Rainbow Signature Scheme to Secure GOOSE Communications From Quantum Computer Attacks

Reshikeshan, Sree Subiksha M.; Koh, Myung Bae; Illindala, Mahesh S.

doi:10.1109/tia.2021.3093375

Cited by 7 publications

(3 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The research results showed that they can comply with the IEC62351 standard and integrate the proposed frameworks into commercial systems. A novel scheme (immune to computer attacks) was presented in [18] for securing GOOSE messages with prompt code generation and verification by the asymmetric key. Other privileges of this scheme include a short signature length and being unable to break the cryptographic code.…”

Section: Literature Reviewmentioning

confidence: 99%

Automated Cybersecurity Tester for IEC61850-Based Digital Substations

et al. 2022

View full text Add to dashboard Cite

Power substations are the crucial nodes of an interconnected grid, serving as the points where power is transferred from the transmission/distribution grids to the loads. However, interconnected cyberphysical systems and communication-based operations at substations lead to many cybersecurity vulnerabilities. Therefore, more sophisticated cybersecurity vulnerability analyses and threat modeling are required during productization phases, and system hardening is mandatory for the commercialization of products. This paper shows the design and methods to test the cybersecurity of multicast messages for digital substations. The proposed vulnerability assessment methods are based on the semantics of IEC61850 Generic Object Oriented Substation Event (GOOSE) and Sampled Value (SV), and cybersecurity features from IEC62351-6. Different case scenarios for cyberattacks are considered to check the vulnerabilities of the device under test (DUT) based on the IEC62351-6 standard. In order to discover security vulnerabilities in a digital substation, the proposed cybersecurity tester will generate malicious packets that compromise the regular functionality. The results show that the proposed cybersecurity testing module is able to detect potential vulnerabilities in multicast messages and the authentication methods (e.g., message authentication code) of multicast communications. Both commercial and simulated devices are used for the case studies.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Automated Cybersecurity Tester for IEC61850-Based Digital Substations

et al. 2022

View full text Add to dashboard Cite

show abstract

“…In literature, researchers focused on developing information technology (IT) or operational technology (OT) based solutions for securing GOOSE messages against different attacks. For instance, in 8 , 9 authors proposed use of Rivest–Shamir–Adleman (RSA), elliptic curve digital signature algorithm (ECDSA) and rainbow signature scheme (RSS) based digital signatures for securing GOOSE messages. However, in 8 , 10 it was proved that the digital signatures result in high computational delays and hence not suitable for time critical GOOSE messages with stringent 3 ms timing requirements.…”

Section: Introductionmentioning

confidence: 99%

“…For instance, in 8,9 authors proposed use of Rivest-Shamir-Adleman (RSA), elliptic curve digital signature algorithm (ECDSA) and rainbow signature scheme (RSS) based digital signatures for securing GOOSE messages. However, in 8,10 it was proved that the digital signatures result in high computational delays and hence not suitable for time critical GOOSE messages with stringent 3 ms timing requirements. Recently published IEC 62351-6 standard proposed light weight message authentication code (MAC) algorithms to secure the GOOSE messages [11][12][13] .…”

mentioning

confidence: 99%

A novel hybrid methodology to secure GOOSE messages against cyberattacks in smart grids

Hussain

Iqbal

Zanero

et al. 2023

Sci Rep

View full text Add to dashboard Cite

IEC 61850 is emerging as a popular communication standard for smart grids. Standardized communication in smart grids has an unwanted consequence of higher vulnerability to cyber-attacks. Attackers exploit the standardized semantics of the communication protocols to launch different types of attacks such as false data injection (FDI) attacks. Hence, there is a need to develop a cybersecurity testbed and novel mitigation strategies to study the impact of attacks and mitigate them. This paper presents a testbed and methodology to simulate FDI attacks on IEC 61850 standard compliant Generic Object-Oriented Substation Events (GOOSE) protocol using real time digital simulator (RTDS) together with open-source tools such as Snort and Wireshark. Furthermore, a novel hybrid cybersecurity solution by the name of sequence content resolver is proposed to counter such attacks on the GOOSE protocol in smart grids. Utilizing the developed testbed FDI attacks in the form of replay and masquerade attacks on are launched and the impact of attacks on electrical side is studied. Finally, the proposed hybrid cybersecurity solution is implemented with the developed testbed and its effectiveness is demonstrated.

show abstract

A secure cross-chain transaction model based on quantum multi-signature

Wang

Chen

et al. 2022

Quantum Inf Process

View full text Add to dashboard Cite

Rainbow Signature Scheme to Secure GOOSE Communications From Quantum Computer Attacks

Cited by 7 publications

References 23 publications

Automated Cybersecurity Tester for IEC61850-Based Digital Substations

Automated Cybersecurity Tester for IEC61850-Based Digital Substations

A novel hybrid methodology to secure GOOSE messages against cyberattacks in smart grids

A secure cross-chain transaction model based on quantum multi-signature

Contact Info

Product

Resources

About