focus area secure and reliable secure and reliable
play

Focus Area: Secure and Reliable Secure and Reliable Computing Base - PDF document

Jan 31, 2024 •140 likes •310 views

Trustworthy Cyber Infrastructure for the Power Grid Presentations Focus Area: Secure and Reliable Secure and Reliable Computing Base Presenter: Sean Smith, Dartmouth College TCIP Industry Day October 17, 2007 University of Illinois

  1. Trustworthy Cyber Infrastructure for the Power Grid Presentations Focus Area: Secure and Reliable Secure and Reliable Computing Base Presenter: Sean Smith, Dartmouth College TCIP Industry Day October 17, 2007 University of Illinois • Dartmouth College • Cornell University • Washington State University Personnel • PIs/Senior Staff • Graduate Students – Sergey Bratus (Dartmouth) – John Baek (Dartmouth) – George Gross (UIUC) – Paul Dabrowski (UIUC) – Carl A. Gunter (UIUC) – William Healy (UIUC) – Zbigniew Kalbarczyk (UIUC) Zbigniew Kalbarczyk (UIUC) – Alex Iliev (Dartmouth) Al Ili (D h) – Ravi Iyer (UIUC) – Peter Klemperer (UIUC) – Pete Sauer (UIUC) – Michael LeMay (UIUC) – Sean Smith (Dartmouth) – Suvda Myagmar (UIUC) – Karthik Pattabiraman (UIUC) • Alumni – Ashwin Ramaswamy (Dartmouth) – Nihal D’Cunha (M.S., Dartmouth) – Patrick Tsang (Dartmouth) – Allen Harvey (B.A., Dartmouth) – Jianqing Zhang (UIUC) Jianqing Zhang (UIUC) – Evan Sparks (B.A., Dartmouth) • Undergraduates – Justin Deinlein (UIUC) – Alex Latham (Dartmouth) • High School – Axel Hansen (Dartmouth) University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 1

  2. Trustworthy Cyber Infrastructure for the Power Grid Presentations Base Area Approach Focus : Move from perimeter security to platform security in the power • grid cyber infrastructure Focus : Secure power infrastructure by ensuring security of • infrastructure applications infrastructure applications – Derive security requirements from application logic Project Approach : • – Identify : security problems in near-term, middle-term, long-term power grid cyber infrastructure – Secure : apply current security technology into base devices, as well as developing new security technology and applying it – Deploy : evaluate solutions in testbed grid scenarios New Thrust (from last year): • – Develop vertical links into protocols group University of Illinois • Dartmouth College • Cornell University • Washington State University Base Area Projects University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 2

  3. Trustworthy Cyber Infrastructure for the Power Grid Presentations 1. Fast Crypto for SCADA (near-term deployability ) • Identify: – Communications between SCADA devices susceptible to eavesdrop, modification, replay – …but need to have low latency – A bump-in-the-wire (BITW) approach adds security without replacing entire infrastructure – Existing BITW approaches do not provide high security integrity with low latency • Secure: – YASIR: a BITW with high security integrity and low latency, for legacy SCADA – (and some public key results too) • Deploy: – Initial proof-of-concept hw University of Illinois • Dartmouth College • Cornell University • Washington State University YASIR: Yet Another Security Retrofit • BITW for legacy SCADA • Low latency : • High security ≤ 18 byte-times, – – Data integrity , optional data – irrespective of message length confidentiality • Builds on Wright et al’s trick: – 80-bit security level – BITW receiver transforms integrity failure – Strong attacker model – – …to CRC error, flagged by SCADA to CRC error flagged by SCADA • Prototype: • NIST-standardized, patent-free crypto – Modbus/ASCII, Modbus/RTU, – HMAC, SHA-1, AES-CTR DNP3 • Formal security analysis – IEC 60870-5 University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 3

  4. Trustworthy Cyber Infrastructure for the Power Grid Presentations Our Contribution • Part of research into more general problem of securing communications despite resource constraints – Batch paring delegation (e.g., for ECC public key) – Secure crypto precomputation with insecure memory (e.g., for DSA signatures) University of Illinois • Dartmouth College • Cornell University • Washington State University 2. Attested Meters: Security Architecture for Advanced Meters (middle-term deployability ) • Identify: – Advanced Meters enable advanced functionality • Remote measurement • Demand response and demand control Demand response and demand control • Improved monitoring and control for the grid – But computation leads to security and privacy vulnerabilities • Secure: – Create a secure, private, and extensible architecture for future advanced meters – Attested Metering : • Apply trusted computing (TC) • and virtualization and virtualization • to secure Advanced Metering network communications and computation (ANSI C12, ZigBee) – …and develop new, lightweight trusted computing technology for the special case of meters • Deploy: – Initial prototypes, industry discussions University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 4

  5. Trustworthy Cyber Infrastructure for the Power Grid Presentations New Architectures • New functionality: emergency-response networking over mesh- connected advanced electric meters – After Katrina, surveillance camera mesh was only network infrastructure to survive. – It was retasked to carry municipal communications. y p – Advanced meters with mesh networks will soon be widely deployed, why not use them? – Use secure distributed consensus protocol to determine when network should switch into emergency-response mode – Meters already include battery backup for outage notification… • Our previous results: countermeasures against… – Unethical customer Unethical customer • May attempt to modify metering messages to steal service • Has legitimate physical access to meter, could modify it – Overly-intrusive MDMA: Could use high-resolution metering data to determine behavior of metered residents – Publicity seeker: Cracker or virus author seeking physical disruption to garner publicity University of Illinois • Dartmouth College • Cornell University • Washington State University New Platforms • Hardware-assisted embedded attestation scheme: – Continuous Embedded System Integrity Using Remote Firmware Attestation (CESIum) – Much simpler than TPM p – Maintains a log of all firmware revisions installed on a microcontroller – Provides the complete log during remote attestation operations CESIum – Main advantages: • Simplicity = low cost, power µC µC • Complete record of firmware revisions, not just current Sensor firmware like TPM • Not heavily dependent on OS correctness Power Main University of Illinois • Dartmouth College • Cornell University • Washington State University 10 University of Illinois Dartmouth College Cornell University Washington State University 5

  6. Trustworthy Cyber Infrastructure for the Power Grid Presentations 3. Reconfigurable Hardening (middle-term and longer ) • Identify: – Security vulnerabilities due to hardware or software flaws pose a significant hazard to power grid applications. – Application and OS sw has long history of vulnerabilities – Patching applications and OS (or replacing hardware) difficult in power grid settings • Secure: – Build application-aware security and reliability solutions into the underlying hardware itself – Make it reconfigurable , to allow evolution and customization – Result: intrusion tolerance for critical infrastructure • Deploy: – SEL 3351 Data aggregator and SEL 421 Relay. University of Illinois • Dartmouth College • Cornell University • Washington State University Approach (Automated Design Flow) • Explore processor level solutions to achieve low-cost, high-performance, scalable Application security and reliability checking in the same Source framework – small footprint techniques that do not require large amount of extra hardware or require large amount of extra hardware or Analysis Analysis software • Automated End-to-End Compilation Framework for checks derivation – from C-program to FPGA Hardware Hardware Software Check Compiler • Enhanced compiler transforms checks to Synthesis VHDL hardware description for synthesis • Integration with Reliability and Security Engine (RSE) : – RSE in the pipeline of the DLX and RSE in the pipeline of the DLX and LEON3 processors (poster) SW/HW – Prototyped on FPGA-based hardware “Linking” – Low performance overhead (2%) demonstrated on embedded benchmarks Protected FPGA Application Instantiation University of Illinois • Dartmouth College • Cornell University • Washington State University University of Illinois Dartmouth College Cornell University Washington State University 6

Recommend

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 GPT Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively manage a diversified portfolio of quality Australian property assets , delivering long term benefits For our Investors We are a secure , reliable

820 views • 33 slides
2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively

2 Our Strategy Focused on delivering secure, reliable returns Our Strategy We own and actively manage a diversified portfolio of quality Australian property assets , delivering long term benefits For our Investors We are a secure , reliable

518 views • 32 slides
Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a

Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a

Ensuring a secure, reliable and efficient Power System in a Changing Environment Delivering a Secure Sustainable Power System 17 th August 2011 Outline Agenda Chair: Dick Lewis, Manager, Grid Operations Planning 10.00 a.m. Registration (Tea

833 views • 70 slides
Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure

Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure

Everything is Quantum The EU Quantum Flagship Our mission is to keep KPN reliable & secure and trusted by customers, partners and society part of the vital infra of NL Contents Whats the problem? Whats everyone up to? Are

527 views • 33 slides
CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT

CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT

CLOUD DELIVERY OF ATSC 3.0 VIA SECURE RELIABLE TRANSPORT JOE SECCIA, PRINCIPAL ARCHITECT TELEVISION TRANSMISSION CONNECTING WHATS NEXT MOTIVATION (1) Evolving to NextGen TV is unlike the NTSC DTV conversion. Channel sharing

645 views • 25 slides
Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web

Secure, Reliable & Proven Application Performance Management for the Enterprise Web Performance Matters to the Business Your organization depends on your web applications to do business from customer facing eCommerce, banking or travel

281 views • 6 slides
Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today?

Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today?

Fast, Reliable, Secure, Affordable MongoDB on AWS EC2 Paul Marcelin Why are we here today? Among open-source databases, MongoDB is a complete production-ready solution Self-managing MongoDB is worthwhile , for the best AWS performance at

444 views • 20 slides
To provide secure, safe and reliable operation, control and despatch of generation facilities.

To provide secure, safe and reliable operation, control and despatch of generation facilities.

VISION 01 To provide secure, safe and reliable operation, control and despatch of generation facilities. MISSION 02 To contribute in the development of prosperous Pakistan by managing smooth and economical transmission and despatch system

892 views • 18 slides
PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable

PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable

PURPOSE Mission - to support, promote, and encourage the exchange of secure and reliable health information among stakeholders and regional networks Vision to develop a framework for the efficient exchange of patient-centric health

478 views • 21 slides
Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport

Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport

Network Function Insertion for Reliable and Secure Control Messaging Over Commodity Transport Deniz Gurkan, Nicholas Bastin, Stuart Baxley University of Houston Funded by the U.S. Department of Energy and the U.S. Department of Homeland

541 views • 15 slides
FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar

FleetLink: NDN-Powered Low-Cost, Low- Rate, Reliable, Secure Communication for Neighborhood Solar A Practical Approach To Lowering The Cost Of Solar Randy King Alex Afanasyev Jeff Thompson Jeff Burke Lixia Zhang Residential Solar Installer

153 views • 12 slides
NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public

NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public

NCCoE: Mobile App Single-Sign On Achieving a secure, reliable, accessible SSO solution for Public Safety & First Responders 2017 PUBLIC SAFETY BROADBAND STAKEHOLDER MEETING 1 #PSCR2017 Introductions Bill Fisher NIST, National

453 views • 29 slides
Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1

Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1

Future Electric Power Systems efficient, reliable, secure, resilient, adaptable, and economic 1 Sharif University of Technology March 6, 2018 IoT-aided Smart Grid Amir Safdarian IoT and Smart Grid The IoT is defined as a network that can

372 views • 18 slides
The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart

The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart

The Rous Sustainable Water Program: Towards a secure, reliable and affordable water future Stuart White 4 Sep 2020 Institute for Sustainable Futures isf.uts.edu.au SUMMARY The Rous region, and Rous County Council, provided inspiration

640 views • 17 slides
CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of

CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of

CERN, June 2008 large, reliable, and secure distributed online storage harness idle resources of participating computers old dream of computer science The design of a world-wide, fully transparent distributed file system for simultaneous

1.05k views • 102 slides
Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable

Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable

Trustworthy Cyber Infrastructure for the Presentations Power Grid TCIP: Trustworthy Cyber Infrastructure for Power Secure and Reliable Computing Base Presenters: Sean Smith, Ravi Iyer, and Carl Gunter TCIP Year 1 Review, December 11, 2006

346 views • 17 slides
Context : Deployment of secure and reliable energy management devices Issues : Large

Context : Deployment of secure and reliable energy management devices Issues : Large

ANOMALY DETECTION USING HARDWARE PERFORMANCE COUNTERS ON A LARGE SCALE IOT DEPLOYMENT Context : Deployment of secure and reliable energy management devices Issues : Large scale deployment Resources constrained IoT devices

413 views • 3 slides
Reliable client-server connections Making Telnet secure Thijs Rozekrans Ren e Klomp

Reliable client-server connections Making Telnet secure Thijs Rozekrans Ren e Klomp

Reliable client-server connections Making Telnet secure Thijs Rozekrans Ren e Klomp thijs.rozekrans@os3.nl rene.klomp@os3.nl System and Network Engineering University of Amsterdam July 3, 2013 Thijs Rozekrans, Ren e Klomp (UvA)

1.39k views • 16 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research & Boston University y Michael Schapira

701 views • 54 slides
Programming Languages and Analyses for Reliable, Available, and Secure Software Michael Hicks

Programming Languages and Analyses for Reliable, Available, and Secure Software Michael Hicks

Programming Languages and Analyses for Reliable, Available, and Secure Software Michael Hicks University of Maryland, College Park Tuesday, September 25, 2012 Software runs the world 2 Tuesday, September 25, 2012 Software runs the world

1.89k views • 132 slides
Introduction Problem: Reliable routing on wireless sensor networks Focus on lossy, dynamic

Introduction Problem: Reliable routing on wireless sensor networks Focus on lossy, dynamic

Introduction Problem: Reliable routing on wireless sensor networks Focus on lossy, dynamic nature of wireless networks Consider constraints on memory and power Taming the Underlying Challenges of Proposed approach Reliable Multihop

546 views • 6 slides
INVESTOR OR P PRESENTATION ON FEBR BRUAR ARY Y 11, 11, 202 2020 Reliable Security

INVESTOR OR P PRESENTATION ON FEBR BRUAR ARY Y 11, 11, 202 2020 Reliable Security

Always Available, Always Secure INVESTOR OR P PRESENTATION ON FEBR BRUAR ARY Y 11, 11, 202 2020 Reliable Security Always CAUTIONARY STATEMENTS & DISCLOSURES This presentation and the accompanying oral presentation contain

416 views • 23 slides
Basic Concepts and Taxonomy of Dependable and Secure Computing Presented By H. Momeni

Basic Concepts and Taxonomy of Dependable and Secure Computing Presented By H. Momeni

Basic Concepts and Taxonomy of Dependable and Secure Computing Presented By H. Momeni Instructor: Dr. Abdollahi Azgomi Reliable Software Design Course Iran University of Science and Technology Spring 2007 The Basic Concepts

640 views • 28 slides
Reliable Power Reliable Markets AESO Rule Consultation Loss Factors Rule 9.2 and Appendix 7

Reliable Power Reliable Markets AESO Rule Consultation Loss Factors Rule 9.2 and Appendix 7

Reliable Power Reliable Markets AESO Rule Consultation Loss Factors Rule 9.2 and Appendix 7 Reliable People October 4, 2007 Delta Bow Valley, 08:00-11:00 Agenda 8:00-11:00 Introductions Short Overview Timeline Major Issues

399 views • 8 slides

More recommend