Cerca nel sito per parola chiave

pubblicazioni - Memoria

A Monitoring Architecture for Smart Grid Cyber Security

pubblicazioni - Memoria

A Monitoring Architecture for Smart Grid Cyber Security

Questo articolo è focalizzato sull’uso dell’infrastruttura di monitoraggio come strumento per supportare le capacità di risposta alle anomalie ICT e aumentare la resilienza del sistema complessivo. Le tradizionali misure di sicurezza preventiva (ad es. segregazione di rete, controllo degli accessi, autenticazione, crittografia dei dati end-to-end) sono completate da un’infrastruttura di monitoraggio intelligente. L’articolo esamina la capacità del monitoraggio in tempo reale di evidenziare le vulnerabilità e rispondere tempestivamente ai rischi residui non coperti dalle misure preventive applicate nel sistema. Inoltre, i risultati dell’analisi dei dati di monitoraggio vengono utilizzati come dati di input per la configurazione di strategie di controllo elettrico in grado di adattare la funzione di ottimizzazione allo stato in tempo reale dell’infrastruttura ICT.

The new Smart Grid landscape requires the development of new ICT (Information and Communication Technology) enabled functionalities or the reshaping of the existing ones. The global control strategies of the power grid need information coming from internal, but also external, entities, and the consequent establishment of new data exchanges. For this reason the cyber security of the involved communications becomes a key enabler determining the correct operation of the power grid. The security issues need to be addressed in order to guarantee the availability, integrity and confidentiality of the essential information exchanges.

In this paper the focus is on the use of the monitoring infrastructure as an instrument to support the response capabilities to ICT anomalies and to increase the system resilience. The traditional preventive security measures (e.g. network segregation, access control, authentication, end to end data encryption) are here complemented by a smart monitoring infrastructure. The paper investigates the capability of the real time monitoring to highlight vulnerabilities and timely respond to the residual risks not covered by the preventive measures applied in the system. Moreover the outcomes of the monitoring data analysis are used as input data for the configuration of power control strategies able to adapt the optimization function to the real time status of the ICT infrastructure.

The assessment of the security monitoring functionality described above is carried out by the setup of a lab platform implementing the ICT components of the distribution grid domain with standard communication modules. The capability of the lab platform to achieve the application security requirements is demonstrated by means of meaningful attack scenarios.

Progetti

Commenti