CREATING A ZIGBEE HOME AREA NETWORK SIMULATOR FOR SMART GRID SECURITY RESEARCHGabriel Garza, Samujjwal Bhandari, & Susan UrbanTexas Tech University 2012 Research Experience for Undergraduate Site Project

Motivation•Additional Research is needed in order to secure the ZigBee home area network section of the Smart Grid

•The ZigBee protocol is vulnerable to attack

•Simulation is needed to create a test bed for detecting intrusion patterns

•A test bed will support research at Texas Tech University on detection and learning of intrusion patterns

•Ground work to setup simulation began in 2011 Research Experience for Undergraduate Site Project

ObjectivesExtend the HAN simulator, created from previous years REU program, for use in event stream processing technology for detecting/learning security violation patterns.I. Adding ZigBee communication protocol to simulation.

i. Simulate ZigBee data packet.II. Improving performance of agents to match ZigBee

communication standards.i. Lower CPU utilizationii. More efficient message passing

III. Extending simulation to allow for the creation of dynamic agents.

IV. Improving overall simulation stability.i. Message buffer control

Future ResearchI.Add the ability for the simulation to generate ZigBee data packets

i. Necessary for accurate simulationii. Allows for integration to hardware

II.Expand intruder agent to be capable of more attacksi. Replay attackii. Remove device attack

References[1] http://www.carbonmetrics.eu/Smart-Grids.php[2]http://www.zigbee.org/Specifications/ZigBee/Overview.aspx[3]http://www.sensorsmag.com/networking-communications/standards-protocols/designing-smart-energy-devices-1526[5] http://www.inl.gov/scada/publications/d/securing_the_smart_grid_current_issues.pdf[7] Elahi, Ata, and Adam Gschwender. ZigBee Wireless Sensor and Control Network. Upper Saddle River, NJ: Prentice Hall, 2010. Print. [8] "Jade - Java Agent DEvelopment Framework." Jade - Java Agent DEvelopment Framework. N.p., n.d. Web. 23 July 2012. <http://jade.tilab.com/>.[9]S. Clements, M. Hadley, and T. Carroll, “Home Area Networks and the Smart Grid,” no. April, 2011.R. Wilson and C. Salisbury, "Exploiting the Security of a Smart Grid Home Area Network through Simulation," Lubbock, TX, 2010.

Home Area Network (HAN)•Allows for different devices to communicate with each other•“Most existing home networks allow desktop and laptop computers to communicate with each other to share resources and often a common connection to the Internet.”[9]

•The ZigBee HAN•Allows for different devices within your house to communicate to a smart meter. •Gives control of different devices across your house from a signal location.

*This research is supported by NSF Grant No. CNS 1005212. Opinions, findings, conclusions, or recommendations expressed

in this paper are those of the author(s) and do not necessarily reflect the views of NSF.

Figure 1: Smart Grid Diagram

Figure 4: JADE sniffer message tackingFigure 3: Home Area Network Diagram

Smart Grid AchievementI.Simplified start of JADE environmentII.Added functionality

i. Creation of multiple appliances of the same typeii. Detailed power usage informationiii. Improved message cleanup

III.Appliance details can be specified at startupIV.Improved JADE sniffer agentV.Intruder agent

i. Parse sniffer dump fileii. DOS & Back-Off Time attackiii. Impersonate appliance & report power

Java Agent Development Framework (JADE)•Software framework fully implemented in Java language.

•Simplifies the implementation of multi-agent systems

•Middle-ware

•Set of graphical tools

•Agent platform can be distributed across machines

•Configuration can be controlled via a remote GUI [8]

ZigBee•Current wireless communication•Either high power or resource demands•Not suitable for long-term•Needs occasional maintenance

•ZigBee•Similar to Bluetooth•Low data rate - 250 Kbit/s•Designed for small burst of data communication

•Long battery life•Secure networking•Uses 802.15.4 spectrum for communication [7]

Figure 2: ZigBee Logo

Figure 6: JADE Agent Status View

Figure 5: Smart Grid components