Beibei Li,Gaoxi Xiao,Rongxing Lu,Ruilong Deng,Haiyong Bao

DOI: https://doi.org/10.1109/tii.2019.2922215

IF: 12.3

2019-01-01

IEEE Transactions on Industrial Informatics

Abstract:Recent studies have investigated the possibilities of proactively detecting the high-profile false data injection (FDI) attacks on power grid state estimation by using the distributed flexible ac transmission system (D-FACTS) devices, termed as proactive false data detection (PFDD) approach. However, the feasibility and limitations of such an approach have not been systematically studied in the existing literature. In this paper, we explore the feasibility and limitations of adopting the PFDD approach to thwart FDI attacks on power grid state estimation. Specifically, we thoroughly study the feasibility of using PFDD to detect FDI attacks by considering single-bus, uncoordinated multiple-bus, and coordinated multiple-bus FDI attacks, respectively. We prove that PFDD can detect all these three types of FDI attacks targeted on buses or super-buses with degrees larger than 1, if and only if the deployment of D-FACTS devices covers branches at least containing a spanning tree of the grid graph. The minimum efforts required for activating D-FACTS devices to detect each type of FDI attacks are, respectively, evaluated. In addition, we also discuss the limitations of this approach; it is strictly proved that PFDD is not able to detect FDI attacks targeted on buses or super-buses with degrees equalling 1.

Ruilong Deng,Peng Zhuang,Hao Liang

DOI: https://doi.org/10.1109/tsg.2018.2813280

IF: 10.275

2019-01-01

IEEE Transactions on Smart Grid

Abstract:The existing research on false data injection (FDI) attacks against state estimation in transmission systems cannot be trivially extended to distribution feeders. The main reason is that a strong condition that requires the attacker to know the estimated state of distribution systems is needed, which makes the traditional FDI attacks difficult to be implemented in practice. In this paper, we propose a practical FDI attack model against state estimation in distribution systems, without paying expensive cost for obtaining the system state. We show that the attacker can approximate the system state based on power flow or injection measurements without too much effort. For local FDI attacks, the strong condition can be further relaxed to the knowledge of local state, which can be approximated based on a small number of power flow or injection measurements. Simulation results based on the IEEE test feeder demonstrate that the proposed practical FDI attack, even with the approximated system state, is more likely to compromise the state estimation without being detected, in comparison with the traditional attacks. This paper provides a basis to study the attack behaviors in distribution systems and a theoretical guide to develop protective countermeasures.

Peng Zhuang,Ruilong Deng,Hao Liang

DOI: https://doi.org/10.1109/tsg.2019.2895306

2020-01-01

Abstract:In power transmission systems, the false data injection (FDI) attacks against state estimation (SE) have been well studied. However, due to the unique features of power distribution systems including: the low x/r ratio, existence of one-and/or two-phase branches, unbalanced load distributions, and unsymmetrical line parameters; the research on FDI attacks against distribution system SE (DSSE) is still open. In this paper, we investigate the vulnerability of DSSE to FDI attacks. In particular, we first propose a local state-based linear DSSE for multiphase and unbalanced smart distribution systems, which can facilitate the construction of FDI attacks numerically with the least information of system states. Then, the construction of three-phase coupled FDI attacks is introduced. The consideration of the coupling among phases by the three-phase coupled FDI attacks may require the modification of a large number of measurements by the attackers. To reduce the number of required measurements, the perfect three-phase decoupled FDI attacks, which consider the weak couplings among phases, is investigated. The probabilities of successful three-phase decoupled FDI attacks in strongly three-phase coupled systems are also derived numerically. The performance of the proposed FDI attacks against DSSE is evaluated based on IEEE test feeders. The case study results indicate the feasibility of the FDI attacks against DSSE in practical multiphase and unbalanced smart distribution systems. Future research directions including potential countermeasures are also highlighted.

Ruilong Deng,Gaoxi Xiao,Rongxing Lu,Hao Liang,Athanasios V. Vasilakos

DOI: https://doi.org/10.1109/tii.2016.2614396

IF: 12.3

2017-01-01

IEEE Transactions on Industrial Informatics

Abstract:The accurately estimated state is of great importance for maintaining a stable running condition of power systems. To maintain the accuracy of the estimated state, bad data detection (BDD) is utilized by power systems to get rid of erroneous measurements due to meter failures or outside attacks. However, false data injection (FDI) attacks, as recently revealed, can circumvent BDD and insert any bias into the value of the estimated state. Continuous works on constructing and/or protecting power systems from such attacks have been done in recent years. This survey comprehensively overviews three major aspects: constructing FDI attacks; impacts of FDI attacks on electricity market; and defending against FDI attacks. Specifically, we first explore the problem of constructing FDI attacks, and further show their associated impacts on electricity market operations, from the adversary's point of view. Then, from the perspective of the system operator, we present countermeasures against FDI attacks. We also outline the future research directions and potential challenges based on the above overview, in the context of FDI attacks, impacts, and defense.

Ruilong Deng,Gaoxi Xiao,Rongxing Lu

DOI: https://doi.org/10.1109/tii.2015.2470218

IF: 12.3

2017-01-01

IEEE Transactions on Industrial Informatics

Abstract:This paper investigates the problem of defending against false data injection (FDI) attacks on power system state estimation. Although many research works have been previously reported on addressing the same problem, most of them made a very strong assumption that some meter measurements can be absolutely protected. To address the problem practically, a reasonable approach is to assume whether or not a meter measurement could be compromised by an adversary does depend on the defense budget deployed by the defender on the meter. From this perspective, our contributions focus on designing the least-budget defense strategy to protect power systems against FDI attacks. In addition, we also extend to investigate choosing which meters to be protected and determining how much defense budget to be deployed on each of these meters. We further formulate the meter selection problem as a mixed integer nonlinear programming problem, which can be efficiently tackled by Benders' decomposition. Finally, extensive simulations are conducted on IEEE test power systems to demonstrate the advantages of the proposed approach in terms of computing time and solution quality, especially for large-scale power systems.

Shiyu Jin

DOI: https://doi.org/10.1016/j.epsr.2024.110294

IF: 3.818

2024-03-04

Electric Power Systems Research

Abstract:In power systems, False Data Injection (FDI) attack can covertly mislead the state estimation of the power system and lead to inestimable damage. Traditional studies on FDI attack usually assume that the attacker has complete network information of the power grid. However, this assumption is often difficult to be achieved due to the good protection of data in the control center. In this paper, an FDI attack approach with incomplete network information is proposed against AC state estimation. In addition to constructing an attack vector to modify the selected state, this approach also gives the attack range of the state. Through the analysis of the residuals we propose a method to extend the range that can evade bad data detector. Simulation in the IEEE14 and IEEE118 bus systems verify the feasibility and stealth of the model.

engineering, electrical & electronic

Zhenyu Wang,Donglian Qi,Zhenming Li,Jianliang Zhang

DOI: https://doi.org/10.17775/CSEEJPES.2022.04560

IF: 6.014

2023-01-01

CSEE Journal of Power and Energy Systems

Abstract:This paper explores the approximate solutions of AC power flow model with intractable nonlinearities, which significantly relaxes the strong condition of pre-estimated states for false data injection (FDI) attacks in power distribution systems. The main idea is to solve for complex-valued perturbations around a priori determined nominal voltage without neglecting quadratic terms in nonlinear power flow equations. We prove that based on power injection measurements, the approximate perturbations of the nodal voltage can be more accurately obtained by a recursive approximation with considering more nonlinear components than the results from power flow measurements. For FDI attacks, the strong requirement of pre-estimated states for constructing attack vector is relaxed by approximate states, while reflecting the intent of attackers and passing the bad data detection scheme in power system. Simulation results based on a symmetric balanced 56-node testbed verify the performance of the proposed nonlinear approximation in terms of accuracy and FDI attacks effect, compared with the commonly used linear method.

Muhammad Awais Shahid,Fiaz Ahmad,Fahad R. Albogamy,Ghulam Hafeez,Zahid Ullah

DOI: https://doi.org/10.3390/su14116407

IF: 3.9

2022-05-25

Sustainability

Abstract:The smart grid has become a cyber-physical system and the more cyber it becomes, the more prone it is to cyber-attacks. One of the most important cyber-attacks in smart grids is false data injection (FDI) into its measurement infrastructure. This attack could manipulate the control center in a way to execute wrong control actions on various generating units, causing system instabilities that could ultimately lead to power system blackouts. In this study, a novel false data detection and prevention paradigm was proposed for the measurement infrastructure in smart grids. Two techniques were devised to manage cyber-attacks, namely, the fixed dummy value model and the variable dummy value model. Limitations of the fixed dummy value model were identified and addressed in the variable dummy value model. Both methods were tested on an IEEE 14 bus system and it was shown through the results that an FDI attack that easily bypassed the bad data filter of the state estimator was successfully identified by the fixed dummy model. Second, attacks that were overlooked by the fixed dummy model were identified by the variable dummy method. In this way, the power system was protected from FDI attacks.

environmental sciences,environmental studies,green & sustainable science & technology

Beibei Li,Rongxing Lu,Gaoxi Xiao,Tao Li,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1109/tpwrs.2021.3127353

IF: 7.326

2022-07-01

IEEE Transactions on Power Systems

Abstract:The integration of phasor measurement units (PMUs) and phasor data concentrators (PDCs) in smart grids may be exploited by attackers to initiate new and sophisticated false data injection (FDI) attacks. Existing FDI attack mitigation approaches are generally less effective against sophisticated FDI attacks, such as collusive false data injection (CFDI) attacks launched by compromised PDCs (and PMUs) as we demonstrate in this paper. Thus, we propose a secure and resilience-enhanced scheme (SeCDM) to detect and mitigate such cyber threats in smart grids. Specifically, we design a decentralized homomorphic computation paradigm along with a hierarchical knowledge sharing algorithm to facilitate secure ciphertext calculation of state estimation residuals. Following this, a centralized FDI detector is implemented to detect FDI attacks. Findings from the security analysis demonstrate our approach achieves enhanced conventional FDI and CFDI attack resilience, and findings from our performance evaluations on the standard IEEE 14-, 24-, and 39-bus power systems also show that the communication overheads and computational complexity are reasonably low.

engineering, electrical & electronic

Aidong Xu,Tengyue Zhang,Liang Chen,Qing Li,Yunan Zhang,Haojie Lin,Peiyao Wang,Sihui Wu,Runhui Zhao,Yixin Jiang

DOI: https://doi.org/10.1088/1755-1315/693/1/012010

2021-01-01

IOP Conference Series Earth and Environmental Science

Abstract:Abstract The concealed false data injection (FDI) attack in the smart grid can successfully pass the power system state estimation commonly used in the residual bad data test without being detected by the existing algorithms, resulting in the state estimation error of the control center and disturbing the normal operation of the power system. In this paper, false data injection attack and attack detection are carried out in the actual power edge security protection system, microgrid control system and intelligent energy security protection system. Among them, the false data attack part simulates the attack of the voltage phase angle, and compares it with the ordinary attack method, and demonstrates the success of these attacks in the actual power grid system.

Dai Wang,Xiaohong Guan,Ting Liu,Yun Gu,Chao Shen,Zhanbo Xu

DOI: https://doi.org/10.3390/en7031517

IF: 3.2

2014-01-01

Energies

Abstract:False data injection (FDI) is considered to be one of the most dangerous cyber-attacks in smart grids, as it may lead to energy theft from end users, false dispatch in the distribution process, and device breakdown during power generation. In this paper, a novel kind of FDI attack, named tolerable false data injection (TFDI), is constructed. Such attacks exploit the traditional detector's tolerance of observation errors to bypass the traditional bad data detection. Then, a method based on extended distributed state estimation (EDSE) is proposed to detect TFDI in smart grids. The smart grid is decomposed into several subsystems, exploiting graph partition algorithms. Each subsystem is extended outward to include the adjacent buses and tie lines, and generate the extended subsystem. The Chi-squares test is applied to detect the false data in each extended subsystem. Through decomposition, the false data stands out distinctively from normal observation errors and the detection sensitivity is increased. Extensive TFDI attack cases are simulated in the Institute of Electrical and Electronics Engineers (IEEE) 14-, 39-, 118- and 300-bus systems. Simulation results show that the detection precision of the EDSE-based method is much higher than that of the traditional method, while the proposed method significantly reduces the associated computational costs.

Jiazi Zhang,Zhigang Chu,Lalitha Sankar,Oliver Kosut

DOI: https://doi.org/10.48550/arXiv.1703.07500

2018-05-02

Abstract:This paper studies physical consequences of unobservable false data injection (FDI) attacks designed only with information inside a sub-network of the power system. The goal of this attack is to overload a chosen target line without being detected via measurements. To overcome the limited information, a multiple linear regression model is developed to learn the relationship between the external network and the attack sub-network from historical data. The worst possible consequences of such FDI attacks are evaluated by solving a bi-level optimization problem wherein the first level models the limited attack resources, while the second level formulates the system response to such attacks via DC optimal power flow (OPF). The attack model with limited information is reflected in the DC OPF formulation that only takes into account the system information for the attack sub-network. The vulnerability of this attack model is illustrated on the IEEE 24-bus RTS and IEEE 118-bus systems.

Systems and Control

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Meng Zhang,Chao Shen,Ning He,SiCong Han,Qi Li,Qian Wang,XiaoHong Guan

DOI: https://doi.org/10.1007/s11431-019-9544-7

2019-01-01

Science China Technological Sciences

Abstract:As a typical representative of the so-called cyber-physical system, smart grid reveals its high efficiency, robustness and reliability compared with conventional power grid. However, due to the deep integration of electrical components and computinginformation in cyber space, smart gird is vulnerable to malicious attacks, especially for a type of attacks named false data injection attacks (FDIAs). FDIAs are capable of tampering meter measurements and affecting the results of state estimation stealthily, which severely threat the security of smart gird. Due to the significantinfluence of FDIAs on smart grid, the research related to FDIAs has received considerable attention over the past decade. This paper aims to summarize recent advances in FDIAs against smart grid state estimation, especially from the aspects of background materials, construction methods, detection and defense strategies. Moreover, future research directions are discussed and outlined by analyzing existing results. It is expected that through the review of FDIAs, the vulnerabilities of smart grid to malicious attacks can be further revealed and more attention can be devoted to the detection and defense of cyber-physical attacks against smart grid.

Yang Liu,Mi Wen,Hong Wen,Ruilong Deng,Sha Peng,Naiwang Guo

DOI: https://doi.org/10.1109/tii.2024.3485110

IF: 12.3

2024-01-01

IEEE Transactions on Industrial Informatics

Abstract:With the advancement of carbon-neutral and new power system construction, numerous information devices are continuously connected to power distribution systems, gradually breaking the original unobservable state of power distribution systems and making them more vulnerable to false data injection attacks (FDIAs). Contrary to most existing research focusing on the unbalanced network, less attention has been paid to the influence of randomness and fluctuation of distributed photovoltaic (PV) to perform FDIAs in the power distribution system. In this article, the failure mechanism of FDIAs and the improved FDIAs method are proposed simultaneously for the distribution system with a high penetration of distributed PV scenarios. Specifically, based on the reactive power optimization process, the randomness and fluctuation of distributed PV are applied to decrease significantly the stealthiness of the FDIAs. Subsequently, an improved FDIA method, based on time-dependent loss conditional generative adversarial networks, is proposed to enhance the stealth and effectiveness of the attack. Finally, numerical results based on the modified IEEE 33 bus test systems demonstrate the effectiveness of the failure mechanism and the improved FDIAs. Research results can facilitate the execution of countermeasures for distribution systems with a high penetration of distributed PV, posing serious and pressing security concerns in power distribution systems with a high penetration of distributed PV scenarios.

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau,Peng Cheng,Jiming Chen

DOI: https://doi.org/10.1109/tifs.2019.2928624

IF: 7.231

2019-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Recent studies have considered thwarting false data injection (FDI) attacks against state estimation in power grids by proactively perturbing branch susceptances. This approach is known as moving target defense (MTD). However, despite of the deployment of MTD, it is still possible for the attacker to launch stealthy FDI attacks generated with former branch susceptances. In this paper, we prove that, an MTD has the capability to thwart all FDI attacks constructed with former branch susceptances only if (i) the number of branches l in the power system is not less than twice that of the system states n (i.e., l ≥ 2n, where n + 1 is the number of buses); (ii) the susceptances of more than n branches, which cover all buses, are perturbed. Moreover, we prove that the state variable of a bus that is only connected by a single branch (no matter it is perturbed or not) can always be modified by the attacker. Nevertheless, in order to reduce the attack opportunities of potential attackers, we first exploit the impact of the susceptance perturbation magnitude on the dimension of the stealthy attack space, in which the attack vector is constructed with former branch susceptances. Then, we propose that, by perturbing an appropriate set of branches, we can minimize the dimension of the stealthy attack space and maximize the number of covered buses. Besides, we consider the increasing operation cost caused by the activation of MTD. Finally, we conduct extensive simulations to illustrate our findings with IEEE standard test power systems.

Nam N. Tran,Hemanshu R. Pota,Quang N. Tran,Xuefei Yin,Jiankun Hu

DOI: https://doi.org/10.48550/arXiv.2003.05071

2020-03-11

Abstract:The evolution of the traditional power system towards the modern smart grid has posed many new cybersecurity challenges to this critical infrastructure. One of the most dangerous cybersecurity threats is the False Data Injection (FDI) attack, especially when it is capable of completely bypassing the widely deployed Bad Data Detector of State Estimation and interrupting the normal operation of the power system. Most of the simulated FDI attacks are designed using simplified linearized DC model while most industry standard State Estimation systems are based on the nonlinear AC model. In this paper, a comprehensive FDI attack scheme is presented based on the nonlinear AC model. A case study of the nine-bus Western System Coordinated Council (WSCC)'s power system is provided, using an industry standard package to assess the outcomes of the proposed design scheme. A public FDI dataset is generated as a test set for the community to develop and evaluate new detection algorithms, which are lacking in the field. The FDI's stealthy quality of the dataset is assessed and proven through a preliminary analysis based on both physical power law and statistical analysis.

Cryptography and Security,Systems and Control

Poornachandratejasvi Laxman Bhattar,Naran M Pindoriya

DOI: https://doi.org/10.1016/j.cose.2024.103761

IF: 5.105

2024-02-15

Computers & Security

Abstract:With the proliferation of information and communication technology (ICT), the smart grid is critically vulnerable to cyber-attacks such as false data injection (FDI), denial-of-service, and data spoofing. The cyber-attackers defunctionalize critical operations of the smart grid by compromising the ICT. The decisions for the critical operation of the smart grid are processed with a state estimator, and ICT makes the state estimator vulnerable to FDI attacks. Hence, vulnerability analysis of the state estimator needs to be investigated for potential FDI attacks to protect it from future cyber-attacks. This work proposes the FDI attack vector construction without the knowledge of bad data detection (BDD) threshold on linear and non-linear state estimators using max-min optimization considering the partial network information. The optimization problem is formulated from the attacker's perspective to target the manipulation of measurements in the attack zone so as to increase the generation cost. The equivalent power injection model is developed for the attack zone to construct the deceptive attacks using DC and AC power flow models. The effectiveness of the proposed framework has been tested on 5 bus PJM network, modified IEEE 30 bus, IEEE 57 bus, and IEEE 118 bus system. The proposed framework is compared with existing state-of-art methods (viz., linear attack policy, non-linear attack policy, load redistribution attack, and line flow attack) to assess its efficacy. It is observed that the developed FDI attack vector successfully bypasses the bad data detectors such as the chi-square test, largest normalized residue, and l2 detector that is normally used by the system operator. Moreover, the study compares and discusses the impact of FDI attacks on the estimated state variables obtained with state estimators and, thereby, the generation cost calculated with the DC & AC optimal power flow tool

computer science, information systems

Jichao Bi,Shibo He,Fengji Luo,Jiming Chen,Da -Wen Huang,Mingyang Sun

DOI: https://doi.org/10.1109/trustcom56396.2022.00024

2022-01-01

Abstract:Backboned by smart meter networks, Advanced Metering Infrastructures (AMIs) play a critical role in smart grids. This paper studies a new False Data Injection Attack (FDIA) scenario targeting AMIs, in which the attacker injects and propagates computer worms (i.e., false data codes) to maliciously increase the readings of networked smart meters and create economic loss to the end customers. This paper establishes the false data code propagation and attack models in such a scenario; based on this, this paper proposes a differential game model for describing the attack and defense process for FDIA against AMIs. A computationally efficient algorithm is developed to solve the proposed differential model and obtain the potential Nash equilibrium (NE) strategy pair. Extensive numerical simulations are conducted to validate the effectiveness of the proposed method under different energy tariff structures.

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau,Peng Cheng,Jiming Chen

DOI: https://doi.org/10.23919/acc45564.2020.9147943

2020-01-01

Abstract:False data injection (FDI) attack is one class of the threatening cyber attacks against power systems. It has been widely recognized that, with the assumption that the attacker is capable of obtaining complete or incomplete information of the system topology and line parameters, the highly synthesized FDI attacks can evade being detected from bad data detection in state estimation. However, line parameters cannot be obtained or inferred easily in practice, because they may be changed or disturbed. In this paper, we find that it is possible for the attacker to execute stealthy FDI attacks against DC state estimation with zero knowledge of line parameters. We term them as zero-parameter-information FDI attacks. Only the topology information about the cut line is required for designing such attack. We prove that, the attacker can arbitrarily modify the state variable of a one-degree bus, which is connected to the outside only by a single cut line; and modify the state variables of all buses, with a same arbitrary bias, in a one-degree super-bus, which is a group of buses that is connected to the outside only by a single cut line. Moreover, we extend these results to a bus or a super-bus which is connected to the outside only by multiple cut lines. Finally, we illustrate and validate our findings using some test power systems.