Ya Zhang,Junhua Chen,Shenjin Wang,Kaixuan Ma,Shunfang Hu

DOI: https://doi.org/10.3390/en17184550

IF: 3.2

2024-09-12

Energies

Abstract:The smart grid (SG) is an efficient and reliable framework capable of controlling computers, automation, new technologies, and devices. Advanced metering infrastructure (AMI) is a crucial part of the SG, facilitating two-way communication between users and service providers (SPs). Computation, storage, and communication are extremely limited as the AMI's device is typically deployed outdoors and connected to an open network. Therefore, an authentication and key agreement protocol is necessary to ensure the security and confidentiality of communications. Existing research still does not meet the anonymity, perfect forward secrecy, and resource-limited requirements of the SG environment. To address this issue, we advance a lightweight authentication and key agreement scheme based on elliptic curve cryptography (ECC). The security of the proposed protocol is rigorously proven under the random oracle model (ROM), and was verified by a ProVerif tool. Additionally, performance comparisons validate that the proposed protocol provides enhanced security features at the lowest computation and communication costs.

energy & fuels

Fan Wu,Lili Xu,Xiong Li,Saru Kumari,Marimuthu Karuppiah,Mohammad S. Obaidat

DOI: https://doi.org/10.1109/jsyst.2018.2876226

IF: 4.802

2019-01-01

IEEE Systems Journal

Abstract:Cyber-physical systems (CPSs) have attracted the attention of researchers from all disciplines. In such systems, physical devices collect data, interact with Internet, and send the gathered data to serve people. As one important part of such systems, a smart grid is accepted widely and has played a great role for information and communication technology (ICT) and power communities. Secure communication in the smart grid turns to be an urgent aim in the CPS. Several key agreement schemes have been devised in the literature for smart grids. Unfortunately, researchers are still searching for good ways to make the smart grid own anonymity and efficiency simultaneously. This study proposes a novel key agreement scheme for a smart grid with elliptic curve cryptography. Then, we use formal proof based on an authenticated key agreement to give the negligible probability of the attacker. The ProVerif code also proves that our scheme can withstand the simulated attackers under the Dolev-Yao model. By comparing of security properties and performance, our scheme is better than other recent competing schemes. Moreover, via simulation analysis using NS-3, it is found that our scheme is efficient and practical in communication.

Huanhuan Ma,Chenyu Wang,Guosheng Xu,Qiang Cao,Guoai Xu,Li Duan

DOI: https://doi.org/10.1109/jsyst.2023.3289492

IF: 4.802

2023-01-01

IEEE Systems Journal

Abstract:Smart grid (SG) achieves more convenient and efficient power transmission through the rapid development of the information and communication technology. In addition to the transmission of electrical energy, the SG system also involves privacy and control information of service providers, which is closely related to people's livelihood. However, at present, the data in the SG system are transmitted in the form of plaintext, which does not have complete protection measures for entity privacy and communication data security. Focusing on preserving entity privacy and data security, this article proposes an anonymous secure authentication protocol (ASAP-SG) for the SG environment. Based on elliptic curve cryptography and physical unclonable function, ASAP-SG can realize authentication and key agreement between smart meters and service providers. The security of ASAP-SG has been verified with proverif tool and proven strictly under the real-or-random model. Furthermore, heuristic analysis manifests that ASAP-SG can successfully resist known security attacks. Finally, a fully comparison with the other five most advanced schemes reveals that ASAP-SG consumes the optimal computation cost on both smart meters and service providers and reduces the communication overhead by 33.3%–45.8%, on the basis of satisfying ten security objectives. These features make ASAP-SG more suitable for resource-constrained SG environment.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Min Lu,Zhiguo Shi,Rongxing Lu,Ruixue Sun,Xueminsherman Shen

DOI: https://doi.org/10.1109/ICCChina.2013.6671200

2013-01-01

Abstract:Characterized by time-of-using pricing, better capacity, and usage planning, smart grid has attracted considerable attention in recent years. However, one of the research challenges in smart grid is the privacy issue due to too much sensitive and real-time user data involved. In this paper, we propose a practical privacy-preserving aggregation scheme, named PPPA, for secure smart grid communications. PPPA utilizes the lightweight cryptographic aggregation technique to achieve provable security guarantee, the differential privacy technique to achieve privacy preservation of each individual user, and the quad tree structure to achieve failure tolerance. For data communication from users to control center, data aggregation is conducted directly on ciphertexts at local gateway without decryption, and the aggregation results are reported by relays to the control center. Through extensive analysis, we demonstrate that PPPA can not only provide authentication and guarantee the data integrity, but also achieve strong privacy-preserving for each user, and thus it is feasible in practical smart grid scenarios.

Mingping Qi,Jianhua Chen

DOI: https://doi.org/10.1109/jsyst.2020.2991174

IF: 4.802

2020-01-01

IEEE Systems Journal

Abstract:The design of an authenticated key agreement protocol for securing the smart meter communications in smart grid networks has attracted growing attention recently. Typically, realizing mutual authentication and key agreement without active involvement of a trusted third party is expected in this field. Thus, to achieve this aim, several authenticated key agreement schemes for smart grid have been presented; while as investigated in the following section of this work, most of these schemes remain vulnerable to various attacks. Therefore, to design a truly secure authenticated key agreement protocol for smart grid and make some contributions to this field, this work presents our new authenticated key agreement scheme for smart grid using Elliptic Curve Qu-Vanstone (ECQV) implicit certificate as the building block. Our scheme is pairing-free and just uses two passes to realize mutual authentication and key agreement as well as strong credential privacy, making it with high efficiency in both computation and communication overheads. Moreover, its security is formally proved under the widely accepted Canetti and Krawczyk (CK) security model, and is further confirmed by a heuristic security analysis.

Shunfang Hu,Yanru Chen,Yilong Zheng,Bin Xing,Yang Li,Le Zhang,Liangyin Chen

DOI: https://doi.org/10.1109/tii.2022.3191319

IF: 12.3

2023-03-29

IEEE Transactions on Industrial Informatics

Abstract:Advanced metering infrastructure (AMI) is a vital component of the smart grid (SG) for real-time data access and bidirectional communication. An authentication and key agreement (AKA) protocol is needed for AMI systems to ensure the confidentiality and integrity of communication data. Since the devices are connected to the open network and generally deployed outdoors with limited computation, communication, and storage, designing a suitable AKA protocol is a challenging task. Researchers are still looking for good ways to make the SG secure and efficient simultaneously. To remedy the situation, in this article, we advance a security-enhanced elliptic-curve-cryptography-based AKA protocol, and the security has been proven rigorously under the random oracle model and verified with the ProVerif tool. Furthermore, performance comparison validates the proposed protocol in affording improved security features with lower computation and communication cost. In addition, the proposed scheme is implemented practically on a testbed, which is deployed using Raspberry Pi 3 Model B+ for smart meters.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Sheng Chai,Haotian Yin,Bin Xing,Zhukun Li,Yunyi Guo,Di Zhang,Xin Zhang,Da He,Jie Zhang,Xiaoling Yu,Wei Wang,Xin Huang

DOI: https://doi.org/10.1109/tsg.2023.3234000

IF: 10.275

2023-09-01

IEEE Transactions on Smart Grid

Abstract:Smart Grid is an indispensable part of the Internet of Things (IoT) and has the potential to revolutionise the electricity energy industry. Smart meters, as an important component of Smart Grid, are responsible for the exchange of information between end consumers and service providers. Smart meters and service providers need to use authentication key exchange protocols (AKE) to establish a secure session for secure information transmission. However, The current state-of-the-art lightweight solutions do not support identity anonymity and mostly have high communication costs. This paper proposes a lightweight and secure mutual authentication scheme, which is particularly designed for devices with limited computing capability to provide identity anonymity such as smart meters, based on the Shangyong Mima 2 (SM2) AKE protocol stipulated by the State Cryptography Administration of China. We conducted formal analysis of the security of the proposed scheme and proved its security. In addition, the computational overhead of the protocol was evaluated through performance analysis. Compared with related lightweight protocols, our scheme can reduce up to 30%-40% computational overhead. The results verified that the proposed scheme is indeed suitable for secure communication involving devices with constrained computing capability.

engineering, electrical & electronic

Cong Wang,Peng Huo,Maode Ma,Tong Zhou,Yiying Zhang

DOI: https://doi.org/10.1007/s00607-023-01188-4

2023-06-28

Computing (Vienna/New York)

Abstract:With the gradual maturity of Smart Grid (SG), security challenges become the most important issues that need to be addressed urgently. In recent years, many schemes adopt mutual authentication and key agreement to ensure secure communication in SG. However, most existing methods have their own shortcomings in either security or efficiency which make them difficult to satisfy the security requirements of SG. In this paper, we propose a provable secure and lightweight authenticated key agreement scheme based on the Elliptic Curve Cryptosystem (ECC) for the cloud-edge-end collaboration SG communication network. The proposed scheme can guarantee the security of the communication and provide anonymity for both the edge server and the smart meters. The anonymity of the smart meters can be provided by a pseudonym mechanism. By rigorous security analysis, the proposed scheme can resist to the typical attacks including replay attacks and identity forgery attacks. The security properties are also evaluated by using the Canetti and Krawczyk (CK) adversary model. The performance simulation results denotes that the proposed scheme not only owns stronger security functions but also improves computation efficiency by 24.5% on average than other four schemes. By simulation results, the proposed scheme has been shown to hold high efficiency.

Xiong Li,Fan Wu,Saru Kumari,Lili Xu,Arun Kumar Sangaiah,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1016/j.jpdc.2017.11.008

IF: 4.542

2019-01-01

Journal of Parallel and Distributed Computing

Abstract:Smart grid (SG) is an agenda of interest to governments and researchers, as a successful cyberattack against smart grids (e.g. compromise of smart meters) can have devastating real-world consequences, ranging from financial loss to fatalities. In this paper, we present a novel and secure message authentication scheme, which provides mutual authentication and key establishment for smart grid. The scheme is also designed to preserve the identities of the gateways during message transmission. We then prove the security of the scheme, as well as verifying the security properties using Proverif and demonstrating the utility of the scheme using simulations.

Nkurunziza Egide,Fagen Li

DOI: https://doi.org/10.1007/s12083-023-01485-x

IF: 3.488

2023-01-01

Peer-to-Peer Networking and Applications

Abstract:Authentication and key agreement (AKA) methods are designed to ensure that only authorized entities are communicating and to ensure that their communications are secure. In contrast, the majority of designed protocols are homogeneous, meaning that communicating entities share the same cryptographic setting. A smart grid (SG) is nonetheless a complex system with a diverse network. Thus, SG interconnects a large number of end devices, intermediary devices, and systems that are part of distinct cryptographic environments. We therefore suggested a heterogeneous authentication protocol for smart grids (HAP-SG). In the proposed protocol, the smart meter (SM) belongs to a certificateless public key cryptography (CL-PKC) environment, whereas the service provider (SP) belongs to a public key infrastructure environment (PKI). HAP-SG ensures that only authorized SM and SP communicate and that their communications are kept secret, despite the fact that they belong to separate cryptographic environments. Security of HAP-SG depends on the difficulty of the elliptic curve discrete logarithm (ECDL) problem. On the other hand, for security analysis, the random oracle model (ROM) is utilized. Experiments show that our protocol is more efficient in terms of computation costs and communication costs.

Vincent Omollo Nyangaresi,Zaid Ameen Abduljabbar,Salah H. Abbdal Refish,Mustafa A. Al Sibahee,Enas Wahab Abood,Songfeng Lu

DOI: https://doi.org/10.1007/978-3-030-98002-3_24

2022-01-01

Abstract:The security and privacy protection of smart grid data exchanged over the open and public wireless communication channels is critical yet challenging in this environment. Conventionally, public key cryptography, group signatures, blind signatures, identity based schemes and elliptic curve cryptography could provide the much needed security and privacy. However, all these techniques either lack some smart grid security requirements or have intensive communication, storage and computation overheads. This obviously renders them inefficient for resource-constrained smart grid network devices. In this paper, an anonymous key agreement and authentication protocol to address some of these challenges is proposed. The simulation results showed that the proposed protocol is the most efficient in terms of bandwidth and computation requirements. It also required relatively less memory space during its entire execution than some of the related protocols. Further, it is demonstrated that it offers both backward and forward key secrecy, anonymity, and is robust against impersonation, session hijacking, privileged insider, side-channels, packet replays, packet injection and privacy leaks attacks.

Egide Nkurunziza,Lawrence Tandoh,Issameldeen Elfadul,Fagen Li

DOI: https://doi.org/10.1002/spy2.273

2022-01-01

Security and Privacy

Abstract:A smart meter (SM) is an essential device within a smart grid (SG). It collects electrical power data from the customer and reports it to the service provider at regular intervals. Unfortunately, these regular reports may disclose confidential customer information without their knowledge. Moreover, SM is a device with limited resources, which means it cannot manage heavy security protocols. To mitigate these problems, an efficient certificateless anonymous authentication protocol for SG (ECAAP-SG) protocol was designed. It cannot allow an adversary to tap into the communication channel and access exchanged information. In addition, the designed scheme fits SM's resource capacity. Furthermore, the authentication security provided by ECAAP-SG guarantees that legal entities are communicating. Moreover, ECAAP-SG provides key agreement security that establishes the session key. The established session key will be used to secure future communication. Besides, a random oracle model is used for the security analysis of the proposed protocol, and we prove that it is secure under the discrete logarithm problem and the computational Diffie-Hellman problem.

Kehe Wu,Rui Cheng,Wenchao Cui,Wei Li

DOI: https://doi.org/10.1016/j.aej.2020.09.008

IF: 6.626

2021-02-01

Alexandria Engineering Journal

Abstract:With the increasing openness of smart grids, a large quantity of power terminals will be widely applied in systems of smart grids by various access modes (wired, wireless, satellite). In order to ensure the integrity and confidentiality of the data and the security of the communications between power terminals and the smart grid intranet, a lightweight security authentication and key agreement scheme is proposed in this article. The scheme provides mutual authentication based on the SM2 algorithm and key agreement which can prevent various attacks. Furthermore experimental evaluation and comparative analysis is conducted to indicate that the proposed scheme can resist many types of attacks with lower amounts of total computational resources and lower communications bandwidth. The analysis shows that the proposed scheme is suitable for smart grid.

engineering, multidisciplinary

Jangirala Srinivas,Ashok Kumar Das,Xiong Li,Muhammad Khurram Khan,Minho Jo

DOI: https://doi.org/10.1109/tii.2020.3011849

IF: 12.3

2021-01-01

IEEE Transactions on Industrial Informatics

Abstract:Recent technological evolution in the Internet of Things (IoT) age supports better solutions to magnify the management of the power quality and reliability concerns, and imposes the measures of a smart grid. In smart grid environment, a smart meter needs to securely access the services from a service provider via insecure channel. However, since the communication is via public channel, it imposes various security threats by an adversary. To deal with this, in this article we design a new anonymous signature-based authenticated key exchange scheme for IoT-enabled smart grid environment, called AAS-IoTSG. The dynamic smart meter addition phase is also permissible in AAS-IoTSG after initial deployment. The security of AAS-IoTSG has been tested rigorously using formal security analysis under the real-or-random (ROR) model which is one of the broadly-accepted standard random oracle models, formal security verification under the broadly-used automated validation of Internet security protocols and applications (AVISPA) tool and also using informal security analysis. Finally, an exhaustive comparative study unveils that AAS-IoTSG supports better security and functionality features and requires less communication and computation overheads as compared to the existing state-of-art authentication mechanisms in smart grid systems.

Khalid Mahmood,Xiong Li,Shehzad Ashraf Chaudhry,Husnain Naqvi,Saru Kumari,Arun Kumar Sangaiah,Joel J. P. C. Rodrigues

DOI: https://doi.org/10.1016/j.future.2018.06.004

2018-01-01

Abstract:The most vital concern in the realization of the Internet of Things (loT) is to encounter the disparate communication systems and technologies. Interoperability solutions such as standards can help us to integrate plenty of diverse devices and their applications in an interoperable framework. Since Smart Grid is a non-trivial prevalent application of Edge computing under the umbrella of loT. The Smart Grid furnishes communication through Internet Protocol to enable interoperability. However, IP-Based communication makes it vulnerable to serious security threats. Therefore, the secure information sharing among diverse communicating agents in the smart grid environments has become a vital concern. Specifically, to enable secure communication between the smart meter and utility, key management prior to authentication is the most critical task to do. Nowadays, several mechanisms have been introduced to establish secure communication within the emerging smart grid environment. Although, these protocols do not support smart meter anonymity and fail to offer reasonable security. In this paper, we use the identity-based signature to present an anonymous key agreement protocol for the Smart Grid infrastructure. This protocol enables the smart meters to get connected with utility control anonymously to avail the services provided by them. The smart meters realize this objective with the private key in the absence of trusted authority. The trusted authority is involved only during the registration phase The proposed protocol is verified and validated through random oracle model and automated tool ProVerif. Moreover, performance analysis is also observed to consolidate the reliability and efficiency of the proposed protocol. (C) 2018 Elsevier B.V. All rights reserved.

Prarthana J. Mehta,Balu L. Parne,Sankita J. Patel

DOI: https://doi.org/10.1007/s12083-023-01494-w

IF: 3.488

2023-05-20

Peer-to-Peer Networking and Applications

Abstract:The Smart Grid (SG) improves the reliability and efficiency of the data sharing and communication of the traditional power grid system. This enhancement brings security requirements such as mutual Authentication and Key Agreement (AKA) among the Smart Meters (SMs) and Service Providers (SPs). Several authentication and key agreement frameworks are designed in the literature to preserve SM privacy and maintain secure transmission of data among the communicating entities in SG networks. However, some of the existing schemes either suffer from security limitations or generate high computation overhead. To overcome these drawbacks recently, Khan et al. proposed a Lightweight Authentication and Key Agreement Framework (LAKAF). However, it is observed that their framework did not maintain user anonymity and secrecy of the session key. As a countermeasure to these limitations, we propose a Security Enhanced Lightweight Authentication and Key Agreement Framework (SE-LAKAF) based on the fuzzy extractor, elliptic curve cryptography, and AES-based hybrid encryption decryption mechanism. The theoretical security analysis demonstrates that the proposed framework protects the network from replay, impersonation, denial of service, and man-in-the-middle attacks, maintains the session key security and user anonymity. The proposed framework is formally verified using well known AVISPA tool, BAN logic and random oracle model. Further, the performance analysis illustrates that the SE-LAKAF generates competitive communication and computation overheads with improved security compared to other existing frameworks.

computer science, information systems,telecommunications

Fei Guo,Zhenfu Cao,Zhusen Liu,Nanyuan Cao

DOI: https://doi.org/10.1007/s12204-019-2137-8

2019-01-01

Abstract:With the enormous development of imformation and communication technology, more concerns are focused to achieve secure and reliable smart grids as the social infrastructure, especially in the explosion era of mobile devices. In this paper, we propose an efficient scheme to satisfy the outdoor electrical demand of mobile customers. Our scheme protects the privacy and integrity of users’ electricity consumption data. Technically, we encrypt users’ electricity consumption data by a chosen-plaintext-attack (CPA) secure public key encryption (PKE) scheme and aggregate ciphertexts by the aggregator (an untrusted third party). In the scheme, internal and external adversaries cannot obtain the electricity consumption data. Additionally, we require users to provide authentication and commitment of consumption data that can track who modifies the data, which protects the integrity of users’ electricity consumption data.

Hasen Nicanfar,Victor C. M. Leung

DOI: https://doi.org/10.1109/tsg.2012.2226252

IF: 10.275

2013-03-01

IEEE Transactions on Smart Grid

Abstract:This paper aims at providing a key agreement protocol for smart grid to cope with access control of appliances/devices located inside a Home Area Network (HAN) by a set of controllers outside the HAN. The commands/packets initiated by the controllers in crisis cases should be delivered fast and immune from any interruption. The HAN controller, which acts as a gateway, should not cause any delay by decrypting and re-encrypting the packets, nor should it has any chance to modify them. Considering the required level of security and quality of service, we design our protocol with an Elliptic Curve Cryptography (ECC) approach. We improve and implement the Password Authenticated Key Exchange (PAKE) protocol in two steps. First, we propose an auxiliary mechanism that is an ECC version of PAKE, and then extend it to a multilayer consensus model. We reduce the number of hash functions to one, and utilize a primitive password shared between an appliance and HAN controller to construct four valid individual consensus and authenticated symmetric keys between the appliance and upstream controllers by exchanging only 12 packets. Security analysis presents that our protocol is resilient to various attacks. Furthermore, performance analysis shows that the delay caused by the security process is reduced by more than one half.

engineering, electrical & electronic

HAN Ya-Nan,LI Fa-Gen

DOI: https://doi.org/10.13868/j.cnki.jcr.000133

2016-01-01

Abstract:Smart grid is a new generation of the power system. It is an intelligent power system using the advanced equipment, sensing and measurement technology and information communication technology. Compared with the traditional power grid, a distinguished characteristic of the smart grid is that it can support two-way communication between the smart meters and the meter data management system. Smart grid can monitor the users’ electricity information in near real-time. So it can better maintain the stability of the power system. However, as more and more information needs to exchange in smart grid, it is more vulnerable against the attacks such as eavesdropping, modification and impersonation. In order to provide security protection in smart grid, this paper designs an efficient cryptographic communication protocol by using the combined public key cryptographic scheme. The main work of this paper includes the following two points: The first point is to design an identity-based combined public key cryptographic scheme and give the security proof in the random oracle model. The scheme can arrange the most complex operations to be done by a trusted server, and the smart grid only needs to implement some simple operations. The second point is to design a cryptographic protocol to ensure the security communication of the smart grid. The protocol uses the hop by hop routing to reduce the communication delay. So it can better guarantee the real-time characteristic of the smart grid. In addition, we present a concrete communication process of the protocol, and then give the analysis of security and performance of this protocol.

J. B. Shriram,P. Anbalagan

DOI: https://doi.org/10.1007/s00202-024-02587-2

IF: 1.63

2024-07-14

Electrical Engineering

Abstract:The integration of Internet of Things (IoT) technologies in the context of smart grid services holds the promise of transforming energy management and monitoring processes. However, this integration brings forth a myriad of challenges, including complexities in hardware integration, data accessibility, quality of service, security, and privacy concerns. In the proposed research, a HRES-based smart grid system is developed with Cloud IoT's potential for enhancing power networks' efficiency, emphasizing the need for tailored network utilization and high-quality service support based on user requirements. However, this advancement comes with increased privacy threats. To tackle these challenges, this research proposes a hybrid approach, amalgamating Chaotic Artificial Bee Colony and Chicken Swarm Optimization (ABC-CSO) algorithms to determine the shortest paths among nodes. Moreover, a robust encryption technique, group key-based Lagrange interpolation polynomial (GK-LIP) algorithm, has been devised to ensure secure data transfer to the cloud. The validation of the developed smart grid system is conducted using MATLAB, allowing for a thorough examination of its performance under various scenarios and conditions. The proposed hybrid chaotic ABC-CSO results in 97.21% accuracy in predicting the shortest path, with GK-LIP approach signifying reduced encryption and decryption time of 0.103 s and 0.012 s, in contrast to state-of-the-art approaches. Additionally, the system's real-time status is assessed through the AdaFruit IoT webpage. This methodology not only enhances data security but also detects and prevents unauthorized access, marking a significant stride in safeguarding sensitive information in the framework of smart grid services.

engineering, electrical & electronic