A Security Evaluation of a Platform Intended for Critical Infrastructure - A Case Study for Sinusoidal Systems

dc.contributor.authorKokkinakis, Josefin
dc.contributor.authorAlexanderson, Tobias
dc.contributor.departmentChalmers tekniska högskola / Institutionen för data och informationstekniksv
dc.contributor.departmentChalmers University of Technology / Department of Computer Science and Engineeringen
dc.contributor.examinerDamaschke, Peter
dc.contributor.supervisorRusso, Alejandro
dc.date.accessioned2026-06-30T07:51:35Z
dc.date.issued2026
dc.date.submitted
dc.description.abstractThe Digital Measurement Platform (DMP) is a safety-critical system designed for digital substations. It uses software applications to replicate the functionality of traditional physical power meters by processing data directly from the IEC61850 process bus. This allows multiple virtual meters to operate efficiently on a single hardware unit. While the operational feasibility and precision of the DMP have been carefully tested, its cybersecurity resilience remains unexplored. Given its deployment in critical infrastructure, this lack of security analysis is a significant gap. This thesis addresses that gap by performing a purple-team security assessment of the DMP. Through threat modeling, baseline security evaluation, and controlled attack experiments, we evaluate the resilience of the platform against an attacker controlling code inside an unprivileged container. We find that the DMP demonstrates resilience against container escapes, SQL injection, and Confused Deputy attacks. However, several Denial of Service vulnerabilities were successfully exploited. Flooding shared bind mounts and stdout/stderr bypasses cgroup resource limits to exhaust the host storage, while architectural weaknesses in the framework’s message handling enable OOM crashes within seconds. Mitigations are proposed for all successful exploits.
dc.identifier.coursecodedatx05
dc.identifier.urihttps://hdl.handle.net/20.500.12380/311647
dc.language.isoeng
dc.setspec.uppsokTechnology
dc.subjectcontainer security, critical infrastructure, purple teaming, digital measurement platform
dc.titleA Security Evaluation of a Platform Intended for Critical Infrastructure - A Case Study for Sinusoidal Systems
dc.type.degreeExamensarbete för masterexamensv
dc.type.degreeMaster's Thesisen
dc.type.uppsokH
local.programmeComputer science -algorithms, languages and logic (MPALG), MSc

Ladda ner

Original bundle

Visar 1 - 1 av 1
Hämtar...
Bild (thumbnail)
Namn:
CSE 26-37 JK TA.pdf
Size:
2.03 MB
Format:
Adobe Portable Document Format

License bundle

Visar 1 - 1 av 1
Hämtar...
Bild (thumbnail)
Namn:
license.txt
Size:
2.35 KB
Format:
Item-specific license agreed upon to submission
Description: