Skip to Main Content
This paper proposes a new network cyber-security architecture for smart (energy-efficient, environmental-friendly, cost-effective, etc.) power distribution system operations. The focus is on providing cyber-security for smart (time-of-use scheduling, smart metering, dispersed generation tracking, etc.) load-management devices that are networked for collaborative operations and accessible by utility staff and consumers. The proposed architecture utilizes DNP3 to produce protocols disjoint between DNP3 devices for strictly regulated power system operations and TCP/IP devices for smart load management accessible by utility consumers. The protocols disjoint limits effectiveness of attacks from consumer TCP/IP devices. As DNP3 does not provide sufficient security for collaborative operations, security enhancements to DNP3 are proposed using data object security and a security layer. The data object security provides access rules to devices, preventing unauthorized manipulation of device operations and data. The security layer provides confidentiality through encryption for consumer information and prevents cyber-attackers from identifying utility targets.