Security Operation Modes for Enhancement of Utility Computer Network Cyber-Security

Lin Wang, Todd Mander, Helen Cheung, Farhad Nabhani, Richard Cheung

Research output: Contribution to conferencePaperpeer-review

312 Downloads (Pure)

Abstract

Concerns for utility computer networks' security and reliability are growing rapidly due to increasing utility devices with connections to external networks. This aggravates vulnerability of utility networks to cyber-attacks through external connections. Though encryption can provide security for user data transmissions, encryption itself could not provide protections against traffic-analysis attacks. Techniques against traffic-analysis attacks through statistically controlling the transmission rate of padded and encrypted frames are unsuited for power system applications. This paper proposes three security operation modes for the newly developed security layer, located below DNP3 data-link layer, to strengthen encryption and authentication operations against the effectiveness of traffic-analysis and cryptanalysis attacks. The security modes use padding to disguise the amount of user data transmitted and disguise the user data-link layer frame amongst a group of manufactured frames similar to statistically controlling data transmission rate. The proposed security operations have been successfully applied to enhance power system security controls.
Original languageEnglish
Pages1-8
DOIs
Publication statusPublished - Jun 2007
Event2007 IEEE Power Engineering Society General Meeting - Tampa, FL, USA
Duration: 24 Jun 200728 Jun 2007

Conference

Conference2007 IEEE Power Engineering Society General Meeting
Period24/06/0728/06/07

Fingerprint

Dive into the research topics of 'Security Operation Modes for Enhancement of Utility Computer Network Cyber-Security'. Together they form a unique fingerprint.

Cite this