Efficient public-key certificate revocation schemes for smart grid

Smart Grid (SG) infrastructure is an energy network connected with computer networks for communication over the internet and intranets. The revolution of SGs has also introduced new avenues of security threats. Although Digital Certificates provide countermeasures, however, one of the issues that exist, is how to efficiently distribute certificate revocation information among Edge devices. The conventional mechanisms, including certificate revocation list (CRL) and online certificate status protocol (OCSP), are subjected to some limitations in energy efficient environments like SG infrastructure. To address the aforementioned challenges, this paper proposes a scheme incorporating the advantages and strengths of the fog computing. The fog node can be used for this purpose with much better resources closer to the edge. Keeping the resources closer to the edge strengthen the security aspect of smart grid networks. Similarly, a fog node can act as an intermediate Certification Authority (CA) (i.e., Fog Node as an Intermediate Certification Authority (FONICA)). Further, the proposed scheme has reduced storage, communication, processing overhead, and latency for certificate verification at edge devices. Furthermore, the proposed scheme reduces the attack surface, even if the attacker becomes a part of the network.

Download Full-text

Performance evaluation of public-key certificate revocation system with balanced hash tree

Proceedings of the 1999 ICPP Workshops on Collaboration and Mobile Computing (CMC'99). Group Communications (IWGC). Internet '99 (IWI'99). Industrial Applications on Network Computing (INDAP). Multimedia Network Systems (MMNS). Security (IWSEC). Parall ◽

10.1109/icppw.1999.800063 ◽

2003 ◽

Cited By ~ 4

Author(s):

H. Kikuchi ◽

K. Abe ◽

S. Nakanishi

Keyword(s):

Performance Evaluation ◽

Public Key ◽

Certificate Revocation

Download Full-text

A New Public Key Certificate Revocation Scheme Based on One-Way Hash Chain

Advances in Web-Age Information Management - Lecture Notes in Computer Science ◽

10.1007/11563952_62 ◽

2005 ◽

pp. 670-675 ◽

Cited By ~ 1

Author(s):

JingFeng Li ◽

YueFei Zhu ◽

Heng Pan ◽

DaWei Wei

Keyword(s):

Public Key ◽

Hash Chain ◽

Certificate Revocation ◽

New Public

Download Full-text

Authentication of Smart Grid

Cryptography ◽

10.4018/978-1-7998-1763-5.ch015 ◽

2020 ◽

pp. 257-276

Author(s):

Melesio Calderón Muñoz ◽

Melody Moh

Keyword(s):

Smart Grid ◽

Communication Networks ◽

Smart Grids ◽

Mesh Networks ◽

Quantum Computer ◽

Electrical Power ◽

Public Key Cryptography ◽

Power Grids ◽

Public Key ◽

Self Healing

The electrical power grid forms the functional foundation of our modern societies, but in the near future our aging electrical infrastructure will not be able to keep pace with our demands. As a result, nations worldwide have started to convert their power grids into smart grids that will have improved communication and control systems. A smart grid will be better able to incorporate new forms of energy generation as well as be self-healing and more reliable. This paper investigates a threat to wireless communication networks from a fully realized quantum computer, and provides a means to avoid this problem in smart grid domains. We discuss and compare the security aspects, the complexities and the performance of authentication using public-key cryptography and using Merkel trees. As a result, we argue for the use of Merkle trees as opposed to public key encryption for authentication of devices in wireless mesh networks (WMN) used in smart grid applications.

Download Full-text

Efficient digital certificate verification in wireless public key infrastructure using enhanced certificate revocation list

Information Security Journal A Global Perspective ◽

10.1080/19393555.2018.1516836 ◽

2018 ◽

Vol 27 (4) ◽

pp. 214-229

Author(s):

Krishna Prakasha ◽

Balachandra Muniyal ◽

Vasundhara Acharya ◽

Suyash Krishna ◽

Smriti Prakash

Keyword(s):

Public Key Infrastructure ◽

Digital Certificate ◽

Public Key ◽

Certificate Revocation ◽

Wireless Public Key Infrastructure ◽

Certificate Revocation List

Download Full-text

Digital Certificates and Public-Key Infrastructures

Information Security Policies and Actions in Modern Integrated Systems ◽

10.4018/978-1-59140-186-5.ch002 ◽

2004 ◽

pp. 64-97

Author(s):

Diana Berbecaru ◽

Corrado Derenale ◽

Antonio Lioy

Keyword(s):

Public Key Infrastructure ◽

Public Key ◽

Key Generation ◽

Certificate Revocation ◽

Digital Certificates ◽

Organizational Procedures ◽

Technical Solutions

The technical solutions and organizational procedures used to manage certificates are collectively named Public Key Infrastructure (PKI). The overall goal of a PKI is to provide support for usage of public-key certificates within – and also outside – its constituency. To this aim, several functions are needed, such as user registration, key generation, certificate revocation and many others. It is the aim of this paper to describe issues related to digital certificates and PKIs, both from the technical and management viewpoint.

Download Full-text

A Multi-User, Single-Authentication Protocol for Smart Grid Architectures

Sensors ◽

10.3390/s20061581 ◽

2020 ◽

Vol 20 (6) ◽

pp. 1581

Author(s):

Ahmed S. Alfakeeh ◽

Sarmadullah Khan ◽

Ali Hilal Al-Bayatti

Keyword(s):

Smart Grid ◽

Demand Response ◽

Security Analysis ◽

Authentication Protocol ◽

Wireless Channel ◽

Public Key ◽

Sensitive Information ◽

Session Key ◽

Fine Grained ◽

Smart Grid System

In a smart grid system, the utility server collects data from various smart grid devices. These data play an important role in the energy distribution and balancing between the energy providers and energy consumers. However, these data are prone to tampering attacks by an attacker, while traversing from the smart grid devices to the utility servers, which may result in energy disruption or imbalance. Thus, an authentication is mandatory to efficiently authenticate the devices and the utility servers and avoid tampering attacks. To this end, a group authentication algorithm is proposed for preserving demand–response security in a smart grid. The proposed mechanism also provides a fine-grained access control feature where the utility server can only access a limited number of smart grid devices. The initial authentication between the utility server and smart grid device in a group involves a single public key operation, while the subsequent authentications with the same device or other devices in the same group do not need a public key operation. This reduces the overall computation and communication overheads and takes less time to successfully establish a secret session key, which is used to exchange sensitive information over an unsecured wireless channel. The resilience of the proposed algorithm is tested against various attacks using formal and informal security analysis.

Download Full-text