TY - GEN
T1 - Dynamic Risk Assessment and Certification in the Power Grid
T2 - 8th IEEE International Conference on Network Softwarization, NetSoft 2022
AU - Liatifis, Athanasios
AU - Alcazar, Pedro Ruzafa
AU - Grammatikis, Panagiotis Radoglou
AU - Papamartzivanos, Dimitris
AU - Menesidou, Sofianna
AU - Krousarlis, Thomas
AU - Alberto, Molinuevo Martin
AU - Angulo, Inaki
AU - Sarigiannidis, Antonios
AU - Lagkas, Thomas
AU - Argyriou, Vasileios
AU - Skarmeta, Antonio
AU - Sarigiannidis, Panagiotis
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - The digitisation of the typical electrical grid introduces valuable services, such as pervasive control, remote monitoring and self-healing. However, despite the benefits, cybersecurity and privacy issues can result in devastating effects or even fatal accidents, given the interdependence between the energy sector and other critical infrastructures. Large-scale cyber attacks, such as Indostroyer and DragonFly have already demonstrated the weaknesses of the current electrical grid with disastrous consequences. Based on the aforementioned remarks, both academia and industry have already designed various cybersecurity standards, such as IEC 62351. However, dynamic risk assessment and certification remain crucial aspects, given the sensitive nature of the electrical grid. On the one hand, dynamic risk assessment intends to re-compute the risk value of the affected assets and their relationships in a dynamic manner based on the relevant security events and alarms. On the other hand, based on the certification process, new approach for the dynamic management of the security need to be defined in order to provide adaptive reaction to new threats. This paper presents a combined approach, showing how both aspects can be applied in a collaborative manner in the smart electrical grid.
AB - The digitisation of the typical electrical grid introduces valuable services, such as pervasive control, remote monitoring and self-healing. However, despite the benefits, cybersecurity and privacy issues can result in devastating effects or even fatal accidents, given the interdependence between the energy sector and other critical infrastructures. Large-scale cyber attacks, such as Indostroyer and DragonFly have already demonstrated the weaknesses of the current electrical grid with disastrous consequences. Based on the aforementioned remarks, both academia and industry have already designed various cybersecurity standards, such as IEC 62351. However, dynamic risk assessment and certification remain crucial aspects, given the sensitive nature of the electrical grid. On the one hand, dynamic risk assessment intends to re-compute the risk value of the affected assets and their relationships in a dynamic manner based on the relevant security events and alarms. On the other hand, based on the certification process, new approach for the dynamic management of the security need to be defined in order to provide adaptive reaction to new threats. This paper presents a combined approach, showing how both aspects can be applied in a collaborative manner in the smart electrical grid.
KW - Certification
KW - Cybersecurity
KW - Energy
KW - Honeypot
KW - Power Grid
KW - Risk Assessment
KW - Software Defined Networking
UR - https://www.scopus.com/pages/publications/85136808044
U2 - 10.1109/NetSoft54395.2022.9844034
DO - 10.1109/NetSoft54395.2022.9844034
M3 - Conference contribution
AN - SCOPUS:85136808044
T3 - Proceedings of the 2022 IEEE International Conference on Network Softwarization: Network Softwarization Coming of Age: New Challenges and Opportunities, NetSoft 2022
SP - 462
EP - 467
BT - Proceedings of the 2022 IEEE International Conference on Network Softwarization
A2 - Clemm, Alexander
A2 - Maier, Guido
A2 - Machuca, Carmen Mas
A2 - Ramakrishnan, K.K.
A2 - Risso, Fulvio
A2 - Chemouil, Prosper
A2 - Limam, Noura
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 27 June 2022 through 1 July 2022
ER -