TY - GEN
T1 - Evaluating Potential Security Risks of Advanced Metering Infrastructure Using EBIOS Risk Assessment Method
AU - Shokry, Mostafa
AU - Awad, Ali Ismail
AU - Abd-Ellah, Mahmoud Khaled
AU - Khalaf, Ashraf A.M.
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - Advanced metering infrastructure (AMI) is the cornerstone of smart grid (SG) systems. Its primary goal is to utilize smart meters (SM) to gather information about consumers' electricity usage. For further analysis, this data is subsequently transmitted to the data concentrator (DC) and the electricity service provider (ESP) through two-way communication links. Conducting a risk assessment of the AMI system is crucial in identifying any vulnerabilities, potential threats, and risk mitigation strategies to reduce the potential hazards to a controllable extent. This paper carries out procedures for evaluating potential hazards associated with the AMI by applying the EBIOS method. EBIOS consists of five phases: scope and security baseline, risk origins (RO), strategic scenarios, operational scenarios, and risk treatment. By applying the EBIOS method to the AMI system, we can demonstrate the business and its supporting assets. Furthermore, the likelihood and consequences of threats are assessed. Finally, the categories of stakeholders related to the AMI system and the strategies for mitigating risks are presented. The contributions of this study include utilizing the EBIOS method to evaluate potential risks associated with the AMI, identifying the business assets of the AMI, providing an example of an existing risk to the business and supporting assets of the AMI system, and introducing possible countermeasures.
AB - Advanced metering infrastructure (AMI) is the cornerstone of smart grid (SG) systems. Its primary goal is to utilize smart meters (SM) to gather information about consumers' electricity usage. For further analysis, this data is subsequently transmitted to the data concentrator (DC) and the electricity service provider (ESP) through two-way communication links. Conducting a risk assessment of the AMI system is crucial in identifying any vulnerabilities, potential threats, and risk mitigation strategies to reduce the potential hazards to a controllable extent. This paper carries out procedures for evaluating potential hazards associated with the AMI by applying the EBIOS method. EBIOS consists of five phases: scope and security baseline, risk origins (RO), strategic scenarios, operational scenarios, and risk treatment. By applying the EBIOS method to the AMI system, we can demonstrate the business and its supporting assets. Furthermore, the likelihood and consequences of threats are assessed. Finally, the categories of stakeholders related to the AMI system and the strategies for mitigating risks are presented. The contributions of this study include utilizing the EBIOS method to evaluate potential risks associated with the AMI, identifying the business assets of the AMI, providing an example of an existing risk to the business and supporting assets of the AMI system, and introducing possible countermeasures.
KW - advanced metering infrastructure
KW - and feared events
KW - EBIOS method
KW - security risk assessment
KW - security vulnerabilities
KW - Smart grid
UR - http://www.scopus.com/inward/record.url?scp=85169293055&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85169293055&partnerID=8YFLogxK
U2 - 10.1109/ITC-Egypt58155.2023.10206233
DO - 10.1109/ITC-Egypt58155.2023.10206233
M3 - Conference contribution
AN - SCOPUS:85169293055
T3 - 2023 International Telecommunications Conference, ITC-Egypt 2023
SP - 145
EP - 150
BT - 2023 International Telecommunications Conference, ITC-Egypt 2023
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2023 International Telecommunications Conference, ITC-Egypt 2023
Y2 - 18 July 2023 through 20 July 2023
ER -