Abstract

Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.

Original languageEnglish (US)
Title of host publication2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781509064397
DOIs
StatePublished - Oct 10 2017
Event2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Pittsburgh, United States
Duration: Apr 21 2017 → …

Other

Other2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017
CountryUnited States
CityPittsburgh
Period4/21/17 → …

Fingerprint

Monitoring
Modernization
Computer networks
Energy
Attack
Data Security
Software
Best Practice
Computer Networks
Vulnerability
Exploitation
Infrastructure
Module
Resources
Optimization
Requirements
Abstraction
Concepts
Strategy
Framework

ASJC Scopus subject areas

  • Artificial Intelligence
  • Energy Engineering and Power Technology
  • Computer Networks and Communications
  • Modeling and Simulation

Cite this

Lamp, J., Rubio-Medrano, C. E., Zhao, Z., & Ahn, G-J. (2017). Towards adaptive and proactive security assessment for energy delivery systems. In 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings [8064532] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/MSCPES.2017.8064532

Towards adaptive and proactive security assessment for energy delivery systems. / Lamp, Josephine; Rubio-Medrano, Carlos E.; Zhao, Ziming; Ahn, Gail-Joon.

2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings. Institute of Electrical and Electronics Engineers Inc., 2017. 8064532.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Lamp, J, Rubio-Medrano, CE, Zhao, Z & Ahn, G-J 2017, Towards adaptive and proactive security assessment for energy delivery systems. in 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings., 8064532, Institute of Electrical and Electronics Engineers Inc., 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017, Pittsburgh, United States, 4/21/17. https://doi.org/10.1109/MSCPES.2017.8064532
Lamp J, Rubio-Medrano CE, Zhao Z, Ahn G-J. Towards adaptive and proactive security assessment for energy delivery systems. In 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings. Institute of Electrical and Electronics Engineers Inc. 2017. 8064532 https://doi.org/10.1109/MSCPES.2017.8064532
Lamp, Josephine ; Rubio-Medrano, Carlos E. ; Zhao, Ziming ; Ahn, Gail-Joon. / Towards adaptive and proactive security assessment for energy delivery systems. 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings. Institute of Electrical and Electronics Engineers Inc., 2017.
@inproceedings{c74d9705e5b7488cad69e0a01b20d26a,
title = "Towards adaptive and proactive security assessment for energy delivery systems",
abstract = "Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.",
author = "Josephine Lamp and Rubio-Medrano, {Carlos E.} and Ziming Zhao and Gail-Joon Ahn",
year = "2017",
month = "10",
day = "10",
doi = "10.1109/MSCPES.2017.8064532",
language = "English (US)",
booktitle = "2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
address = "United States",

}

TY - GEN

T1 - Towards adaptive and proactive security assessment for energy delivery systems

AU - Lamp, Josephine

AU - Rubio-Medrano, Carlos E.

AU - Zhao, Ziming

AU - Ahn, Gail-Joon

PY - 2017/10/10

Y1 - 2017/10/10

N2 - Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.

AB - Recently, energy delivery systems (EDS) have undergone an intensive modernization process that includes the introduction of dedicated cyber-infrastructures for the purposes of monitoring, control, and optimization of resources. While extremely convenient, the introduction of software-based control over computer networks has also opened the door for the exploitation of non-trivial security vulnerabilities by malicious third-parties. As demonstrated by recent incidents, EDS systems worldwide are vulnerable to sophisticated attacks that include a well-thought out combination of strategies at various levels of abstraction. In such a context, a comprehensive solution supporting automated monitoring and assessment, that can assist security officials in effectively preventing and mitigating such attacks, is highly desired. With this in mind, this paper presents an ongoing effort that takes security requirements obtained from existing documents on guidelines and best practices on EDS, and implements a proof-of-concept framework based on adaptive and customizable software modules that collect and process security-relevant data for assuring the security of EDS.

UR - http://www.scopus.com/inward/record.url?scp=85034775435&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85034775435&partnerID=8YFLogxK

U2 - 10.1109/MSCPES.2017.8064532

DO - 10.1109/MSCPES.2017.8064532

M3 - Conference contribution

AN - SCOPUS:85034775435

BT - 2017 Workshop on Modeling and Simulation of Cyber-Physical Energy Systems, MSCPES 2017 - Held as part of CPS Week, Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

ER -