Stealthy Injection Attacks Against IEC61850’s GOOSE Messaging Service

James Wright, Stephen Wolthusen

Research output: Chapter in Book/Report/Conference proceedingConference contribution

475 Downloads (Pure)


IEC61850 and IEC62351 combined provide a set of security promises for the communications channels that are used to run a substation automation system (SAS), that use IEC61850 based technologies. However, one area that is largely untouched by these security promises is the generic object oriented substation events (GOOSE) messaging service. GOOSE is designed to multicast commands and data across a substation within hard real time quality of service (QoS) requirements. This means that GOOSE is unable to implement the required security technologies as the added latency to any message would violate the QoS.
Original languageEnglish
Title of host publicationProceedings of the 2018 IEEE PES Innovative Smart Grid Technologies Conference Europe
PublisherIEEE Press
Number of pages6
ISBN (Electronic)978-1-5386-4505-5
Publication statusE-pub ahead of print - 13 Dec 2018

Cite this