Integrating information security requirements in critical infrastructures: Smart metering case

International Journal of Critical Infrastructures

Volumn 6, Issue 2, 2010, Pages 187-209

  Alabdulkarim, Layla ^a   Lukszo, Zofia ^a  

^a DELFT UNIVERSITY OF TECHNOLOGY   (Netherlands)

Author keywords

Critical infrastructures; Information security; Smart metering

Indexed keywords

ELECTRIC MEASURING INSTRUMENTS; PUBLIC WORKS; SECURITY OF DATA;

ENERGY SECTOR; INFORMATION SECURITY THREATS; INTEGRATING INFORMATION; LATEST TECHNOLOGY; NON-FUNCTIONAL REQUIREMENTS; SMART METERING; SYSTEM DEVELOPMENT; SYSTEM IMPLEMENTATION;

CRITICAL INFRASTRUCTURES;

EID: 78650248497     PISSN: 14753219     EISSN: None     Source Type: Journal    
DOI: 10.1504/IJCIS.2010.031074     Document Type: Article

References (34)

1. Al Abdulkarim, L. and Lukszo, Z. (2009) 'Smart metering for the future energy systems', 4th CRIS International Conference on Critical Infrastructures, Linköping, Sweden: CRIS.
2. Bettencourt da Cruz, D., Rumpe, B. and Wimmel, G. (2003) 'Retrofitting security into a web-based information system', Web Engineering, International Conference, ICWE 2003, Oviedo, Spain: ICWE.
3. Centers for Medicare and Medicaid Services (2002) CMS Information Security Levels, Version 1.0.
4. Chung, L. (1993) 'Dealing with security requirements during the development of information systems', Advanced Information Systems Engineering, Paris, France: CaiSE.
5. Chung, L., Nixon, B. A. and Yu, E. (1994) 'Using quality requirements to systematically develop quality software', The Fourth International Conference on Software Quality, McLean, Virginia, USA.
6. Cleland-Huang, J., Settimi, R., Ben Khadra, O., Berezhanskaya, E. and Christina, S. (2005) 'Goal-centric traceability for managing non-functional requirements', 27th International Conference on Software Engineering, St. Louis, MO: ICSE.
7. Crook, R., Ince, D., Lin, L. and Nuseibeh, B. (2002) 'Security requirements engineering: when anti-requirements hit the fan', 10th Anniversary IEEE Joint International Conference on Requirements Engineering, Essen, Germany.
8. Cysneiros, L. M., Sampaio, J. C., Prado Leite, J. do and Melo Sabat, N. de (2001) 'A framework for integrating non-functional requirements into conceptual models', Requirements Engineering Journal, Vol. 6, No. 2, pp. 97-115.
9. DC-1000 Data Concentrator (2008) www.unicom-bg.com.
10. Deconinck, G. (2009) 'Metering, intelligent enough for smart grids?', Submission to Managing the Increasing Dependence of the Electricity Infrastructure on ICT, Utrecht.
11. EnergieGids.nl (2009) 'Slimme Meter Wordt Toch Vrijwillig', http://www.energiegids.nl/nieuws-details.tiles?doc=/content/energie/nieuws/2009/ 04/08/EB-slimme-meter.xml (retrieved 8 April 2009).
12. European Regulator's Group for Electricity and Gas (2007) 'Smart metering with a focus on electricity regulation', E07-RMF-04-03, 31 October, http://www2.e-control.at/portal/page/portal/EER-HOME/EER-PUBLICATIONS/ CEER-ERGEG-PAPERS/Customers/2007/.
13. Gilliam, D. P., Wolfe, T. L., Sherif, J. S. and Bishop, M. (2003) 'Software security checklist for the software life cycle', 12th IEEE International workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE-2003, Linz, Austria.
14. Haley, C. B., Laney, R. C. and Nuseibeh, B. (2004) 'Deriving security requirements from crosscutting threat descriptions', 3rd International Conference on Aspect-Oriented Software Development, Lancaster, UK.
15. Harris, S. (2003) CISSP All-in-One Exam Guide, 2nd ed., McGraw-Hill Osborne Media.
16. Hassan, R., Bohner, S., El-Kassas, S. and Eltoweissy, M. (2008) 'Goal-oriented, b-based formal derivation of security design specifications from security requirements', Third International Conference on Availability, Reliability and Security, ARES 2008, Technical University of Catalonia, Barcelona, Spain.
17. Jensen, A. H. (2009) 'ESMA & JRC workshop on smart metering', Smart Metering Workshop Varese - Italy, Eropean Smart Metering Alliance - ESMA.
18. Lukszo, Z., Dam, K. H. van, Weijnen, M. P. C. and Dijkema, G. P. J. (2008) 'Agent-based models for crisis management', in H. Bouwman, R. Bons, M. Hoogeweegen, M. Janssen and H. Pronk (Eds.) Let a Thousand Flowers Bloom, Amsterdam: IOS Press.
19. Masera, M. and Favino, I. N. (2007) A Service-Oriented Approach to Assessing Infrastructure Security - Critical Infrastructures Protection, Boston: Springer.
20. Moen, J. (2009) 'Status and future actions in Norway', Smart Metering Workshop Varese - Italy, Eropean Smart Metering Alliance - ESMA.
21. Owens, S. and Driffill, L. (2008) 'How to change attitudes and behaviors in the context of energy', The Energy Policy Journal, Vol. 36, No. 21, pp. 4412-4418.
22. Parliamentary Office of Science and Technology (2008) Smart Metering of Electricity and Gas.
23. Pavan, M. (2009) 'Smart metering regulation in Italy, energy efficiency and demand response', Smart Metering Workshop Varese - Italy, Eropean Smart Metering Alliance - ESMA.
24. Santer, S. (2009) 'Smart metering in Austria: status and prospects', Smart Metering Workshop Varese - Italy, Eropean Smart Metering Alliance - ESMA.
25. Smartgridnews.com (2007) 'Europe's smart grid plans', http://www.smartgridnews.com/artman/publish/grid-research/Europe (retrieved April 2009).
26. Sommerville, I. (2000) Software Engineering, Addison Wesley Longman.
27. Sustainable Buildings - Smart Meters (2008) http://w1.siemens.com/ innovation/en/publikationen/publications-pof/pof-fall-2008/gebaeude.htm (retrieved November 2008).
28. Tanenbaum, A. S. and van Steen, M. (2002) Distributed Systems Principles and Paradigms, 1st ed., Prentice Hall.
29. The Information Security Policy (2006) Policy Summary No. 1, Information Security Branch, Office of the Chief Information Officer Ministry of Labour and Citizen's Services, Province of British Columbia, http://www.cio.gov. bc.ca/Security.
30. Viega, J., Messier, M. and Chandra, P. (2002) Network Security with OpenSSL, 1st ed., O'Reilly.
31. Wang, A. J. (2005) 'Information security models and metrics', 43th ACM Annual Southeast Regional Conference, Kennesaw, Georgia, Vol. 2.
32. Wilander, J. and Gustavsson, J. (2005) 'Security requirements - a field of current practice', Symposium on Requirements Engineering for Information Security in conjunction with the 13th IEEE International Requirements Engineering Conference, Paris, France.
33. Yu, E. and Cysneiros, L. M. (2002) 'Designing for privacy and other competing requirements', 2nd Symposium on Requirements Engineering for Information Security, Raleigh, North Carolina, USA.
34. Yu, Y., Kaiya, H., Washizaki, H., Xiong, Y., Hu, Z. and Yoshioka, N. (2008) 'Enforcing a security pattern in stakeholder goal models', 4th ACM Workshop on Quality of Protection, Alexandria, VA: QoP.