Security goals. Towards a SMI network an adequate se- curity suite essentially satisfies the following goals: 1) Mutual authentication and key establishment: In a SMI network, it is paramount security requirement that a NAN gateway must authenticate to a smart meter, since consumption data collected from smart meters will be utilized for many purposes e.g., billing, load balancing, etc. Similarly, a smart meter should authenticate the NAN gateway in order to protect from fake messages (e.g., control commands, etc.) from an attacker. Thus mutual authentication is highly required [32]. As soon as mutual authentication verified, a fresh session key agreement should be generated for the legal parties, so that subsequent communication could take place securely. 2)
Security goals. The following security goals can be identified for any GKA protocol.
Security goals. The objective of the proposed scheme is the establishment of the session keys and the authentication of the users. The formalized goals of the scheme are as follows: Verify if the establishment of the session keys is done correctly (i.e. secrecy of the key components and their possessions by the legitimate users) G1: Sk possess at [1] H(XOR(H(Nz,Ny), H(Ui,Ny)),NtH(H(H(Ui,Ny),Nz),XOR(H(Nz,Ny), H(Uj,Ny))));
Security goals. The stakeholder interests are related to a particular (business) goal or function which will be elaborated upon in each of the specific SEGRID use cases. Security goals are related to specific architectural assets (information, function, system and/or network) that are critical to achieve these goals or functions. By determining what security properties of these assets need to be preserved in order to ensure the stakeholders interests, the security goals can be defined. The property types are typically derived from the information security domain. A well-known and renowned set of standards for Information Security Management is the ISO/IEC 27000 series. The first standard ISO/IEC 27000:2014 [4] provides the set of definitions and terms. Information security is defined as: Information security – preservation of confidentiality, integrity and availability of information. Note: In addition, other properties, such as authenticity, accountability, non- repudiation, and reliability can also be involved. Here confidentiality, integrity and availability are defined as follows: Confidentiality – property that information is not made available or disclosed to unauthorized individuals, entities, or processes. Integrity – property of accuracy and completeness. Availability – property of being accessible and usable upon demand by an authorized entity. The property availability is applicable to information as well as to a (information processing) function, process or system. In the context of smart grids, availability is often regarded as the most important property [5]. Ensuring availability of the power supply is indeed very important. The availability of information or of an information processing function is not necessarily more important than the integrity of the information to ensure the availability of power supply. Confidentiality can easily be applied within the context of smart grids, although the property is often regarded as less important for this domain (see for instance section 6 of [5]). Note that confidentiality of security function data (such as symmetric encryption keys) is important. Integrity is the more difficult, and much debated, property of the three. The definition for integrity from ISO/IEC 27000 is not easy to apply. A more traditional definition for data integrity that was first defined in ISO 7498-2:1989 [6] is: Data integrity – property that data has not been altered or destroyed in an unauthorized manner. A common debate on data integrity...
