Security Operation Modes for Enhancement of Utility Computer Network Cyber-Security

Concerns for utility computer networks´ security and reliability are growing rapidly due to increasing utility devices with connections to external networks. This aggravates vulnerability of utility networks to cyber-attacks through external connections. Though encryption can provide security for user data transmissions, encryption itself could not provide protections against traffic-analysis attacks. Techniques against traffic-analysis attacks through statistically controlling the transmission rate of padded and encrypted frames are unsuited for power system applications. This paper proposes three security operation modes for the newly developed security layer, located below DNP3 data-link layer, to strengthen encryption and authentication operations against the effectiveness of traffic-analysis and cryptanalysis attacks. The security modes use padding to disguise the amount of user data transmitted and disguise the user data-link layer frame amongst a group of manufactured frames similar to statistically controlling data transmission rate. The proposed security operations have been successfully applied to enhance power system security controls.