Assessing smart grid security

Bell Labs Technical Journal

Volumn 17, Issue 3, 2012, Pages 87-103

  McBride, Alan J ^a   McGee, Andrew R ^a  

^a LUCENT TECHNOLOGIES   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ELECTRIC POWER TRANSMISSION NETWORKS; INTERNET PROTOCOLS; METADATA; MULTIPROTOCOL LABEL SWITCHING; SALES; SMART POWER GRIDS;

INFORMATION FLOWS; MANAGEMENT AND CONTROLS; NETWORKING TECHNOLOGY; PACKET-BASED COMMUNICATION; SECURITY CHALLENGES; TRANSMISSION AND DISTRIBUTION; TWO WAY COMMUNICATIONS; UTILITY COMPANIES;

NETWORK SECURITY;

EID: 84871739499     PISSN: 10897089     EISSN: 15387305     Source Type: Journal    
DOI: 10.1002/bltj.21560     Document Type: Article

References (27)

1. S. Acharya, and, K. C. Budka, " Telecommunications in Vertical Markets: Challenges and Opportunities," Bell Labs Tech. J., 16: 3 (2011), 1-4.
2. A. Akyamac, J. Deshpande, and, A. McGee, " Achieving NERC CIP Compliance with Secure MPLS Networks: A Bell Labs Memorandum," Alcatel-Lucent White Paper, Aug. 2010.
3. S. Baker, S. Waterman, and, G. Ivanov, In the Crossfire: Critical Infrastructure in the Age of Cyber War, McAfee, 2009.
4. K. C. Budka, J. G. Deshpande, T. L. Doumi, M. Madden, and, T. Mew, " Communication Network Architecture and Design Principles for Smart Grids," Bell Labs Tech. J., 15: 2 (2010), 205-227.
5. S. Cunningham, "Cyber Security for Industrial Control Systems," Power Engineering, Nov. 1, 2011, .
6. J. G. Deshpande, E. Kim, and, M. Thottan, " Differentiated Services QoS in Smart Grid Communication Networks," Bell Labs Tech. J., 16: 3 (2011), 61-81.
7. Electric Power Research Institute (EPRI), Report to NIST on the Smart Grid Interoperability Standards Roadmap, June 2009.
8. European Telecommunications Standards Institute, "Telecommunications and Internet Converged Services and Protocols for Advanced Networking (TISPAN), Methods and Protocols, Part 1: Method and Proforma for Threat, Risk, Vulnerability Analysis," ETSI TS 102 165-1, v4.2.1, Dec. 2006, .
9. N. Falliere, L. O. Murchu, and, E. Chien, " W32.Stuxnet Dossier," v1.4, Symantec, Feb. 2011.
10. International Electrotechnical Commission, " Communication Networks and Systems in Substations," IEC TS 61850.
11. International Electrotechnical Commission, " Power Systems Management and Associated Information Exchange: Data and Communications Security," IEC TS 62351, May 2007.
12. International Organization for Standardization and International Electrotechnical Commission, " Information Technology, Security Techniques, Information Security Management Systems, Requirements," ISO/IEC 27001, 2005.
13. International Organization for Standardization and International Electrotechnical Commission, " Information Technology, Security Techniques, Information Security Risk Management," ISO/IEC 27005, 2011.
14. International Telecommunication Union, Telecommunication Standardization Sector, "Security Architecture for Systems Providing End-to-End Communications," ITU-T Rec. X.805, Oct. 2003, .
15. J. A. Jones, "An Introduction to Factor Analysis of Information Risk (FAIR)," Risk Management Insight White Paper, Draft, 2005, .
16. Y.-J. Kim, V. Kolesnikov, H. Kim, and, M. Thottan, " SSTP: A Scalable and Secure Transport Protocol for Smart Grid Data Collection," Proc. IEEE Internat. Conf. on Smart Grid Commun. (SmartGridComm '11) (Brussels, Bel., 2011), pp. 161-166.
17. Y.-J. Kim, M. Thottan, V. Kolesnikov, and, W. Lee, " A Secure Decentralized Data-Centric Information Infrastructure for Smart Grid," IEEE Commun. Mag., 48: 11 (2010), 58-65.
18. North American Electric Reliability Corporation (NERC), "Standards: Reliability Standards," "Critical Infrastructure Protection (CIP)," .
19. SANS Institute, Twenty Critical Security Controls for Effective Cyber Defense: Consensus Audit Guidelines (CAG), v3.1, Oct. 3, 2011.
20. P. Schneck, " In the Dark: Crucial Industries Confront Cyberattacks," McAfee Blog, Apr. 19, 2011.
21. F. Swiderski, and, W. Snyder, Threat Modeling, Microsoft Press, Redmond, WA, 2004.
22. United States, Department of Commerce, National Institute of Standards and Technology, Information Technology Laboratory, Advanced Network Technologies Division, Emerging and Mobile Network Technologies Group, Smart Grid Interoperability Panel, Cyber Security Working Group, "Guidelines for Smart Grid Cyber Security," NISTIR 7628, Aug. 2010.
23. United States, Department of Commerce, National Institute of Standards and Technology, Information Technology Laboratory, Advanced Network Technologies Division, Emerging and Mobile Network Technologies Group, Smart Grid Interoperability Panel, Cyber Security Working Group, Introduction to NISTIR 7628: Guidelines for Smart Grid Cyber Security, Sept. 2010.
24. United States, Department of Commerce, National Institute of Standards and Technology, Information Technology Laboratory, Computer Security Division, "Risk Management Guide for Information Technology Systems," NIST SP 800-30, July 2002.
25. United States, Department of Commerce, National Institute of Standards and Technology, Information Technology Laboratory, Computer Security Division, "Recommended Security Controls for Federal Information Systems and Organizations," NIST SP 800-53, Rev. 3, Aug. 2009.
26. United States, Department of Commerce, National Institute of Standards and Technology, Information Technology Laboratory, Computer Security Division, "Guide to Industrial Control Systems (ICS) Security," NIST SP 800-82, June 2011.
27. United States, Department of Homeland Security, National Protection and Programs Directorate, Office of Cyber Security and Communications, National Cyber Security Division, "Catalog of Control Systems Security: Recommendations for Standards Developers," Sept. 2009, .