Embedded Firmware Diversity for Smart Electric Meters
نویسندگان
چکیده
Smart meters are now being aggressively deployed worldwide, with tens of millions of meters in use today and hundreds of millions more to be deployed in the next few years. These low-cost (' $50) embedded devices have not fared well under security analysis: experience has shown that the majority of current devices that have come under scrutiny can be exploited by unsophisticated attackers. The potential for large-scale attacks that target a single or a few vulnerabilities is thus very real. In this paper, we consider how diversity techniques can limit largescale attacks on smart meters. We show how current meter designs do not possess the architectural features needed to support existing diversity approaches such as address space randomization. In response, we posit a new return address encryption technique suited to the computationally and resource limited smart meters. We conclude by considering analytically the effect of diversity on an attacker wishing to launch a large-scale attack, showing how a lightweight diversity scheme can force the time needed for a large compromise into the scale of years.
منابع مشابه
MeterGoat: A Low Cost Hardware Platform for Teaching Smart Meter Security
Smart meters play an important role in smart grid architectures by enabling best operational efficiency, enhanced usage monitoring and variable pricing structure, among other advantages. On the other hand, meters have often been deployed with several security vulnerabilities that can compromise the mentioned benefits and result in cyber attacks. Therefore, teams involved in the development of s...
متن کاملHP ProtectTools Firmware security features in HP Compaq business notebooks
Pre-boot authentication on HP Compaq business notebooks ...................................................................... 3 Power-on password authentication overview........................................................................................ 4 Enabling power-on password......................................................................................................... 4 Sm...
متن کاملSmart Grid Data Analytics for Electric Utilities
Author: Andre Szykier CEO/CTO GridPlex Networks LLC Copyright © 2010 P ag e1 Demand Response and Grid Management are power utility initiatives driven by Federal and State stimulus programs to make the electric grid more reliable, secure and intelligent. The first step in making a grid “smart” is by replacing existing end user power utility meters with smart meters that support bi-directional co...
متن کاملFuture Applications Based on the Data Provided by next Generation of Smart Meters
Smart Meters have been called "Smart" for their communication capabilities, advanced billing configuration, event logging and register functions. Until now, DSOs have had little insight of the distribution grid, due to the absence of monitoring devices located at distribution-lines. Nowadays distribution networks are developing new capabilities with the installation of Smart Meters. Now it beco...
متن کاملTowards Automated Classification of Firmware Images and Identification of Embedded Devices
Embedded systems, as opposed to traditional computers, bring an incredible diversity. The number of devices manufactured is constantly increasing and each has a dedicated software, commonly known as firmware. Full firmware images are often delivered as multiple releases, correcting bugs and vulnerabilities, or adding new features. Unfortunately, there is no centralized or standardized firmware ...
متن کامل