Testing Situation Awareness Network for the Electrical Power Infrastructure
Main Article Content
Abstract
The contemporary electrical power infrastructure is exposed to new types of threats. The cause of such threats is related to the large number of new vulnerabilities and architectural weaknesses introduced by the extensive use of Information and Communication Technologies (ICT) in such complex critical systems. The power grid interconnection with the Internet exposes the grid to new types of attacks, such as Advanced Persistent Threats (APT) or Distributed-Denial-of- Service (DDoS) attacks. When addressing this situation the usual cyber security technologies are prerequisite, but not sufficient. To counter evolved and highly sophisticated threats such as the APT or DDoS, state-of-the-art technologies including Security Incident and Event Management (SIEM) systems, extended Intrusion Detection/Prevention Systems (IDS/IPS) and Trusted Platform Modules (TPM) are required. Developing and deploying extensive ICT infrastructure that supports wide situational awareness and allows precise command and control is also necessary. In this paper the results of testing the Situational Awareness Network (SAN) designed for the energy sector are presented. The purpose of the tests was to validate the selection of SAN components and check their operational capability in a complex test environment. During the tests’ execution appropriate interaction between the components was verified.
Article Details
References
Aillerie Y. i in., Smart Grid Cyber Security
(2013).
Yan Y. i in., A Survey on Cyber Security
for Smart Grid Communications. IEEE
Commun. Surv. Tutorials. 14, 998–1010
(2012).
Wang W., Lu Z., Cyber security in the
Smart Grid: Survey and challenges.
Comput. Networks. 57, 1344–1371 (2013).
Falliere N., Murchu L.O., Chien, E., W32.
Stuxnet Dossier (2011).
Kushner D., The real story of stuxnet.
IEEE Spectr. 50, 48–53 (2013).
Carcano A. i in., A Multidimensional
Critical State Analysis for Detecting
Intrusions in SCADA Systems. IEEE
Trans. Ind. Informatics. 7, 179–186 (2011).
Khurana H. i in., Smart-grid security
issues. IEEE Secur. Priv. 8, 81–85 (2010).
DEnSeK (Distributed Energy Security
Knowledge) – project website [online],
Kissel R., NISTIR 7298 Revision 2
Glossary of Key Information Security
Terms (2013).
ISO/IEC: ISO/IEC 27001:2005(E):
Information technology – Security techniques
– Information security management
systems – Requirements (2005).
Stouffer K., Falco J., Scarfone K., NIST
SP 800-82: Guide to Industrial Control
Systems (ICS) Security, (2011).
ENISA: Protecting Industrial Control
Systems – Recommendations for Europe
and Member States. ENISA (2011).
ENISA: Smart Grid Security:
Recommendations for Europe and
Member States (2012).
Ericsson G., Managing Information
Security in an Electric Utility.
Vidulich M. i in., Situation Awareness:
Papers and Annotated Bibliography
(1994).
Tadda G.P., Salerno J.S., Overview of Cyber
Situational Awareness [w:] Jajodia S.,
Liu P., Swarup V., Wang C. (red.) Cyber
Situational Awareness, s. 15–35. Springer
US, Boston, MA (2010).
Endsley M.R., Toward a theory of situation
awarenss in dynamic systems, Hum.
Factors. 37, 32–64 (1995).
McGuinness B., Foy L., A Subjective
Measure of SA The Crew Awareness
Rating Scale – GetInfo. Proceedings of
the first human performance, situation
awareness, and automation conference,
Savannah, Georgia, USA (2000).
Rys. 5. Nieczytelna prezentacja danych na panelu
This is a supporting translation of the original text published in this issue of “Acta Energetica” on pages 81–87. When referring to the article please refer to the original text.
R. Leszczyna et al. | Acta Energetica 3/28 (2016) | translation 81–87
PL
Leszczyna R., Wrobel M., Security
Information Sharing for Smart Grids.
Developing the Right Data Model.
Accepted for the 9th International
Conference for Internet Technology
and Secured Transactions (ICITST 2014
(2015).