A Sophisticated Secured Smart Metering System

Mohamed Hassan Abdel Hamied Essam M. Ramzy Hamed Ayman M. Bahaa-Eldin

Arab Academy for Science and
Technology and Maritime Transport
College of Computing and Information
Technology (CCIT)
Cairo, Egypt
Arab Academy for Science and
Technology and Maritime Transport
College of Computing and Information
Technology (CCIT)
Cairo, Egypt
Misr International University
On Leave From Ain Shams University
Faculty of Engineering
Cairo, Egypt

[email protected]
[email protected] [email protected]

Abstract— Security has become very important for the smart
metering system to maintain its user privacy and prevent its
vulnerability which may cause information misuse and prevent
it from sabotaging the system. Cyber-attacks, if not prevented,
may cause instability in the energy supply which in turn
negatively affects the infrastructure of the grid. Previous
metering systems have many disadvantages such as the presence
of transfer keys that have no encryption, the use of large
numbers of keys in initial state, and the collection of
consumption readings which depends on the number of smart
meters in the chain. In this paper, an innovative authentication
and security system designed for smart metering in smart grids
is proposed. This new system is distinguished by its ability to
protect the two ways of communication and its use of a small set
of keys while not adding much complexity to the message size.
Combining routing security to protect the gateways and access
control list that monitors and filters traffic to enhance the
overall security, the proposed model in this article proved to be
efficient and secure.
without a need for supply from the macrogrid [3] using
renewable energy sources (RES). The information subsystem
is responsible for the metering data that is collected from
customers, sensors and phasor measurement units (PMUs) to
monitor the grid state [3]. The communication subsystem is
responsible for connectivity and exchange of information. It
can be wired (ADSL, PLC, Fiber) and wireless (WIFI, LTE,
Zigbee, WIMAX, Bluetooth) [5]. Smart management is the
brain of the smart grid which uses a set of tools and a system
software such as supervisor control and data acquisition
(SCADA), remote terminal unit (RTU), meter data
management system (MDMS), outage management system
(OMS), load management system (LMS), and demand
response management system (DRMS) [6]. The smart
protection is responsible for electricity reliability, recovery
(self-healing) from failure state, and prevention of asset attack
and cyber-attack [1], [7].

Keywords— smart grid, smart metering system, bit-wise

operation, OSPF routing protocol, traffic filtering

I. INTRODUCTION
Modern life is mainly based on using electricity.
Therefore, enough electricity has to be generated for all types
of customers in different locations (home, factory, etc.) which
in turn leads to an increase in fossil fuel emissions threatening
life on Earth. People nowadays dream to live a smart life
enjoying smart homes that allow the dweller to automate
control of lights, temperature, sound system, and security
cameras. As a result, a need arises to develop a new
technology that meets these customers’ increasing and
changing demands. Classical electricity grid that is formed of
a set of assets and generates and transmits electricity in one
way from the generation site to the consumption site cannot
meet the new customers’ demands. Smart grid, as a result, is
introduced as a new model of electricity grid that allows
information and power flow on both ways between utility and
customers as shown in Fig. 1, and is classified into three Fig. 1. Smart grid electricity and information flow framework
technical perspectives: smart infrastructure, smart
management and smart protection [1], [2]. This paper is organized as the following: Section II
describes the smart metering infrastructure and attack
The smart infrastructure allows the flow of energy in both analysis. Related works are discussed in section III. Section
directions and consists of energy, information and IV describes the three levels of security in the proposed model.
communication subsystems [3]. The energy subsystem The experimental results found in section V, and the
contains generation, transmission and distribution [4]. The conclusion is in section VI.
generation level of electricity in smart grid shows a new
pattern developed to generate electricity in a distribution level II. SMART METERING INFRASTRUCTURE AND ATTACKS
called “distributed generation” (DG) using a distributed
energy resource (DER) like solar systems and wind turbine. In The smart metering is an important part of the smart grid.
the case of power outages from the electricity grid, the It is a new technology that will provide a new model for the
distributed generation will provide electricity to the microgrid measurement system and is completely different from the old

978-1-7281-3780-3/19/$31.00 2019
c IEEE 171
 system. It provides customers with information on how to use
and rationalize energy consumption. It consists of, Smart
meter: is a smart device installed in the customer's site to
measure the consumption of electricity used by the customer
in real time. It communicates by a wireless or wired network
with utility to transfer data for billing and management
purposes [8]-[9]. Advanced metering infrastructure (AMI): it
is an integrated system that contains smart meters,
applications, communication devices to (send / receive) data
between the smart meter and utility such as the ability to
automatically and remotely measure electricity use, connect
and disconnect service, identify and isolate outages, and
monitor voltage [10]-[12].
A. Components of Smart Metering
The components of the advanced metering infrastructure
[13] as shown in Fig. 2 are:
x Smart devices: These are the devices which the
customer has in the customer site and are connected
with the smart meter through the home energy
management system (HEMS) to control resources
inside the home area network (HAN) and provide a
demand response [14].
x Smart meters: These calculate the customer
consumption and send this information periodically to
the collector. It connects with the collector through the
neighbor area network (NAN).
x Collector: It collects consumption from different
meters and throws it to the distributed local
management through a Wide Area Network (WAN).
x Local management: Customer's consumption data is
stored in MDMS to control the user billing and
operators using this data with other applications such
as OMS, LMS/ DRMS, and customer information
system (CIS) to control the grid status.
x User application: It is used by the customer’s smart
phone to pay and monitor them consumption.
Fig. 2. Advanced metering infrastructure framwork
B. Attack Analysis
Many governments now started resorting to installing
millions of smart meters in customer sites and the number is
increasing daily. This system allows utility to control
172 Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
consumption and enables the remote control in the connection
and separation of electricity. As a result, it keeps the privacy
of customers and secures the data traded between utility and
customers from people with bad intentions.
x Attack Impetus: There are many purposes that
empower malicious users to attack a smart metering
system such as theft: Monitoring specific meters, as a
result, became possible through analyzing the
electricity consumption behavior to know the time
people are at home. Thus, facilitating theft as shown in
Fig. 3, Avenging: If an employee was fired, he would
try to take revenge by decreasing the utility earning via
causing failures, Challenge: Attackers with bad
intentions may invade the systems of big companies,
and War and Terrorism: Electricity grid has become a
national security. A country's enemies or terrorists can
get important information to do blackout to hurt a
victim.
Fig. 3. Electricity consumption through one day
x Attack Types: There are two types of attacks that might
happen on communication in a smart grid, passive
attacks and active attacks. In both types, attackers are
looking for weak points to perform their attacks on the
smart metering [15]-[16]. Passive attacks: The attacker
monitors the data but does not do any modification to
the data or cause harm to the grid infrastructure such
as eavesdropping [7]. Active attacks: The attacker
monitors data and does modifications to the transferred
data such as (management message, automatic meter
reading) and harmful things to the grid infrastructure
such as (shutout any hardware device in smart
metering system). As denial of service, the attacker
makes massive requests to down any part of the grid
[17], Spoofing Intruder sends data to control center or
management message to smart meter to appear as if it
is coming from an authorized node [18].
C. Attacks Countermeasure Tools
It is expected that there are huge amounts of data, bigger
than the Internet capacity, that will be transferred over the
smart metering system. This is because the devices at the
customer's will be connected to a smart grid [8]. CIA model
will achieve the suitable security for smart metering
transmitted data [19]-[20].
x Cryptography Services: Used to supply confidentiality
and authentication by Converting a readable message
to a non-readable message through which the receiver
will be the only one who has the ability to decipher the
 text [3]. Classified into symmetric and asymmetric
algorithm, Symmetric algorithm using the same key to
convert readable message to unreadable message and
vice versa, asymmetric algorithm using pair key one to
convert readable message to unreadable message and
other to vice versa [6], [21]-[22]. Hash function it is
one-way function take any length of input data and
using mathematical model to calculate fixed length of
hash, receiver doing the same hash calculation and
comparing with received to assure integrity [6], [21].
x Routing protocol: is used to configure and reconfigure
in recovery state after the failure of incidence inside
distribution network [23]. Classified into static and
dynamic [24]. Open Shortest Path First (OSPF) in the
proposed model. It is an open standard link state
protocol developed to be used in a large company. It
calculates the shortest path by using DIJKSTA
algorithm and performs neighbor's relationship that is
called “adjacency” by exchanging Hello Packet with
the specific parameters such as hello interval, dead
interval, area flag and authentication. After that,
information is shared with neighbors, while the Hello
Packet is considered as a keep-alive tool to discover if
neighbor's relationship is unavailable. The backbone
router connects to area 0 and the area border router
(ABR) that connects at least two different areas [25].
OSPF uses authentication to secure routing update and
prevents malicious or incorrect routing information. It
has two types of authentication clear text and
cryptographic using MD5 [26].
x Traffic filtering: Inexpensive way to isolate malicious
and unnecessary traffic from accessing the network by
analyzing incoming and outcoming traffic based on a
set of parameters such as IP source and destination,
port source and destination and protocol [27] used to
face denial of service attack that sends sufferer
plurality of requests to fill up victim resources such as
bandwidth, processor and memory to prevent the
sufferer from responding to any new requests [28].
x Bit-wise: In the proposed model, suppose that all AES
keys are built in main chip during manufacturing so we
cannot use the same keys to authenticate nodes and
encrypt data forever. It uses the bit-wise technique to
generate encryption result. The DNA is composed of
four types of nucleotide namely A, C, G, T (A -
adenine, C - cytosine, G - guanine, T - thymine) [29]-
[30], so suppose all smart meters and Autonomous
system (AS) is also called service provider (SP) or
local management center have reference tables for
nucleotide. At the authentication step, AS generates
DNA sequence (S) that is composed of nucleotide
letters. Smart meters and AS convert the consumption
reading to binary and DNA sequence (S) according to
reference table. Bit-wise will perform using one bit
from reading binary with one bit from DNA sequence
(S) and finally convert result of this operation to string
then complete the model steps.
III. RELATED WORK
Tanvi Mehra Proposed algorithm [11] to secure access in
the advanced metering infrastructure communication network
by using 4-way handshake to authenticate a new smart meter
with authentication server, authenticated smart meter will get
Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
its own unique pattern key to communicate with another node
in the network using RTS/CTS frame. But this algorithm has
several problems to be addressed 1) It allows for attaching the
key to RTS frame and transfer in the communication network
without any encryption. 2) It does not determine the schedule
of consumption reading sent by smart meters. 3) It does not
specify how to transfer the management messages.
Vijay Kumar Proposed bootstrap protocol [31] using 4
keys to authenticate wakeup smart meter and symmetric
session key to encrypt transferred data from smart meter to
control center. The proposed protocol has several problems to
be addressed as follows: 1) Using a large number of keys for
boots. 2) The author supposes that the smart meter is
connected directly to the local management or collector but he
does not determine how smart meters authenticated together
for communication purpose.
Ye Yan Proposed [32] integrated authentication and
confidentiality (IAC) protocol using neighbors authenticated
smart meter as an authenticator for new start up smart meter
with a four-way handshake. The proposed protocol has
problem as follows: 1) Hop-by-hop for billing data and
management message between the smart meter and the
collector makes the size of the encrypted information large
and equivalent to the chain.
Utku Ozgur proposed [33] developed system provides
privacy with the paillier cryptosystem and two authentication
factors openSSL and ECDSA. implement the aggregation
model over the realistic testbed (Beaglebone Black Board) and
compare the results with the NS3 simulation-based solution.
The proposed protocol has problems as follows: 1) Commands
messages are not simulated. 2) TCP parameters are different
between sim and testbed.
Samet Tonyali [34] design multicast firmware update
protocol provides confidentiality, access control, and message
authentication. The proposed protocol has a problem as
follows: That the structure of access tree affects the size and
computation time of signcrypt/designcrypt process.
Pardeep Kumar [35] Provide two-way security scheme
that is secure and energy efficient (computational and
communication). The proposed protocol too has problem as
follows: MAC encryption algorithm adds the burden of the
encryption process.
IV. PROPOSED MODEL
The proposed model consists of three levels of security to
secure the AMI communication. The first level is the routing
security level, the second level is the traffic filtering (packets
filter) and the third is the proposed End-to-End (E2E) level.
A. Routing Security Protocol Level
The objective of this level is to authenticate exchange
routing messages to prevent rouge from injecting fake routing
information and causing unstable network or DOS attack. The
proposed model using OSPF logical hierarchy architecture
with two types of areas. First type: Is backbone area (area 0).
It contains both a local management router and a collector
router (backbone routers). The collector router works as ABR
holding independent topology database for each area. Second
type: Is a totally stubby area (area 1) that contains smart
meters router (internal routers) that is known as the only route
inside area 1 (intra-area) in addition to the default route to go
outside area 1 through ABR (inter-area). This is to conserve
173
 bandwidth and reduce CPU loads. In both areas, "set hello"
interval sends every 10 second between neighbors and dead
interval 40 second with cryptographic authentication MD5
hash using specific authentication key that we suppose is set
in AS before installation. Adjacency will not have done if
there are any different parameters between neighbors as
shown in Fig. 4.
Fig. 4. OSPF build and keep-alive neighbours flowchart
B. Traffic Filtering Level
The objective of traffic filtering is to allow legal traffic
to pass and drop illegal traffic. Access control list (ACL) is
applying over routers to filter ingress traffic to prevent DOS
attack. ACL used to deny Internet Control Message Protocol
(ICMP) packets with no echo-reply from the node's network.
ACL is composed of a set of permits and denies conditional
statements that processed top-down by router operating
system Fig. 5 illustrates the ACL packet filtering.
Fig. 5. ACL traffic filtering flowchart
C. The Proposed End-to-End Security Protocol Level
There are three goals for this level. First: Authenticate
collectors and smart meters, second: Secure real time
aggregates data that is transferred from the smart meters to the
autonomous system and last is the secure commands that are
sent from AS to the smart meters.
174 Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
All devices have their own database and consist of a client
table: Used to save and retrieve authenticated neighbors (ID,
public key, AES key, client types (type 1 for collectors, type
2 for smart meters)) in AS, (ID and Public key) in collector,
(ID, Public key) in the smart meters. Client root table: To save
route to other authenticated devices connected directly or via
another authenticated device. My property table: To save and
retrieve owned information (AES key (Kas), private key
(PRas), public key (PUas), DNA Sequence (S), ID (IDas)) in
AS, (AES key (Kc), private key (PRc), public key (PUc), ID
(IDc)) in collector, (AES key (K), private key (PR), public key
(PU), DNA Sequence (S), ID (ID)) in smart meters. Message
Table: To store (smart meter ID, date, consumption reading)
in AS, received message (date, data, type (unicast type 1,
broadcast type 2, multicast type 3)) in smart meters.
1) Authenticate Collector and Smart Meters: This
authentication is accomplished to provide access to the AMI
according to credential founding in local management
authentication server.
a) The Collector authentication: Collector owned Kc,
IDc burned in main chip during manufacturing. AS register
Kc, IDc in owned client table and operators enter client type
(collectors=type1) Before installing the collector. When the
collector starts to run send IDc, and hash (SHA-256) of IDc
and Kc to AS. AS does the same hash calculation. If two
hashes are equal, AS adds IDc in client root table and sends
possess IDas and PUas (RSA 1024) to collector. Collector
stores PUas, IDas in client table, and generates owned PRc
and PUc keys then sends PUc with IDc to AS. AS stores
Collector PUc in the client table record.
b) The smart meter authentication is directly
connected to the collector: Same as what happened in hash
collector calculation at start up with the different that client
type is 2. Authenticated collector adds his IDc to help AS
determine the place of smart meter then signs message. AS
verifies sign If it right, verify smart meter hash then add smart
meter ID1 in the client root table that route through collector
IDc. Respond to collector signed message contains of DNA
Sequence (S) encrypted by K1. Collector verifies the sign and
adds his IDc, PUc to the original message and sends it back
to the requested smart meter. Smart meter decrypts the
message by K1 and store IDc, PUc in client table, S in my
property table. Generate possesses PR1, PU1 and sends ID1,
PU1 to collector. The collector adds ID1, and PU1 in it is
client table and ID1 in client root table.
c) Smart meter authentication which is connected to
collector throws another smart meter: As shown in Fig. 6,
Authenticated smart meter adds the requested meter ID2 in
client root table and adds his ID1 then signs the message.
Collector verifies sign and does the same previews process.
AS verifies sign and requests a meter hash. Respond signed
message contains a DNA Sequence (S) encrypted by K2.
Collector verifies sign and adds his IDc, PUc then signs
message back it to the authenticated smart meter.
Authenticated smart meter verifies sign then adds its ID1 and
backs it to the requested smart meter. Requested Smart meter
decrypts message by using K2 and stores IDc, PUc in client
table and When finds ID1 known it is not directly connected
to collector, S in my property table. Requested Smart meter
responds to collector by its ID2, PU2.
 Fig. 6. Smart meter authentication throws another smart meter
2) Secure Real Time Aggregate Data: Smart meter
encrypts its reading through converting consumption reading
and DNA Sequence (S) to binary then inserts first one bit
from binary of consumption reading then first one bit from
DNA Sequence (S) binary and so on. It converts the binary
result to a string form then adds the timestamp and the own
IDx, then signs the message. The collector verifies the sign
and adds IDc then resigns the message. AS verifies sign and
process timestamp then reverses bit-wise operation to
decrypts messages and using IDx to adding reading data in
message table with date.
3) Secure Commands: Transition using three methods.
a) Unicast: AS brings destination smart meter IDx and
encrypts messages through bit-wise operation and add IDc
finally sign message. The collector verifies sign and resigns
message again to send it to smart meter. The smart meter x
verifies sign and reverses bit-wise operation to decrypt
message. If there is a message from type 1 the meter
recognizes it and stores the message with its received date.
b) Multicast: As shown in Fig. 7, AS encrypts the
message, adding timestamp and destinations ID1, ID2 and
collector IDc then signs message. Collector verifies sign and
resigns the message again then sends it to the smart meter
ID1. message from type 3, which contains other ID2 and
found in meter client root Table, the meter knows this
message is for itself and another meter connected to it. so, it
sends a copy to other. In case all meters are connected directly
to the collector, the collector sends a copy to every meter as
unicast but the message remains of type 3.
Fig. 7. Transmission of multicast command
Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
c) Broadcast: AS encrypts the message and adds
timestamp then signs message. Collector verifies sign and
resigns message then sends it to all smart meters connected
directly to it. Smart meter verifies sign and if it is found of
type 2, it takes copy for itself and resends the message to a
neighbor connected directly to prevent loop occurrences.
V. EXPERIMENTAL RESULTS
The proposed model is applied on the topology in Fig. 8,
The experiments time are 120 second. Platform server Dell
model T7500 with Intel Xeon(R) E5620 2.40 GHZ (2
processor) and 32G RAM under windows 10 pro 64-bit
operating system. Using eve (emulated virtual environment)
version 2.0.3 to emulate topology with cisco C7200 IOS
router and Wireshark version 3.0.1 to capture traffic. VMware
version 14 pro with ubuntu 16.04.4 64-bit to virtual
autonomous system (service provider) machine this setting is
memory 5G, 2 processor, and 20G HDD, the collector virtual
machine setting is memory 4G, 2 processor, and 20G HDD,
and the smart meters virtual machine settings are memory 3G,
1 processor, and 20G HDD. Proposed E2E security protocol
developed using java 8 with spring tool suite release 3.9.2 and
using MySQL version 5.7.21 for database with workbench
version 6.3.10.
Fig. 8. Implementation toplogy with attack scenario
175
 A. Experiment 1: Examine hello interval that packet size is
1072 bits was authenticated using MD5 between AS,
collector, SM1, SM2 and SM3 routers
Using point to point connection between AS and collector,
collector and SM1, SM1 and SM2, collector and SM3. We
notice that interval does not exceed dead time and topology
routers are in adjacency state as shown in Fig. 9.
Fig. 9. Hello interval
B. Experiment 2: With/without using ACL to drop ICMP
packets
Suppose that an attacker tries to down SM2 gateway (DOS
attack) as shown in fig. 8, by using ICMP packets. Without
applying any traffic filtering over SM2 gateway, notice SM2
gateway is fill up of requests and engaging in response to
attacker that exploit SM2 gateway CPU, memory and
bandwidth as shown in Fig. 10.
Fig. 10. ICMP DOS attack
After applying ACL over SM2 gateway with no echo-
reply, notice all requests are dropping as shown in Fig .11.
Fig. 11. Filtering ingress ICMP packets
176 Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
C. Experiment 3: Performance consumption reading and
management commands
In the proposed model founding the higher throughput
occurs in the second 40 of the experiment time. It was 2532
bytes bidirectional transferred between utility and smart
meters 2 and 3 to process the meters consumption reading. The
lowest throughput occurs in the second 47. It was 1133 bytes
bidirectional transferred between utility and smart meter 1 to
process unicast command message as shown in Fig. 12.
Fig. 12. Amount of Information Send and Received in the proposed model
The most one delay has reached to 137.9 millisecond
occurs in smart meter 1 that waiting for multicast respond
from smart meter 2 in the second 66 of the experiment time.
The least delay has reached to 35.98 millisecond occurs in
smart meter 1 that waiting for success response for it is
consumption as shown in Fig .13.
Fig. 13. Delay chart using The proposed model
D. Experiment 4: Defend AMI Using the Proposed Model to
Counter Attacks
a) Replay attack: Proposed model faces this type of
attack by using timestamp. When the smart meter prepares its
message adding timestamp then signs the message and sends
it to the provider. After the service provider receive and
verifies message subtract its time from message time. If the
result is less than delta time so the message is normal message
other than the message is replay attack message and the
message will drop.
b) Modifying reading: Proposed model faces this type
of attack by using hash function. When the smart meter
prepares its message adding timestamp then sign message and
sending it to provider the collector receive message and check
the sign by decrypt using meter public key and recalculate
hash again. If recalculated hash dose not equal the message
hash so, the message is dropped because it is altered during TABLE III. PROPOSED MODEL THROUGHPUT, DELAY TIME AND
ENCRYPTION/DECRYPTION TIME COMPARED WITH AES ALGORITHM
transmission.
Proposed Model (DNA) Using AES Algorithm
c) Eavesdropping attack: The attacker captures the
message to know the information about the customer but

Throughput

Throughput
proposed model can face this type of attack by encrypt

Encryption

Encryption
Decryption

Decryption
Max Delay

Max Delay
Time (SP)

Time (SP)
Nodes

Time

Time
Max

Max
reading using DNA bit-wise operation to keep user privacy
and achieve confidentiality.
E. The Security Analysis
Bytes MS μ μ Bytes MS μ μ
Present set of attacks that the proposed model can detect
and deny. These types of attacks and authentication compared
SP
with the previous work as shown in Table 1.

TABLE I. COMPARISON BETWEEN OTHERS AND PROPOSED MODEL

227.03

327.59
88.75

458.6
SM1
Authentication Attacks

137.9
2532

3751

1076
Eavesdropping
Modification

445.92

408.64
Scheme

84.67
SM2
gateway
Mutual

303
Replay

DOS

232.72

478.81
91.85

229.4
SM3
[11] √

[32] √ √ √

[31] √ √ √ √ VI. CONCLUSION AND FUTURE WORK

[33] √ √ √ This article proposes a new paradigm of electricity grid
using information and communication technology (ICT) for
[34] √ √ √ √ √
a smart and automated design. In this article, combat threats
[35] √ √ √ √ √ that confront advanced metering infrastructure were
Proposed
√ √ √ √ √ √
discussed. A proposed model that authenticates routers and
Model uses ACL to prevent unneeded traffic from flow inside the
network is explained. The mutual authentication between the
The security analysis of the model shows that the proposed local distribution management and the remote devices such
model provides a more secure and efficient transmission of as collector and smart meters are also highlighted. The
data collection, a better management of messages and better cryptography overhead is lightweight. The security analysis
authentication computation cost. effective in bidirectional of the model shows that this proposed model provides a more
data transfer (throughput and delay) because it does not secure and efficient transmission of data collection, and a
consume too much bandwidth compared to AES algorithm better management of messages. Future work will enhance
and the cryptography performance for consumption reading delay time, compare performance (throughput, delay) with
messages is better than the AES algorithm as shown in Table different communication technologies, and Implement
2 and Table 3. proposed model over a real hardware environment (testbed)
and compare them with the current results.
TABLE II. MUTUAL AUTHENTICATION COMPUTATION COST WITH
OTHERS
ACKNOWLEDGMENT
Scheme SM2 SM1 Collector SP Total Special thanks to everyone who contributed to the
Cost
7SED + 7SED + 14SED +
implementation and testing of this work and to northern zone
[31] 7H + 7H + 14H + in the Egyptian Electricity Transmission Company (EETC).
4ASED 4ASED 8ASED
REFERENCES
1SED + 1SED + 4SED +
[32] 2SED
1MAC 1MAC 2MAC
3T + 4H 3T + 5H 6T + 9H [1] Fang X, Misra S, Xue G, Yang D, “Smart Grid - The New and
[35] + 2MAC + 2MAC + 4MAC Improved Power Grid: A Survey,” IEEE Communications Surveys &
+ 2SED + 2SED + 4SED Tutorials, vol. 14, pp. 944-980, Dec. 2011.
1H + 2H + 4H + [2] Delgado-Gomes V, Martins JF, Lima C, Borza PN, “Smart grid
Proposed 1H + 1SED + 3SG + 2SED + 4SED + security issues,” in IEEE International Conference on Compatibility
Model 1SED 1SG + 3SV 2SG + 6SG + and Power Electronics (CPE), 2015, pp. 534-538.
1SV 2SV 6SV [3] Kabalci Y, “A survey on smart metering and smart grid
T – Point Multiplication; H – one-way Hash; SED – Symmetric encryption and decryption; ASED communication,” Renewable and Sustainable Energy Reviews, vol.
Asymmetric encryption and decryption; SG – Signature Sign; SV – Signature Verification; MAC – 57, pp. 302-318, May. 2016.
Message Authentication Code
[4] Enos N, “Implementing an Integrated Security Management
framework to ensure a secure Smart Grid,” in IEEE International
Conference on Advances in Computing, Communications and
Informatics, 2014, pp. 778-784.
[5] Sophia Kaplantzis S, S_ekercio_glu YA, “Security and smart
metering,” in IEEE European Wireless Conference, 2012, pp. 1-8.

Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4) 177
[6] Komninos N, Philippou E, Pitsillides A, “Survey in Smart Grid and
Smart Home Security: Issues, Challenges and Countermeasures,”
IEEE Communications Surveys & Tutorials, vol. 16, pp. 1933-1954,
April. 2014.
[7] Wenye W, Lu Z, “Cyber security in the smart grid: survey and
challenges,” Computer Networks, vol. 57, pp. 1344-1371, April. 2013.
[8] Ur-Rehman O, Zivic N, Ruland C, “Security Issues in Smart Metering
Systems,” in IEEE International Conference on Smart Energy Grid
Engineering (SEGE), 2015, pp. 1-7.
[9] Ur-Rehman O, Natasa Zivic N, “Secure Design Patterns for Security
in Smart Metering Systems,” in IEEE European Modelling
Symposium, 2015, pp. 278-283.
[10] Rodriguez-Diaz E, Palacios-Garc__a EJ, Savaghebi M, Vasquez JC,
Guerrero JM, Moreno-Munoz A, “Advanced Smart Metering
Infrastructure for Future Smart Homes,” in IEEE International
Conference on Consumer Electronics (ICCE-Berlin), 2015, pp. 29-31.
[11] Mehra T, Dehalwar V, Kolhe M, “Data Communication Security of
Advanced Metering Infrastructure in Smart Grid,” in IEEE 5th
International Conference and Computational Intelligence and
Communication Networks, 2013, pp. 394-399.
[12] Anzalchi A, Sarwat A, “A Survey on Security Assessment of
Metering Infrastructure in Smart Grid Systems,” in IEEE
SoutheastCon, 2015, pp. 9-12.
[13] Skopik F, Ma Z, “Attack Vectors to Metering Data in Smart Grids
under Security Constraints,” in IEEE International Conference on
Computer Software and Applications Workshops, 2012, pp. 134-139.
[14] Jafary P, Repo S, Koivisto H, “Secure Integration of the Home Energy
Management System to the Battery Management System in the
Customer Domain of the Smart Grid,” in IEEE PES General Meeting
| Conference & Exposition, 2014, pp. 1-5.
[15] Blilat A, Bouayad A, Chaoui N, El Ghazi M, “Wireless Sensor
Network: Security challenges,” in IEEE Wireless Sensor Network:
Security challenges, 2012, pp. 68-72.
[16] Jafary P, Repo S, Koivisto H, “Secure Communication of Smart
Metering Data in the Smart Grid Secondary Substation,” in IEEE
Innovative Smart Grid Technologies - Asia (ISGT ASIA), 2015, pp. 1-
6.
[17] Lu Z, Lu X, Wang W, Wang C, “Review and Evaluation of Security
Threats on the Communication Networks in the Smart Grid,” in IEEE
Communications Conference – MILCOM, 2010, pp. 1830-1835.
[18] Modares H, Salleh R, Moravejosharieh A, “Overview of Security
Issues in Wireless Sensor Networks,” in IEEE Third International
Conference on Computational Intelligence, Modelling & Simulation,
2011, pp. 308-311.
[19] Wang Y, Lin W, Zhang T, “Study on Security of Wireless Sensor
Networks in Smart Grid,” in IEEE International Conference on Power
System Technology, 2010, pp. 1-7.
178 Third World Conference on Smart Trends in Systems, Security and Sustainability (WorldS4)
[20] Rawat DB, Bajracharya C, “Cyber Security for Smart Grid Systems:
Status, Challenges and Perspectives,” in IEEE SoutheastCon, 2015,
pp. 1-6.
[21] Stallings W, Cryptography and Network Security: Principles and
Practices. Upper Saddle River, NJ: Pearson, 2006.
[22] Santos O, Stuppi J, CCNA security 210-260 official cert guide,
Indianapolis: Cisco Press, 2015.
[23] Rodriguez FJ, Fernandez S, Sanz I, Moranche Ml, Bueno EJ,
“Distributed Approach for SmartGrids Reconfiguration based on the
OSPF routing protocol,” in IEEE Transactions on Industrial
Informatics, 2016, pp. 864-871.
[24] Odom W, CCNA Routing and Switching: ICND2 200-105 Official
Cert Guide, Indiana: Cisco press, 2017.
[25] Wallace K, CCNP Routing and Switching: ROUTE 300-101 Official
Cert Guide, Indiana: Cisco press, 2015.
[26] Ming-hao W, “The Security Analysis and Attacks Detection of OSPF
Routing Protocol,” in IEEE International Conference on intelligent
computation technology and automation (ICICTA), 2014, pp. 836-839.
[27] (2000) the IETF website. [Online]. Available:
https://www.ietf.org/rfc/rfc2827.txt
[28] (1999) the IETF website. [Online]. Available:
https://www.ietf.org/rfc/rfc2644.txt
[29] Majumder A, Majumdar A, Podder T, Kar N, Sharmas M, “Secure
Data Communication and Cryptography Based on DNA Based
Message Encoding,” in IEEE International Conf on Advanced
Communication Control and Computing Technologies, 2014, pp. 360-
363.
[30] Roy B, Rakshit G, Singha P, Majumder A, Datta D, “An improved
Symmetric key cryptography with DNA based strong cipher,” in IEEE
International Conf on Devices and Communications, 2011, pp. 1-5.
[31] Kumar V, Hussain M, “Secure Communication for Advanced
Metering Infrastructure in Smart Grid,” in IEEE India Conference,
2014. pp. 1-6.
[32] Yan Y, Hu RQ, Das SK, Sharif H, Qian Y, “An Efficient Security
Protocol for Advanced Metering Infrastructure in Smart Grid,” in
IEEE Network, 2013, pp. 64-71.
[33] Ozgur U, Tonyali S, Akkaya K, “Testbed and Simulation-Based
Evaluation of Privacy-Preserving Algorithms for Smart Grid AMI
Networks,” in 41st IEEE Conference on Local Computer Networks
Workshops (LCN Workshops), 2016, pp. 181-186.
[34] Tonyali S, Akkaya K, Saputro N, Cheng X, “An Attribute & Network
Coding-Based Secure Multicast Protocol for Firmware Updates in
Smart Grid AMI Networks,” in 26th IEEE Conference on Computer
Communication and Networks (ICCCN), 2017, pp. 1-9.
[35] Kumar P, Gurtov A, Sain M, Martin A, Phuong, Ha, “Lightweight
Authentication and Key Agreement for Smart Metering in Smart
Energy Networks,” IEEE Transactions on Smart Grid (early access),
2018.