A faut - and intrusion - tolerant architecture for EDP Distribuição scada system
| Autor(a) principal: | |
|---|---|
| Data de Publicação: | 2011 |
| Tipo de documento: | Dissertação |
| Idioma: | eng |
| Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| Texto Completo: | http://hdl.handle.net/10451/13932 |
Resumo: | Over recent decades there has been a great investment in creating an infrastructure for energy distribution that offers a higher quality of service and also a greater coverage over the Portuguese national territory. However, the expansion of facilities and the power grid do not guarantee by themselves the required quality of service, despite the increased robustness and reliability of the more recent technologies. It is very important to monitor the entire infrastructure at all times in order to respond as fast as possible to incidents and failures that occur in the power grid. The main objective is to reduce the downtime of the service provided to electricity consumers and to increase the quality of service. The role of performing a quick and effective oversight of the entire infrastructure of power distribution is delegated to the utility providing the distribution grid. Its main objective is to optimize the flow of energy by managing and operating the power grid, ensuring quality of technical service. In addition to being alert to any incident, the network operators are also responsible to initiate all the necessary measures to solve them, according to the analysis made at the time. Nowadays, these functions of great responsibility are facilitated by management tools, usually supervisory control and data acquisition (SCADA) systems that allow remote monitoring and control of the EDP Distribuição power grid. However, the monitoring of the power grid has not always been supported by sophisticated technologies. Before the appearance of information systems, the oversight of the facilities was carried out locally by grid operators who worked in shifts covering high voltage substations twenty four hours a day, seven days a week, ensuring control and incident management at all times. With the development of information technologies and communications, the SCADA systems emerged. These systems are the most valuable tools on providing supervision and operation of the electric power system in near real‐time [1]. The SCADA system have a very complex architecture composed by information systems and database applications which receive realtime information and execute commands over different electrical components on the several telemetry electrical sites, based on sensors, actuators and controllers thereby present. The SCADA systems implementation results in better manageability of the power grid, the reduction of operation costs, and allowing the automation of procedures and the standardization of processes at national level. In EDP Distribuição, the SCADA system only represents one of the core systems of Generation Network Information System(GENESys), a system that incorporates the features and functionalities of SCADA but also the management of the distribution of energy, provided by a Distribution Management System (DMS).The GENESys platform represents the core of the EDP Distribuição power grid management and its robustness, reliability and availability is critical, considering the functionalities it provides. The current architecture of the EDP system as some weaknesses and lacks on the ability of tolerating faults within its structure. We propose a fault‐ and intrusion‐tolerant architecture for GENESys, aiming on a more dependable and secure system. The architecture is mainly composed by three different layers which we address with three dedicated solutions with the view of better global results. For the lower layers of the system, the Telemetry Sites and the Frontend Sites, we propose faulttolerant mechanisms based on redundancy with applicational management. For the backend systems layer we propose the implementation of an intrusion‐tolerant replication protocol since both SCADA and DMS services are crucial for a dependable and secure management of the EDP Distribuição power grid. The MinBFT protocol will provide an extra layer of security to the backend systems since the state machine replication algorithm will guarantee that if an attacker compromises one of the system replicas he will not be able to control and jeopardize the power grid operation. Furthermore, we perform two different analyses over the proposed architecture, always dividing it by the three covered layers. The first analysis objective is to understand which are the fault tolerance capabilities introduced to the different layers of GENESys by our solutions. In the second, we perform a cost‐benefit analysis to infer about the viability of our proposals by acknowledging both their costs and the technical and operational benefits. |
| id |
RCAP_6ba970e80327d00c4efcd827555cce47 |
|---|---|
| oai_identifier_str |
oai:repositorio.ul.pt:10451/13932 |
| network_acronym_str |
RCAP |
| network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository_id_str |
7160 |
| spelling |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada systemDependabilitySCADASecurityFault ToleranceElectricity DistributionIntrusion ToleranceGENESysOver recent decades there has been a great investment in creating an infrastructure for energy distribution that offers a higher quality of service and also a greater coverage over the Portuguese national territory. However, the expansion of facilities and the power grid do not guarantee by themselves the required quality of service, despite the increased robustness and reliability of the more recent technologies. It is very important to monitor the entire infrastructure at all times in order to respond as fast as possible to incidents and failures that occur in the power grid. The main objective is to reduce the downtime of the service provided to electricity consumers and to increase the quality of service. The role of performing a quick and effective oversight of the entire infrastructure of power distribution is delegated to the utility providing the distribution grid. Its main objective is to optimize the flow of energy by managing and operating the power grid, ensuring quality of technical service. In addition to being alert to any incident, the network operators are also responsible to initiate all the necessary measures to solve them, according to the analysis made at the time. Nowadays, these functions of great responsibility are facilitated by management tools, usually supervisory control and data acquisition (SCADA) systems that allow remote monitoring and control of the EDP Distribuição power grid. However, the monitoring of the power grid has not always been supported by sophisticated technologies. Before the appearance of information systems, the oversight of the facilities was carried out locally by grid operators who worked in shifts covering high voltage substations twenty four hours a day, seven days a week, ensuring control and incident management at all times. With the development of information technologies and communications, the SCADA systems emerged. These systems are the most valuable tools on providing supervision and operation of the electric power system in near real‐time [1]. The SCADA system have a very complex architecture composed by information systems and database applications which receive realtime information and execute commands over different electrical components on the several telemetry electrical sites, based on sensors, actuators and controllers thereby present. The SCADA systems implementation results in better manageability of the power grid, the reduction of operation costs, and allowing the automation of procedures and the standardization of processes at national level. In EDP Distribuição, the SCADA system only represents one of the core systems of Generation Network Information System(GENESys), a system that incorporates the features and functionalities of SCADA but also the management of the distribution of energy, provided by a Distribution Management System (DMS).The GENESys platform represents the core of the EDP Distribuição power grid management and its robustness, reliability and availability is critical, considering the functionalities it provides. The current architecture of the EDP system as some weaknesses and lacks on the ability of tolerating faults within its structure. We propose a fault‐ and intrusion‐tolerant architecture for GENESys, aiming on a more dependable and secure system. The architecture is mainly composed by three different layers which we address with three dedicated solutions with the view of better global results. For the lower layers of the system, the Telemetry Sites and the Frontend Sites, we propose faulttolerant mechanisms based on redundancy with applicational management. For the backend systems layer we propose the implementation of an intrusion‐tolerant replication protocol since both SCADA and DMS services are crucial for a dependable and secure management of the EDP Distribuição power grid. The MinBFT protocol will provide an extra layer of security to the backend systems since the state machine replication algorithm will guarantee that if an attacker compromises one of the system replicas he will not be able to control and jeopardize the power grid operation. Furthermore, we perform two different analyses over the proposed architecture, always dividing it by the three covered layers. The first analysis objective is to understand which are the fault tolerance capabilities introduced to the different layers of GENESys by our solutions. In the second, we perform a cost‐benefit analysis to infer about the viability of our proposals by acknowledging both their costs and the technical and operational benefits.Bessani, Alysson NevesRepositório da Universidade de LisboaMedeiros, Nuno André Carnido2012-02-02T15:59:23Z2011-112011-11-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttp://hdl.handle.net/10451/13932enginfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-08T15:59:25Zoai:repositorio.ul.pt:10451/13932Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T21:35:51.510331Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
| dc.title.none.fl_str_mv |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| title |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| spellingShingle |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system Medeiros, Nuno André Carnido Dependability SCADA Security Fault Tolerance Electricity Distribution Intrusion Tolerance GENESys |
| title_short |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| title_full |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| title_fullStr |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| title_full_unstemmed |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| title_sort |
A faut - and intrusion - tolerant architecture for EDP Distribuição scada system |
| author |
Medeiros, Nuno André Carnido |
| author_facet |
Medeiros, Nuno André Carnido |
| author_role |
author |
| dc.contributor.none.fl_str_mv |
Bessani, Alysson Neves Repositório da Universidade de Lisboa |
| dc.contributor.author.fl_str_mv |
Medeiros, Nuno André Carnido |
| dc.subject.por.fl_str_mv |
Dependability SCADA Security Fault Tolerance Electricity Distribution Intrusion Tolerance GENESys |
| topic |
Dependability SCADA Security Fault Tolerance Electricity Distribution Intrusion Tolerance GENESys |
| description |
Over recent decades there has been a great investment in creating an infrastructure for energy distribution that offers a higher quality of service and also a greater coverage over the Portuguese national territory. However, the expansion of facilities and the power grid do not guarantee by themselves the required quality of service, despite the increased robustness and reliability of the more recent technologies. It is very important to monitor the entire infrastructure at all times in order to respond as fast as possible to incidents and failures that occur in the power grid. The main objective is to reduce the downtime of the service provided to electricity consumers and to increase the quality of service. The role of performing a quick and effective oversight of the entire infrastructure of power distribution is delegated to the utility providing the distribution grid. Its main objective is to optimize the flow of energy by managing and operating the power grid, ensuring quality of technical service. In addition to being alert to any incident, the network operators are also responsible to initiate all the necessary measures to solve them, according to the analysis made at the time. Nowadays, these functions of great responsibility are facilitated by management tools, usually supervisory control and data acquisition (SCADA) systems that allow remote monitoring and control of the EDP Distribuição power grid. However, the monitoring of the power grid has not always been supported by sophisticated technologies. Before the appearance of information systems, the oversight of the facilities was carried out locally by grid operators who worked in shifts covering high voltage substations twenty four hours a day, seven days a week, ensuring control and incident management at all times. With the development of information technologies and communications, the SCADA systems emerged. These systems are the most valuable tools on providing supervision and operation of the electric power system in near real‐time [1]. The SCADA system have a very complex architecture composed by information systems and database applications which receive realtime information and execute commands over different electrical components on the several telemetry electrical sites, based on sensors, actuators and controllers thereby present. The SCADA systems implementation results in better manageability of the power grid, the reduction of operation costs, and allowing the automation of procedures and the standardization of processes at national level. In EDP Distribuição, the SCADA system only represents one of the core systems of Generation Network Information System(GENESys), a system that incorporates the features and functionalities of SCADA but also the management of the distribution of energy, provided by a Distribution Management System (DMS).The GENESys platform represents the core of the EDP Distribuição power grid management and its robustness, reliability and availability is critical, considering the functionalities it provides. The current architecture of the EDP system as some weaknesses and lacks on the ability of tolerating faults within its structure. We propose a fault‐ and intrusion‐tolerant architecture for GENESys, aiming on a more dependable and secure system. The architecture is mainly composed by three different layers which we address with three dedicated solutions with the view of better global results. For the lower layers of the system, the Telemetry Sites and the Frontend Sites, we propose faulttolerant mechanisms based on redundancy with applicational management. For the backend systems layer we propose the implementation of an intrusion‐tolerant replication protocol since both SCADA and DMS services are crucial for a dependable and secure management of the EDP Distribuição power grid. The MinBFT protocol will provide an extra layer of security to the backend systems since the state machine replication algorithm will guarantee that if an attacker compromises one of the system replicas he will not be able to control and jeopardize the power grid operation. Furthermore, we perform two different analyses over the proposed architecture, always dividing it by the three covered layers. The first analysis objective is to understand which are the fault tolerance capabilities introduced to the different layers of GENESys by our solutions. In the second, we perform a cost‐benefit analysis to infer about the viability of our proposals by acknowledging both their costs and the technical and operational benefits. |
| publishDate |
2011 |
| dc.date.none.fl_str_mv |
2011-11 2011-11-01T00:00:00Z 2012-02-02T15:59:23Z |
| dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
| dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
| format |
masterThesis |
| status_str |
publishedVersion |
| dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10451/13932 |
| url |
http://hdl.handle.net/10451/13932 |
| dc.language.iso.fl_str_mv |
eng |
| language |
eng |
| dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
| eu_rights_str_mv |
openAccess |
| dc.format.none.fl_str_mv |
application/pdf |
| dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
| instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| instacron_str |
RCAAP |
| institution |
RCAAP |
| reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| repository.mail.fl_str_mv |
|
| _version_ |
1799134257593974784 |