Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Implementation of a reference model of a typical IT infrastructure of the office network of a power utility company
KTH, School of Electrical Engineering (EES), Electric Power and Energy Systems.
2017 (English)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Power utility companies are really important in our daily routine since theyprovide us with power delivery, which is essential in today's society. Withthe advance of technology, a lot of the procedures that were being manuallydone by these companies to deliver electrical power, have been automated andcentrally controlled by Supervisory Control And Data Acquisition (SCADA)systems. Therefore, this automation must be protected from external attackersthat want to hurt control systems (e.g. SCADA), either by stealing sensitivedata or even by getting control of the control system and changing parametersand functions that are essential for the good and healthy function of thesesystems. Exploiting vulnerabilities in the oce network can bring an adversarya step closer in getting access to the control system. It is not sucient onits own, but the adversary can launch further attacks from there targeting thecontrol system.The aim of this thesis is to construct a reference model of a typical IT infrastructureof the oce network of a power utility company, with a simpliedimplementation in CRATE. CRATE (Cyber Range And Training Environment)is the environment that was used for the implementation of the thesis, providedby the Swedish Defense Research Agency [FOI]. After the implementation isnished, a SCADA system of an enterprise will be installed in CRATE and willbe connected with this oce network. Once this is done, the Swedish DefenseResearch Agency will simulate cyber-attacks in a more complete infrastructure.The point of this thesis is to make the oce infrastructure as close to a real enterprisenetwork, although there with some dierentiation, part of it on purposeand part of it due to some limitations.

Abstract [sv]

Elbolags existens är essentiell i dagens samhälle med tanke på att elbolagenlevererar el vilket viktiga samhällsfunktioner beror på. Idag har avanceradteknologi gjort det möjligt att konvertera diverse procedurer som tidigare genomförts manuellt för att leverera elektricitet att genomföras automatiserat ochcentralstyrt via systemet Supervisory Control And Data Acquisition (SCADAsystem).Det är därför ytterst viktigt att skydda det automatiserade systemetfrån externa angripare d.v.s. IT-intrång som vill skada det använda styrsystemett.ex. SCADA-styrsystem. Skada kan ske antingen genom att stjälakänsliga uppgifter eller få kontroll över styrsystemet och ändra på parametraroch funktioner som är väsentliga för ett välfungerande system. Att exploaterasårbarheter i kontorsnätverk kan mojliggöra att motståndare hamnar ett stegnärmare att få tillgång till styrsystemet.Syftet med denna studie är att konstruera en referensmodell av en typisk ITinfrastrukturav kontorsnätet på ett elbolag med en förenklad tillämpning inomCyber Range And Training Environment (CRATE). CRATE är en miljö förcyberövningar som tillhandahålls av Totalförsvarets Forskningsinstitut (FOI)och som har använts i denna studie för att implementera referensmodellen.När referensmodellen av kontorsnätet har implementerats, installeras det ävenett SCADA-system i CRATE, och dessa kopplas tillsammans. Därmed skaFOI kunna simulera cyberattacker i en mer komplett infrastruktur. Syftet meddenna studie var att skapa ett så pass verkligt kontorsnät som möjligt trots vissdifferentiering jämfört med verkligheten på grund av bl.a. vissa begräsningar.

Place, publisher, year, edition, pages
2017. , p. 51
Series
TRITA-EE, ISSN 1653-5146 ; 2017:01
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Identifiers
URN: urn:nbn:se:kth:diva-203507OAI: oai:DiVA.org:kth-203507DiVA, id: diva2:1082129
Educational program
Master of Science - Network Services and Systems
Available from: 2017-03-15 Created: 2017-03-15 Last updated: 2017-03-15Bibliographically approved

Open Access in DiVA

fulltext(4427 kB)172 downloads
File information
File name FULLTEXT01.pdfFile size 4427 kBChecksum SHA-512
7f72cd7d0f43569bce30354ccd3000fd2fa72f116fa4078dc7865702f1debbbc467567ce908de529b43036ec68f88a3055140d6653d29d516568848c9ef891f4
Type fulltextMimetype application/pdf

By organisation
Electric Power and Energy Systems
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar
Total: 172 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 229 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf