부산대학교 도서관

Communications within modern electric substations are regulated by IEC 61850. This standard lacks security mechanisms that protect the communications, opening the door for possible threads in the form of cyber-attacks. IEC 62351 defines a security extension to protect layer-2 messages with stringent timing requirements. This extension provides data authentication and confidentially making use of an AES-GCM cipher. An extensive analysis of the state of the art in terms of security in the domain of Substation and Automation Systems (SAS) reveals the requirements for implementing the IEC 62351-6. Based on those specifications, a configurable AES-GCM IP core architecture for FPGAs is proposed. After testing the defined IP core, it is compared to academic and commercial alternatives. Results reveal that the proposed solution meets all the requirements to enable an implementation of IEC 62351-6, being a suitable solution for SAS and the most balanced solution in terms of resource usage and performance.