Applied Resiliency for More Trustworthy Grid Operation (ARMORE)
Brief Introduction
The objective of this project is to develop a distributed peer-based framework to provide secure information exchange internally in critical infrastructure to increase security and resiliency of grid operation. Through leveraging some core components of the successful Secure Information Ex-change Gateway (SIEGate) platform, this project will significantly improve power-system infor-mation-technology security by augmenting current edge-perimeter security practices with a sys-tem that pushes secure, real-time communication capabilities deeper into utility critical networks, including substations. This approach will enable the high-speed and secure exchange of information on a peer-to-peer basis.
The objective of this project is to develop a distributed peer-based framework to provide secure information exchange internally in critical infrastructure to increase security and resiliency of grid operation. Through leveraging some core components of the successful Secure Information Ex-change Gateway (SIEGate) platform, this project will significantly improve power-system infor-mation-technology security by augmenting current edge-perimeter security practices with a sys-tem that pushes secure, real-time communication capabilities deeper into utility critical networks, including substations. This approach will enable the high-speed and secure exchange of information on a peer-to-peer basis.
Our Contribution
- We design and implement a unique, extensible and efficient operation-level traffic analyzer framework for Smart Grid.
- We use the Bro network security monitor to acquire statistics in the smart grid and build a multi-level statistic structure of all the packets.
- We also design a threshold-based anomaly detection algorithm utilizing the multi-level statistic structure.
- The time overhead and performance evaluations of the analyzer confirm efficiency and accuracy of our analyzer under our simulated Smart Grid operational traffic.