Security analysis of Dutch smart metering systems - Multiple Choices

More documents

Recommendations

Info

4.4 Port P3 4 PRACTICAL ANALYSIS CAS RF E G W Electricity Gas Water GPRS Internet RF E G W RF Meshed Network RF E G W Figure 21: RF smart metering implementation [22] RF E G W Figure 22: Smart Dutch RF module in a Landis+Gyr meter at Delta to sniff or communicate using GNUradio for example [26]. The security of RF depends on the application layer implementation. With the usage of radio transmitter, like GNUradio, one might be able to disrupt the data link layer protocol and possibly do a denial of service. The DC used in RF solutions have the same security risks as the DC in PLC. The DC will be placed centrally in neighbourhoods, possibly also at substations and use the same communications technologies as PLC data concentrators to communicate with the CAS: IP and GPRS. The DLMS COSEM protocol DLMS/COSEM is a common language which enables partners in the metering industry to communicate in a standard way, and is defined on the DLMS website as follows: [12]: 38
4.4 Port P3 4 PRACTICAL ANALYSIS DLSM stands for Device Language Message Specifications - a generalised concepts for abstract modelling of communication entities. COSEM stands for COmpanions Specification for Energy Metering - sets the rules based on existing standards for data exchange with energy meter. DLMS is: • An object model, to view the functionality of the meter, as it is seen at its interface(s) • An identification system for all metering data • A messaging method to communicate with the model and to turn the data to a series of bytes • A transporting method to carry the information between the metering equipment and the data collection system DLMS is long used in the industrial metering industry and is rather large for smart metering. The standard is currently being updated for smart meter usage. DLMS standards are internationalised through IEC standards and can be seen in appendix B on the hand of the 7 layer OSI model, DLMS is not depended on a physical layer. DLMS self uses books to describe its specifications [12]: • the Blue Book describes the COSEM meter object model and the object identification system • the Green book describes the architecture and protocols to transport the model • the Yellow book describes the conformance testing process • the White book holds the Glossary of DLMS/COSEM terms DLMS was used mostly in private and closed environments in the past. With smart metering being introduced the data is being transported over public and exposed networks, which has introduced new security requirements. Besides simplifying the DLMS standard for smart metering, various security measures have been introduced. Proven technologies are being used, such as TDES, AES, MD5, SHA1, CBC and GCM [40]. DLSM/COSEM can be used in combination with any communication technology or protocol. In case different meter manufacturers keep using different technologies the Dutch grid operators could get into a vendor lock-in position once the meters are placed. To guarantee interoperability they joint forces to create the Dutch Smart Meter Requirement (DSMR) where specific technical requirements have been made for P3 communication, in contrast to the NTA where no requirements are made. Currently an agreement exists between the grid operators and four manufacturers on an interoperable DLMS/COSEM standard [55]: • Actaris • Iskraemeco • Landis+Gyr • Sagem In the DSMR the authentication and encryption algorithm of choice is AES-GCM-128 and refers to DLMS UA Green Book edition 7 and Blue Book edition 9 for its security implementation. These books are not yet published and on publishing will only be available to members of the DLMS user association and as an IEC standard. Meters that meet the DSMR requirements and implement DLMS security in a correct matter should provide sufficient application level security. Once the DLMS books, in which the security implementations is described, are published this standard could be analysed in full depth. 39
Page 1 and 2: Security analysis of Dutch smart me
Page 3 and 4: Introduction A smart meter refers t
Page 5 and 6: CONTENTS CONTENTS Contents 1 Smart
Page 7 and 8: 1 Smart metering introduction 1.1 G
Page 9 and 10: 1.2 Energy market 1 SMART METERING
Page 11 and 12: 1.3 Dutch standard for smart meteri
Page 13 and 14: 3 Theoretical analysis 3.1 CIA 3 TH
Page 15 and 16: 3.2 NTA 3 THEORETICAL ANALYSIS 3.2.
Page 17 and 18: 3.2 NTA 3 THEORETICAL ANALYSIS •
Page 19 and 20: 4 Practical analysis 4 PRACTICAL AN
Page 21 and 22: 4.1 Port P0 4 PRACTICAL ANALYSIS
Page 23 and 24: 4.1 Port P0 4 PRACTICAL ANALYSIS (a
Page 25 and 26: 4.2 Port P1 4 PRACTICAL ANALYSIS 4.
Page 27 and 28: 4.3 Port P2 4 PRACTICAL ANALYSIS (a
Page 29 and 30: 4.4 Port P3 4 PRACTICAL ANALYSIS op
Page 31 and 32: 4.4 Port P3 4 PRACTICAL ANALYSIS A
Page 33 and 34: 4.4 Port P3 4 PRACTICAL ANALYSIS sa
Page 35 and 36: CX 1000-5 PLC meters use the PLAN a
Page 37: 4.4 Port P3 4 PRACTICAL ANALYSIS hi
Page 41 and 42: 4.5 Port P4 4 PRACTICAL ANALYSIS IP
Page 43 and 44: 4.6 Port P5 4 PRACTICAL ANALYSIS
Page 45 and 46: 5 Recommendations 5 RECOMMENDATIONS
Page 47 and 48: 6 Conclusion 6 CONCLUSION During th
Page 49 and 50: REFERENCES REFERENCES [18] Eneco. M
Page 51 and 52: REFERENCES REFERENCES [57] L. Peson
Page 53 and 54: A.2 Date readout A LANDIS+GYR METER
Page 55 and 56: 3.1 Communication profiles The thre

Security analysis of Dutch smart metering systems - Multiple Choices

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?