Impact of firmware modification attacks on power systems field devices

Charalambos Konstantinou; Michail Maniatakos

doi:10.1109/SmartGridComm.2015.7436314

Impact of firmware modification attacks on power systems field devices

Charalambos Konstantinou, Michail Maniatakos

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

Original language	English (US)
Title of host publication	2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	283-288
Number of pages	6
ISBN (Electronic)	9781467382892
DOIs	https://doi.org/10.1109/SmartGridComm.2015.7436314
State	Published - Mar 17 2016
Event	IEEE International Conference on Smart Grid Communications, SmartGridComm 2015 - Miami, United States Duration: Nov 1 2015 → Nov 5 2015

Publication series

Name	2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015

Other

Other	IEEE International Conference on Smart Grid Communications, SmartGridComm 2015
Country	United States
City	Miami
Period	11/1/15 → 11/5/15

Fingerprint

ASJC Scopus subject areas

Control and Systems Engineering
Energy Engineering and Power Technology
Computer Networks and Communications

Cite this

Konstantinou, C., & Maniatakos, M. (2016). Impact of firmware modification attacks on power systems field devices. In 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015 (pp. 283-288). [7436314] (2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SmartGridComm.2015.7436314

Impact of firmware modification attacks on power systems field devices. / Konstantinou, Charalambos; Maniatakos, Michail.

2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015. Institute of Electrical and Electronics Engineers Inc., 2016. p. 283-288 7436314 (2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Konstantinou, C & Maniatakos, M 2016, Impact of firmware modification attacks on power systems field devices. in 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015., 7436314, 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015, Institute of Electrical and Electronics Engineers Inc., pp. 283-288, IEEE International Conference on Smart Grid Communications, SmartGridComm 2015, Miami, United States, 11/1/15. https://doi.org/10.1109/SmartGridComm.2015.7436314

Konstantinou C, Maniatakos M. Impact of firmware modification attacks on power systems field devices. In 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015. Institute of Electrical and Electronics Engineers Inc. 2016. p. 283-288. 7436314. (2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015). https://doi.org/10.1109/SmartGridComm.2015.7436314

@inproceedings{0d77ee105c644466b2a5523b8f80f07b,

title = "Impact of firmware modification attacks on power systems field devices",

abstract = "The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.",

author = "Charalambos Konstantinou and Michail Maniatakos",

year = "2016",

month = mar

day = "17",

doi = "10.1109/SmartGridComm.2015.7436314",

language = "English (US)",

series = "2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "283--288",

booktitle = "2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015",

note = "IEEE International Conference on Smart Grid Communications, SmartGridComm 2015 ; Conference date: 01-11-2015 Through 05-11-2015",

}

TY - GEN

T1 - Impact of firmware modification attacks on power systems field devices

AU - Konstantinou, Charalambos

AU - Maniatakos, Michail

PY - 2016/3/17

Y1 - 2016/3/17

N2 - The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

AB - The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

UR - http://www.scopus.com/inward/record.url?scp=84964999285&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84964999285&partnerID=8YFLogxK

U2 - 10.1109/SmartGridComm.2015.7436314

DO - 10.1109/SmartGridComm.2015.7436314

M3 - Conference contribution

AN - SCOPUS:84964999285

T3 - 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015

SP - 283

EP - 288

BT - 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - IEEE International Conference on Smart Grid Communications, SmartGridComm 2015

Y2 - 1 November 2015 through 5 November 2015

ER -

Access to Document

10.1109/SmartGridComm.2015.7436314