the electric power grid. These attacks seek to deploy malicious software in grid control devices during the fabrication, shipment, installation, and maintenance stages, or as part of routine software updates. Malicious software on grid control devices may inject bad data or execute bad commands, which can cause blackouts and damage power equipment. This paper describes an experimental setup to simulate the software update process of a commercial power relay as part of a hardware-in-the-loop simulation for grid supply chain cyber-security assessment. The laboratory setup was successfully utilized to study three supply chain cyber-security use cases.
- Research Organization:
- Georgia Institute of Technology, Atlanta, GA (United States)
- Sponsoring Organization:
- USDOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER)
- DOE Contract Number:
- CR0000004
- OSTI ID:
- 1997525
- Report Number(s):
- DOE-GATECH-00004-6
- Journal Information:
- 2022 North American Power Symposium (NAPS), Conference: 2022 North American Power Symposium (NAPS) Salt Lake City, UT, USA 09-11 October 2022
- Country of Publication:
- United States
- Language:
- English
Similar Records
Gridtrust: Electricity Grid Root-of-Trust Decentralized Supply Chain Cyber-Security (Final Scientific/Technical Report)
On Self-Security of Grid-Interactive Smart Inverters