Practical Approaches Towards Securing Edge Devices in Smart Grid

摘要

Security is a big concern in the adaptation of edge computing for smart grid technologies. As the processing power and capabilities of Intelligent Electronic Devices (IEDs) in the power grid increases, they also become prime targets for attackers to exploit for their own gain. Utilities are especially concerned with distribution systems, as the IEDs may not use dedicated fibre communications. It is no longer sufficient to use a single method to secure an IED; using multiple methods can increase the difficulty for an attacker to be covert and may detect malicious behaviour faster. This paper describes some techniques that are currently being implemented on a custom built multifunctional IED using a credit card sized supercomputer called Parallella. An implementation of a remote attestation scheme based on process memory is discussed. An approach to detect malicious device behaviour using osquery, a free and open source tool is also discussed. Finally, network booting and how it is used it to ease updating or resetting devices in the field is elaborated.