Search:  
  Contact  |   Advertise  |   Advanced Search
   Get SGN's free email newsletter
    What's in the SGN email?  |  Twitter |   Facebook |   Linkedin |   RSS

Smart Grid News
Feature Article
DNP Secure Authentication – Essential to Smart Grid Progress
Nov 18, 2008

Talk Back to the AuthorCurrent Comments (14)Leave a Comment
SGN Scorecard on DNP Security
The scalability score does not accurately reflect the issue in using CHAP in a Smartgrid system that includes smart meters. Consider a system with 10M meters. CHAP would impose a significant communication bandwidth issue and is basically not usable.
Herbert Falk - 11/21/2008 - 03:28

No DNP Security to meters
Hi Herb! Right now, nobody is proposing using DNP to connect to meters. Quite a few are talking about using it to connect poletop distribution automation devices over a metering network such as wireless mesh, but that's hundreds or thousands of devices, not millions.
Grant Gilchrist - 12/01/2008 - 06:52

Reply to email: Yes, the mechanics are in the standard
Hi,

I'm posting the following information because I received an email from a prominent utility asking about it:

Yes, the mechanics - the algorithms, state machines, messages and behaviour - of the key exchanges are all either described in the specification itself or in open specifications from NIST, the IETF, ISO or IEC. Our intent from the very beginning of the work was to make the specification completely open. Neither the IEC nor the DNP Users Group would have accepted the specification otherwise.

This was not just a philosophical decision, but it is also good security. It has been proven over and over again that proprietary security schemes are less secure because nobody has reviewed them to find their holes. One doesn't want to be trying to re-invent the wheel! The most secure systems are those in which the complete mechanism is known to everyone, and only the keys are secret. Bruce Schneier, the noted cryptographic expert and author of some of the definitive books on the subject, talks about this a lot:

http://www.schneier.com/crypto-gram-9902.html

http://www.schneier.com/crypto-gram-0205.html

Yes, the intent is that the method to remotely change the pre-shared keys will also be open. I am working on that project now.

Yes, there will be multiple vendors implementing the software. I know of at least three companies who are developing independent implementations. EPRI is running a project that will have the specification and multiple vendor implementations reviewed by experts, and is planning to set up interoperability testing in the new year.

The following is a list of the open standards and algorithms used in the DNP Secure Authentication specification:

- Challenge-Handshake Authentication Protocol (RFC 1994)

- FIPS 198 Keyed-Hash Message Authentication Code

- FIPS 180-2 Secure Hash Standard (SHA-1 and SHA-256)

- FIPS 186-2 Digital Signature Standard pseudo-random numbers

- FIPS 197 Advanced Encryption Standard (AES-128)

- FIPS AES Key Wrap Algorithm to distribute session keys

- IEC 62351-5 Security for IEC 60870-5 and Derivatives

- IEC 62351-3 Security for Profiles Using TCP/IP

- ISO/IEC 9798-4 Entity Authentication - Using a Security Check Function

Grant Gilchrist - 12/01/2008 - 07:06

Authentication vs Encrytption
Hi Grant,

I'm kind of curious why the Utilities declined encryption. CAL-ISO has employed encryption base DNP devices (DPGs and RIGs) with success over public networks for many years. It would appear that deployment would be from EMS or Master Stations to Remote units which would require new code on both sides. EMS and Master Stations have seemed to struggle implementing simple DNP changes over the years and this seems to be a major effort. With Encryption, it would seem you could use a third party box at least easier to implement on the EMS side which would eliminate this requirement.

Just curious for your comments and what you see as the pro's and con's of Encryption vs Authentication.

Howard Self - 01/09/2009 - 08:53

Authentication vs Encryption
Hi! The idea behind removing the requirement for encryption, and permitting only portions of the protocol to be authenticated, was to remove as much of the cryptography burden as possible from smaller devices. The DNP application space is full of low-cost devices with limited processing power. When asked in this context, the utilities agreed that encryption was not vital. This proposal was not intended to eliminate the use of "bump in the wire" solutions, but as an alternative that might be cost-effective for many utilities: few boxes to buy.
Grant Gilchrist - 02/06/2009 - 10:57

utilities decline encryption to gain exclusivity excuse
"I'm kind of curious why the Utilities declined encryption." - Howard

While Grant is correct that "permitting only portions of the protocol to be authenticated" does "remove as much of the cryptography burden as possible from smaller devices" this is not much of an excuse. Efficient techniques exist to compile code or ASICs for low-cost devices that allow them to reliably encrypt reports - indeed to assemble a report in encrypted form in the first place (only).

Aside from the effect on "bump in the wire" types of solutions, utilities will be able to deny third parties access to their networks on the excuse that critical infrastructure data is not all universally encrypted. This will prevent deployment of robust monitoring and conservation and DR/PLS services that are not controlled by the utility itself, prevent deployment of resilience and human vulnerability related services (fire, security, medical monitor) and generally slow deployment as utilities bill customers for smart meters and other smart grid related expenses. Rather than doing as they should do, and did do in some other countries, which is to require utilities to act as a common carrier for such services, and even for voice over IP (VoIP) and general communications services such as broadband over power line (BPL), and use tariff revenues from these to subsidize the smarter grids.

Admittedly there are problems in requiring every device to be upgraded to encrypt its reporting (relatively easy) and also in requiring devices to respond to encrypted commands (somewhat harder) and in requiring them to soft-upgrade their firmware by remote control or respond appropriately to changes in authentication protocols (the hardest of all). But it needs to be clear that utilities that don't employ universal encryption can't use this as any kind of excuse to delay third party services nor to restrict the network to only their own internal use. They are in a clear conflict of interest when it comes to supporting services that reduce load at least off-peak, and are not motivated generally to help communities meet resilience goals or protect vulnerable persons, as they don't pay any of the consequences (emergency response or health costs). Governments do, so governments should insure these utilities against third party access risk in return for clear tariffed access to the smart grid network assuming the utilities made good security tradeoffs and employ encryption where it is really necessary.

Craig Hubley - 03/25/2009 - 18:44

Is DNP Secure Authentication – Essential to Smart Grid
I do not think it is a good idea for Smart Grid initiatives to wait for DNP or any other protocol to be modified for secured Authentication. Secured authentication is essential for web enabled devices but it may not be that essential for the devices uses industry standard protocols as there are different solutions to deal with the situation. Until the cloud about security is cleared it may be a good idea to use a secured industrial network that is not connected to a public domain or at least logically separated out with a Virtual LAN. Just because it is not connected to public domain does not mean the data or information is not available but ensures it is not prone to security threats.
Velayudhan Panakal - 06/12/2009 - 15:25

DNP is not scalable
To achieve scalability, you need PKI
John Zavgren - 06/25/2009 - 18:20

DNP
Mr. Gilchrist -

I agree with your statements in your reply to "Yes, the mechanics are in the standard".

I agree especially with "It has been proven over and over again that proprietary security schemes are less secure because nobody has reviewed them to find their holes".

I therefore have to ask: Have any implementations of DNP been accredited by the Common Criteria evaluation process? If so which level (EAL 4, EAL 5 EAL 6+ etc)? and who was the evaluator? and can we get a copy of the security target document?

A solid approach can be insecure if it is implemented incorrectly or not maintained, hence the security target with the supported network environment.

Despite the fact that Mr. Schneier and other well respected people write about these tools, they are not actually "reviewed" until they are evaluated, inspected and validated by rigorous process, then given the appropriate validation level.

John Mullen - 07/08/2009 - 16:31

Re-keying
Erich/Grant ... I was happy to see you mention the resource problem associated with re-keying in the article.

In the Internet Security world (dealing with medical applications and HIPAA in particular), we found that the mechanics of the shared-secret key simply don't work when a system becomes compromised. One-way algorithms, such as Mr. Zavgren suggests in his PKI comment, are the fix. I would encourage the EPRI/Enernex/DNP team to consider this the first option as they design the security solution.

It's also interesting that "Sustainability" isn't one of the Smart Grid criteria. The fact that no utility would be able to support a system-wide re-keying function doesn't even register on the scorecard. Given that and the absense of encryption, I would have a hard time supporting the 9 you've given for the "Security" rating.

Paul Molitor - 07/24/2009 - 14:00

SSL/TLS solution
I am interested in the characterization of SSL/TLS strictly as a device to device solution. Since the application specifies the certificate, not the device, it is quite reasonable to have each application operate with a unique certificate and unique authorizations.

Can you clarify why this seems to be a pervasive concern?

I would also like to know if DNP using SSL as we developed it for CAISO would still be compliant with the new requirements. I believe it would score higher than the proposed solution.

Grant Irani - 10/22/2009 - 10:32

running DNP on Smart Grid
Is DNP deployed on the real-world smart grid power line network? Or do Utility companies play safe by deploying DNP on Telecom network?
Noel Nee - 11/25/2009 - 08:40

Great job Grant.
Hi Grant,

Just wanted to say great job. This is something that we have all been discussing for years, and its great to see it brought to the application level.

I believe that utilities will greatly benefit from this authentication scheme and will be more interested in the ability to soft "upgrade" existing devices rather than having to reconfigure their systems with new equipment.

Its definitely something that I have heard time and time again from many engineers at the utilities, even if they are getting bigger budgets, they shouldn't have to spend alot of time rewiring and recommissioning. Any solution that can be implemented in code is always a good solution.

Cheers!

Raj Dyal

Raj Dyal - 03/10/2010 - 11:39

Securing Smart Grid
Great article on learning about Securing Smart Grid 101.
Rick Smith - 04/05/2010 - 10:25

Leave a Comment New to this Blog? Need some help?
Email:[?]
We will not post or give your email address to anyone.
Full Real Name:[?]
Real comments need a real name.
Subject:
[?]
Please provide a short subject for your comment.
Comment:[?]

Do not post commercial/sales messages here. They will be deleted. Try: pr@smartgridnews.com
PLEASE NOTE:  All HTML codes will be removed from your comment.

CAPTCHA Security Code

The numbers (0) and (1) are not used.
[?]
Please type the characters you see into the box.

Remember my name? (Uncheck to forget.)

You can not edit or delete your comment once it is posted. Please check for spelling now.
Your IP Address is: 38.107.191.117






 SMART GRID NEWS TALK BACK BUZZ
New petition for evidence quality in SmartGrid ops
Folks we have a formal petition up before the California PUC we want you to know about. It is a petition to amend CPUC rule making and data storage standards established 30 years ago to ‘address digital evidence standards’ set in the California Appellate Court in California v Khaled, also known now as “the Red-Light Camera Killer”.

Khaled set very specific ...

Talk Back right now to Todd Glassey

 SMART GRID NEWS SCORE CARDS





© 2010 SmartGridNews