Abstract
Smart Grid has become more important for the efficient use of electric power and the demand reduction. As demand for electric power is increasing continuously despite its limited capacity. The demand reduction in Smart Grid can be achieved through DR (Demand Response) which reduces demand for electric power. In this paper, we analyzed the weaknesses of open source of Open ADR, protocol for Smart Grid DR, using CERT Java secure coding rules. We extracted the violations of rules such as OBJ01-J that means the scope of declaring member variables which should be obeyed in Object-Oriented Programming and IDS00-J that means the validation for input data which should be obeyed in Web environment. By eliminating the weaknesses we could enhance the security of Smart Grid communications.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Kushner, D.: The real story of stuxnet. IEEE Spectr. 50(3), 48–53 (2013)
CVE, CVE-2014-0160. CVE.MITRE (2014)
Joe McManus, M.G.R.: The CERT Oracle Secure Coding Standard for Java. CERT (2014)
Hennell, M.: LDRA Testbed and TBvision. LDRA (1975)
OpenADR Alliance, OpenADR 2.0 Profile Specification A Profile. OpenADR Alliance (2011)
CWE, Common Weakness Enumeration. CWE.MITRE (1999)
LDRA, LDRA Getting Started Tutorial. LDRA Software Technology
McParland, C.: OpenADR open source toolkit: developing open source software for the smart grid. In: IEEE Power & Energy Society General Meeting (2011)
CERT, OBJ01-J. Declare data members as private and provide accessible wrapper methods. CERT (2012)
CWE, CWE-766: Critical Variable Declared Public. CWE.MITRE (2014)
CVE, CVE-2010-3860. CVE.MITRE (2010)
CERT, EXP00-J. Do not ignore values returned by methods. CERT (2014)
CWE, CWE-252: Unchecked Return Value. CWE.MITRE (2014)
CVE, CVE-2010-0211. CVE.MITRE (2010)
Acknowledgment
This research was supported by Basic Science Research Program through the National Research Foundation of Korea (NRF) funded by the Ministry of Education, Science and Technology (2012R1A1A2009354). This research was supported by the MSIP (Ministry of Science, ICT and Future Planning), Korea, under the ITRC (Information Technology Research Center) support program (NIPA-2014-H0301-14-1023) supervised by the NIPA (National IT Industry Promotion Agency).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Park, M., Kang, M., Choi, JY. (2014). The Research on Vulnerability Analysis in OpenADR for Smart Grid. In: Woon, W., Aung, Z., Madnick, S. (eds) Data Analytics for Renewable Energy Integration. DARE 2014. Lecture Notes in Computer Science(), vol 8817. Springer, Cham. https://doi.org/10.1007/978-3-319-13290-7_4
Download citation
DOI: https://doi.org/10.1007/978-3-319-13290-7_4
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-13289-1
Online ISBN: 978-3-319-13290-7
eBook Packages: Computer ScienceComputer Science (R0)