Power system peer-to-peer networking data object based security

There has been increasing peer-to-peer networking among intelligent electronic devices (IEDs) with communication capabilities for efficient power system protection, control and monitoring with connections to external networks. This facilitates cyber-attackers' capability to assume control over power system operations that could cause serious blackouts. This paper proposes a new data-object-rule-based (DORB) cyber-security implemented as a pseudo-layer below the DNP3 application layer, a commonly used protocol for power systems communications, to strengthen the power system computer network security. The DORB cyber-security limits effectiveness of cyber-attacks by implementing rule-based cyber-security for the usage of DNP3 function codes, object types, and data sets. Any data transmission that does not conform to the allowed data object usage is blocked from being transmitted or received by the DNP3 devices. The DORB security also incorporates authentication between peers for particular function codes, object types, and data sets, to improve the power system communication security.