Yinan Wang,Gangfeng Yan,Ronghao Zheng

DOI: https://doi.org/10.3390/app8050768

2018-01-01

Applied Sciences

Abstract:The integration of modern computing and advanced communication with power grids has led to the emergence of electrical cyber-physical systems (ECPSs). However, the massive application of communication technologies makes the power grids become more vulnerable to cyber attacks. In this paper, we study the vulnerability of ECPSs and develop defence strategies against cyber attacks. Detection and protection algorithms are proposed to deal with the emergency of cascading failures. Moreover, we propose a weight adjustment strategy to solve the unbalanced power flows problem which is caused by splitting incidents. A MATLAB-based platform with advantages of easy programming, fast calculation, and no damage to systems is built for the offline simulation and analysis of the vulnerability of ECPSs. We also propose a five-aspect method of vulnerability assessment which includes the robustness, economic costs, degree of damage, vulnerable equipment, and trip point. The study is of significance to decision makers as they can get specific advice and defence strategies about a special power system.

Chensheng Liu,Hongcheng Zhu,Min Zhou,Ruilong Deng,Yang Tang,Wenli Du

DOI: https://doi.org/10.1109/icps58381.2023.10127987

IF: 10.275

2024-01-01

IEEE Transactions on Smart Grid

Abstract:With the increasing integration of distributed energy resources (DER) and corresponding fluctuations, phase shifting transformers (PSTs) have been considered as important electrical components to increase transmission capacity by integrating PST with optimal power flow (OPF). However, due to vulnerabilities of supervisory control and data acquisition (SCADA) systems, applications in power systems may be subject to various cyber-attacks. In this paper, we discuss the feasibility of load redistri-bution (LR) attacks against OPF with PST, and quantitatively evaluate the effect of LR attacks on power systems. Specifically, the interaction between LR attacker and OPF with PST is formulated as a Stackelberg game, where the attacker and power system, acting as the leader and follower, attempt to maximize and minimize the operation cost of power system, respectively. By replacing the lower OPF optimization with its Karush-Kuhn-Tucker (KKT) condition, the Stackelberg game is simplified into a single-level mixed integer programming, which can be easily solved. Simulations in the PJM 5-bus, IEEE 14-bus and IEEE 30-bus test systems verify the feasibility of LR attacks and quantitatively evaluate the effect of LR attacks on the operation cost of power systems.

Falah Alanazi,Jinsub Kim,Eduardo Cotilla-Sanchez

DOI: https://doi.org/10.48550/arXiv.2105.00350

2021-05-02

Abstract:We investigate the vulnerability of a power transmission grid to load oscillation attacks. We demonstrate that an adversary with a relatively small amount of resources can launch a successful load oscillation attack to destabilize the grid. The adversary is assumed to be able to compromise smart meters at a subset of load buses and control their switches. In the studied attack scenarios the adversary estimates the line flow sensitivity factors (LFSFs) associated with the monitored tie lines by perturbing a small amount of load at compromised buses and observing the monitored lines flow changes. The learned LFSF values are used for selecting a target line and optimizing the oscillation attack to cause the target line to trip while minimizing the magnitude of load oscillation. We evaluated the attack impact using the COSMIC time-domain simulator with two test cases, the IEEE RTS 96 and Polish 2383-Bus Systems. The proposed attack strategy succeeded in causing 33% of load to be shed while oscillating only 7% of load in the IEEE RTS 96 test system, and full blackout after oscillating only 3% of the load in the Polish test system, which is much smaller than oscillation magnitudes used by other benchmarks.

Systems and Control

Chee-Wooi Ten,Koji Yamashita,Zhiyuan Yang,Athanasios V. Vasilakos,Andrew Ginter

DOI: https://doi.org/10.1109/tsg.2017.2656068

IF: 10.275

2018-09-01

IEEE Transactions on Smart Grid

Abstract:The first-ever Ukraine cyberattack on power grid has proven its devastation by hacking into their critical cyber assets. With administrative privileges accessing substation networks/local control centers, one intelligent way of coordinated cyberattacks is to execute a series of disruptive switching executions on multiple substations using compromised supervisory control and data acquisition systems. These actions can cause significant impacts to an interconnected power grid. Unlike the previous power blackouts, such high-impact initiating events can aggravate operating conditions, initiating instability that may lead to system-wide cascading failure. A systemic evaluation of “nightmare” scenarios is highly desirable for asset owners to manage and prioritize the maintenance and investment in protecting their cyberinfrastructure. This survey paper is a conceptual expansion of real-time monitoring, anomaly detection, impact analyses, and mitigation framework that emphasizes on the resulting impacts, both on steady-state and dynamic aspects of power system stability. Hypothetically, we associate the combinatorial analyses of steady state on substations/components outages and dynamics of the sequential switching orders as part of the permutation. The expanded framework includes: 1) critical/non-critical combination verification; 2) cascade confirmation; and 3) combination re-evaluation. This paper ends with a discussion of the open issues for metrics and future design pertaining the impact quantification of cyber-related contingencies.

engineering, electrical & electronic

Subhash Lakshminarayana,Sondipon Adhikari,Carsten Maple

DOI: https://doi.org/10.48550/arXiv.2009.13352

2021-03-29

Abstract:Recent research has shown that large-scale Internet of Things (IoT)-based load altering attacks can have a serious impact on power grid operations such as causing unsafe frequency excursions and destabilizing the grid's control loops. In this work, we present an analytical framework to investigate the impact of IoT-based static/dynamic load altering attacks (S/DLAAs) on the power grid's dynamic response. Existing work on this topic has mainly relied on numerical simulations and, to date, there is no analytical framework to identify the victim nodes from which that attacker can launch the most impactful attacks. To address these shortcomings, we use results from second-order dynamical systems to analyze the power grid frequency control loop under S/DLAAs. We use parametric sensitivity of the system's eigensolutions to identify victim nodes that correspond to the least-effort destabilizing DLAAs. Further, to analyze the SLAAs, we present closed-form expression for the system's frequency response in terms of the attacker's inputs, helping us characterize the minimum load change required to cause unsafe frequency excursions. Using these results, we formulate the defense against S/DLAAs as a linear programming problem in which we determine the minimum amount of load that needs to be secured at the victim nodes to ensure system safety/stability. Extensive simulations conducted using benchmark IEEE-bus systems validate the accuracy and efficacy of our approach.

Cryptography and Security,Information Theory,Systems and Control

Luca Arnaboldi,Ricardo M. Czekster,Roberto Metere,Charles Morisset

DOI: https://doi.org/10.48550/arXiv.1911.12757

2019-12-17

Abstract:Cyber-Physical Systems (CPS) are present in many settings addressing a myriad of purposes. Examples are Internet-of-Things (IoT) or sensing software embedded in appliances or even specialised meters that measure and respond to electricity demands in smart grids. Due to their pervasive nature, they are usually chosen as recipients for larger scope cyber-security attacks. Those promote system-wide disruptions and are directed towards one key aspect such as confidentiality, integrity, availability or a combination of those characteristics. Our paper focuses on a particular and distressing attack where coordinated malware infected IoT units are maliciously employed to synchronously turn on or off high-wattage appliances, affecting the grid's primary control management. Our model could be extended to larger (smart) grids, Active Buildings as well as similar infrastructures. Our approach models Coordinated Load-Changing Attacks (CLCA) also referred as GridLock or BlackIoT, against a theoretical power grid, containing various types of power plants. It employs Continuous-Time Markov Chains where elements such as Power Plants and Botnets are modelled under normal or attack situations to evaluate the effect of CLCA in power reliant infrastructures. We showcase our modelling approach in the scenario of a power supplier (e.g. power plant) being targeted by a botnet. We demonstrate how our modelling approach can quantify the impact of a botnet attack and be abstracted for any CPS system involving power load management in a smart grid. Our results show that by prioritising the type of power-plants, the impact of the attack may change: in particular, we find the most impacting attack times and show how different strategies impact their success. We also find the best power generator to use depending on the current demand and strength of attack.

Systems and Control,Cryptography and Security

Ying Wan,Cheng Long,Ruilong Deng,Guanghui Wen,Xinghuo Yu,Tingwen Huang

DOI: https://doi.org/10.1109/tcyb.2020.2978274

IF: 11.8

2021-01-01

IEEE Transactions on Cybernetics

Abstract:In building-microgrid communities, renewable generation and time-varying load usually cause power fluctuations, which influence the ancillary support to the main grid. Thermostatically controlled loads (TCLs) can be utilized to compensate such power variations due to their aggregated and controllable power consumptions. Meanwhile, one basic requirement for the users' side of TCLs is to realize the fair sharing of power states and comfort states. This article proposes a distributed event-based control strategy, where information of neighboring TCLs is exchanged only when a dynamic event-triggered condition is satisfied, and thus it intelligently determines the necessary transmission frequency to save communication resources. From a cybersecurity perspective, the communication network of TCLs may be subject to hybrid attacks, for example, denial-of-service (DoS) and false data-injection (FDI) attacks. During DoS attack intervals, no information can be communicated even through the event-triggered condition is satisfied. Furthermore, the control inputs may also be tampered by FDI attacks. By utilizing the Lyapunov stability and hybrid control theories, sufficient conditions regarding the attack parameters are derived such that fair sharing of power states and comfort states of all involved TCLs can be achieved exponentially. The exclusion of Zeno behaviors is proved and a corollary for ideal communication situations is also deduced. Finally, simulation examples with various attack parameters are conducted to verify the effectiveness of the main results.

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau

DOI: https://doi.org/10.1109/tsg.2023.3275988

IF: 10.275

2024-01-01

IEEE Transactions on Smart Grid

Abstract:By integrating the communication-enabled high-voltage electronic devices into the supervisory control and data acquisition (SCADA) system, the smart grid achieves flexible, economic, controllable operations of remote and real-time electricity transmission and distribution. However, it has been widely recognized that the SCADA system is vulnerable to unprecedented cyberattacks. In this paper, we propose a novel attack, namely, a network parameter attack (NPA), on the physical parameter of the branch to affect the load frequency control. The idea is to modify the control signal sent to the thyristor-controlled series compensator (TCSC) device to change the reactance of the transmission line, thus, inflicting the grid frequency stability. We first provide a sufficient condition for NPA to cause frequency instability. To further provide more insights, we analyze the impact of NPA on frequency stability based on the eigenvalue sensitivity. The vulnerable transmission lines are screened out based on the error caused by the NPA on the eigenvalues. Furthermore, we develop a least-effort but maximum-impact attack strategy considering the attacker’s limited resources. Finally, we conduct extensive simulations to validate the effectiveness of the attack and evaluate its impact on the system’s operation.

engineering, electrical & electronic

Sajjad Maleki,Shijie Pan,Subhash Lakshminarayana,Charalambos Konstantinou

2024-10-29

Abstract:The growing penetration of IoT devices in power grids despite its benefits, raises cyber security concerns. In particular, load-altering attacks (LAAs) targetting high-wattage IoT-controllable load devices pose serious risks to grid stability and disrupt electricity markets. This paper provides a comprehensive review of LAAs, highlighting the threat model, analyzing its impact on transmission and distribution networks, and the electricity market dynamics. We also review the detection and localization schemes for LAAs that employ either model-based or data-driven approaches, with some hybrid methods combining the strengths of both. Additionally, mitigation techniques are examined, focusing on both preventive measures, designed to thwart attack execution, and reactive methods, which aim to optimize responses to ongoing attacks. We look into the application of each study and highlight potential streams for future research in this field.

Systems and Control

Zhenyong Zhang,Ke Zuo,Ruilong Deng,Fei Teng,Mingyang Sun

DOI: https://doi.org/10.1109/jiot.2023.3264492

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Machine learning-based intelligent systems enhanced with Internet of Things (IoT) technologies have been widely developed and exploited to enable the real-time stability assessment of a large-scale electricity grid. However, it has been extensively recognized that the IoT-enabled communication network of power systems is vulnerable to cyberattacks. In particular, system operating states, critical attributes that act as input to the data-driven stability assessment, can be manipulated by malicious actors to mislead the system operator into making disastrous decisions and thus cause major blackouts and cascading events. In this article, we explore the vulnerability of the data-driven power system stability assessment, with a special emphasis on decision tree-based stability assessment (DTSA) approaches, and investigate the feasibility of constructing a physics-constrained adversarial attack (PCAA) to undermine the DTSA. The PCAA is formulated as a nonlinear programming problem considering the misclassification constraint, power limits, and bad data detection, computing potential adversarial perturbations that reverse the “stable/unstable” prediction of the real-time input while remaining invisible/stealthy. Extensive experiments based on the IEEE 68-bus system are conducted to evaluate the impact of PCAAs on predictions of DTSA and their transferability.

Guangchun Ruan,Jiahan Wu,Haiwang Zhong,Qing Xia,Le Xie

DOI: https://doi.org/10.1016/j.apenergy.2020.116354

IF: 11.2

2021-01-01

Applied Energy

Abstract:Starting in early 2020, the novel coronavirus disease (COVID-19) severely attached the U.S., causing substantial changes in the operations of bulk power systems and electricity markets. In this paper, we develop a data-driven analysis to substantiate the pandemic's impacts from the perspectives of power system security, electric power generation, electric power demand and electricity prices. Our results suggest that both electric power demand and electricity prices have discernibly dropped during the COVID-19 pandemic. Geographically diverse impacts are observed and quantified, while the bulk power systems and markets in the northeast region are most severely affected. All the data sources, assessment criteria, and analysis codes reported in this paper are available on a GitHub repository.

Afroz Mokarim,Giovanni Battista Gaggero,Mario Marchese

DOI: https://doi.org/10.3390/electronics13091709

IF: 2.9

2024-04-30

Electronics

Abstract:With the advancement of regulations regarding the reduction in carbon emissions, renewable energy communities have come into the picture. However, many implications come with the installation of these communities from a cybersecurity point of view. The software platforms responsible for managing and controlling them handle a lot of crucial information, and therefore, tampering with these data can lead to several impacts on the operation of these communities and, in turn, the power grid as well. This paper examines the plausible impacts that can be caused by altering certain parameters of the system that make it a potential cyber attack target. The analysis is done by observing how the grid responds to these manipulations for both low-voltage as well as medium-voltage systems. These systems are designed along with integrated energy communities and are implemented in MATLAB/Simulink R2022b software. The observations are made by plotting the grid voltage and power profiles in normal as well as attacked conditions.

engineering, electrical & electronic,physics, applied,computer science, information systems

Charalampos Avraam,Luis Ceferino,Yury Dvorkin

DOI: https://doi.org/10.48550/arXiv.2209.04927

2022-09-12

Abstract:The growing frequencies of extreme weather events and cyberattacks give rise to a novel threat where a malicious cyber actor aims to disrupt stressed components of critical infrastructure systems immediately before, during, or shortly after an extreme weather event. In this paper, we initiate the study of Compound Cyber-Physical Threats and develop a two-stage framework for the analysis of operational disruptions in electric power networks and economy-wide impacts under three scenarios: a Heatwave, a Cyberattack, and a Compound scenario when the Cyberattack is timed with the Heatwave. In the first stage, we use a bilevel optimization problem to represent the adversarial rationale of a cyberattacker in the upper level. In the lower level, we model disruptions in the electric power network using an optimal power flow model. In the second stage, we couple the disruption of electricity supply with a Computable General Equilibrium model to elucidate the impacts on all economic sectors. For the New York Independent System Operator, we find that a 9% demand increase in a Heatwave may not lead to unserved load. The Cyberattack can lead to 4% of unserved electric load in Long Island, while the Compound scenario can increase unserved electric load in Long Island to 13% and affect almost 600,000 customers. Our results show that the activity of state and local government enterprises can decrease by 30% in the Compound scenario. We conclude that the vulnerability of federal, state, and local government enterprises to electricity disruptions can affect a broad range of populations.

Systems and Control

Kang Yan,Xuan Liu,Yidan Lu,Zongchao Yu

DOI: https://doi.org/10.1109/jiot.2022.3222304

IF: 10.6

2023-03-11

IEEE Internet of Things Journal

Abstract:More and more thermostatic loads in power systems are transformed into thermostatically controlled loads (TCLs) through the heterogeneous Internet of Things (IoT) devices. The proportion of TCLs exposed to the Internet has also further increased. Considering TCLs' response characteristics and the network security vulnerability of their associated IoT devices, it is possible to form a new threat to power systems, manipulation of demand (MAD) attacks. In this article, we reveal a potential attack scenario of this threat in the electricity market and propose a highly concealable and destructive cross-domain MAD attack strategy based on compromised TCLs, causing a tremendous economic loss for the power retailer (PR) and end-use consumers (EUCs). Finally, the effectiveness of the proposed MAD attack strategy is verified by simulation cases, highlighting the endanger of large-scale compromised TCLs in power systems and the importance of their associated IoT devices' network security.

computer science, information systems,telecommunications,engineering, electrical & electronic

Guangchun Ruan,Jiahan Wu,Haiwang Zhong,Qing Xia,Le Xie

DOI: https://doi.org/10.1016/j.apenergy.2020.116354

2021-03-15

Abstract:Starting in early 2020, the novel coronavirus disease (COVID-19) severely attached the U.S., causing substantial changes in the operations of bulk power systems and electricity markets. In this paper, we develop a data-driven analysis to substantiate the pandemic's impacts from the perspectives of power system security, electric power generation, electric power demand and electricity prices. Our results suggest that both electric power demand and electricity prices have discernibly dropped during the COVID-19 pandemic. Geographically diverse impacts are observed and quantified, while the bulk power systems and markets in the northeast region are most severely affected. All the data sources, assessment criteria, and analysis codes reported in this paper are available on a GitHub repository.

Mohammad Ali Sayed,Mohsen Ghafouri,Mourad Debbabi,Chadi Assi

DOI: https://doi.org/10.1109/PESGM48719.2022.9916999

2022-07-21

Abstract:Driven by the necessity to combat climate change, Electric Vehicles (EV) are being deployed to take advantage of their ability in reducing emissions generated by the transportation sector. This deployment has left the power grid vulnerable to attacks through the EV infrastructure. This paper is written from an attackerś perspective and proposes a dynamic load altering strategy through manipulating EV charging to destabilize the grid. The attack is formulated based on feedback control theory, i.e., designing an attack based on Linear Matrix Inequalities (LMIs). After the stability metric and controller design have been established, we demonstrate our attack method against the Kundur 2 area grid. The attack scenario includes a cap of 200 MW EV load controlled by the attacker. However, the results show that even with this limitation, the attacker would be successful in pushing the grid toward instability and blackout.

Systems and Control

Guangchun Ruan,Jiahan Wu,Haiwang Zhong,Qing Xia,Le Xie

DOI: https://doi.org/10.48550/arXiv.2103.12515

2020-08-31

Abstract:Starting in early 2020, the novel coronavirus disease (COVID-19) severely affected the U.S., causing substantial changes in the operations of bulk power systems and electricity markets. In this paper, we develop a data-driven analysis to substantiate the pandemic's impacts from the perspectives of power system security, electric power generation, electric power demand and electricity prices. Our results suggest that both electric power demand and electricity prices have discernibly dropped during the COVID-19 pandemic. Geographical variances in the impact are observed and quantified, and the bulk power market and power system operations in the northeast region are most severely affected. All the data sources, assessment criteria, and analysis codes reported in this paper are available on a GitHub repository.

Physics and Society,Applications

Aniruddha Agrawal,Donnagratia Syndor,Dallang M. Momin,Shaik Affijulla

DOI: https://doi.org/10.1515/ijeeps-2021-0176

2021-09-10

International Journal of Emerging Electric Power Systems

Abstract:Abstract Smart electric grids are practising flexible, reliable and robust operations during delivery and consumption of power. However, these grids are highly vulnerable to a wide range of cyber attacks due to the deployment of an extensive communication network. In this paper, the nature of cyber attack on given power system based on proposed cyber attack models and theorems is analysed by utilizing steady state voltage stability (L index). Further, a cyber attack factor is introduced which may mislead the bus voltage stability virtually. The proposed cyber attack models and theorems are validated by executing cyber attacks on WSCC 9 bus and IEEE 14 bus test systems by using Siemens PSS/E and MATLAB softwares. Through the proposed theorems, the paper exposes and quantifies the threat of cyber attacks in the electric power grid. The simulation results reveal that the proposed cyber attack models may misrepresent the bus voltage stability, thereby misleading the energy management centre (EMC) operator into taking incorrect countermeasures. The above incorrect actions may force voltage instability which further leads to major interruptions in the electric power supply and possible cascading failure of the electric power grid. Moreover, the proposed theorems and rigorous simulations presented in the paper support the EMC operator in intelligently identifying a cyber attack, thereby enabling development of appropriate corrective actions during such cyber attacks on the smart electric grid. Thus, the concept of proposed methodology could best assist the power system operator to build detection algorithms for discrimination of cyber attacks from electrical faults towards strong electric grid resilience character.

Hossein Noorazar,Anurag. k. Srivastava,K. Sadanandan Sajan,Sanjeev Pannala

DOI: https://doi.org/10.1049/tje2.12065

2020-12-27

Abstract:Electrical energy is a vital part of modern life, and expectations for grid resilience to allow a continuous and reliable energy supply has tremendously increased even during adverse events (e.g., Ukraine cyber-attack, Hurricane Maria). The global pandemic COVID-19 has raised the electric energy reliability risk due to potential workforce disruptions, supply chain interruptions, and increased possible cybersecurity threats. The pandemic introduces a significant degree of uncertainly to the grid operation in the presence of other extreme events like natural disasters, unprecedented outages, aging power grids, high proliferation of distributed generation, and cyber-attacks. This situation increases the need for measures for the resiliency of power grids to mitigate the impacts of the pandemic as well as simultaneous extreme events. Solutions to manage such an adverse scenario will be multi-fold: a) emergency planning and organizational support, b) following safety protocol, c) utilizing enhanced automation and sensing for situational awareness, and d) integration of advanced technologies and data points for ML-driven enhanced decision support. Enhanced digitalization and automation resulted in better network visibility at various levels, including generation, transmission, and distribution. These data or information can be utilized to take advantage of advanced machine learning techniques for automation and increased power grid resilience. In this paper, a) we review the impact of COVID-19 on power grid operations and actions taken by operators/organizations to minimize the impact of COVID-19, and b) we have presented the recently developed tool and concepts using natural language processing (NLP) in the domain of machine learning and artificial intelligence that can be used for increasing resiliency of power systems in normal and in extreme scenarios such as COVID-19 pandemics.

Machine Learning

Yunan Zhang,Yixin Jiang,Aidong Xu,Chao Hong,Jiaqi Chen

DOI: https://doi.org/10.1109/appeec48164.2020.9220574

2020-01-01

Abstract:With the growing number of electric vehicles, the integration of large-scale disorderly charging loads into the power grid will have some adverse impacts on the safe and stable operation of the grid. As the connection point between the Internet and the power grid, charging facilities face the threat of cyberattacks, which further threatens the stability of the power grid. To illustrate the potential impact of cyberattacks to power grid security, this paper proposes two attack scenarios and corresponding attack strategies based on the charging law of electric vehicles. Firstly, a spatial-temporal forecast model of charging loads is established based on the comprehensive analysis of the behaviors of the three types of electric vehicles. Then according to different types of electric vehicle charging laws, corresponding attack scenarios and attack strategies are designed for maximum attack benefits. And then the charging load redistribution model is given. Finally, simulation results show that cyberattacks against charging plies could cause more serious voltage deviation and transmission congestion in the distribution network, making the grid tend to be unstable. The method proposed in this paper can effectively evaluate the impact of cyberattacks against charging piles on the distribution network.