Min Lu,Zhiguo Shi,Rongxing Lu,Ruixue Sun,Xueminsherman Shen

DOI: https://doi.org/10.1109/ICCChina.2013.6671200

2013-01-01

Abstract:Characterized by time-of-using pricing, better capacity, and usage planning, smart grid has attracted considerable attention in recent years. However, one of the research challenges in smart grid is the privacy issue due to too much sensitive and real-time user data involved. In this paper, we propose a practical privacy-preserving aggregation scheme, named PPPA, for secure smart grid communications. PPPA utilizes the lightweight cryptographic aggregation technique to achieve provable security guarantee, the differential privacy technique to achieve privacy preservation of each individual user, and the quad tree structure to achieve failure tolerance. For data communication from users to control center, data aggregation is conducted directly on ciphertexts at local gateway without decryption, and the aggregation results are reported by relays to the control center. Through extensive analysis, we demonstrate that PPPA can not only provide authentication and guarantee the data integrity, but also achieve strong privacy-preserving for each user, and thus it is feasible in practical smart grid scenarios.

Dongxiao Liu,Hongwei Li,Yi Yang,Haomiao Yang

DOI: https://doi.org/10.1109/icc.2014.6883390

2014-01-01

Abstract:In smart grid, control center collects and aggregates users' electricity data via the smart meters. The aggregated data is also of great use for markets. To efficiently and securely distribute these data to markets, the existing schemes use Attribute-based Encryption (ABE) technique to achieve privacy preservation of sensitive data and fine-grained access control. However, the efficient attribute revocation problem has not been studied well. In this paper, leveraging the Third Party Auditor and Ciphertext-Policy ABE techniques, we propose a Multi-Authority Access Control with Efficient Attribute Revocation (MAAC-AR) scheme in smart grid. Security analysis demonstrates that MAAC-AR can achieve fine-grained access control, collusion resistance, privacy preservation and secure attribute revocation. Performance evaluation shows that MAAC-AR is more efficient compared with the existing schemes in terms of functionality as well as computation, communication and storage overhead.

Shaohua Li,Kaiping Xue

DOI: https://doi.org/10.48550/arXiv.1810.01651

2018-10-03

Abstract:Smart grid adopts two-way communication and rich functionalities to gain a positive impact on the sustainability and efficiency of power usage, but on the other hand, also poses serious challenges to customers' privacy. Existing solutions in smart grid usually use cryptographic tools, such as homomorphic encryption, to protect individual privacy, which, however, can only support limited and simple functionalities. Moreover, the resource-constrained smart meters need to perform heavy asymmetric cryptography in these solutions, which is not applied to smart grid. In this paper, we present a practical and secure SGX-enabled smart grid system, named SecGrid. Our system leverage trusted hardware SGX to ensure that grid utilities can efficiently execute rich functionalities on customers' private data, while guaranteeing their privacy. With the designed security protocols, the SecGrid only require the smart meters to perform AES encryption. Security analysis shows that SecGrid can thwart various attacks from malicious adversaries. Experimental results show that SecGrid is much faster than the existing privacy-preserving schemes in smart grid.

Cryptography and Security

Liyuan Cao,Yingwen Chen,Kaiyu Cai,Dongsheng Wang,Yuchuan Luo,Guangtao Xue

DOI: https://doi.org/10.1007/978-3-031-19208-1_26

2022-01-01

Abstract:In smart grid, smart meters record real-time customers' electricity consumption and transmit it to the control center. Leakage of customers' real-time power usage data will impose severe risk on consumers' privacy. To Protect users' privacy, researchers observe that what the control center really needs for providing services is not raw data but aggregate values of customers' real-time usage data. On this basis, many privacy-preserving data aggregation schemes are proposed for smart grid. However, these schemes pay little attention to the problem of collusion. In these schemes, edge nodes store the ciphertexts of customers' raw usage data, and the control center has the decryption key. If edge nodes collude with the control center, customers' usage data will still be leaked. To tackle this problem, a collusion-tolerant and privacy-preserving data aggregation scheme for smart grid is proposed in this paper. By leveraging homomorphic encryption and threshold scheme, the proposed scheme supports typical aggregate operations in smart grid, while keeping the privacy of customers and defending the collusions from edge nodes and the control center in practice. Security analysis and performance evaluation demonstrates that the proposed scheme protects the privacy of customers' usage data effectively even under collusions in practice.

Prince Silas Kwesi Oberko,Tianang Yao,Hu Xiong,Saru Kumari,Sachin Kumar

DOI: https://doi.org/10.53106/160792642023032402026

2023-01-01

Abstract:The smart energy system (SES) encourages data administration and information services developments, particularly smart grids. Presently, numerous SESs cloud environments are accessible to smart grids. Nonetheless, because of the semi-credible character of the SES cloud environments, achieving secured access, information storage, updates, deletion, tracing, and revocation of ill-disposed clients is a genuine concern. In this publication, an Ethereum blockchain-oriented secured access regulation design upholding traceability and revocability is offered for smart grids to resolve these problems. The blockchain implements unified identity verification and saves all public-keys, users’ attribute sets, and revocable lists. The system administrator creates system parameters and sends private-keys to users. The domain administrator prepares the domain’s security and privacy-preservation policies and executes encryption procedures. If the attributes correspond with the access policy and the user’s ID is unrevoked, they could acquire interim-decryption capabilities from the edge/cloud servers. Tracking malevolent users for revocation is applicable throughout all stages, ensuring the system is secured under Decisional-Bilinear-Diffie-Hellman (DBDH) complex theory and can withstand multi-attacks. Analysis revealed the size of the public/private keys to be shorter, contrary to relevant schemes. The overhead duration is less for generating the public-key, data encryption, and decryption phases.

Sushmita Ruj,Amiya Nayak

DOI: https://doi.org/10.1109/tsg.2012.2224389

IF: 10.275

2013-03-01

IEEE Transactions on Smart Grid

Abstract:We propose a decentralized security framework for smart grids that supports data aggregation and access control. Data can be aggregated by home area network (HAN), building area network (BAN), and neighboring area network (NAN) in such a way that the privacy of customers is protected. We use homomorphic encryption technique to achieve this. The consumer data that is collected is sent to the substations where it is monitored by remote terminal units (RTU). The proposed access control mechanism uses attribute-based encryption (ABE) which gives selective access to consumer data stored in data repositories and used by different smart grid users. RTUs and users have attributes and cryptographic keys distributed by several key distribution centers (KDC). RTUs send data encrypted under a set of attributes. Since RTUs are maintained in the substations they are well protected in control rooms and are assumed to be trusted. Users can decrypt information provided they have valid attributes. The access control scheme is distributed in nature and does not rely on a single KDC to distribute the keys which makes the approach robust. To the best of our knowledge, ours is the first work on smart grids, which integrates these two important security components (privacy preserving data aggregation and access control) and the first paper which addresses access control in smart grids.

engineering, electrical & electronic

Xiaofei He,Xinyu Yang,Jie Lin,Linqiang Ge,Wei Yu,Qingyu Yang

DOI: https://doi.org/10.1109/PCCC.2015.7410291

2015-01-01

Abstract:The smart grid is a new type of energy-based cyber-physical system (CPS), which enables interactions between the utility provider and customers through smart meters and advanced metering infrastructures (AMU. Nonetheless, an adversary can inject misleading energy usage information to the utility provider through compromised smart meters and disrupt the grid and electricity market operations. To address this issue, in this paper, we propose an Energy Dispatching False Data Defense (EDF2D) approach, which can effectively detect the forged interactive information between customers and the utility provider with a great accuracy and mitigate the damage raised by attacks on grid operations. Particularly, EDF2D uses the historical interactive information of normal users to determine the conditional probabilities of data anomalies. Based on these conditional probabilities, a Bayesian network designed for detecting false data can be established by EDF2D, and this network is then used to confirm the authenticity of interactive information received by the utility provider originally transmitted from customers. Through a combination of theoretical analysis and performance evaluation, our experimental data shows that EDF2D can effectively detect harmful false interactive data forged by the adversary and mitigate false data injection attacks on smart grid operations.

Wei Sun,Yu Wang,Junjie Ma,Xin Wang,Weihao Shi,Fei Jiao,Ningbo Liu

DOI: https://doi.org/10.1145/3617184.3630161

2023-01-01

Abstract:With the rapid development of science and technology, the scale of power grid construction is gradually expanding, and the level of intelligence is also constantly improving, which also brings the problem of data leakage and data loss to the smart grid. In response to the data loss and leakage problems in the smart grid, this paper proposes a blockchain-based data privacy protection and data sharing protection system. This system integrates encryption algorithms and corresponding sharing mechanisms in distributed data storage, which not only effectively improves the storage capacity of data but also enhances the security of data storage to a certain extent. Test results show that the system can achieve fast encryption of datasets, and the encryption scheme has certain authenticity and non-forgeability, which can further enhance the security of data storage and sharing. It plays a very important role in improving the security level of smart grid operation.

Yuyang Zhou,Yuanfeng Guan,Zhiwei Zhang,Fagen Li

DOI: https://doi.org/10.1109/nana.2019.00070

2019-01-01

Abstract:At present, the access control schemes in the power grid are centralized. In the centralized system, the data of the network sensor nodes is transmitted by centralized nodes, and the data itself may be illegally tamped with or lost, which can lead to reduced system reliability. For this feature, we apply blockchain technology to the design of access control schemes. In this paper, we propose a blockchain-based access control scheme that is suitable for multiple scenarios in the smart grid. Our access control scheme is based on an identity-based combined encryption, signature and signcryption scheme. In addition, we design a consensus algorithm in the power system for the consortium blockchain architecture to solve the key escrow problem of the untrusted third parties. Our scheme also ensures the confidentiality, integrity, authentication and non-repudiation of the data. Compared with the existing work, our scheme can use the same key pair to encrypt, sign and signcrypt the message, which has lower computation and communication costs in multiple scenarios of smart grids.

Yukun Li,Songyang Wu,Zhiguo Ding,Jiahong Jiang,Kezhu Song

DOI: https://doi.org/10.1145/3661638.3661720

2024-01-01

Abstract:Smart grid is a new type of power system that integrates traditional power grid and information network, and is an essential key infrastructure. However, due to the wide coverage of smart grids, there is a risk of privacy leakage or malicious tampering when smart meters transmit user electricity information upwards. This article proposes a secure aggregation scheme that supports personalized privacy parameters for users and prevents tampering. The smart meter adopts a personalized local differential privacy algorithm to perturb and desensitize the user's electricity consumption, and then uses digital signature technology based on elliptic curve cryptography for signature. Then, the superior node of the smart meter can execute a weighted aggregation algorithm to obtain aggregated electricity data. The proposed scheme in this article has the characteristics of small computational complexity and flexibility. After theoretical analysis and experimental verification, this scheme can meet security requirements. Compared with existing schemes, it can obtain more accurate aggregation results and has practical application value.

Fan Wu,Xiong Li,Lili Xu,Saru Kumari

DOI: https://doi.org/10.1016/j.comcom.2020.03.047

IF: 5.047

2020-01-01

Computer Communications

Abstract:Smart city is a hot aim, and is organized gradually in many developed countries. People can understand the variation of city clearly via the collected data from sensors and RFID chips all over the city. As one of the most important applications for smart city, smart grid is a popular technology which has been already used in some developed countries. Wireless circumstance is the main way for the transmission data in collection process, and it is undoubtedly insecure. The problems that protecting the consumption data in smart grid and tracking some special users simultaneously are still open issues. We propose a novel scheme for smart grid involving three kinds of entities: Smart Meters (SMs), Electricity Utilities (EUs), and a Trustful Anchor (TA). In this scheme, SM encrypts the periodical consumptions and its identity, and sends the information to the relative electricity utility, and then EU can get the consumptions of smart meters in its scope. If necessary, TA may disclose the identities of the special smart meters. The security of this scheme is illustrated by formal proof and security property analysis. After expressions of performance and network simulation, it is easy to see that our scheme is suitable for practicality.

Peng Xiao,Shunkun Yang,Zhenhong Zhang,Hailin Wang

DOI: https://doi.org/10.1007/s12083-024-01655-5

IF: 3.488

2024-02-13

Peer-to-Peer Networking and Applications

Abstract:Smart grids represent a transformative evolution in energy distribution, enabling bidirectional electricity flow, automation, and real-time data analysis. However, with large volumes of sensitive data becoming attractive targets for cyberattacks, the seamless data access in smart grids presents security challenges. Attribute-based encryption (ABE) offers one-to-many energy-efficient access control but faces inefficiency and revocation challenges in smart grid environments. This paper presents an edge-assisted, efficient ABE scheme to address these issues, which provides an efficient direct user revocation mechanism for dynamic user groups in smart grids, and employs edge-assisted computation to reduce decryption costs. It also gives rigorous security proofs, and the theoretical and experimental results show the practicality of smart grids and superiority over related representative works.

computer science, information systems,telecommunications

Chao Gai,Wenting Shen,Ming Yang,Ye Su

DOI: https://doi.org/10.3389/fenrg.2022.1058125

IF: 3.4

2023-01-17

Frontiers in Energy Research

Abstract:As the promising next generation power system, smart grid can collect and analyze the grid information in real time, which greatly improves the reliability and efficiency of the grid. However, as smart grid coverage expands, more and more data is being collected. To store and manage the massive amount of smart grid data, the data owners choose to upload the grid data to the cloud for storage and regularly check the integrity of their data. However, traditional public auditing schemes are mostly based on Public Key Infrastructure (PKI) or Identity Based Cryptography (IBC) system, which will lead to complicated certificate management and inherent key escrow problems. We propose a certificateless public auditing scheme for cloud-based smart grid data, which can avoid the above two problems. In order to prevent the disclosure of the private data collected by the smart grid during the phase of auditing, we use the random masking technology to protect data privacy. The security analysis and the performance evaluation show that the proposed scheme is secure and efficient.

energy & fuels

Yuanpeng Xie,Hong Wen,Jinsong Wu,Yixin Jiang,Jiaxiao Meng,Xiaobin Guo,Aidong Xu,Zewu Guan

DOI: https://doi.org/10.1109/vtcfall.2015.7391174

2015-01-01

Abstract:Cloud computing is an Internet-based computing paradigm which may share resources to provide on-demand services to devices. Integrating smart grid into cloud computing is emerging and promising, and this integration may execute in the cloud based hierarchical multi-user data-shared environment, where security issues such as data confidentiality and manager authority may arise in the smart grid system. In order to provide safe and secure grid operations, a hierarchical access control method using modified hierarchical attribute-based encryption (M-HABE) and a modified three layers structure are proposed in this paper. In power grids, the system can be controlled and monitored by the enormous sensitive data which may be from sensor nodes, smart measurement units and soon on. The novel scheme mainly focus on the data process, storage and access to ensure the managers with legal authorities to get corresponding sensitive data and restrict illegal managers and unauthorized legal managers from accessing the data.

Emmanuel Ahene,Zhangchi Qin,Akua Konadu Adusei,Fagen Li

DOI: https://doi.org/10.1109/jiot.2019.2930742

IF: 10.6

2019-01-01

IEEE Internet of Things Journal

Abstract:Smart grid utilizes intelligent metering and other monitoring devices that frequently collect and send a customer's usage report of energy consumption to an energy service provider (ESP). By mere behavioral inference from usage reports, its viable to adjudge the daily routine, location, and the kind of electrical devices of a customer. The collection and transmission of such data raises security concerns. Hence, its vital to secure ESP's access to a customer's data. In perspective of this, we introduce a data access control scheme which is suitable for smart grids with secure customer data access. In our scheme, the customer is a data owner while an ESP or other third party stakeholder (TPS) is the data user. A data user can have secure access to a customer's data via a gateway device such as energy service interface (ESI). The ESI fits in as proxy that re-encrypts data for authorized data users based on the delegation command from the data owner. Here, ESI is unable to acquire plaintext information on the data. Moreover, only authorized data users are eligible for decrypting and verifying the integrity and authentication of data. We achieve the data access control via a certificateless signcryption with proxy re-encryption (CLSPRE) scheme. Detailed security analysis shows that our CLSPRE scheme is secure in the random oracle model (ROM). Moreover, extensive performance evaluation indicates its efficiency with respect to communication overhead and computation complexity.

Yuan Chang,Jiliang Li,Ning Lu,Wenbo Shi,Zhou Su,Weizhi Meng

DOI: https://doi.org/10.1109/jiot.2023.3303010

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:In smart grid services, the leakage of crowdsourced consumption data on smart meters (SMs) poses potential risks of privacy disclosure and data misuse. Existing solutions, which rely on complex encrypted computations, are often impractical for resource-limited SMs due to their high computation and storage resource requirements. To address these challenges, this article proposes a practical privacy-preserving scheme with fault tolerance for smart grid services named 3PFT. In our scheme, we employ a masking approach that ensures user privacy preservation on SMs while consuming minimal resources. Unlike existing masking schemes, 3PFT provides fault tolerance, supports complex data analysis tasks, and mitigates vulnerabilities to key leakage attacks. To achieve these objectives, we incorporate a secret sharing technique into the masking approach, enabling the recovery of the master key using only a portion of the data. Additionally, we design a flexible data aggregation protocol for 3PFT, facilitating the execution of diverse data analysis missions, such as load forecasting, in smart grids. Furthermore, we introduce a negotiation-based key update method to enhance the protocol’s forward security and alleviate the additional overhead on SMs. Finally, we provide a rigorous proof of privacy preservation and fault tolerance for our scheme and validate its feasibility and effectiveness through extensive simulations.

Zhitao Guan,Jing Li,Liehuang Zhu,Zijian Zhang,Xiaojiang Du,Mohsen Guizani

DOI: https://doi.org/10.48550/arXiv.1810.10748

2018-10-25

Abstract:In the Smart Grid with Renewable Energy Resources (RERs), the Residential Units (RUs) with Distributed Energy Resources (DERs) are considered to be both power consumers and suppliers. Specifically, RUs with excessive renewable generations can trade with the utility in deficit of power supplies for mutual benefits. It causes two challenging issues. First, the trading data of RUs is quite sensitive, which should be only accessed by authorized users with fine-grained policies. Second, the behaviors of the RUs to generate trading data are spontaneous and unpredictable, then the problem is how to guarantee system efficiency and delay tolerance simultaneously. In this paper, we propose a delay-tolerant flexible data access control scheme based on Key Policy Attribute Based Encryption (KP-ABE) for Smart Grid with Renewable Energy Resources (RERs). We adopt the secret sharing scheme (SSS) to realize a flexible access control with encryption delay tolerance. Furthermore, there is no central trusted server to perform the encryption/decryption. We reduce the computation cost on RUs and operators via a semi-trusted model. The analysis shows that the proposed scheme can meet the data security requirement of the Smart Grid with RERs, and it also has less cost compared with other popular models.

Cryptography and Security

Zhitao Guan,Jing Li,Longfei Wu,Yue Zhang,Jun Wu,Xiaojiang Du

DOI: https://doi.org/10.48550/arXiv.1810.10746

2018-10-25

Abstract:Cloud-supported Internet of Things (Cloud-IoT) has been broadly deployed in smart grid systems. The IoT front-ends are responsible for data acquisition and status supervision, while the substantial amount of data is stored and managed in the cloud server. Achieving data security and system efficiency in the data acquisition and transmission process are of great significance and challenging, because the power grid-related data is sensitive and in huge amount. In this paper, we present an efficient and secure data acquisition scheme based on CP-ABE (Ciphertext Policy Attribute Based Encryption). Data acquired from the terminals will be partitioned into blocks and encrypted with its corresponding access sub-tree in sequence, thereby the data encryption and data transmission can be processed in parallel. Furthermore, we protect the information about the access tree with threshold secret sharing method, which can preserve the data privacy and integrity from users with the unauthorized sets of attributes. The formal analysis demonstrates that the proposed scheme can fulfill the security requirements of the Cloud-supported IoT in smart grid. The numerical analysis and experimental results indicate that our scheme can effectively reduce the time cost compared with other popular approaches.

Cryptography and Security

Xudong Zhang,Linlin Zhao,Xiaoxin Gao,Xu Zhang

DOI: https://doi.org/10.1088/1742-6596/1792/1/012051

2021-02-01

Journal of Physics: Conference Series

Abstract:Abstract In the existing smart grid, wireless sensor networks are widely deployed to monitor the entire grid’s status to ensure the safe, reliable, and efficient operation of the grid. However, due to the storage mode of the infinite sensor network perception data based on the trusted central node in the smart grid, the smart grid exists information security issues such as the central node’s vulnerability to malicious attacks and deliberate data tampering. In response to these information security issues, this paper proposes a data-sharing model based on blockchain technology and digital digest matching algorithm, which has the characteristics of decentralization, security and credibility, non-tampering, and protection of private data. The model uses the consortium blockchain technology to build a smart grid Data Storage Consortium Blockchain (DSCB). The data capability is taken as a unique token through the method of data capability to control the data access to achieve fine-grained access control with a resource as the unit. The capability update is convenient, and the capability withdrawal is supported to ensure the data security sharing between sensor nodes. Security analysis shows that the model can realize safe, effective, and privacy-protected data storage and sharing.

Mingping Qi,Jianhua Chen

DOI: https://doi.org/10.1109/jsyst.2020.2991174

IF: 4.802

2020-01-01

IEEE Systems Journal

Abstract:The design of an authenticated key agreement protocol for securing the smart meter communications in smart grid networks has attracted growing attention recently. Typically, realizing mutual authentication and key agreement without active involvement of a trusted third party is expected in this field. Thus, to achieve this aim, several authenticated key agreement schemes for smart grid have been presented; while as investigated in the following section of this work, most of these schemes remain vulnerable to various attacks. Therefore, to design a truly secure authenticated key agreement protocol for smart grid and make some contributions to this field, this work presents our new authenticated key agreement scheme for smart grid using Elliptic Curve Qu-Vanstone (ECQV) implicit certificate as the building block. Our scheme is pairing-free and just uses two passes to realize mutual authentication and key agreement as well as strong credential privacy, making it with high efficiency in both computation and communication overheads. Moreover, its security is formally proved under the widely accepted Canetti and Krawczyk (CK) security model, and is further confirmed by a heuristic security analysis.