150 likes | 160 Views
Explore the migration proposal of Smart Grid ICS to a hybrid cloud while preserving information security levels. Includes risk assessment, architecture overview, and proposed migration scenario. Future work and conclusions for optimal deployment.
E N D
STRIDE to a secure Smart Grid in a hybrid cloud BojanJelacic*,Daniela Rosic*, Imre Lendák*, Marina Stanojevic*, SebastijanStoja* *Faculty of technical sciences, University of Novi Sad, Serbia CyberICPS 2017 Oslo, 2017.09.15.
Overview • Problem Definition • Smart Grid ICS Architecture • Risk Management • Risk Analysis • Migration to the Cloud • Conclusion
Problem definition • Number of electricity consumers is continuously increasing. • Existing energy networks are not able to supply this increasing demand without significant investments in infrastructure and automated computer systems. • The migration to a computing cloud is a considerable challenge, both because of multiple decade-long reliance on closed and utility-owned computing resources and its possible impact on information security. • This paper presents an migration proposal in witch current level of information security is preserved.
SCADA Subsystem • Collects data from IEDs in order to monitor and control system • OMS – component responsible for restoration of power • NMS – component responsible for storing and providing access to a static network model of the power system. Contains information about the connectivity of the network • EMS – performs calculations on the transmission and sub-transmission levels • DMS – executes various analytical calculations on the subsystem for electricity distribution • The Historian collects and records all changes in the system • WOM – manages the work orders • MDM – works with smart meters
Risk Management Criteria for Impact Levels
Risk Management Criteria for Likelihood Levels
Risk Management Risk matrix 8
Risk Analysis • Security assessment of Smart Grid ICS components is performed by Microsoft’s Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege (STRIDE) methodology. • Impact for each Smart Grid component is assessed and graded with one of the following levels: Low (L), Medium (M) and High (H). • The likelihood is determined with one of the following levels: Very Likely (V), Moderate (M) and Rare (R). • The risk (R) is determined according to the risk matrix.
Migration to the Cloud • Hybrid cloud is a composition of private and public/community cloud infrastructures that remain unique entities, but are bound together by standardized or proprietary technology that enables data and application portability. • Components should be deployed in the private cloud if their violation can lead to destroying the whole system, losing of human life, damaging to equipment or financial costs and the degree of risk is high. • Otherwise, components should be moved to the community cloud.
Proposed migration scenario Secure Smart Grid on a hybrid cloud
Conclusions & future work • Based on the results of the risk assessment, an optimal Smart Grid ICS cloud migration scenario was proposed. • Future Work: • Introduce other measures of the Smart Grid ICS, e.g. factoring in the cost of the necessary computing and storage capacities, the cost of IT departments maintaining the data centers. • Focus on STRIDE analysis of the business and process subsystem.
Summary • This paper presents an STRIDE analysis of Smart Grid ICS. • Aim was to identify the common elements of a Smart Grid ICS, perform their security assessment and based on that propose a migration scenario to a hybrid computing cloud. • Key requirement while creating the proposed architecture was to maintain the existing level of information system security. • In the proposed architecture, the components whose violation can lead to destroying the whole system, losing of human life, damaging to equipment or financial costs are deployed in the private cloud. Otherwise in the community cloud.