Experimental Setup for Grid Control Device Software Updates in Supply Chain Cyber-Security

Keller, Joseph; Paul, Shuva; Grijalva, Santiago; Mooney, Vincent J.

doi:10.1109/naps56150.2022.10012179

Experimental Setup for Grid Control Device Software Updates in Supply Chain Cyber-Security

Conference · Sun Oct 09 00:00:00 EDT 2022 · 2022 North American Power Symposium (NAPS)

DOI:https://doi.org/10.1109/naps56150.2022.10012179· OSTI ID:1997525

Keller, Joseph ^[1]; Paul, Shuva ^[2]; Grijalva, Santiago ^[2]; Mooney, Vincent J. ^[3]

Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345; Georgia Institute of Technology
Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345
School of Computer Science Georgia Institute of Technology,School of Electrical and Computer Engineering,Atlanta,Georgia,USA,30345

Supply chain cyberattacks that exploit insecure third-party software are a growing concern for the security of the electric power grid. These attacks seek to deploy malicious software in grid control devices during the fabrication, shipment, installation, and maintenance stages, or as part of routine software updates. Malicious software on grid control devices may inject bad data or execute bad commands, which can cause blackouts and damage power equipment. This paper describes an experimental setup to simulate the software update process of a commercial power relay as part of a hardware-in-the-loop simulation for grid supply chain cyber-security assessment. The laboratory setup was successfully utilized to study three supply chain cyber-security use cases.

View Conference

Research Organization:: Georgia Institute of Technology

Sponsoring Organization:: USDOE Office of Cybersecurity, Energy Security, and Emergency Response (CESER)

DOE Contract Number:: CR0000004

OSTI ID:: 1997525

Report Number(s):: DOE-GATECH-00004-6

Journal Information:: 2022 North American Power Symposium (NAPS), Journal Name: 2022 North American Power Symposium (NAPS)

Country of Publication:: United States

Language:: English

References (15)

Electricity Grid Cyber-Physical Security Risk Assessment Using Simulation of Attack Stages and Physical Impact Chen, Yu-Cheng; Mooney, Vincent; Grijalva, Santiago 2020 IEEE Kansas Power and Energy Conference (KPEC) https://doi.org/10.1109/KPEC47870.2020.9167679	conference	July 2020
Cybersecurity in logistics and supply chain management: An overview and future research directions Cheung, Kam-Fung; Bell, Michael G. H.; Bhattacharjya, Jyotirmoyee Transportation Research Part E: Logistics and Transportation Review, Vol. 146 https://doi.org/10.1016/j.tre.2020.102217	journal	February 2021
Modeling Supply Chain Attacks in IEC 61850 Substations Duman, Onur; Ghafouri, Mohsen; Kassouf, Marthe 2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm) https://doi.org/10.1109/SmartGridComm.2019.8909818	conference	October 2019
Design of a Cosimulation Platform With Hardware-in-the-Loop for Cyber-Attacks on Cyber-Physical Power Systems Liu, Zengji; Wang, Qi; Tang, Yi IEEE Access, Vol. 8 https://doi.org/10.1109/ACCESS.2020.2995743	journal	January 2020
Impact of firmware modification attacks on power systems field devices Konstantinou, Charalambos; Maniatakos, Michail 2015 IEEE International Conference on Smart Grid Communications (SmartGridComm) https://doi.org/10.1109/SmartGridComm.2015.7436314	conference	November 2015
Survey of Testing Methods and Testbed Development Concerning Internet of Things Zhu, Shicheng; Yang, Shunkun; Gou, Xiaodong Wireless Personal Communications, Vol. 123, Issue 1 https://doi.org/10.1007/s11277-021-09124-5	journal	September 2021
Real-time Hardware-in-the-loop Implementation for Power Systems Protection Avalos, A.; Zamora, A.; Escamilla, O. 2018 IEEE PES Transmission & Distribution Conference and Exhibition - Latin America (T&D-LA) https://doi.org/10.1109/TDC-LA.2018.8511771	conference	September 2018
A Hybrid Attack Model for Cyber-Physical Security Assessment in Electricity Grid Chen, Yu-Cheng; Gieseking, Tim; Campbell, Dustin 2019 IEEE Texas Power and Energy Conference (TPEC) https://doi.org/10.1109/TPEC.2019.8662138	conference	February 2019
Analysis of existing dynamic software updating techniques for safe and secure industrial control systems Mugarza, Imanol; Parra, Jorge; Jacob, Eduardo International Journal of Safety and Security Engineering, Vol. 8, Issue 1 https://doi.org/10.2495/SAFE-V8-N1-121-131	journal	January 2018
Bad Data Injection Attack Propagation in Cyber-Physical Power Delivery Systems Chukwuka, Victor; Chen, Yu-Cheng; Grijalva, Santiago 2018 Clemson University Power Systems Conference (PSC) https://doi.org/10.1109/PSC.2018.8664024	conference	September 2018
Open-Source Architecture for Multi-Party Update Verification for Data Acquisition Devices Newberg, Benjamin; Grijalva, Santiago; Mooney, Vincent 2022 IEEE Power and Energy Conference at Illinois (PECI) https://doi.org/10.1109/PECI54197.2022.9744049	conference	March 2022
Over-current relay model implementation for real time simulation & Hardware-in-the-Loop (HIL) validation Almas, Muhammad Shoaib; Leelaruji, Rujiroj; Vanfretti, Luigi IECON 2012 - 38th Annual Conference on IEEE Industrial Electronics Society https://doi.org/10.1109/IECON.2012.6389585	conference	October 2012
Advanced Laboratory Testing Methods Using Real-Time Simulation and Hardware-in-the-Loop Techniques: A Survey of Smart Grid International Research Facility Network Activities Montoya, Juan; Brandl, Ron; Vishwanath, Keerthi Energies, Vol. 13, Issue 12 https://doi.org/10.3390/en13123267	journal	June 2020
A Survey on Supply Chain Security: Application Areas, Security Threats, and Solution Architectures Hassija, Vikas; Chamola, Vinay; Gupta, Vatsal IEEE Internet of Things Journal, Vol. 8, Issue 8 https://doi.org/10.1109/JIOT.2020.3025775	journal	April 2021
Accurate and Stable Hardware-in-the-Loop (HIL) Real-Time Simulation of Integrated Power Electronics and Power Systems Lauss, Georg; Strunz, Kai IEEE Transactions on Power Electronics, Vol. 36, Issue 9 https://doi.org/10.1109/TPEL.2020.3040071	journal	September 2021

Similar Records

Open-Source Architecture for Multi-Party Update Verification for Data Acquisition Devices

Conference · Wed Mar 09 23:00:00 EST 2022 · 2022 IEEE Power and Energy Conference at Illinois (PECI) · OSTI ID:1997021

On Self-Security of Grid-Interactive Smart Inverters

Conference · Mon Apr 19 00:00:00 EDT 2021 · 2021 IEEE Kansas Power and Energy Conference (KPEC) · OSTI ID:1905850

Gridtrust: Electricity Grid Root-of-Trust Decentralized Supply Chain Cyber-Security (Final Scientific/Technical Report)

Technical Report · Thu Aug 24 00:00:00 EDT 2023 · OSTI ID:2228845

Experimental Setup for Grid Control Device Software Updates in Supply Chain Cyber-Security

Citation Formats

References (15)

Similar Records

Related Subjects