An Efficiency Firmware Verification Framework for Public Key Infrastructure with Smart Grid and Energy Storage System

TL;DR

This paper introduces a secure, efficient firmware verification framework based on PKI for resource-constrained smart grid devices, enhancing security and reliability against cyber threats.

Contribution

It presents a novel PKI-based firmware signing and verification framework utilizing CBOR and COSE formats tailored for smart meters and similar devices.

Findings

Ensures secure firmware updates against IT and OT attacks

Addresses performance issues in resource-constrained devices

Enhances smart grid system reliability and stability

Abstract

As a critical component of electrical energy infrastructure, the smart grid system has become indispensable to the energy sector. However, the rapid evolution of smart grids has attracted numerous nation-state actors seeking to disrupt the power infrastructure of adversarial nations. This development underscores the urgent need to establish secure mechanisms for firmware updates, with firmware signing and verification serving as pivotal elements in safeguarding system integrity. In this work, we propose a digital signing and verification framework grounded in Public Key Infrastructure (PKI), specifically tailored for resource-constrained devices such as smart meters. The framework utilizes the Concise Binary Object Representation (CBOR) and Object Signing and Encryption (COSE) formats to achieve efficient da-ta encapsulation and robust security features. Our approach not only en-sures the secure deployment of firmware updates against the convergence of information technology (IT) and operational technology (OT) attacks but also addresses performance bottlenecks stemming from device limitations, thereby enhancing the overall reliability and stability of the smart grid sys-tem.