Handling Role-based Access Control in the Digital Grid

Fries, Steffen; Falk, Rainer; Bisale, Chaitanya

Home // ENERGY 2017, The Seventh International Conference on Smart Grids, Green Communications and IT Energy-aware Technologies // View article

Handling Role-based Access Control in the Digital Grid

Authors:
Steffen Fries
Rainer Falk
Chaitanya Bisale

Keywords: security; user and device authentication; role-based access control; substation automation; digital grid; cyber security, critical infrastructure, IEC 62351

Abstract:
The operation of the digital energy grid, as one of the critical infrastructures, has to cope with the need to control of increasingly fluctuating demand and generation of energy, and also to ensure the reliable transmission and distribution of centrally and decentrally generated energy. Control is accomplished by utilizing a communication infrastructure in parallel to the actual power system infrastructure with connections to the physical world by sensors and actuators. In the past, this control communication network was mostly isolated from other communication networks, but is connected more and more with external systems to support innovative cross-system services. Increasingly, this open connectivity exposes the digital grid to cyber attacks. Therefore, access to resources like the communication connections or communicated data needs to be protected to ensure a reliable operation. Legislation and operational best practice guidelines have taken this into account and provide the necessary framework for defining specific communication security requirements. From the technical perspective, different security counter measures exist to cope with the given requirements, but it has to be ensured that these technical means are not only provided technically, but are in fact applied correctly in operation. Usability of security is essential to support the correct application of technical security measures. This paper reviews the requirements for role-based access control (RBAC), as well as currently targeted technical approaches to achieve RBAC in the digital grid. The goal is to provide more insight into the existing application of RBAC mechanisms and to identify gaps for future enhancements. Proposals to address the identified gaps are described, which are intended to be brought to the International Electrotechnical Commission (IEC) to enhance the security standard IEC 62351 for power system automation.

Pages: 27 to 32

Copyright: Copyright (c) IARIA, 2017

Publication date: May 21, 2017

Published in: conference

ISSN: 2308-412X

ISBN: 978-1-61208-556-2

Location: Barcelona, Spain

Dates: from May 21, 2017 to May 25, 2017