减轻基于 CIM 的智能电网内部威胁的授权框架

IF 4.8 2区 工程技术 Q2 ENERGY & FUELS Sustainable Energy Grids & Networks Pub Date : 2024-11-22 DOI:10.1016/j.segan.2024.101572
Payam Mahmoudi-Nasr
{"title":"减轻基于 CIM 的智能电网内部威胁的授权框架","authors":"Payam Mahmoudi-Nasr","doi":"10.1016/j.segan.2024.101572","DOIUrl":null,"url":null,"abstract":"<div><div>A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.</div></div>","PeriodicalId":56142,"journal":{"name":"Sustainable Energy Grids & Networks","volume":"40 ","pages":"Article 101572"},"PeriodicalIF":4.8000,"publicationDate":"2024-11-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An authorization framework to mitigate insider threat in CIM-based smart grid\",\"authors\":\"Payam Mahmoudi-Nasr\",\"doi\":\"10.1016/j.segan.2024.101572\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.</div></div>\",\"PeriodicalId\":56142,\"journal\":{\"name\":\"Sustainable Energy Grids & Networks\",\"volume\":\"40 \",\"pages\":\"Article 101572\"},\"PeriodicalIF\":4.8000,\"publicationDate\":\"2024-11-22\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Sustainable Energy Grids & Networks\",\"FirstCategoryId\":\"5\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2352467724003023\",\"RegionNum\":2,\"RegionCategory\":\"工程技术\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q2\",\"JCRName\":\"ENERGY & FUELS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Sustainable Energy Grids & Networks","FirstCategoryId":"5","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2352467724003023","RegionNum":2,"RegionCategory":"工程技术","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"ENERGY & FUELS","Score":null,"Total":0}
引用次数: 0

摘要

智能电网(SG)以分布式信息系统的集成数据为基础,通用信息模型(CIM)提供了标准数据基础设施。在智能电网中,恶意的内部操作人员可以通过破坏系统流程导致电力系统大面积故障。当他/她可以访问具有合法权限的集成数据并窃取、删除或修改这些数据时,攻击的严重性就会增加。本文提出了一种授权框架,以减轻在基于 CIM 的 SG 中不正确履行职责的内部操作员的数据访问权限。在所提出的方法中,CIM 类的可访问性是根据操作员信任度和所发布 SQL 命令的关键性级别来确定的。操作员信任度的值是根据其性能定期或在检测到异常情况时计算得出的。建议的方法还能检测操作员性能的异常。
本文章由计算机程序翻译,如有差异,请以英文原文为准。
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
An authorization framework to mitigate insider threat in CIM-based smart grid
A smart grid (SG) is based on integrated data from distributed information systems, and the common information model (CIM) provides standard data infrastructure. In the SG, a malicious insider operator can lead to widespread failures in the power system by disrupting the system processes. The severity of the attack increases when he/she can access integrated data with legal permissions and steal, delete or modify them. This paper proposes an authorization framework to mitigate data access permissions of an insider operator who does not perform its duties properly in a CIM-based SG. In the proposed method, the accessibility of a CIM class is determined based on the operator trust and the criticality level of the issued SQL command. The value of the operator trust is calculated using its performance periodically or when an anomaly is detected. The proposed method is also able to detect anomalies in operator performance.
求助全文
通过发布文献求助,成功后即可免费获取论文全文。 去求助
来源期刊
Sustainable Energy Grids & Networks
Sustainable Energy Grids & Networks Energy-Energy Engineering and Power Technology
CiteScore
7.90
自引率
13.00%
发文量
206
审稿时长
49 days
期刊介绍: Sustainable Energy, Grids and Networks (SEGAN)is an international peer-reviewed publication for theoretical and applied research dealing with energy, information grids and power networks, including smart grids from super to micro grid scales. SEGAN welcomes papers describing fundamental advances in mathematical, statistical or computational methods with application to power and energy systems, as well as papers on applications, computation and modeling in the areas of electrical and energy systems with coupled information and communication technologies.
期刊最新文献
AC energy islands for the optimal integration of offshore wind energy resources: Operation strategies using multi-objective nonlinear programming An authorization framework to mitigate insider threat in CIM-based smart grid Emergency power supply scheme and fault repair strategy for distribution networks considering electric -traffic synergy Data-driven dynamic state estimation in power systems via sparse regression unscented Kalman filter Multi agent framework for consumer demand response in electricity market: Applications and recent advancement
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1