Skip to main content
SpringerLink
Log in

Threat Modeling of AMI

  • Conference paper
Critical Information Infrastructures Security

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 7722))

Abstract

The introduction of an advanced metering infrastructure (AMI) into the power grid forces the power industry to address information security threats and consumer privacy more extensively than before. The industry needs practical advice on methods and tools to use in this context. Threat modeling is well-known among information security professionals as a method for investigating a system’s vulnerabilities. This paper documents the threat modeling of one actual AMI configuration. The results are both a demonstration of how these techniques can be applied to AMI, and a documentation of risks associated with this specific AMI configuration.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 49.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Cleveland, F.: Cyber security issues for Advanced Metering Infrastructure (AMI). In: 2008 IEEE Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, pp. 1–5 (July 2008)

    Google Scholar 

  2. Line, M.B., Tøndel, I.A., Jaatun, M.G.: Cyber security challenges in Smart Grids. In: 2nd IEEE PES International Conference and Exhibition on Innovative Smart Grid Technologies (ISGT Europe), pp. 1–8 (December 2011)

    Google Scholar 

  3. The Smart Grid Interoperability Panel - Cyber Security Working Group: NISTIR 7628: Guidelines for smart grid cyber security (2010)

    Google Scholar 

  4. The Advanced Security Acceleration Project (ASAP-SG): Security Profile for Advanced Metering Infrastructure (2010)

    Google Scholar 

  5. Swiderski, F., Snyder, W.: Threat Modeling. Microsoft Press (2004)

    Google Scholar 

  6. Shostack, A.: Experiences threat modeling at microsoft. In: Modeling Security Workshop (2008), http://www.comp.lancs.ac.uk/modsec/program.php

  7. Schneier, B.: Attack Trees – Modeling security threats. Dr. Dobb’s Journal (July 2001)

    Google Scholar 

  8. Opdahl, A.L., Sindre, G.: Experimental comparison of attack trees and misuse cases for security threat identification. Information and Software Technology 51(5), 916–932 (2009)

    Article  Google Scholar 

  9. Meland, P.H., Tøndel, I.A., Jensen, J.: Idea: Reusability of threat models – two approaches with an experimental evaluation. In: Massacci, F., Wallach, D., Zannone, N. (eds.) ESSoS 2010. LNCS, vol. 5965, pp. 114–122. Springer, Heidelberg (2010)

    Chapter  Google Scholar 

  10. Jaatun, M.G., Tøndel, I.A.: Covering your assets in software engineering. In: The Third International Conference on Availability, Reliability and Security (ARES 2008), Barcelona, Spain, pp. 1172–1179 (2008)

    Google Scholar 

  11. Qi, H., Wang, X., Tolbert, L.M., Li, F., Peng, F.Q., Ning, P., Amin, M.: A Resilient Real-Time System Design for a Secure and Reconfigurable Power Grid. IEEE Transactions on Smart Grid 2(4) (December 2011)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. SINTEF ICT, Trondheim, Norway

    Inger Anne Tøndel, Martin Gilje Jaatun & Maria Bartnes Line

Authors
  1. Inger Anne Tøndel
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Martin Gilje Jaatun
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Maria Bartnes Line
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Hochschule Luzern - Technik und Architektur, CEO Acris GmbH, Bodenhofstrasse 29, 6005 Luzern, Switzerland and Gjøvik University College, Teknologivegen 22, 2815, Gjøvik, Norway

    Bernhard M. Hämmerli

  2. Faculty of Computer Science and Media Technology, Gjøvik University College, Teknologivegen 22, 2815, Gjøvik, Norway

    Nils Kalstad Svendsen

  3. Department of Computer Science, E.T.S. Ingenieria Informatica, University of Malaga, Campus de Teatinos s/n, 29071, Malaga, Spain

    Javier Lopez

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Tøndel, I.A., Jaatun, M.G., Line, M.B. (2013). Threat Modeling of AMI. In: Hämmerli, B.M., Kalstad Svendsen, N., Lopez, J. (eds) Critical Information Infrastructures Security. Lecture Notes in Computer Science, vol 7722. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-41485-5_23

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-41485-5_23

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-41484-8

  • Online ISBN: 978-3-642-41485-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation