Xu Wan,Lanting Zeng,Mingyang Sun

DOI: https://doi.org/10.24963/ijcai.2022/549

2022-01-01

Abstract:Decarbonization of global power systems significantly increases the operational uncertainty and modeling complexity that drive the necessity of widely exploiting cutting-edge Deep Reinforcement Learning (DRL) technologies to realize adaptive and real-time emergency control, which is the last resort for system stability and resiliency. The vulnerability of the DRL-based emergency control scheme may lead to severe real-world security issues if it can not be fully explored before implementing it practically. To this end, this is the first work that comprehensively investigates adversarial attacks and defense mechanisms for DRL-based power system emergency control. In particular, recovery-targeted (RT) adversarial attacks are designed for gradient-based approaches, aiming to dramatically degrade the effectiveness of the conducted emergency control actions to prevent the system from restoring to a stable state. Furthermore, the corresponding robust defense (RD) mechanisms are proposed to actively modify the observations based on the distances of sequential states. Experiments are conducted based on the standard IEEE reliability test system, and the results show that security risks indeed exist in the state-of-the-art DRL-based power system emergency control models. The effectiveness, stealthiness, instantaneity, and transferability of the proposed attacks and defense mechanisms are demonstrated with both white-box and black-box settings.

Anjana B.,Suman Maiti,Sunandan Adhikary,Soumyajit Dey,Ashish R. Hota

2024-11-21

Abstract:Smart grids are designed to efficiently handle variable power demands, especially for large loads, by real-time monitoring, distributed generation and distribution of electricity. However, the grid's distributed nature and the internet connectivity of large loads like Heating Ventilation, and Air Conditioning (HVAC) systems introduce vulnerabilities in the system that cyber-attackers can exploit, potentially leading to grid instability and blackouts. Traditional protection strategies, primarily designed to handle transmission line faults are often inadequate against such threats, emphasising the need for enhanced grid security. In this work, we propose a Deep Reinforcement Learning (DRL)-based protection system that learns to differentiate any stealthy load alterations from normal grid operations and adaptively adjusts activation thresholds of the protection schemes. We train this adaptive protection scheme against an optimal and stealthy load alteration attack model that manipulates the power demands of HVACs at the most unstable grid buses to induce blackouts. We theoretically prove that the adaptive protection system trained in this competitive game setting can effectively mitigate any stealthy load alteration-based attack. To corroborate this, we also demonstrate the method's success in several real-world grid scenarios by implementing it in a hardware-in-loop setup.

Systems and Control,Cryptography and Security,Computer Science and Game Theory

Amr S. Mohamed,Deepa Kundur

DOI: https://doi.org/10.1109/TSG.2023.3343100

2023-03-28

Abstract:The electric grid is an attractive target for cyberattackers given its critical nature in society. With the increasing sophistication of cyberattacks, effective grid defense will benefit from proactively identifying vulnerabilities and attack strategies. We develop a deep reinforcement learning-based method that recognizes vulnerabilities in load frequency control, an essential process that maintains grid security and reliability. We demonstrate how our method can synthesize a variety of attacks involving false data injection and load switching, while specifying the attack and threat models - providing insight into potential attack strategies and impact. We discuss how our approach can be employed for testing electric grid vulnerabilities. Moreover our method can be employed to generate data to inform the design of defense strategies and develop attack detection methods. For this, we design and compare a (deep learning-based) supervised attack detector with an unsupervised anomaly detector to highlight the benefits of developing defense strategies based on identified attack strategies.

Systems and Control

Dou An,Feiye Zhang,Qingyu Yang,Chengwei Zhang

DOI: https://doi.org/10.1109/tase.2022.3149764

IF: 6.636

2022-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:A smart grid integrates advanced sensors, efficient measurement methods, progressive control technologies, and other techniques and devices to achieve safe, efficient and economical operation of the grid system. However, the diversified and open environment of a smart grid makes energy and information of the smart grid vulnerable to malicious attacks. As a representative cyber-physical attack, the data integrity attack has an extremely severe impact on the grid operation for it can bypass the traditional detection mechanisms by adjusting the attack vector. In this paper, we first present the attack strategy against dynamic state estimation of power grid in the perspective of adversary and formulate the data integrity attack detection problem that has the characteristic of sequential decision making as a partially observable Markov decision process. Then, a deep reinforcement learning-based approach is proposed to detect against data integrity attacks, which utilizes the Long Short-Term Memory layer to extract the state features of previous time steps in determining whether the system is currently under attack. Moreover, the noisy networks are employed to ensure effective agent exploration, which prevents the agent from sticking to the non-optimal policy. The principle of a multi-step learning is adopted to increase the estimation accuracy of Q value. To address the sparse rewards problem, the prioritized experience replay is proposed to increase training efficiency. Simulation results demonstrated that the proposed detection approach surpasses the benchmarks in the comparison metrics: delay error rate and false rate. Note to Practitioners—In this paper, we present a deep reinforcement learning-based algorithm to defend against the data integrity attacks of smart grid. Most of the previous works discretized the system states and utilized the current state information to identify whether the system is under attack. For this reason, the detection policy may totally ignored the continuously changing characteristics of the grid states, which will lead to poor detection performance. Moreover, the attacked system states only accounts for a small part of the entire grid operation states, the probability of sampling the experience containing the attack state is extremely small, which limits the learning efficiency of previous RL-based detection approaches. In order to increase the accuracy of detection, we first present the attack strategy against power grid’s dynamic state estimation in the perspective of adversary and formulate the partially observable Markov decision process model of attack detection problem. Moreover, we propose a deep reinforcement learning-based detection approach combining the LSTM network to extract the system state features of the previous time steps to determine whether the system is currently being attacked. To address the sparse rewards problem, the prioritized experience replay is used to increase learning efficiency. The experiments demonstrate the effectiveness of proposed detection scheme compared with benchmarks in terms of detection delay as well as accuracy. In conclusion, the proposed detection scheme is helpful in defending against the data integrity attacks without obtaining the opponent’s strategy in advance and can be conveniently applied to the real-world security management system of smart grid.

automation & control systems

Van-Hai Bui,Srijita Das,Akhtar Hussain,Guilherme Vieira Hollweg,Wencong Su

2024-09-25

Abstract:The high penetration of distributed energy resources (DERs) in modern smart power systems introduces unforeseen uncertainties for the electricity sector, leading to increased complexity and difficulty in the operation and control of power systems. As a cutting-edge machine learning technology, deep reinforcement learning (DRL) has been widely implemented in recent years to handle the uncertainty in power systems. However, in critical infrastructures such as power systems, safety issues always receive top priority, while DRL may not always meet the safety requirements of power system operators. The concept of safe reinforcement learning (safe RL) is emerging as a potential solution to overcome the shortcomings of conventional DRL in the operation and control of power systems. This study provides a rigorous review of the latest research efforts focused on safe RL to derive power system control policies while accounting for the unique safety requirements of power grids. Furthermore, this study highlights various safe RL algorithms applied in diverse applications within the power system sector, from single grid-connected power converters, residential smart homes, and buildings to large power distribution networks. For all methods outlined, a discussion on their bottlenecks, research challenges, and potential opportunities in the operation and control of power system applications is also presented. This review aims to support research in the area of safe RL algorithms, embracing smart power system operation with safety constraints amid high uncertainty from DERs.

Systems and Control

Ines Ortega-Fernandez,Francesco Liberati

DOI: https://doi.org/10.3390/en16020635

IF: 3.2

2023-01-06

Energies

Abstract:The smart grid merges cyber-physical systems (CPS) infrastructure with information and communication technologies (ICT) to ensure efficient power generation, smart energy distribution in real-time, and optimisation, and it is rapidly becoming the current standard for energy generation and distribution. However, the use of ICT has increased the attack surface against the electricity grid, which is vulnerable to a wider range of cyberattacks. In particular, Denial-of-Service (DoS) attacks might impact both the communication network and the cyber-physical layer. DoS attacks have become critical threats against the smart grid due to their ability to impact the normal operation of legitimate smart-grid devices and their ability to target different smart grid systems and applications. This paper presents a comprehensive and methodical discussion of DoS attacks in the smart grid, analysing the most common attack vectors and their effect on the smart grid. The paper also presents a survey of detection and mitigation techniques against DoS attacks in the smart grid using reinforcement learning (RL) algorithms, analysing the strengths and limitations of the current approaches and identifying the prospects for future research.

energy & fuels

Omer Sen,Bozhidar Ivanov,Christian Kloos,Christoph Zol_,Philipp Lutat,Martin Henze,Andreas Ulbig

DOI: https://doi.org/10.1016/j.ijcip.2024.100727

2024-12-09

Abstract:The power grid is a critical infrastructure essential for public safety and welfare. As its reliance on digital technologies grows, so do its vulnerabilities to sophisticated cyber threats, which could severely disrupt operations. Effective protective measures, such as intrusion detection and decision support systems, are essential to mitigate these risks. Machine learning offers significant potential in this field, yet its effectiveness is constrained by the limited availability of high-quality data due to confidentiality and access restrictions. To address this, we introduce a simulation environment that replicates the power grid's infrastructure and communication dynamics. This environment enables the modeling of complex, multi-stage cyber attacks and defensive responses, using attack trees to outline attacker strategies and game-theoretic approaches to model defender actions. The framework generates diverse, realistic attack data to train machine learning algorithms for detecting and mitigating cyber threats. It also provides a controlled, flexible platform to evaluate emerging security technologies, including advanced decision support systems. The environment is modular and scalable, facilitating the integration of new scenarios without dependence on external components. It supports scenario generation, data modeling, mapping, power flow simulation, and communication traffic analysis in a cohesive chain, capturing all relevant data for cyber security investigations under consistent conditions. Detailed modeling of communication protocols and grid operations offers insights into attack propagation, while datasets undergo validation in laboratory settings to ensure real-world applicability. These datasets are leveraged to train machine learning models for intrusion detection, focusing on their ability to identify complex attack patterns within power grid operations.

Cryptography and Security

Sunitha Basodi,Song Tan,WenZhan Song,Yi Pan

DOI: https://doi.org/10.1504/ijsn.2020.106506

2020-01-01

Abstract:Cybersecurity in smart grids plays a crucial role in determining its reliable functioning and availability. Data integrity attacks at the physical layer of smart grids are mainly addressed in this paper. State vector estimation (SVE) methods are widely used to detect such attacks, but such methods fail to identify attacks that comply with physical properties of the grid, known as unobservable attacks. In this paper, we formulate a distance measure to be employed as the cost function in deep-learning models using feed-forward neural network architectures to classify malicious and secured measurements. Efficiency and performance of these models are compared with existing state-of-the-art detection algorithms and supervised machine learning models. Our analysis shows better performance for deep learning models in detecting centralised data attacks.

Ciaran Roberts,Sy-Toan Ngo,Alexandre Milesi,Sean Peisert,Daniel Arnold,Shammya Saha,Anna Scaglione,Nathan Johnson,Anton Kocheturov,Dmitriy Fradkin

DOI: https://doi.org/10.1109/smartgridcomm47815.2020.9302997

2020-11-11

Abstract:The increasing penetration of DER with smart-inverter functionality is set to transform the electrical distribution network from a passive system, with fixed injection/consumption, to an active network with hundreds of distributed controllers dynamically modulating their operating setpoints as a function of system conditions. This transition is being achieved through standardization of functionality through grid codes and/or international standards. DER, however, are unique in that they are typically neither owned nor operated by distribution utilities and, therefore, represent a new emerging attack vector for cyber-physical attacks. Within this work we consider deep reinforcement learning as a tool to learn the optimal parameters for the control logic of a set of uncompromised DER units to actively mitigate the effects of a cyber-attack on a subset of network DER.

Nima Abdi,Abdullatif Albaseer,Mohamed Abdallah

DOI: https://doi.org/10.1109/jiot.2024.3354045

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:As smart grids (SG) increasingly rely on advanced technologies like sensors and communication systems for efficient energy generation, distribution, and consumption, they become enticing targets for sophisticated cyber-attacks. These evolving threats demand robust security measures to maintain the stability and resilience of modern energy systems. While extensive research has been conducted, a comprehensive exploration of proactive cyber defense strategies utilizing Deep Learning (DL) in SG remains scarce in the literature. This survey bridges this gap, studying the latest DL techniques for proactive cyber defense. The survey begins with an overview of related works and our distinct contributions, followed by an examination of SG infrastructure. Next, we classify various cyber defense techniques into reactive and proactive categories. A significant focus is placed on DL-enabled proactive defenses, where we provide a comprehensive taxonomy of DL approaches, highlighting their roles and relevance in the proactive security of SG. Subsequently, we analyze the most significant DL-based methods currently in use. Further, we explore Moving Target Defense, a proactive defense strategy, and its interactions with DL methodologies. We then provide an overview of benchmark datasets used in this domain to substantiate the discourse. This is followed by a critical discussion on their practical implications and broader impact on cybersecurity in Smart Grids. The survey finally lists the challenges associated with deploying DL-based security systems within SG, followed by an outlook on future developments in this key field.

computer science, information systems,telecommunications,engineering, electrical & electronic

Zheyu Zhang

2024-02-24

Abstract:Reinforcement Learning (RL), one of the core paradigms in machine learning, learns to make decisions based on real-world experiences. This approach has significantly advanced AI applications across various domains, notably in smart grid optimization and smart home automation. However, the proliferation of RL in these critical sectors has also exposed them to sophisticated adversarial attacks that target the underlying neural network policies, compromising system integrity. Given the pivotal role of RL in enhancing the efficiency and sustainability of smart grids and the personalized convenience in smart homes, ensuring the security of these systems is paramount. This paper aims to bolster the resilience of RL frameworks within these specific contexts, addressing the unique challenges posed by the intricate and potentially adversarial environments of smart grids and smart homes. We provide a thorough review of the latest adversarial RL threats and outline effective defense strategies tailored to safeguard these applications. Our comparative analysis sheds light on the nuances of adversarial tactics against RL-driven smart systems and evaluates the defense mechanisms, focusing on their innovative contributions, limitations, and the compromises they entail. By concentrating on the smart grid and smart home scenarios, this survey equips ML developers and researchers with the insights needed to secure RL applications against emerging threats, ensuring their reliability and safety in our increasingly connected world.

Cryptography and Security,Systems and Control

Mehmet Necip Kurt,Oyetunji Ogundijo,Chong Li,Xiaodong Wang

DOI: https://doi.org/10.1109/TSG.2018.2878570

2018-09-14

Abstract:Early detection of cyber-attacks is crucial for a safe and reliable operation of the smart grid. In the literature, outlier detection schemes making sample-by-sample decisions and online detection schemes requiring perfect attack models have been proposed. In this paper, we formulate the online attack/anomaly detection problem as a partially observable Markov decision process (POMDP) problem and propose a universal robust online detection algorithm using the framework of model-free reinforcement learning (RL) for POMDPs. Numerical studies illustrate the effectiveness of the proposed RL-based algorithm in timely and accurate detection of cyber-attacks targeting the smart grid.

Machine Learning,Cryptography and Security

Jiaqi Ruan,Gaoqi Liang,Junhua Zhao,Huan Zhao,Jing Qiu,Fushuan Wen,Zhao Yang Dong

DOI: https://doi.org/10.1049/enc2.12091

2023-01-01

Energy Conversion and Economics

Abstract:Abstract Protecting cybersecurity is a non‐negotiable task for smart grids (SG) and has garnered significant attention in recent years. The application of artificial intelligence (AI), particularly deep learning (DL), holds great promise for enhancing the cybersecurity of SG. Nevertheless, previous surveys and review articles have failed to comprehensively investigate the intersection between DL and SG cybersecurity. To address this gap, this study presents a survey of the latest advancements in DL technology and their relevance to SG cybersecurity. First, the functional mechanisms and scope of application of common DL techniques are explored. Subsequently, SG cyberthreats are categorised into distinct types of cyberattacks that have not been systematically examined in previous surveys. Based on this, a thorough review of the application of DL techniques in addressing each cyberthreat along with recommendations and a generalised framework for enhancing cyberattack detection using DL is offered. Finally, insights are provided into the emerging challenges presented by DL applications in SG cybersecurity that are yet to be widely acknowledged, and potential research avenues are proposed to address or alleviate these challenges.

Mariam Ibrahim,Ruba Elhafiz

DOI: https://doi.org/10.3390/s23031634

IF: 3.9

2023-02-03

Sensors

Abstract:Future engineering systems with new capabilities that far exceed today's levels of autonomy, functionality, usability, dependability, and cyber security are predicted to be designed and developed using cyber-physical systems (CPSs). In this paper, the security of CPSs is investigated through a case study of a smart grid by using a reinforcement learning (RL) augmented attack graph to effectively highlight the subsystems' weaknesses. In particular, the state action reward state action (SARSA) RL technique is used, in which the agent is taken to be the attacker, and an attack graph created for the system is built to resemble the environment. SARSA uses rewards and penalties to identify the worst-case attack scenario; with the most cumulative reward, an attacker may carry out the most harm to the system with the fewest available actions. Results showed successfully the worst-case attack scenario with a total reward of 26.9 and identified the most severely damaged subsystems.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Chandan Kumar,Prakash Chittora

DOI: https://doi.org/10.1007/s13369-024-08882-1

IF: 2.807

2024-03-20

Arabian Journal for Science and Engineering

Abstract:The Smart Grid represents a modernized electrical infrastructure integrating information and communication technology for bidirectional data exchange between power providers and consumers. This advancement enables seamless digital connectivity among intelligent devices such as Smart Meters, Demand Response Control Units, and Service Providers, facilitating remote data management for optimized energy distribution. However, the reliance on unsecured wireless communication channels poses significant security vulnerabilities, including replay, impersonation, man-in-the-middle, and physical capture attacks. To address these challenges, this study introduces a pioneering approach called Deep-Learning and Blockchain-enabled Secure Data Sharing. Specifically, Deep-Learning techniques are leveraged to develop an effective Intrusion Detection System. The proposed RENS (intRusion detEction aNd clasSification) combines Variational AutoEncoder with Attention-based Bidirectional Long Short-Term Memory for feature extraction and attack detection. Moreover, normal instances identified by RENS are utilized in a blockchain-based access control mechanism, ensuring secure and immutable data exchange among Smart Grid entities. In this framework, participating Service Providers form a peer-to-peer network responsible for generating blocks associated with individual SMs. These blocks undergo validation and are appended to a private blockchain ledger using a smart contract-based Proof-of-Authentication consensus mechanism. Experimental results and security analysis demonstrate the superiority of the DBSDS framework over conventional BiLSTM techniques, confirming its effectiveness in safeguarding Smart Grid operations.

multidisciplinary sciences

O. V. Gnana Swathika,Aayush Karthikeyan,Kreet Rout,Shreyash Hatkar

DOI: https://doi.org/10.1109/access.2024.3443312

IF: 3.9

2024-08-25

IEEE Access

Abstract:Soaring energy demand in power sector demands an intelligent electricity grid which is able to meet the energy requirements of consumers with higher efficiency and reliability. This paper discusses about how Smart Grid (SG) is the solution for such requirements in the energy sector. SG constitutes of three main components: Information Technology (IT), Operational Technology (OT), and Advanced Metering Infrastructure (AMI). It is important to synchronize these three components in order to seamlessly deliver electricity to the consumers connected to the electric network. Cyberattack is increasing sharply in the SG infrastructure and triggers disrupting or malicious manipulation of entire electricity network. It is crucial to maintain the data traffic, power transmission and distribution with high reliability. This paper aims at arriving at the taxonomy of attacks that are subjected to IT, OT and AMI components of SG. This exhaustive taxonomy further opens avenues to evolve mitigation strategies for these attacks which will eventually aid in SG protection. Elaborate discussion about various mitigation strategies for various types of attacks is performed. The systematic approach of methods and techniques along with the type of solution it provides to SG applications is discussed. It is evident from literature that Machine Learning (ML), Deep Learning (DL) and signal processing techniques are very efficient and robust in attack detection and retaliating in SG. ML model pro. Hence the importance of framework and tools in SG environment is analyzed. A case study is also presented that emphasizes on SG Attacks on the specific system and its mitigation strategies.

computer science, information systems,telecommunications,engineering, electrical & electronic

Sardar Shan Ali Naqvi,Yuancheng Li,Muhammad Uzair

DOI: https://doi.org/10.7717/peerj-cs.1784

2024-01-09

PeerJ Computer Science

Abstract:Network attacks pose a significant challenge for smart grid networks, mainly due to the existence of several multi-directional communication devices coupling consumers to the grid. One of the network attacks that can affect the smart grid is the distributed denial of service (DDoS), where numerous compromised communication devices/nodes of the grid flood the smart grid network with false data and requests, leading to disruptions in smart meters, data servers, and the state estimator, ultimately effecting the services for end-users. Machine learning-based strategies show distinctive benefits in resolving the challenge of securing the network from DDoS attacks. Regardless, a notable hindrance in deploying machine learning-based techniques is the requirement of model retraining whenever new attack classes arise. Practically, disrupting the normal operations of smart grid is really discouraged. To handle this challenge effectively and detect DDoS attacks without major disruptions, we propose the deployment of reconstructive deep learning techniques. A primary benefit of our proposed technique is the minimum disruption during the introduction of a new attack class, even after complete deployment. We trained several deep and shallow reconstructive models to get representations for each attack type separately, and we performed attack detection by class-specific reconstruction error-based classification. Our technique experienced rigid evaluation via multiple experiments using two well-acknowledged standard databases exclusively for DDoS attacks, including their subsets. Later, we performed a comparative estimation of our outcomes against six methods prevalent within the same domain. Our outcomes reveal that our technique attained higher accuracy, and notably eliminates the requirement of a complete model retraining in the event of the introduction of new attack classes. This method will not only boost the security of smart grid networks but also ensure the stability and reliability of normal operations, protecting the critical infrastructure from ever-evolving network attacks. As smart grid is advancing rapidly, our approach proposes a robust and adaptive way to overcome the continuous challenges posed by network attacks.

computer science, information systems, artificial intelligence, theory & methods

Vasileios Dimitropoulos,Andreas D. Syrmakesis,Nikos Hatziargyriou

2024-04-26

Abstract:Power grids heavily rely on Automatic Generation Control (AGC) systems to maintain grid stability by balancing generation and demand. However, the increasing digitization and interconnection of power grid infrastructure expose AGC systems to new vulnerabilities, particularly from cyberattacks such as false data injection attacks (FDIAs). These attacks aim at manipulating sensor measurements and control signals by injecting tampered data into the communication mediums. As such, it is necessary to develop innovative approaches that enhance the resilience of AGC systems. This paper addresses this challenge by exploring the potential of deep reinforcement learning (DRL) to enhancing the resilience of AGC systems against FDIAs. To this end, a DRL-based controller is proposed that dynamically adjusts generator setpoints in response to both load fluctuations and potential cyber threats. The controller learns these optimal control policies by interacting with a simulated power system environment that incorporates the AGC dynamics under cyberattacks. The extensive experiments on test power systems subjected to various FDIAs demonstrate the effectiveness of the presented approach in mitigating the impact of cyberattacks.

Systems and Control

Mohammad Kamrul Hasan,Rabiu Aliyu Abdulkadir,Shayla Islam,Thippa Reddy Gadekallu,Nurhizam Safie

DOI: https://doi.org/10.1016/j.egyr.2023.12.040

IF: 5.2

2024-01-12

Energy Reports

Abstract:The smart grid (SG) is an advanced cyber-physical system (CPS) that integrates power grid infrastructure with information and communication technologies (ICT). This integration enables real-time monitoring, control, and optimization of electricity demand and supply. However, the increasing reliance on ICT infrastructures has made the SG-CPS more vulnerable to cyberattacks. Hence, securing the SG-CPS from these threats is crucial for its reliable operation. In recent literature, machine learning (ML) techniques and, more recently, deep learning (DL) techniques have been used by several studies to implement cybersecurity countermeasures against cyberattacks in SG-CPS. Nevertheless, the achieving high performance of these state-of-the-art techniques is constrained by certain challenges, including hyperparameter optimization, feature extraction and selection, lack of models' transparency, data privacy, and lack of real-time attack data. This paper reviews the advancement in using ML and DL techniques for cybersecurity countermeasures in SG-CPS. It analyzes the constraints that need to be addressed to improve performance and achieve real-time implementation. The various types of cyberattacks, cybersecurity requirements, and security standards and protocols are also discussed to establish a comprehensive understanding of the cybersecurity context in SG-CPS. This paper will serve as a comprehensive guide for new and experienced researchers.

energy & fuels