CIGRE 35 (2021) (str. 1261-1268)
AUTOR(I) / AUTHOR(S): Milenko Kabović, Anka Kabović, Slavica Boštjančič – Rakas, Valentina Timčenko, Jovanka Gajica
E-ADRESA / E-MAIL: milenko.kabovic@pupin.rs
DOI: 10.46793/CIGRE35.1261K
SAŽETAK / ABSTRACT:
U ovom radu se razmatra sajber bezbednost telezaštitnih uređaja koji rade po IEC 61850 standardu, a prenos komandi zaštite vrši se GOOSE protokolom. Predstavljena je arhitektura centralne procesorske jedinice telezaštitnog uređaja i dat je kratak osvrt na standard IEC 61850 kao i na osnovne karakteristike GOOSE poruka. Opisani su bezbednosni aspekti telezaštitnog uređaja, kao i mogući napadi na GOOSE protokol. Na kraju su opisani standardi IEC 62351 i IEEE 1686, koji su namenjeni unapređenju bezbednosti u sistemima automatizacije u okviru elektroenergetskog sistema i uspostavljanju osnovnih sigurnosnih zahteva i karakteristika inteligentnih elektronskih uređaja, kao što je opisani telezaštitni uređaj.
KLJUČNE REČI / KEYWORDS:
GOOSE poruke, IEC 61850, IEC 62351, bezbednost, telezaštita
LITERATURA / REFERENCES:
- Use of IEC 61850 for the communication between substations, 61850–90–1/DTR, International Electrotechnical Commission.
- S.M. Blair, F. Coffele, C.D. Booth, B. De Vaclk, D. Verhulst, ′′Demonstration and analysis of IP/MPLS communications for delivering power system protection solutions using IEEE C37.94, IEC 61850 Sampled Values, and IEC 61850 GOOSE protocols′′, 2014 CIGRE Session, August 2018, B5–111 (1–8).
- E. Kush,N., Ahmed, E., Branagan,M. and Foo, ′′Poisoned GOOSE: Exploiting the GOOSE Protocol′′, Proceedings of the Twelfth Australasian Information Security Conference (AISC 2014), 2014, vol. 149, pp. 17–22.
- P. E. Weerathunga, A. Ciora, ′′Securing IEDs against Cyber Threats in Critical Substation Automation and Industrial Control Systems′′, Proceedings of the 2017 70th Annual Conference for Protective Relay Engineers (CPRE), April 2017, College Station, TX, USA, pp. 1–20.
- Communication Networks and Systems for Power Utility Automation, 2nd ed., Standard IEC 61850, International Electrotechnical Commission, 2021.
- J. Hoyos, M. Dehus, T. X. Brown, ′′Exploiting the GOOSE Protocol: A Practical Attack on Cyber–infrastructure′′, GC’12 Workshop: Smart Grid Communications: Design for Performance, pp. 1508–1513.
- IEC 62351–6, Power systems management and associated information exchange – Part 6: Security for IEC 61850, Edition 1.0, International Electrotechnical Commission, Geneva, Switzerland, 2020.
- IEC publication 61850–8–1: Specific Communication Service Mapping (SCSM) – Mappings to MMS (ISO 9506–1 and ISO 9506–2) and to ISO/IEC 8802–3, 2004.
- S. M. S. Hussain, T. S. Ustun and A. Kalam, „A Review of IEC 62351 Security Mechanisms for IEC 61850 Message Exchanges“, Proceedings of the IEEE Transactions on Industrial Informatics, vol. 16, no. 9, pp. 5643–5654, September 2020.
- IEEE Standard for Intelligent Electronic Devices Cyber Security Capabilities, IEEE Std 1686TM–2013, IEEE Power and Energy Society, December 2013.
- M. Rodríguez et al. „A Fixed–Latency Architecture to Secure GOOSE and Sampled Value Messages in Substation Systems“, IEEE Access, vol. 9, 2021, pp. 51646–51658.
- R. Schlegel, S. Obermeier, J. Schneider, „A security evaluation of IEC 62351“, Journal of Information Security and Applications, vol. 34, June 2017, pp. 197–204.
- G. Elbez, H. B. Keller, V. Hagenmeyer, „Authentication of GOOSE Messages under Timing Constraints in IEC 61850 Substations“, Proceedings of the 6th International Symposium for ICS & SCADA Cyber Security Research 2019, September 2019, pp. 137–143.
- S. M. Suhail Hussain, S. Mullapathi Farooq, T. Selim Ustun, „Analysis and Implementation of Message Authentication Code (MAC) Algorithmsfor GOOSE Message Security“, IEEE Access, vol, 7, 2019, pp. 80980–80984