Slashdot Mirror

← Back to Stories (view on slashdot.org)

Poor, Homegrown Encryption Threatens Open Smart Grid Protocol

Posted by Soulskill on from the leave-it-to-the-experts dept.

An anonymous reader writes: Millions of smart meters, solar panels, and other grid-based devices rely on the Open smart grid protocol for communication and control — it's similar to SCADA's role for industrial systems. But new research shows that its creators made the common mistake of rolling their own encryption, and doing a poor job of it. The researchers believe this threatens the entire system. They say, "This function has been found to be extremely weak, and cannot be assumed to provide any authenticity guarantee whatsoever." Security analyst Adam Crain added, "Protocol designers should stick to known good algorithms or even the 'NIST-approved' short list. In this instance, the researchers analyzed the OMA digest function and found weaknesses in it. The weaknesses in it can be used to determine the private key in a very small number of trials."

1 of 111 comments (clear)

  1. how do i... by Anonymous Coward · · Score: 0, Troll

    hack my meter to only count once for every 10 or 100 kwh actually used?