@inproceedings{1d3d539cff4842c1868414c5e40af2ce,
title = "Novel weaknesses in IEC 62351 protected Smart Grid control systems",
abstract = "Smart Grids are characterized by a high level of interconnectedness and interdependency between their sub-components. As this increases the surface for potential cyber attacks, the control system communication needs to be protected. IEC 61850 is about to become the most prevalent communication standard in the process related parts of Smart Grid control systems, but it was not designed with security in mind. IEC 62351 extends IEC 61850 by comprehensive security measures. By analyzing the IEC 61850 and IEC 62351 specifications, three novel weaknesses in the IEC 62351 standard were discovered which will be presented in this paper. Two weaknesses allow for replay of GOOSE and Sampled Values messages and one weakness in the protocol used for time exchange (SNTP) leaves the system vulnerable to a variety of attacks.",
keywords = "Attacks, GOOSE, IEC 61850, IEC 62351, Power Utility Automation, Replay, SNTP, Sampled Values, Security, Smart Grid, Weaknesses",
author = "Maximilian Strobel and Norbert Wiedermann and Claudia Eckert",
note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 7th IEEE International Conference on Smart Grid Communications, SmartGridComm 2016 ; Conference date: 06-11-2016 Through 09-11-2016",
year = "2016",
month = dec,
day = "8",
doi = "10.1109/SmartGridComm.2016.7778772",
language = "English",
series = "2016 IEEE International Conference on Smart Grid Communications, SmartGridComm 2016",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "266--270",
booktitle = "2016 IEEE International Conference on Smart Grid Communications, SmartGridComm 2016",
}
