Impact of firmware modification attacks on power systems field devices

Charalambos Konstantinou, Mihalis Maniatakos

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    Abstract

    The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

    Original languageEnglish (US)
    Title of host publication2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015
    PublisherInstitute of Electrical and Electronics Engineers Inc.
    Pages283-288
    Number of pages6
    ISBN (Electronic)9781467382892
    DOIs
    StatePublished - Mar 17 2016
    EventIEEE International Conference on Smart Grid Communications, SmartGridComm 2015 - Miami, United States
    Duration: Nov 1 2015Nov 5 2015

    Other

    OtherIEEE International Conference on Smart Grid Communications, SmartGridComm 2015
    CountryUnited States
    CityMiami
    Period11/1/1511/5/15

    Fingerprint

    Relay protection
    Firmware
    Reverse engineering
    Intelligent control
    Electric circuit breakers
    Microprocessor chips
    Controllers
    Monitoring
    Communication
    Industry

    ASJC Scopus subject areas

    • Control and Systems Engineering
    • Energy Engineering and Power Technology
    • Computer Networks and Communications

    Cite this

    Konstantinou, C., & Maniatakos, M. (2016). Impact of firmware modification attacks on power systems field devices. In 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015 (pp. 283-288). [7436314] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SmartGridComm.2015.7436314

    Impact of firmware modification attacks on power systems field devices. / Konstantinou, Charalambos; Maniatakos, Mihalis.

    2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015. Institute of Electrical and Electronics Engineers Inc., 2016. p. 283-288 7436314.

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    Konstantinou, C & Maniatakos, M 2016, Impact of firmware modification attacks on power systems field devices. in 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015., 7436314, Institute of Electrical and Electronics Engineers Inc., pp. 283-288, IEEE International Conference on Smart Grid Communications, SmartGridComm 2015, Miami, United States, 11/1/15. https://doi.org/10.1109/SmartGridComm.2015.7436314
    Konstantinou C, Maniatakos M. Impact of firmware modification attacks on power systems field devices. In 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015. Institute of Electrical and Electronics Engineers Inc. 2016. p. 283-288. 7436314 https://doi.org/10.1109/SmartGridComm.2015.7436314
    Konstantinou, Charalambos ; Maniatakos, Mihalis. / Impact of firmware modification attacks on power systems field devices. 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015. Institute of Electrical and Electronics Engineers Inc., 2016. pp. 283-288
    @inproceedings{0d77ee105c644466b2a5523b8f80f07b,
    title = "Impact of firmware modification attacks on power systems field devices",
    abstract = "The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.",
    author = "Charalambos Konstantinou and Mihalis Maniatakos",
    year = "2016",
    month = "3",
    day = "17",
    doi = "10.1109/SmartGridComm.2015.7436314",
    language = "English (US)",
    pages = "283--288",
    booktitle = "2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015",
    publisher = "Institute of Electrical and Electronics Engineers Inc.",

    }

    TY - GEN

    T1 - Impact of firmware modification attacks on power systems field devices

    AU - Konstantinou, Charalambos

    AU - Maniatakos, Mihalis

    PY - 2016/3/17

    Y1 - 2016/3/17

    N2 - The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

    AB - The coupling between cyber and physical components makes cyber-security an area of growing interest in the power industry. Sensing, communications, and intelligent control technologies are being integrated with field devices, changing the traditional structure of power systems and transforming power infrastructure into a more interactive, dynamic and controllable system. As a result, the developed smart grid environment increases the chances of being maliciously attacked. Monitoring and control decision equipment such as microprocessor-based protection relays, offer an ideal exploitation candidate for attackers. This paper presents how an adversary is able to disrupt the operation of Circuit Breakers (CBs) by injecting malicious tripping commands to the relay controller. We formulate an attack strategy by reverse engineering the firmware of an existing commercial protection relay. The impact of the developed attacks is studied on the IEEE 14 bus test case system.

    UR - http://www.scopus.com/inward/record.url?scp=84964999285&partnerID=8YFLogxK

    UR - http://www.scopus.com/inward/citedby.url?scp=84964999285&partnerID=8YFLogxK

    U2 - 10.1109/SmartGridComm.2015.7436314

    DO - 10.1109/SmartGridComm.2015.7436314

    M3 - Conference contribution

    SP - 283

    EP - 288

    BT - 2015 IEEE International Conference on Smart Grid Communications, SmartGridComm 2015

    PB - Institute of Electrical and Electronics Engineers Inc.

    ER -

    Access to Document