Design, implementation, and evaluation of secure communication for line current differential protection systems over packet switched networks

A. Aichhorn; B. Etzlinger; A. Unterweger; R. Mayrhofer; A. Springer

doi:10.1016/j.ijcip.2018.06.005

Design, implementation, and evaluation of secure communication for line current differential protection systems over packet switched networks

A. Aichhorn
, B. Etzlinger
, A. Unterweger
, R. Mayrhofer
, A. Springer

Institute of Networks and Security, Johannes Kepler University Linz
Research and Development Department, Sprecher Automation GmbH
Institute for Communications Engineering and RF-Systems, Johannes Kepler University Linz

Research output: Contribution to journal › Article › peer-review

Abstract

In this work we propose a secure communication concept for the protection of critical power supply and distribution infrastructure. Especially, we consider the line current differential protection method for modern smart grid implementations. This protection system operates on critical infrastructure, and it requires a precise time behavior on the communication between devices on both ends of a protected power line. Therefore, the communication has to fulfill deterministic constraints and low-delay requirements and additionally needs to be protected against cyber attacks. Existing systems are often either costly and based on deprecated technology or suffering from maloperations. In order to allow for both, economical and reliable operation, we present the first holistic communication concept capable of using state-of-the-art packet switched networks. Our solution consists of three parts: (i) we develop a list of design requirements for line current differential protection systems communication; (ii) we propose a communication concept obeying these design requirements by combining cryptographical and physical security approaches; and (iii) we evaluate our solution in a practical setup. Our evaluation shows a clock accuracy of 3 µs with a resilience to asymmetric delay attacks down to 8 ns/s. This demonstrates the secure and fault-free operation of a line current differential protection system communicating over a state-of-the-art network. © 2018 Elsevier B.V.

Original language	English
Pages (from-to)	68-78
Number of pages	11
Journal	Int. J. Crit. Infrastruct. Prot.
Volume	23
DOIs	https://doi.org/10.1016/j.ijcip.2018.06.005
Publication status	Published - 2018

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 7 Affordable and Clean Energy

Keywords

Clock synchronization
Critical infrastructure protection
Ethernet
IPsec
Line current differential protection
Network security
Power system protection
Wide area network
Clocks
Critical infrastructures
Electric power system protection
Packet networks
Packet switching
Public works
Secure communication
Switching networks
Wide area networks
Clock Synchronization
Line current differential protections

Access to Document

10.1016/j.ijcip.2018.06.005

Cite this

@article{e5ee47cdc2b9455090309bec9aab5689,

title = "Design, implementation, and evaluation of secure communication for line current differential protection systems over packet switched networks",

abstract = "In this work we propose a secure communication concept for the protection of critical power supply and distribution infrastructure. Especially, we consider the line current differential protection method for modern smart grid implementations. This protection system operates on critical infrastructure, and it requires a precise time behavior on the communication between devices on both ends of a protected power line. Therefore, the communication has to fulfill deterministic constraints and low-delay requirements and additionally needs to be protected against cyber attacks. Existing systems are often either costly and based on deprecated technology or suffering from maloperations. In order to allow for both, economical and reliable operation, we present the first holistic communication concept capable of using state-of-the-art packet switched networks. Our solution consists of three parts: (i) we develop a list of design requirements for line current differential protection systems communication; (ii) we propose a communication concept obeying these design requirements by combining cryptographical and physical security approaches; and (iii) we evaluate our solution in a practical setup. Our evaluation shows a clock accuracy of 3 µs with a resilience to asymmetric delay attacks down to 8 ns/s. This demonstrates the secure and fault-free operation of a line current differential protection system communicating over a state-of-the-art network. {\textcopyright} 2018 Elsevier B.V.",

keywords = "Clock synchronization, Critical infrastructure protection, Ethernet, IPsec, Line current differential protection, Network security, Power system protection, Wide area network, Clocks, Critical infrastructures, Electric power system protection, Packet networks, Packet switching, Public works, Secure communication, Switching networks, Wide area networks, Clock Synchronization, Line current differential protections",

author = "A. Aichhorn and B. Etzlinger and A. Unterweger and R. Mayrhofer and A. Springer",

note = "Cited By :7 Export Date: 14 December 2023 Correspondence Address: Aichhorn, A.; Research and Development Department, Austria; email: [email protected] Funding details: {\"O}sterreichische Forschungsf{\"o}rderungsgesellschaft, FFG, 848911 Funding text 1: This work was supported in part by the research project SmartProtect, supported by The Austrian Research Promotion Agency (FFG), project no. 848911 , and in part by the LCM in the framework of the Austrian COMET-K2 program. The financial support by the Austrian Federal Ministry of Science, Research and Economy and the Austrian National Foundation for Research, Technology and Development is gratefully acknowledged. References: (2008), pp. 75-82. , Council Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection (Text with EEA relevance), Official Journal of the European Union L345; Std, I.E.E.E., (2016), IEEE Guide for Protective Relay Applications to Transmission Lines, IEEE Std C37.113–2015, IEEE Std; M, T.G., Alvin, I.Z., Abidin, H., Hashim, A.A.Z., (2014) Proceedings of the ISGT ASIA, pp. 216-221. , Abidin, Phase comparison protection for distribution networks with high PV penetration, in:; Sarabia, A.F., (2011), Impact of Distributed Generation on Distribution System, Master's thesis, Aalborg University, Denmark; Lightner, E.M., Widergren, S.E., (2010), pp. 3-10. , An Orderly Transition to a Transformed Electricity System, IEEE Transactions on Smart Grid 1(1); Sortomme, E., Venkata, S.S., Mitra, J., (2010), pp. 2789-2796. , Microgrid Protection Using Communication-Assisted Digital Relays, IEEE Transactions on Power Delivery 25(4); Gowan, B., (2013), http://www.ciena.com/, White paper: SONET/SDH Network Modernization is long overdue, Technical Report, ciena{\textregistered} corporation URL; (2017), http://www.cisco.com/, White paper: TELEPROTECTION OVER MPLS WIDE-AREA NETWORKS, Technical Report, CISCO{\texttrademark} and SIEMENS URL; Parikh, K., Kim, J., MILCOM, TDM Services over IP Networks (2007), pp. 1-10. , - IEEE Military Communications Conference., 2007; Blair, S.M., Booth, C.D., Valck, B.D., Verhulst, D., Wong, K.Y., Modelling and Analysis of Asymmetrical Latency in Packet-Based Networks for Current Differential Protection Application, IEEE Transactions on Power Delivery, in press; Hansen, A., Staggs, J., Shenoi, S., (2017), pp. 3-19. , Security analysis of an advanced metering infrastructure, International Journal of Critical Infrastructure Protection 18(Supplement C); Frankel, S., Krishnan, S., (2011), http://www.rfc-editor.org/rfc/rfc6071.txt, IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap, RFC 6071 URL; Dierks, T., Rescorla, E., (2008), http://www.rfc-editor.org/rfc/rfc5246.txt, The Transport Layer Security (TLS) Protocol, RFC 5246 URL; (2010), Communication networks and systems for power utility automation - Part 90-1: Use of IEC 61850 for the communication between substations, IEC/TR 61850-90-1; Muddebihalkar, S.V., Jadhav, G.N., Analysis of transmission line current differential protection scheme based on synchronized phasor measurement (2015), pp. 21-25. , PCCCTSG; Humphreys, T.E., Ledvina, B.M., Psiaki, M.L., O'Hanlon, B.W., Kintner, P.M., (2008), Jr, Assessing the spoofing threat: Development of a portable GPS civilian spoofer, in: ION GNSS International Technical Meeting of the Satellite Division; Std, I.E.E.E., St, I.E.E.E., (2008), ard for a Precision Clock Synchronization Protocol for Networked Measurement and Control Systems, IEEE Std 1588–2008 (Revision of IEEE Std 1588–2002); Liu, Y., Gao, H., Gao, W., Li, N., Xiang, M., PEAM, A design scheme of line current differential protection based on IEC61850 (2011), pp. 520-523. , volume 2; Aichhorn, A., Etzlinger, B., Mayrhofer, R., Springer, A., (2017), pp. 147-158. , Accurate clock synchronization for power systems protection devices over packet switched networks, Computer Science - Research and Development 32(1); Li, J., Jeske, D.R., (2009), pp. 445-459. , Maximum likelihood estimators of clock offset and skew under exponential delays, Applied Stochastic Models in Business and Industry 25(4); Ganeriwal, S., P{\"o}pper, C., {\v C}apkun, S., Srivastava, M.B., (2008), Secure time synchronization in sensor networks, ACM Transactions on Information and System Security. 11(4) 23:1–23:35. doi:; Moussa, B., Debbabi, M., Assi, C., detection, A., mitigation model for PTP delay attack in a smart grid substation (2015), pp. 497-502. , Proceedings of the SmartGridComm; Mizrahi, T., A game theoretic analysis of delay attacks against time synchronization protocols (2012), Proceedings of the IEEE International Symposium on Precision Clock Synchronization for Measurement, Control and Communication Proceedings; Aichhorn, A., Etzlinger, B., Hutterer, S., Mayrhofer, R., Secure communication interface for line current differential protection over ethernet-based networks (2017), Proceedings of the IEEE Manchester PowerTech; Aichhorn, A., Mayrhofer, R., Krammer, H., Kern, T., Realization of Line Current Differential Protection over IP-based networks using IEEE 1588 for synchronous sampling (2016), Proceedings of the DPSP; (1982), pp. 1894-1898. , Proposed Terms \& Definitions for Power System Stability, IEEE Transactions on Power Apparatus and Systems PAS-101(7); St, I.E.E.E., (2014), pp. 1686-2013. , ard for Intelligent Electronic Devices Cyber Security Capabilities, IEEE Std; Chetto, M., Queudet, A., (2016), Energy Autonomy of Real-Time Systems, Energy Management in Embedded Systems Set, ISTE Press Ltd. and Elsevier Ltd., London and Oxford; Hughes, L., (2015), http://www.sciencedirect.com/science/article/pii/S036054421500300X, The effects of event occurrence and duration on resilience and adaptation in energy systems, Energy 84 443–454. 10.1016/j.energy.2015.03.010URL; Blair, S., Booth, C., (2013), Real-time teleprotection testing using IP/MPLS over xDSL, University of Strathclyde; (2013), IEEE Guide for Power System Protective Relay Applications Over Digital Communication Channels, IEEE Std C37.236–2013; Braden, R., Zhang, L., Berson, S., Herzog, S., Jamin, S., (1997), http://www.rfc-editor.org/rfc/rfc2205.txt, Resource ReSerVation Protocol (RSVP) - Version 1 Functional Specification, RFC 2205 URLUR - https://www.scopus.com/inward/record.uri?eid=2-s2.0-85056271675\&doi=10.1016\%2fj.ijcip.2018.06.005\&partnerID=40\&md5=14d5c6b7b0bc4335865b4ccfe97aef6d",

year = "2018",

doi = "10.1016/j.ijcip.2018.06.005",

language = "English",

volume = "23",

pages = "68--78",

journal = "Int. J. Crit. Infrastruct. Prot.",

issn = "1874-5482",

publisher = "Elsevier B.V.",

}

TY - JOUR

T1 - Design, implementation, and evaluation of secure communication for line current differential protection systems over packet switched networks

AU - Aichhorn, A.

AU - Etzlinger, B.

AU - Unterweger, A.

AU - Mayrhofer, R.

AU - Springer, A.

N1 - Cited By :7 Export Date: 14 December 2023 Correspondence Address: Aichhorn, A.; Research and Development Department, Austria; email: [email protected] Funding details: Österreichische Forschungsförderungsgesellschaft, FFG, 848911 Funding text 1: This work was supported in part by the research project SmartProtect, supported by The Austrian Research Promotion Agency (FFG), project no. 848911 , and in part by the LCM in the framework of the Austrian COMET-K2 program. The financial support by the Austrian Federal Ministry of Science, Research and Economy and the Austrian National Foundation for Research, Technology and Development is gratefully acknowledged. References: (2008), pp. 75-82. , Council Directive 2008/114/EC of 8 December 2008 on the identification and designation of European critical infrastructures and the assessment of the need to improve their protection (Text with EEA relevance), Official Journal of the European Union L345; Std, I.E.E.E., (2016), IEEE Guide for Protective Relay Applications to Transmission Lines, IEEE Std C37.113–2015, IEEE Std; M, T.G., Alvin, I.Z., Abidin, H., Hashim, A.A.Z., (2014) Proceedings of the ISGT ASIA, pp. 216-221. , Abidin, Phase comparison protection for distribution networks with high PV penetration, in:; Sarabia, A.F., (2011), Impact of Distributed Generation on Distribution System, Master's thesis, Aalborg University, Denmark; Lightner, E.M., Widergren, S.E., (2010), pp. 3-10. , An Orderly Transition to a Transformed Electricity System, IEEE Transactions on Smart Grid 1(1); Sortomme, E., Venkata, S.S., Mitra, J., (2010), pp. 2789-2796. , Microgrid Protection Using Communication-Assisted Digital Relays, IEEE Transactions on Power Delivery 25(4); Gowan, B., (2013), http://www.ciena.com/, White paper: SONET/SDH Network Modernization is long overdue, Technical Report, ciena® corporation URL; (2017), http://www.cisco.com/, White paper: TELEPROTECTION OVER MPLS WIDE-AREA NETWORKS, Technical Report, CISCO™ and SIEMENS URL; Parikh, K., Kim, J., MILCOM, TDM Services over IP Networks (2007), pp. 1-10. , - IEEE Military Communications Conference., 2007; Blair, S.M., Booth, C.D., Valck, B.D., Verhulst, D., Wong, K.Y., Modelling and Analysis of Asymmetrical Latency in Packet-Based Networks for Current Differential Protection Application, IEEE Transactions on Power Delivery, in press; Hansen, A., Staggs, J., Shenoi, S., (2017), pp. 3-19. , Security analysis of an advanced metering infrastructure, International Journal of Critical Infrastructure Protection 18(Supplement C); Frankel, S., Krishnan, S., (2011), http://www.rfc-editor.org/rfc/rfc6071.txt, IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap, RFC 6071 URL; Dierks, T., Rescorla, E., (2008), http://www.rfc-editor.org/rfc/rfc5246.txt, The Transport Layer Security (TLS) Protocol, RFC 5246 URL; (2010), Communication networks and systems for power utility automation - Part 90-1: Use of IEC 61850 for the communication between substations, IEC/TR 61850-90-1; Muddebihalkar, S.V., Jadhav, G.N., Analysis of transmission line current differential protection scheme based on synchronized phasor measurement (2015), pp. 21-25. , PCCCTSG; Humphreys, T.E., Ledvina, B.M., Psiaki, M.L., O'Hanlon, B.W., Kintner, P.M., (2008), Jr, Assessing the spoofing threat: Development of a portable GPS civilian spoofer, in: ION GNSS International Technical Meeting of the Satellite Division; Std, I.E.E.E., St, I.E.E.E., (2008), ard for a Precision Clock Synchronization Protocol for Networked Measurement and Control Systems, IEEE Std 1588–2008 (Revision of IEEE Std 1588–2002); Liu, Y., Gao, H., Gao, W., Li, N., Xiang, M., PEAM, A design scheme of line current differential protection based on IEC61850 (2011), pp. 520-523. , volume 2; Aichhorn, A., Etzlinger, B., Mayrhofer, R., Springer, A., (2017), pp. 147-158. , Accurate clock synchronization for power systems protection devices over packet switched networks, Computer Science - Research and Development 32(1); Li, J., Jeske, D.R., (2009), pp. 445-459. , Maximum likelihood estimators of clock offset and skew under exponential delays, Applied Stochastic Models in Business and Industry 25(4); Ganeriwal, S., Pöpper, C., Čapkun, S., Srivastava, M.B., (2008), Secure time synchronization in sensor networks, ACM Transactions on Information and System Security. 11(4) 23:1–23:35. doi:; Moussa, B., Debbabi, M., Assi, C., detection, A., mitigation model for PTP delay attack in a smart grid substation (2015), pp. 497-502. , Proceedings of the SmartGridComm; Mizrahi, T., A game theoretic analysis of delay attacks against time synchronization protocols (2012), Proceedings of the IEEE International Symposium on Precision Clock Synchronization for Measurement, Control and Communication Proceedings; Aichhorn, A., Etzlinger, B., Hutterer, S., Mayrhofer, R., Secure communication interface for line current differential protection over ethernet-based networks (2017), Proceedings of the IEEE Manchester PowerTech; Aichhorn, A., Mayrhofer, R., Krammer, H., Kern, T., Realization of Line Current Differential Protection over IP-based networks using IEEE 1588 for synchronous sampling (2016), Proceedings of the DPSP; (1982), pp. 1894-1898. , Proposed Terms & Definitions for Power System Stability, IEEE Transactions on Power Apparatus and Systems PAS-101(7); St, I.E.E.E., (2014), pp. 1686-2013. , ard for Intelligent Electronic Devices Cyber Security Capabilities, IEEE Std; Chetto, M., Queudet, A., (2016), Energy Autonomy of Real-Time Systems, Energy Management in Embedded Systems Set, ISTE Press Ltd. and Elsevier Ltd., London and Oxford; Hughes, L., (2015), http://www.sciencedirect.com/science/article/pii/S036054421500300X, The effects of event occurrence and duration on resilience and adaptation in energy systems, Energy 84 443–454. 10.1016/j.energy.2015.03.010URL; Blair, S., Booth, C., (2013), Real-time teleprotection testing using IP/MPLS over xDSL, University of Strathclyde; (2013), IEEE Guide for Power System Protective Relay Applications Over Digital Communication Channels, IEEE Std C37.236–2013; Braden, R., Zhang, L., Berson, S., Herzog, S., Jamin, S., (1997), http://www.rfc-editor.org/rfc/rfc2205.txt, Resource ReSerVation Protocol (RSVP) - Version 1 Functional Specification, RFC 2205 URLUR - https://www.scopus.com/inward/record.uri?eid=2-s2.0-85056271675&doi=10.1016%2fj.ijcip.2018.06.005&partnerID=40&md5=14d5c6b7b0bc4335865b4ccfe97aef6d

PY - 2018

Y1 - 2018

N2 - In this work we propose a secure communication concept for the protection of critical power supply and distribution infrastructure. Especially, we consider the line current differential protection method for modern smart grid implementations. This protection system operates on critical infrastructure, and it requires a precise time behavior on the communication between devices on both ends of a protected power line. Therefore, the communication has to fulfill deterministic constraints and low-delay requirements and additionally needs to be protected against cyber attacks. Existing systems are often either costly and based on deprecated technology or suffering from maloperations. In order to allow for both, economical and reliable operation, we present the first holistic communication concept capable of using state-of-the-art packet switched networks. Our solution consists of three parts: (i) we develop a list of design requirements for line current differential protection systems communication; (ii) we propose a communication concept obeying these design requirements by combining cryptographical and physical security approaches; and (iii) we evaluate our solution in a practical setup. Our evaluation shows a clock accuracy of 3 µs with a resilience to asymmetric delay attacks down to 8 ns/s. This demonstrates the secure and fault-free operation of a line current differential protection system communicating over a state-of-the-art network. © 2018 Elsevier B.V.

AB - In this work we propose a secure communication concept for the protection of critical power supply and distribution infrastructure. Especially, we consider the line current differential protection method for modern smart grid implementations. This protection system operates on critical infrastructure, and it requires a precise time behavior on the communication between devices on both ends of a protected power line. Therefore, the communication has to fulfill deterministic constraints and low-delay requirements and additionally needs to be protected against cyber attacks. Existing systems are often either costly and based on deprecated technology or suffering from maloperations. In order to allow for both, economical and reliable operation, we present the first holistic communication concept capable of using state-of-the-art packet switched networks. Our solution consists of three parts: (i) we develop a list of design requirements for line current differential protection systems communication; (ii) we propose a communication concept obeying these design requirements by combining cryptographical and physical security approaches; and (iii) we evaluate our solution in a practical setup. Our evaluation shows a clock accuracy of 3 µs with a resilience to asymmetric delay attacks down to 8 ns/s. This demonstrates the secure and fault-free operation of a line current differential protection system communicating over a state-of-the-art network. © 2018 Elsevier B.V.

KW - Clock synchronization

KW - Critical infrastructure protection

KW - Ethernet

KW - IPsec

KW - Line current differential protection

KW - Network security

KW - Power system protection

KW - Wide area network

KW - Clocks

KW - Critical infrastructures

KW - Electric power system protection

KW - Packet networks

KW - Packet switching

KW - Public works

KW - Secure communication

KW - Switching networks

KW - Wide area networks

KW - Clock Synchronization

KW - Line current differential protections

U2 - 10.1016/j.ijcip.2018.06.005

DO - 10.1016/j.ijcip.2018.06.005

M3 - Article

SN - 1874-5482

VL - 23

SP - 68

EP - 78

JO - Int. J. Crit. Infrastruct. Prot.

JF - Int. J. Crit. Infrastruct. Prot.

ER -

Design, implementation, and evaluation of secure communication for line current differential protection systems over packet switched networks

Abstract

UN SDGs

Keywords

Access to Document

Fingerprint

Cite this