Introducing the Cybersecurity Toolbox: A Modeling Framework for Smart Grid Security

Simon Eschlberger; Dominik Vereno; Katharina Polanec; Christian Neureiter

doi:10.13140/RG.2.2.21743.85925

Introducing the Cybersecurity Toolbox: A Modeling Framework for Smart Grid Security

Simon Eschlberger^*, Dominik Vereno, Katharina Polanec, Christian Neureiter

^*Corresponding author for this work

Research output: Contribution to conference › Paper › peer-review

Abstract

Recent cyber-attacks successfully launched on electricity infrastructure reveal the need to harden protection measures. Intelligent power grids, so-called smart grids, are highly distributed, and involve diverse stakeholders and devices. This makes the managing their cybersecurity challenging, requiring a concisely defined, well-structured, and widely applicable strategy. The results of cybersecurity analysis must be consistently captured to enable seamless collaboration between stakeholders having common interest in enhancing the grid's resilience. In response, we present a model-based approach utilizing a domain-specific language, the Cybersecurity Toolbox. Its metamodel conforms to the Meta-Object Facility and is based on consolidated ontologies of widespread cybersecurity standards. The modeling language stands out by its ease of use grounded in a robust but extensible formal foundation. Furthermore, it is designed for broad interoperability with common cybersecurity analysis methodologies and tools, enabling it to function as a centralized hub for consolidating system-level cybersecurity findings. We demonstrate the toolbox's capabilities on a publicly available attack scenario. Ultimately, the Cybersecurity Toolbox can strengthen smart grids' resilience by holistically managing security concerns in a security-by-design approach.

Original language	English
Number of pages	13
DOIs	https://doi.org/10.13140/RG.2.2.21743.85925
Publication status	Accepted/In press - 27 Sept 2024
Event	International Conference on Power Science and Engineering - Ankara, Turkey Duration: 27 Sept 2024 → 29 Sept 2024 Conference number: 13 https://www.icpse.org

Conference

Conference	International Conference on Power Science and Engineering
Abbreviated title	ICPSE
Country/Territory	Turkey
City	Ankara
Period	27/09/24 → 29/09/24
Internet address	https://www.icpse.org

Classification according to Österreichische Systematik der Wissenschaftszweige (ÖFOS 2012)

202022 Information technology

Applied Research Level (ARL)

Not applicable

Research focus/foci

Industrial Informatics

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.13140/RG.2.2.21743.85925Licence: Unspecified

Cite this

@conference{dbeae09049d24869b070ed098351715a,

title = "Introducing the Cybersecurity Toolbox: A Modeling Framework for Smart Grid Security",

abstract = "Recent cyber-attacks successfully launched on electricity infrastructure reveal the need to harden protection measures. Intelligent power grids, so-called smart grids, are highly distributed, and involve diverse stakeholders and devices. This makes the managing their cybersecurity challenging, requiring a concisely defined, well-structured, and widely applicable strategy. The results of cybersecurity analysis must be consistently captured to enable seamless collaboration between stakeholders having common interest in enhancing the grid's resilience. In response, we present a model-based approach utilizing a domain-specific language, the Cybersecurity Toolbox. Its metamodel conforms to the Meta-Object Facility and is based on consolidated ontologies of widespread cybersecurity standards. The modeling language stands out by its ease of use grounded in a robust but extensible formal foundation. Furthermore, it is designed for broad interoperability with common cybersecurity analysis methodologies and tools, enabling it to function as a centralized hub for consolidating system-level cybersecurity findings. We demonstrate the toolbox's capabilities on a publicly available attack scenario. Ultimately, the Cybersecurity Toolbox can strengthen smart grids' resilience by holistically managing security concerns in a security-by-design approach.",

author = "Simon Eschlberger and Dominik Vereno and Katharina Polanec and Christian Neureiter",

year = "2024",

month = sep,

day = "27",

doi = "10.13140/RG.2.2.21743.85925",

language = "English",

note = "International Conference on Power Science and Engineering, ICPSE ; Conference date: 27-09-2024 Through 29-09-2024",

url = "https://www.icpse.org",

}

TY - CONF

T1 - Introducing the Cybersecurity Toolbox: A Modeling Framework for Smart Grid Security

AU - Eschlberger, Simon

AU - Vereno, Dominik

AU - Polanec, Katharina

AU - Neureiter, Christian

N1 - Conference code: 13

PY - 2024/9/27

Y1 - 2024/9/27

N2 - Recent cyber-attacks successfully launched on electricity infrastructure reveal the need to harden protection measures. Intelligent power grids, so-called smart grids, are highly distributed, and involve diverse stakeholders and devices. This makes the managing their cybersecurity challenging, requiring a concisely defined, well-structured, and widely applicable strategy. The results of cybersecurity analysis must be consistently captured to enable seamless collaboration between stakeholders having common interest in enhancing the grid's resilience. In response, we present a model-based approach utilizing a domain-specific language, the Cybersecurity Toolbox. Its metamodel conforms to the Meta-Object Facility and is based on consolidated ontologies of widespread cybersecurity standards. The modeling language stands out by its ease of use grounded in a robust but extensible formal foundation. Furthermore, it is designed for broad interoperability with common cybersecurity analysis methodologies and tools, enabling it to function as a centralized hub for consolidating system-level cybersecurity findings. We demonstrate the toolbox's capabilities on a publicly available attack scenario. Ultimately, the Cybersecurity Toolbox can strengthen smart grids' resilience by holistically managing security concerns in a security-by-design approach.

AB - Recent cyber-attacks successfully launched on electricity infrastructure reveal the need to harden protection measures. Intelligent power grids, so-called smart grids, are highly distributed, and involve diverse stakeholders and devices. This makes the managing their cybersecurity challenging, requiring a concisely defined, well-structured, and widely applicable strategy. The results of cybersecurity analysis must be consistently captured to enable seamless collaboration between stakeholders having common interest in enhancing the grid's resilience. In response, we present a model-based approach utilizing a domain-specific language, the Cybersecurity Toolbox. Its metamodel conforms to the Meta-Object Facility and is based on consolidated ontologies of widespread cybersecurity standards. The modeling language stands out by its ease of use grounded in a robust but extensible formal foundation. Furthermore, it is designed for broad interoperability with common cybersecurity analysis methodologies and tools, enabling it to function as a centralized hub for consolidating system-level cybersecurity findings. We demonstrate the toolbox's capabilities on a publicly available attack scenario. Ultimately, the Cybersecurity Toolbox can strengthen smart grids' resilience by holistically managing security concerns in a security-by-design approach.

U2 - 10.13140/RG.2.2.21743.85925

DO - 10.13140/RG.2.2.21743.85925

M3 - Paper

T2 - International Conference on Power Science and Engineering

Y2 - 27 September 2024 through 29 September 2024

ER -

Introducing the Cybersecurity Toolbox: A Modeling Framework for Smart Grid Security

Abstract

Conference

Classification according to Österreichische Systematik der Wissenschaftszweige (ÖFOS 2012)

Applied Research Level (ARL)

Research focus/foci

UN SDGs

Access to Document

Fingerprint

Cite this