Cyber defense in OCPP for EV charging security risks

Hamdare, S ORCID logoORCID: https://orcid.org/0009-0004-5562-5400, Brown, DJ ORCID logoORCID: https://orcid.org/0000-0002-1677-7485, Jha, DN, Aljaidi, M, Cao, Y, Kumar, S, Kharel, R, Jugran, M and Kaiwartya, O ORCID logoORCID: https://orcid.org/0000-0001-9669-8244, 2025. Cyber defense in OCPP for EV charging security risks. International Journal of Information Security, 24 (3): 134. ISSN 2356-5845

[thumbnail of 2477910_Brown.pdf]
Preview
Text
2477910_Brown.pdf - Published version

Download (2MB) | Preview

Abstract

The Open Charge Point Protocol (OCPP) is a widely adopted communication standard that enables vendor-independent communication between charging points and Electric Vehicle (EV) charging station management systems. OCPP has significant cyber risks in terms of weak authentication mechanisms and improper session handling, exposing it to potential EV charging-related security threats. The backward incompatibility of the recent version of OCPP also poses challenges in the seamless adoption of the protocol. This paper introduces a comprehensive cyber defense framework to mitigate the security risks associated with OCPP. Through a detailed analysis of its vulnerabilities, the framework proposes targeted enhancements and mitigation strategies to further strengthen its security. The results demonstrate that the proposed OCPP significantly enhances both security and performance, surpassing its predecessor and current state-of-the-art security solutions for EV charging.

Item Type: Journal article
Publication Title: International Journal of Information Security
Creators: Hamdare, S., Brown, D.J., Jha, D.N., Aljaidi, M., Cao, Y., Kumar, S., Kharel, R., Jugran, M. and Kaiwartya, O.
Publisher: Springer Science and Business Media LLC
Date: June 2025
Volume: 24
Number: 3
ISSN: 2356-5845
Identifiers:
Number
Type
10.1007/s10207-025-01055-7
DOI
2477910
Other
Rights: © The Author(s) 2025 This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article’s Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article’s Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/.
Divisions: Schools > School of Science and Technology
Record created by: Jeremy Silvester
Date Added: 31 Jul 2025 16:02
Last Modified: 31 Jul 2025 16:02
URI: https://irep.ntu.ac.uk/id/eprint/54086

Actions (login required)

Edit View Edit View

Statistics

Views

Views per month over past year

Downloads

Downloads per month over past year