Presentation at the 10th Annual System of Systems Engineering Conference (SoSE), 2015.05, San Antonio, USA. More details about the paper at https://sites.google.com/site/vaneachiprianov/papers .

1. Towards Security Software
Engineering the Smart Grid as a
System of Systems
Vanea Chiprianov, Laurent Gallon, Khouloud Salameh,
Manuel Munier, Jamal El Hachem
University of Pau and Pays Adour, France
SoSE, San Antonio,
Monday 18th
May 2015

2. 2AGENDATowards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015
The Smart Grid as an SoS
 The Smart Grid
 The Smart Grid as an SoS
Security Challenges to the Smart Grid as an SoS

Operational independence challenges

Managerial independence challenges

Evolutionary development challenges

Emergent behavior challenges

Geographic distribution challenges
Roadmap/Vision/Framework for Security Software Engineering the Smart Grid as an SoS

Life-cycle Management

Requirements Engineering

Architecture Modeling

Implementation

Verification

Release

3. 3
The Smart Grid as an SoS
Smart Grid
 Renewable sources
 Two-way electric flow
 => more complex
information flows
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015
[Liu, 2012]

4. 4
The Smart Grid as an SoS
Smart Grid
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

5. 5
The Smart Grid as an SoS
The Smart Grid as an SoS
Characteristics differentiating SoS from monolithic systems [Maier, 1998], [Boardman,
2006], [Gorod, 2007], etc
Smart Grid as an SoS [Pérez, 2013]:

Operational and managerial independence: the SG is constituted from systems such as
solar, wind plants, swarms of electric vehicles, which operate on their own and have
different owners and managers

Evolutionary development : different energy generating systems can be dynamically
aggregated/removed to/from the power grid

Emergent behaviour: producers, providers and consumers coordinate in order to
balance supply and demand.

Geographic distribution: the energy generation, storage, and consumption should be
realized as near as possible to the physical location of consumption/generation in order
to achieve greater efficiency of the system
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

6. 6
The Smart Grid as an SoS
Smart Grid
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

7. 7
Security challenges to the Smart Grid as an SoS
Operational independence challenges

Identification, authentication and access control:

Key processes for verifying the identity of a device/user

Every node must have ay least basic cryptographic functions

Device security issues

Each component may have specific vulnerabilities, e.g.:

Smart Meter: individual tariff => breaches → alternate bills

Electric vehicles: charging at different locations → inaccurate billing
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

8. 8
Security challenges to the Smart Grid as an SoS
Managerial independence challenges

Accountability:

Recording and tracing

Who is responsible for the security issue, and who should fix it

Concerns both energy and information

Can be used as evidence in future judgement

Determine the cause or extent of damage – digital forensics
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

9. 9
Security challenges to the Smart Grid as an SoS
Evolutionary development challenges

Backwards compatibility:

Integration of (legacy/traditional) devices

Secure and efficient communication protocol:

The Smart Gris is time-critical (legacy from traditional grid) → message delivery
both secure and efficient

Impacts of security protections need balance/minimization, and their timing
made predictable

Co-design of control and security:

Industrial control does not do much about security

Recently, some attention has been dedicated
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

10. 10
Security challenges to the Smart Grid as an SoS
Emergent behavior challenges

Hidden vulnerabilities due to interdependencies:

Management (emergent) objectives (e.g. energy efficiency) require interactions
between different Constituent Systems of the Smart Grid

Each Constituent System has specific vulnerabilities

Interactions → chains of vulnerabilities

Solution ? : continuous (real-time) monitoring / simulation
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

11. 11
Security challenges to the Smart Grid as an SoS
Geographic distribution challenges

Attack detection (network/distributed system)

Availability:

Denial of Service:

Disrupt ressource access

Violate timing requirements of critical message exchange

Integrity:

False data injection attacks: against market – financial loses

Confidentiality:

Eavesdroping attacks - consumer profile → know whether you are at home
or not

Solution ? : Anonymisation, but overhead, etc
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

12. 12
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Software Engineering the Smart Grid

Smart Grid = Cyber-physical system [Sridhar, 2012]

Software Engineering → cyber/software aspects, the impact of physical security
challenges on the cyber part ; LIMITED challenges specific to the physical part

Life-cycles:

Requirements

Architecture

Implementation

Verification

Release/Evolution
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

13. 13
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Life-cycle Management

Legacy system of the traditional power grid → 1st
iteration

Smart Grid → 2nd
iteration

=> life-cycle of the Smart Grid SoS = iterative, spiral development process:

Reqt Eng of the new iteration (2nd
– Smart Grid)

Model an Arch

Implement

Verify

Release
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

14. 14
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015
Smart Grid
Development
Smart Grid
Life-cycle Mngt
Smart Grid
Reqt Eng
Smart Grid
Arch Modeling
Smart Grid
Implementation
Smart Grid
Verification
Smart Grid
Release

15. 15
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Requirements Engineering

Integrate characteristics of the legacy power grid

High restrictions on transmission delay and failures

Related to backwards compatibility and co-design challenges

+ Fulfill expectations of the new Smart Grid

Security risk identification and mitigation

New risks from new capabilities

Related to hidden vulnerabilities challenge

Residual risks from each constituent device

How to manage risks associated with end-to-end flow of information and
control ?

Standards ?
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

16. 16
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Architecture Modeling

Describe legacy power grid and the existing security solutions

+ The Smart Grid: heterogenous devices, network architecture → not uniformly security
approaches, but fine-grained security solutions

How to choose between them, how to use them together ?

Solution ? Predictive modeling and simulation to compare architectural alternatives

Simulation techniques [Li, 2014]: network, power grid, co-simulation

Describe attack models
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

17. 17
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Implementation

Code generation from Model-driven languages

How about information management ?

Solution ? Big Data for information analysis, integration, optimization
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

18. 18
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Verification

Managerial independence → different certification and quality processes for each
constituent system

Agree on common standards ?

Simulation – useful for verifying architecture
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

19. 19
Roadmap/Vision/Framework for Security Software Engineering
the Smart Grid as an SoS
Release

Triggered every time at least one constituent system evolves

Managerial and operational independence → difficult synchronization for deploying
updates

=> Detecting undesired emergent behavior → monitoring
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

20. 20
Conclusion

How specific characteristics of the Smart Grid SoS raise challenges for security
engineering

Proposed a roadmap/vision/framework based on Software Engineering principles :
modeling, simulation and code generation
Towards Security Software Engineering the Smart Grid as a
System of Systems
18/05/2015

21. Thank you
CONTACT
Vanea CHIPRIANOV
Assistant Professor
University of Pau and Pays Adour
vanea.chiprianov@univ-pau.fr