Skip to main content
U.S. Department of Energy
Office of Scientific and Technical Information

Experimental Setup for Grid Control Device Software Updates in Supply Chain Cyber-Security

Conference · · 2022 North American Power Symposium (NAPS)
 [1];  [1];  [1];  [2]
  1. Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345
  2. School of Computer Science Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345

Supply chain cyberattacks that exploit insecure third-party software are a growing concern for the security of the electric power grid. These attacks seek to deploy malicious software in grid control devices during the fabrication, shipment, installation, and maintenance stages, or as part of routine software updates. Malicious software on grid control devices may inject bad data or execute bad commands, which can cause blackouts and damage power equipment. This paper describes an experimental setup to simulate the software update process of a commercial power relay as part of a hardware-in-the-loop simulation for grid supply chain cyber-security assessment. The laboratory setup was successfully utilized to study three supply chain cyber-security use cases.

Research Organization:
Georgia Institute of Technology, Atlanta, GA (United States)
Sponsoring Organization:
USDOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER)
DOE Contract Number:
CR0000004
OSTI ID:
1997525
Report Number(s):
DOE-GATECH-00004-6
Journal Information:
2022 North American Power Symposium (NAPS), Conference: 2022 North American Power Symposium (NAPS) Salt Lake City, UT, USA 09-11 October 2022
Country of Publication:
United States
Language:
English

References (15)

Over-current relay model implementation for real time simulation & Hardware-in-the-Loop (HIL) validation conference October 2012
Real-time Hardware-in-the-loop Implementation for Power Systems Protection conference September 2018
Design of a Cosimulation Platform With Hardware-in-the-Loop for Cyber-Attacks on Cyber-Physical Power Systems journal January 2020
Accurate and Stable Hardware-in-the-Loop (HIL) Real-Time Simulation of Integrated Power Electronics and Power Systems journal September 2021
Survey of Testing Methods and Testbed Development Concerning Internet of Things journal September 2021
Advanced Laboratory Testing Methods Using Real-Time Simulation and Hardware-in-the-Loop Techniques: A Survey of Smart Grid International Research Facility Network Activities journal June 2020
Cybersecurity in logistics and supply chain management: An overview and future research directions journal February 2021
A Survey on Supply Chain Security: Application Areas, Security Threats, and Solution Architectures journal April 2021
Analysis of existing dynamic software updating techniques for safe and secure industrial control systems journal January 2018
A Hybrid Attack Model for Cyber-Physical Security Assessment in Electricity Grid conference February 2019
Impact of firmware modification attacks on power systems field devices conference November 2015
Electricity Grid Cyber-Physical Security Risk Assessment Using Simulation of Attack Stages and Physical Impact conference July 2020
Bad Data Injection Attack Propagation in Cyber-Physical Power Delivery Systems conference September 2018
Modeling Supply Chain Attacks in IEC 61850 Substations conference October 2019
Open-Source Architecture for Multi-Party Update Verification for Data Acquisition Devices conference March 2022

Similar Records

Related Subjects