{"title":"An authorization framework to mitigate insider threat in CIM-based smart grid","authors":"Payam Mahmoudi-Nasr","doi":"10.1016/j.segan.2024.101572","DOIUrl":null,"url":null,"abstract":"<div><div>A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.</div></div>","PeriodicalId":56142,"journal":{"name":"Sustainable Energy Grids & Networks","volume":"40 ","pages":"Article 101572"},"PeriodicalIF":4.8000,"publicationDate":"2024-11-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Sustainable Energy Grids & Networks","FirstCategoryId":"5","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2352467724003023","RegionNum":2,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"ENERGY & FUELS","Score":null,"Total":0}
引用次数: 0
Abstract
A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.
期刊介绍:
Sustainable Energy, Grids and Networks (SEGAN)is an international peer-reviewed publication for theoretical and applied research dealing with energy, information grids and power networks, including smart grids from super to micro grid scales. SEGAN welcomes papers describing fundamental advances in mathematical, statistical or computational methods with application to power and energy systems, as well as papers on applications, computation and modeling in the areas of electrical and energy systems with coupled information and communication technologies.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
