Abstract
In Smart Grids various processes can be automated using communication between the components of the grid. The standard IEC 61850 defines, among other requirements and parts of the system, different communication protocols, that shall be used for different purposes. Although the scope of IEC 61850 is the automation of substations, there are also use cases beyond that can be addressed by IEC 61850. The standard IEC 62351 sets the focus on security in Smart Grids and lists various security requirements, that should be met, and further a series of measures to accomplish the required level of security. However, there are additional security requirements, such as non-repudiation and traceability of transactions, which cannot be sufficed using only the mechanisms provided by IEC 62351. In this paper a security solution will be presented that meets these additional requirements. Basically, it uses certificates for the proof of identity of the system participants and provides the two non-repudiation services Non-repudiation of Origin and Non-repudiation of Delivery using mechanisms described by the standard ISO 13888-3. The focus is set on the MMS protocol that is used for end-to-end communication between client and server. However, due to the flexibility of the mechanisms used, the security solution can also be transferred to different protocols. Finally, this paper describes a way to implement the solution using XML signatures and X.509 certificates.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Dournaee, B.: XML Security. RSA Press Series. Mcgraw-Hill, Osborne (2002)
Englert, H.: Neue Kommunikationskonzepte für den Netzbetrieb - aktuelle Entwicklungen in der IEC 61850. Smart Grids Forum, Hannover Messe (2014). https://www.vde.com/de/smart-grid/forum/beitraege/Documents/2014-04-09-neue-kommunikationskonzepte-englert.pdf. Accessed on 3 July 2015
Fries, S., Hof, H.-J., Dufaure, T., Seewald, M.G.: Security for the smart grid - enhancing IEC 62351 to improve security in energy automation control. Int. J. Adv. Secur. 3(3 & 4), 169–183 (2010)
CEN, CENELEC, ETSI Smart Grid Coordination Group. Smart Grid Information Security, November 2012
CEN, CENELEC, ETSI Smart Grid Coordination Group. Smart Grid Reference Architecture, November 2012
IEC 61400–25: Communications for monitoring and control of wind power plants, TC 88
IEC 61850: Communication networks and systems in substations, TC 57
IEC 61850–1: Communication networks and systems in substations - Introduction and overview
IEC 61850-8-1: Communication networks and systems in substations - Part 8–1: Specific communication service mapping (SCSM) - Mappings to MMS (ISO 9506–1 and ISO 9506–2) and to ISO/IEC 8802–3
IEC 62351: Power systems management and associated information exchange - Data and communications security, TC 57
IEC 62351–1: Power systems management and associated information exchange - Data and communications security Part 1: Communication network and system security - introduction to security issues
IEC 62351–4: Power systems management and associated information exchange - Data and communications security - Part 4: Profiles including MMS
IEC 62351–4: Power systems management and associated information exchange - Data and communications security - Part 6: Security for IEC 61850 profiles
ISO/IEC 13888–3 IT Security techniques Non-repudiation - Part 3: Mechanismsusing asymmetric techniques
ITU-T X.694 Information technology ASN.1 encoding rules: Mapping W3C XML schema definitions into ASN.1
The Smart Grid Interoperability Panel - Cyber Security Working Group. NISTIR 7628 Guidelines for Smart Grid Cyber Security U.S. Department of Commerce, National Institute of Standards and Technologies, August 2010
Smart Grid Mandate M/490 EN: Standardization Mandate to European Standardisation Organisations (ESOs) to support European Smart Grid deployment European Commission Directorate-General for Energy, 1 March 2011
Systems Integration Specialists Company Inc, Overview and Introduction to the Manufacturing Message Specification (MMS) (1995). http://www.sisconet.com/downloads/mmsovrlg.pdf
Systems Integration Specialists Company, Inc. SISCO MMS Syntax (1994). http://www.sisconet.com/downloads/mms_abstract_syntax.txt
Verband der Elektrotechnik, Elektronik und Informationstechnik. VDE-Positionspapier Smart Grid Security Energieinformationsnetze und -systeme (2014). https://www.vde.com/de/InfoCenter/Studien-Reports/Seiten/Positionspapiere.aspx
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2015 Springer International Publishing Switzerland
About this paper
Cite this paper
Ruland, K.C., Sassmannshausen, J. (2015). Non-repudiation Services for the MMS Protocol of IEC 61850. In: Chen, L., Matsuo, S. (eds) Security Standardisation Research. SSR 2015. Lecture Notes in Computer Science(), vol 9497. Springer, Cham. https://doi.org/10.1007/978-3-319-27152-1_4
Download citation
DOI: https://doi.org/10.1007/978-3-319-27152-1_4
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-27151-4
Online ISBN: 978-3-319-27152-1
eBook Packages: Computer ScienceComputer Science (R0)