Substation-Aware. An intrusion detection system for the IEC 61850 protocol.

Jose Antonio Lopez, Iñaki Angulo, Saturnino Martinez

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

2 Downloads (Pure)

Abstract

The number of cyberattacks against the Smart Grid has increased in the last years. Considered as a critical infrastructure, power system operators must improve the cybersecurity countermeasures of their installations. Intrusion Detection Systems (IDS) appears as a promising solution to detect hidden activity of the hackers before launching the attack. Most detection tools are generalist, designed to find predefined patterns such as frequency of messages, well-known malware packets, source and destination of the messages or the content of each packet itself. These tools also allow plugging modules for different protocols, offering a better understanding of the analysed data, such as the protocol action (read, write, reset...) or data model/schema understanding. However, the semantics of the data transmitted cannot be inferred. The Substation-Aware (SBT-Aware) tool adds the latest feature for primary and secondary substations, taking into account not only the protocols defined in the IEC 61850 standard, but the substation topology as well. In this paper we present the SBT-Aware, an IDS that has been developed and tested in the course of the H2020 SDN-microSENSE project.
Original languageEnglish
Title of host publicationunknown
PublisherAssociation for Computing Machinery
Pages1-7
Number of pages7
ISBN (Electronic)9781450396707
ISBN (Print)978-145039670-7
DOIs
Publication statusPublished - 23 Aug 2022
Event17th International Conference on Availability, Reliability and Security, ARES 2022 - Vienna, Austria
Duration: 23 Aug 202226 Aug 2022

Publication series

NameACM International Conference Proceeding Series

Conference

Conference17th International Conference on Availability, Reliability and Security, ARES 2022
Country/TerritoryAustria
CityVienna
Period23/08/2226/08/22

Keywords

  • IEC 61850
  • Substation protection
  • Cybersecurity

Project and Funding Information

  • Project ID
  • info:eu-repo/grantAgreement/EC/H2020/833955/EU/SDN - microgrid reSilient Electrical eNergy SystEm/SDN-microSENSE
  • Funding Info
  • The research presented has been done in the context of SDN-microSENSE project. SDN-microSENSE has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 833955. The information contained in this publication reflects only the authors’ view. EC is not responsible for any use that may be made of this information.

Fingerprint

Dive into the research topics of 'Substation-Aware. An intrusion detection system for the IEC 61850 protocol.'. Together they form a unique fingerprint.

Cite this