Improvement of Network Cyber Security Services using Security Operation Models

Abstract

Concerns for service computer networks’ security and reliability are growing rapidly due to increasing service devices with connections to external networks. This aggravates vulnerability of service networks to cyber attacks through external connections. Though encryption can provide security for user data transmissions, encryption itself could not provide protections against traffic analysis attacks. Techniques against traffic-analysis attacks through statistically controlling the transmission rate of padded and encrypted frames are unsuited for power system applications. This paper proposes three security operation modes for the newly developed security layer, located below DNP3 data-link layer, to strengthen encryption and authentication operations against the effectiveness of traffic- analysis and cryptanalysis attacks. The security models use padding to disguise the amount of user data transmitted and disguise the user data link layer frame amongst a group of manufactured frames similar to statistically controlling data transmission rate. The proposed security operations have been successfully applied to enhance power system security controls.