Rongxing Lu,Xiaodong Lin,Zhiguo Shi,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/wcnc.2013.6554840

2013-01-01

Abstract:The increasing demands for improving transmission reliability and efficiency have brought us a wide interest in smart grid. In current smart grid research, one of challenges is its security issue. If the security is not well addressed, the concept of smart grid cannot be widely accepted. In this paper, in order to simultaneously resolve the security and efficiency challenges in smart grid communications, we propose an efficient aggregate authentication protocol, called EATH, which is characterized by eliminating the Map-To-Hash hash and reducing the pairing operations in aggregation and verification to improve the computational efficiency. Detailed security analysis has shown that the proposed EATH protocol is secure in terms of source authentication and data integrity in smart grid communications. In addition, performance evaluation also demonstrates its efficiency in terms of low computation and communication overheads.

Cong Wang,Peng Huo,Maode Ma,Tong Zhou,Yiying Zhang

DOI: https://doi.org/10.1007/s00607-023-01188-4

2023-06-28

Computing (Vienna/New York)

Abstract:With the gradual maturity of Smart Grid (SG), security challenges become the most important issues that need to be addressed urgently. In recent years, many schemes adopt mutual authentication and key agreement to ensure secure communication in SG. However, most existing methods have their own shortcomings in either security or efficiency which make them difficult to satisfy the security requirements of SG. In this paper, we propose a provable secure and lightweight authenticated key agreement scheme based on the Elliptic Curve Cryptosystem (ECC) for the cloud-edge-end collaboration SG communication network. The proposed scheme can guarantee the security of the communication and provide anonymity for both the edge server and the smart meters. The anonymity of the smart meters can be provided by a pseudonym mechanism. By rigorous security analysis, the proposed scheme can resist to the typical attacks including replay attacks and identity forgery attacks. The security properties are also evaluated by using the Canetti and Krawczyk (CK) adversary model. The performance simulation results denotes that the proposed scheme not only owns stronger security functions but also improves computation efficiency by 24.5% on average than other four schemes. By simulation results, the proposed scheme has been shown to hold high efficiency.

Ya Zhang,Junhua Chen,Shenjin Wang,Kaixuan Ma,Shunfang Hu

DOI: https://doi.org/10.3390/en17184550

IF: 3.2

2024-09-12

Energies

Abstract:The smart grid (SG) is an efficient and reliable framework capable of controlling computers, automation, new technologies, and devices. Advanced metering infrastructure (AMI) is a crucial part of the SG, facilitating two-way communication between users and service providers (SPs). Computation, storage, and communication are extremely limited as the AMI's device is typically deployed outdoors and connected to an open network. Therefore, an authentication and key agreement protocol is necessary to ensure the security and confidentiality of communications. Existing research still does not meet the anonymity, perfect forward secrecy, and resource-limited requirements of the SG environment. To address this issue, we advance a lightweight authentication and key agreement scheme based on elliptic curve cryptography (ECC). The security of the proposed protocol is rigorously proven under the random oracle model (ROM), and was verified by a ProVerif tool. Additionally, performance comparisons validate that the proposed protocol provides enhanced security features at the lowest computation and communication costs.

energy & fuels

Shunfang Hu,Yanru Chen,Yilong Zheng,Bin Xing,Yang Li,Le Zhang,Liangyin Chen

DOI: https://doi.org/10.1109/tii.2022.3191319

IF: 12.3

2023-03-29

IEEE Transactions on Industrial Informatics

Abstract:Advanced metering infrastructure (AMI) is a vital component of the smart grid (SG) for real-time data access and bidirectional communication. An authentication and key agreement (AKA) protocol is needed for AMI systems to ensure the confidentiality and integrity of communication data. Since the devices are connected to the open network and generally deployed outdoors with limited computation, communication, and storage, designing a suitable AKA protocol is a challenging task. Researchers are still looking for good ways to make the SG secure and efficient simultaneously. To remedy the situation, in this article, we advance a security-enhanced elliptic-curve-cryptography-based AKA protocol, and the security has been proven rigorously under the random oracle model and verified with the ProVerif tool. Furthermore, performance comparison validates the proposed protocol in affording improved security features with lower computation and communication cost. In addition, the proposed scheme is implemented practically on a testbed, which is deployed using Raspberry Pi 3 Model B+ for smart meters.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Keyan Abdul-Aziz Mutlaq,Vincent Omollo Nyangaresi,Mohd Adib Omar,Zaid Ameen Abduljabbar,Iman Qays Abduljaleel,Junchao Ma,Mustafa A. Al Sibahee

DOI: https://doi.org/10.1371/journal.pone.0296781

IF: 3.7

2024-01-24

PLoS ONE

Abstract:The incorporation of information and communication technologies in the power grids has greatly enhanced efficiency in the management of demand-responses. In addition, smart grids have seen considerable minimization in energy consumption and enhancement in power supply quality. However, the transmission of control and consumption information over open public communication channels renders the transmitted messages vulnerable to numerous security and privacy violations. Although many authentication and key agreement protocols have been developed to counter these issues, the achievement of ideal security and privacy levels at optimal performance still remains an uphill task. In this paper, we leverage on Hamming distance, elliptic curve cryptography, smart cards and biometrics to develop an authentication protocol. It is formally analyzed using the Burrows-Abadi-Needham (BAN) logic, which shows strong mutual authentication and session key negotiation. Its semantic security analysis demonstrates its robustness under all the assumptions of the Dolev-Yao (DY) and Canetti- Krawczyk (CK) threat models. From the performance perspective, it is shown to incur communication, storage and computation complexities compared with other related state of the art protocols.

multidisciplinary sciences

Masoud Kaveh,Mohammad Reza Mosavi,Diego Martin,Saeed Aghapour

2023-07-24

Abstract:Security has become a main concern for the smart grid to move from research and development to industry. The concept of security has usually referred to resistance to threats by an active or passive attacker. However, since smart meters (SMs) are often placed in unprotected areas, physical security has become one of the important security goals in the smart grid. Physical unclonable functions (PUFs) have been largely utilized for ensuring physical security in recent years, though their reliability has remained a major problem to be practically used in cryptographic applications. Although fuzzy extractors have been considered as a solution to solve the reliability problem of PUFs, they put a considerable computational cost to the resource-constrained SMs. To that end, we first propose an on-chip-error-correcting (OCEC) PUF that efficiently generates stable digits for the authentication process. Afterward, we introduce a lightweight authentication protocol between the SMs and neighborhood gateway (NG) based on the proposed PUF. The provable security analysis shows that not only the proposed protocol can stand secure in the Canetti-Krawczyk (CK) adversary model but also provides additional security features. Also, the performance evaluation demonstrates the significant improvement of the proposed scheme in comparison with the state-of-the-art.

Cryptography and Security

Cong Wang,Xiaohang Li,Maode Ma,Tong Zhou,Guangquan Xu,Naixue Xiong,Yiying Zhang

DOI: https://doi.org/10.1002/ett.4752

IF: 3.6

2023-03-12

Transactions on Emerging Telecommunications Technologies

Abstract:A novel and efficient named as Provably Secure Authenticated Key agreement (PSAK) scheme based on the extended Chebyshev chaotic map for the SG is designed. The proposed PSAK scheme can provide an anonymity protection for the SMs to achieve a perfect forward secrecy with high efficiency. Smart grid (SG) has attracted great attention for its reliability, sustainability, and efficiency, which uses artificial intelligence technology, automation technology, and Internet of Things (IoT) technology. In SG, it is crucial to set up a secure communication between an Aggregator (AG) and a Smart Meter (SM) to achieve mutual authentication and key agreement. However, most previous authentication and key management solutions have their own shortcomings in either security or efficiency, which make them difficult to satisfy the security requirements of SG. In this paper, in order to balance the security and efficiency, we propose an efficient and provably secure authenticated key agreement scheme based on the extended Chebyshev chaotic maps for SG environments. The AG and SM can conduct a mutual authentication and key agreement process by applying the extended Chebyshev polynomial operations to reduce the total calculation delay. The proposed scheme provides anonymity protection for SMs to achieve perfect forward secrecy and can resist to the typical attacks including replay attacks and identity forgery attacks by informal security analysis. The security properties are evaluated by using the Canetti and Krawczyk (CK) adversary model. The performance comparison demonstrates that the proposed scheme is efficient and the required security attributes are not compromised.

telecommunications

Khalid Mahmood,Shehzad Ashraf Chaudhry,Husnain Naqvi,Saru Kumari,Xiong Li,Arun Kumar Sangaiah

DOI: https://doi.org/10.1016/j.future.2017.05.002

IF: 7.307

2018-04-01

Future Generation Computer Systems

Abstract:An evolved grid system, Smart Grid, enables appropriate adjustments in the amount of electricity generation by providing the capability to monitor the consumption behavior of customers. This advance grid system can help to promote cultural heritage because it is responsible to provide un-interruptible and reliable power supply in smart way. Smart grid is one of the key component for enabling smart cities and obviously, any city with more smart amenities will ultimately attract visitors to come and visit rich heritage. In smart grid, Supervisory Control and Data Acquisition (SCDA) system is responsible for keeping the underlying communication secure between substations and corresponding control center. While communication between customers and substations needs more enhancements as the existing protocols do not meet the comprehensive security requirements of smart grid. Due to the complex nature of smart grid and diverse security requirements, designing a suitable authentication scheme is a challenging task. For delay sensitive networks like smart grid, an ideal authentication scheme should withstand against all known security attacks, involving lightweight operations with trivial computations. ECC provides same security level with much less key sizes as compared with other security techniques such as RSA, DSA and DH. Keeping in mind the complex and delay sensitive nature of smart grid, a lightweight ECC based authentication scheme is proposed here. The proposed scheme not only provides mutual authentication with low computation and communication cost but also withstand against all known security attacks.

Feng Zhai,Ting Yang,Wei Sun,Xu Fang

DOI: https://doi.org/10.3389/fenrg.2022.1000828

IF: 3.4

2023-01-11

Frontiers in Energy Research

Abstract:With the development of IoT and 5G, the smart grid, as one of the key component for the smart city, can provide the uninterrupted and reliable electricity service by properly adjusting the electricity supply according to the consumption of users. The advanced metering infrastructure (AMI), as an important part of smart grid system, is a complete network and system for measuring, collecting, storing and analyzing the electricity consumption information of users. The security of AMI plays a vital role in the smooth operation of smart grid. In this paper, we study how to establish the secure communication between two entities in AMI, namely the smart meter and the electricity service provider. Although, there are many authentication and key management protocols for AMI, the high complexity and computation overhead of these protocols hinder their application in the smart grid environment. Based on identity cryptosystem and elliptic curve cryptography (ECC), we put forward a lightweight and dynamic authenticated key agreement and management protocol, which can significantly reduce the computation overhead of the resource-constrained smart meters. In addition, we utilize a one-way key tree technique to efficiently generate and update the group key in the multicast communication. We give a systematic proof to show that our designed protocol not only guarantees the confidentiality and integrity of transmitted messages, but also resists various attacks from an adversary. Finally, we carry out some simulated experiments to demonstrate the high efficiency of our designed protocol.

energy & fuels

Lijun Xiao,Jiahong Cai,Meikang Qiu,Meiqin Liu

DOI: https://doi.org/10.1109/cscloud-edgecom52276.2021.00042

2021-01-01

Abstract:Edge computing uses devices deployed at the edge of the network to preprocess data to reduce the computing pressure on the central server. Through edge computing, smart grid can process large amounts of data faster, meeting real-time, reliability, and high-efficiency requirements. However, as the number of edge devices continues to increase, the problem of leakage and tampering of private data is gradually exposed. In order to solve this problem, this paper proposes a lightweight identity authentication scheme suitable for smart grid environment based on Elliptic Curve Encryption (ECC) technology. In the proposed protocol, we encrypt the identity and key information through ECC, and use the timestamp to verify the validity of the session. In addition, the proposed protocol is encrypted with a random number for each round of authentication, and an attacker cannot crack our protocol through a replay attack. Experimental analysis shows that the proposed protocol is safety and key information will not be leaked. Finally, the cost analysis shows that the proposed protocol has lower communication and lower calculation cost than other that of related protocols, and is suitable for deployment in large-scale intelligent smart grid environments.

Feifei Liu,Yu Yan,Yu Sun,Jianwei Liu,Dawei Li,Zhenyu Guan

DOI: https://doi.org/10.1155/2022/9774853

IF: 1.968

2022-12-01

Security and Communication Networks

Abstract:Smart grid is gradually replacing traditional grid with two-way communication and improved management. Besides the efficiency and reliability it brings, the smart grid is inevitably fraught with rampant physical and cyber-attack. Although several physical unclonable function (PUF)-based schemes have been proposed, they are unsuited to the end-edge-cloud hierarchical smart grid. This paper proposes a PUF-based batch authentication and key agreement protocol, which protects both meters and gateways and provides end-to-end authentication between meters and the server. By offloading heavy operations from field devices to the server, the computation overhead is reduced substantially. Moreover, we innovatively devolve batch authentication and access control to the gateway, which additionally decreases downlink communication and signaling cost, and is superior to most recent schemes. Our protocol is proved by Tamarin under extended Dolev–Yao adversary and the Real-or-Random model and is evaluated to be secure against various attacks. Using extremely lightweight operations, our protocol is implemented on the MSP430FR5969 microcontroller.

computer science, information systems,telecommunications

Weizheng Wang,Huakun Huang,Lejun Zhang,Chunhua Su

DOI: https://doi.org/10.1007/s12083-020-01020-2

2020-11-14

Abstract:Smart grid has been acknowledged as the next-generation intelligent network that optimizes energy efficiency. Primarily through a bidirectional communication channel, suppliers and users can dynamically adjust power transmission in real time. Nonetheless, many security issues occur with the widespread deployment of smart grid, e.g., centralized register authority and potential Distributed-Denial-of-Service (DDoS) attack. These existing problems threaten the availability of smart grid. In this paper, we mainly focus on solving some identity authentication issues remained in the smart grid. Combined with blockchain, Elliptic Curve Cryptography (ECC), dynamic Join-and-Exit mechanism and batch verification, a reliable and efficient authentication protocol is proposed for smart meters and utility centers. Simultaneously, the provable security of this protocol is assured by the computational hard problem assumptions. Experiment results show that our protocol has achieved security and performance improvement compared with the other ECC related schemes.

computer science, information systems,telecommunications

Sheng Chai,Haotian Yin,Bin Xing,Zhukun Li,Yunyi Guo,Di Zhang,Xin Zhang,Da He,Jie Zhang,Xiaoling Yu,Wei Wang,Xin Huang

DOI: https://doi.org/10.1109/tsg.2023.3234000

IF: 10.275

2023-09-01

IEEE Transactions on Smart Grid

Abstract:Smart Grid is an indispensable part of the Internet of Things (IoT) and has the potential to revolutionise the electricity energy industry. Smart meters, as an important component of Smart Grid, are responsible for the exchange of information between end consumers and service providers. Smart meters and service providers need to use authentication key exchange protocols (AKE) to establish a secure session for secure information transmission. However, The current state-of-the-art lightweight solutions do not support identity anonymity and mostly have high communication costs. This paper proposes a lightweight and secure mutual authentication scheme, which is particularly designed for devices with limited computing capability to provide identity anonymity such as smart meters, based on the Shangyong Mima 2 (SM2) AKE protocol stipulated by the State Cryptography Administration of China. We conducted formal analysis of the security of the proposed scheme and proved its security. In addition, the computational overhead of the protocol was evaluated through performance analysis. Compared with related lightweight protocols, our scheme can reduce up to 30%-40% computational overhead. The results verified that the proposed scheme is indeed suitable for secure communication involving devices with constrained computing capability.

engineering, electrical & electronic

Prarthana J. Mehta,Balu L. Parne,Sankita J. Patel

DOI: https://doi.org/10.1007/s12083-023-01494-w

IF: 3.488

2023-05-20

Peer-to-Peer Networking and Applications

Abstract:The Smart Grid (SG) improves the reliability and efficiency of the data sharing and communication of the traditional power grid system. This enhancement brings security requirements such as mutual Authentication and Key Agreement (AKA) among the Smart Meters (SMs) and Service Providers (SPs). Several authentication and key agreement frameworks are designed in the literature to preserve SM privacy and maintain secure transmission of data among the communicating entities in SG networks. However, some of the existing schemes either suffer from security limitations or generate high computation overhead. To overcome these drawbacks recently, Khan et al. proposed a Lightweight Authentication and Key Agreement Framework (LAKAF). However, it is observed that their framework did not maintain user anonymity and secrecy of the session key. As a countermeasure to these limitations, we propose a Security Enhanced Lightweight Authentication and Key Agreement Framework (SE-LAKAF) based on the fuzzy extractor, elliptic curve cryptography, and AES-based hybrid encryption decryption mechanism. The theoretical security analysis demonstrates that the proposed framework protects the network from replay, impersonation, denial of service, and man-in-the-middle attacks, maintains the session key security and user anonymity. The proposed framework is formally verified using well known AVISPA tool, BAN logic and random oracle model. Further, the performance analysis illustrates that the SE-LAKAF generates competitive communication and computation overheads with improved security compared to other existing frameworks.

computer science, information systems,telecommunications

Huanhuan Ma,Chenyu Wang,Guosheng Xu,Qiang Cao,Guoai Xu,Li Duan

DOI: https://doi.org/10.1109/jsyst.2023.3289492

IF: 4.802

2023-01-01

IEEE Systems Journal

Abstract:Smart grid (SG) achieves more convenient and efficient power transmission through the rapid development of the information and communication technology. In addition to the transmission of electrical energy, the SG system also involves privacy and control information of service providers, which is closely related to people's livelihood. However, at present, the data in the SG system are transmitted in the form of plaintext, which does not have complete protection measures for entity privacy and communication data security. Focusing on preserving entity privacy and data security, this article proposes an anonymous secure authentication protocol (ASAP-SG) for the SG environment. Based on elliptic curve cryptography and physical unclonable function, ASAP-SG can realize authentication and key agreement between smart meters and service providers. The security of ASAP-SG has been verified with proverif tool and proven strictly under the real-or-random model. Furthermore, heuristic analysis manifests that ASAP-SG can successfully resist known security attacks. Finally, a fully comparison with the other five most advanced schemes reveals that ASAP-SG consumes the optimal computation cost on both smart meters and service providers and reduces the communication overhead by 33.3%–45.8%, on the basis of satisfying ten security objectives. These features make ASAP-SG more suitable for resource-constrained SG environment.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Kehe Wu,Rui Cheng,Wenchao Cui,Wei Li

DOI: https://doi.org/10.1016/j.aej.2020.09.008

IF: 6.626

2021-02-01

Alexandria Engineering Journal

Abstract:With the increasing openness of smart grids, a large quantity of power terminals will be widely applied in systems of smart grids by various access modes (wired, wireless, satellite). In order to ensure the integrity and confidentiality of the data and the security of the communications between power terminals and the smart grid intranet, a lightweight security authentication and key agreement scheme is proposed in this article. The scheme provides mutual authentication based on the SM2 algorithm and key agreement which can prevent various attacks. Furthermore experimental evaluation and comparative analysis is conducted to indicate that the proposed scheme can resist many types of attacks with lower amounts of total computational resources and lower communications bandwidth. The analysis shows that the proposed scheme is suitable for smart grid.

engineering, multidisciplinary

Daniel Hsu,Hsuan-Tung Chen,Hung–Min Sun,Tiao‐Lai Huang

2023-01-01

Abstract:With the development of technology, cryptography needs to be improved to remain with the same strength of security, so as for meters for smart grid. The cipher suites used in smart grid meters defined in DLMS/COSEM are not RSA but rather ECDSA. However, users who would like to enroll for an ECDSA certificate will need a pre-shared password with the server. To change that, we use the ECDH method to overcome the limitation from others’ previous research. Also, to authenticate the requests from the meters for the smart grid, we use a temporary certificate mechanism to authenticate the SCEP protocol request, and the mechanism also supports the EST protocol to establish a security communication channel. With ECDH implementation in SCEP and the authentication method, the ECDSA certificate can be compatible with the SCEP protocol and the transmission can be done without a shared password.

Zhitao Guan,Jing Li,Liehuang Zhu,Zijian Zhang,Xiaojiang Du,Mohsen Guizani

DOI: https://doi.org/10.48550/arXiv.1810.10748

2018-10-25

Abstract:In the Smart Grid with Renewable Energy Resources (RERs), the Residential Units (RUs) with Distributed Energy Resources (DERs) are considered to be both power consumers and suppliers. Specifically, RUs with excessive renewable generations can trade with the utility in deficit of power supplies for mutual benefits. It causes two challenging issues. First, the trading data of RUs is quite sensitive, which should be only accessed by authorized users with fine-grained policies. Second, the behaviors of the RUs to generate trading data are spontaneous and unpredictable, then the problem is how to guarantee system efficiency and delay tolerance simultaneously. In this paper, we propose a delay-tolerant flexible data access control scheme based on Key Policy Attribute Based Encryption (KP-ABE) for Smart Grid with Renewable Energy Resources (RERs). We adopt the secret sharing scheme (SSS) to realize a flexible access control with encryption delay tolerance. Furthermore, there is no central trusted server to perform the encryption/decryption. We reduce the computation cost on RUs and operators via a semi-trusted model. The analysis shows that the proposed scheme can meet the data security requirement of the Smart Grid with RERs, and it also has less cost compared with other popular models.

Cryptography and Security

Fathi Amsaad,Selçuk Köse

DOI: https://doi.org/10.1007/s42979-021-00840-0

2021-09-04

SN Computer Science

Abstract:Smart plug-in electrical vehicles (PEVs) have recently become essential components of the energy storage units (ESUs) in a smart power grid network. ESUs need to frequently communicate with charging stations for authentication before their battery systems are securely and efficiently charged. In this paper, an efficient lightweight hardware-assisted authentication and key management framework for ESU based charging coordination system is proposed. The framework integrates a hybrid lightweight arbiter linear feedback shift register (ALFSR) physical unclonable function and a low-cost advanced encryption standard (AES) for more secure, trusted, and robust secret key scheme. The scheme is implemented and validated on a reprogrammable device using 28 nm Field Programmable Gate Arrays (FPGA) platform. The results demonstrate that our framework can generate inherently unique and reliable secret keys. The proposed scheme is efficient in terms of key storage requirements and satisfies the authentication time of five security levels required by National Institute of Standards and Technology (NIST). Furthermore, the resilience of the proposed ALFSR is analyzed against ML modeling attacks, including k-nearest neighbor (kNN), kernel support vector machines (KernelSVM), and artificial neural network (ANN) which aim to clone the PUF behavior and compromise the secret key. The preliminary results demonstrate that the ALFSR PUF design is less vulnerable to kNN and SVM ML attacks as compared to ANN attacks.

Sangjin Kook,Keunok Kim,Jihyeon Ryu,Youngsook Lee,Dongho Won

DOI: https://doi.org/10.3390/s24103085

IF: 3.9

2024-05-14

Sensors

Abstract:Smart grids integrate information and communications technology into the processes of electricity production, transportation, and consumption, thereby enabling interactions between power suppliers and consumers to increase the efficiency of the power grid. To achieve this, smart meters (SMs) are installed in households or buildings to measure electricity usage and allow power suppliers or consumers to monitor and manage it in real time. However, SMs require a secure service to address malicious attacks during memory protection and communication processes and a lightweight communication protocol suitable for devices with computational and communication constraints. This paper proposes an authentication protocol based on a one-way hash function to address these issues. This protocol includes message authentication functions to address message tampering and uses a changing encryption key for secure communication during each transmission. The security and performance analysis of this protocol shows that it can address existing attacks and provides 105,281.67% better computational efficiency than previous methods.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation