Carlos Rubio-Medrano,Josephine Lamp,Vu Coughlin,Ziming Zhao,Anna Scaglione

2017-01-01

Abstract:Description of research activity: Our approach is described as follows: first, we provide support for the creation of dedicated repositories depicting security requirements, which are to be modeled leveraging ontological representations, in such a way that an unambiguous and comprehensive description of requirements, as well as common vulnerabilities and exposures (CVEs) (Mitre 2016), is synthesized cohesively. Using ontologies, the relationships between different security concepts can be better modeled, thus allowing for the exploration and discovery of similar and complimentary requirements obtained from different sources. We have identified already a starting collection of documents which we plan to enhance over time as a result of our interactions with both industry and academic partners, in such a way that our requirements repository is effectively constructed from source materials that are deemed as relevant by the EDS and cybersecurity communities.

Yinan Wang,Gangfeng Yan,Ronghao Zheng

DOI: https://doi.org/10.3390/app8050768

2018-01-01

Applied Sciences

Abstract:The integration of modern computing and advanced communication with power grids has led to the emergence of electrical cyber-physical systems (ECPSs). However, the massive application of communication technologies makes the power grids become more vulnerable to cyber attacks. In this paper, we study the vulnerability of ECPSs and develop defence strategies against cyber attacks. Detection and protection algorithms are proposed to deal with the emergency of cascading failures. Moreover, we propose a weight adjustment strategy to solve the unbalanced power flows problem which is caused by splitting incidents. A MATLAB-based platform with advantages of easy programming, fast calculation, and no damage to systems is built for the offline simulation and analysis of the vulnerability of ECPSs. We also propose a five-aspect method of vulnerability assessment which includes the robustness, economic costs, degree of damage, vulnerable equipment, and trip point. The study is of significance to decision makers as they can get specific advice and defence strategies about a special power system.

Carlos E. Rubio-Medrano,Ziming Zhao,Gail-Joon Ahn

DOI: https://doi.org/10.1109/tps-isa50397.2020.00048

2020-01-01

Abstract:The innovation and advances in power delivery and information technologies are bringing unmatched changes to energy delivery systems (EDS), automating the management and administration of mission-critical infrastructures, such as the power grid, the oil, and gas industries. While the benefits of these changes are unparalleled, cyberattacks at EDS are also at unprecedented levels, which may lead to consequences ranging from power outages to homeland security breaches. To securely connect and integrate large quantities of these components, the energy community has proposed roadmaps to update the way to plan and operate EDS. These roadmaps come with security requirements that specify the best practices along with regulations EDS and utility should comply with. However, there is a huge gap between these requirements and the actual enforcement. In this paper, we envision a framework that automates the security requirement enforcement so that natural language policies can be enforced without human intervention and with high confidence.

Haifeng Zhou,Chunming Wu,Ming Jiang,Boyang Zhou,Wen Gao,Tingting Pan,Min Huang

DOI: https://doi.org/10.1109/mcom.2015.7081074

IF: 9.03

2015-01-01

IEEE Communications Magazine

Abstract:The past few years have witnessed revolutionary advances in network technology. Along with new techniques such as SDN come lots of new network security challenges. Conventional network security mechanisms are incompetent to overcome these challenges, since they are built on a static network configuration that facilitates attackers in finding the weaknesses of a network. In this article, we conceive a novel conceptual network security mechanism, the evolving defense mechanism (EDM), to resolve current and future security problems. EDM is based on a bio-inspired idea of network configuration variations. According to the security requirements of the system, the user, and the network security state, EDM selects an efficient network configuration variation strategy to prevent corresponding security threats. Combined with SDN implementation, EDM resolves security problems from a new angle and is capable of evolving with new network security technology. We sketch a way to implement EDM and present its reference framework, which serves as an ecosystem and coexisting environment for various kinds of network configuration variations. The proposed mechanism avoids the deficiency of conventional mechanisms and has potential to cope with emerging security threats.

Yinan Wang,Wei Li,Gangfeng Yan,Sumian Song

DOI: https://doi.org/10.1109/icit.2017.7915433

2017-01-01

Abstract:This paper proposes an unified framework for electrical cyber physical systems (ECPSs) and studies the mechanism of cyber attacks and cyber security. Communication networks are designed by characteristics of power grids. This model is universal to both transmission and distribution grids. The fragility of ECPSs under cyber attacks (DoS attacks and false data injection attacks) is analyzed in three scenarios based on different types and attackers' acknowledgments of the ECPSs. It has been proved that attacks happen at information uploading routers or control strategy downloading routers will influence the system differently. The effectiveness of relay protection policies and cyber security policies are verified by experimental results.

WUChunming

DOI: https://doi.org/10.3969/j.issn.1009-6868.2016.01.009

2016-01-01

Abstract:Dynamic network proactive security defence is an effective method for solving the unknown vulnerabilities and back door attacks in the information system. In this paper, the evolution defense mechanism (EDM) is proposed. According to the security status, network system security needs, EDM can select the best network configuration change elements to deal with potential attacks and ensure the safety requirements of a specific level. Dynamic reconfiguration and changes of the network need to be considered in accordance with the security situation of the system and the possible network attacks. The key is how to detect and the security situation and network attacks. It proposes that study on dynamic network proactive security defense in China is in the initial stage, and there is stil much work to do.

Tingqi Zhang,Mingyang Sun,Jochen L. Cremer,Ning Zhang,Goran Strbac,Chongqing Kang

DOI: https://doi.org/10.1109/tpwrs.2021.3059197

IF: 7.326

2021-01-01

IEEE Transactions on Power Systems

Abstract:Dynamic Security Assessment (DSA) for the future power system is expected to be increasingly complicated with the higher level penetration of renewable energy sources (RES) and the widespread deployment of power electronic devices, which drive new dynamic phenomena. As a result, the increasing complexity and the severe computational bottleneck in real-time operation encourage researchers to exploit machine learning to extract offline security rules for the online assessment. However, traditional machine learning methods lack in providing information on the confidence of their corresponding predictions. A better understanding of confidence of the prediction is of key importance for Transmission System Operators (TSOs) to use and rely on these machine learning methods. Specifically, from the perspective of topological changes, it is often unclear whether the machine learning model can still be used. Hence, being aware of the confidence of the prediction supports the transition to using machine learning in real-time operation. In this paper, we propose a novel Conditional Bayesian Deep Auto-Encoder (CBDAC) based security assessment framework to compute a confidence metric of the prediction. This informs not only the operator to judge whether the prediction can be trusted, but it also allows for judging whether the model needs updating. A case study based on IEEE 68-bus system demonstrates that CBDAC outperforms the state-of-the-art machine learning-based DSA methods and the models that need updating under different topologies can be effectively identified. Furthermore, the case study verifies that effective updating of the models is possible even with very limited data.

Yanmiao Zhang,Xiaoyu Ji,Yushi Cheng,Wenyuan Xu

DOI: https://doi.org/10.23919/ChiCC.2019.8866144

2019-01-01

Abstract:As a modern power transmission network, smart grid connects abundant terminal devices and plays an important role in our daily life. However, along with its growth are the security threats. Different from the separated environment previously, an adversary nowadays can destroy the power system by attacking its terminal devices. As a result, it's critical to ensure the security and safety of terminal devices. To achieve it, detecting the pre-existing vulnerabilities in the terminal program and enhancing its security, are of great importance and necessity. In this paper. we introduce Cker, a novel vulnerability detection tool for smart grid devices, which generates an program model based on device sources and sets rules to perform model checking. We utilize the static analysis to extract necessary information and build corresponding program models. By further checking the model with pre-defined vulnerability patterns, we achieve security detection and error reporting. The evaluation results demonstrate that our method can effectively detect vulnerabilities in smart devices with an acceptable accuracy and false positive rate. In addition, as Cker is realized by pure python. it can be easily scaled to other platforms.

Josephine Lamp,Carlos E. Rubio-Medrano,Ziming Zhao,Gail‐Joon Ahn

DOI: https://doi.org/10.1145/3428156

2021-01-01

Digital Threats Research and Practice

Abstract:No longer just prophesied about, cyber-attacks to Energy Delivery Systems (EDS) (e.g., the power grid, gas and oil industries) are now very real dangers that result in non-trivial economical losses and inconveniences to modern societies. In such a context, risk analysis has been proposed as a valuable way to identify, analyze, and mitigate potential vulnerabilities, threats, and attack vectors. However, performing risk analysis for EDS is difficult due to their innate structural diversity and interdependencies, along with an always-increasing threatscape. Therefore, there is a need for a methodology to evaluate the current system state, identify vulnerabilities, and qualify risk at multiple granularities in a collaborative manner among different actors in the context of EDS. With this in mind, this article presents ExSol , a collaborative, real-time, risk assessment ecosystem that features an approach for modeling real-life EDS infrastructures, an ontology traversal technique that retrieves well-defined security requirements from well-reputed documents on cyber-protection for EDS infrastructures, as well as a methodology for calculating risk for a single asset and for an entire system. Moreover, we also provide experimental evidence involving a series of attack scenarios in both simulated and real-world EDS environments, which ultimately encourage the adoption of ExSol in practice.

Libao Shi,Naichao Chang,Zhou Lan,D. P. Zhao,Huafeng Zhou,Peter T. C. Tam,Yixin Ni,Felix F. Wu

DOI: https://doi.org/10.1109/PES.2007.385468

2007-01-01

Abstract:A real time dynamic security assessment and early warning (DSAEW) system for the purpose of keeping interconnected power systems operating in security region, monitoring dynamic security margin constantly and ensuring system operation reliability is proposed in this paper. The framework of the DSAEW system is designed in accordance with Client/Server and Browser/Server models based on the TCP/IP protocol. In this paper, the overall system architecture, function design and technology used of such tool including TSA- Transient Stability Assessment, VSA- Voltage Stability Assessment is presented. Furthermore, the calculation of some operation limits involving the bus voltage limits, the branch/corridor transfer power limits and the P-load limit of the whole system is introduced in this paper as well. On one hand, the DSAEW system can easily and conveniently integrate with existing Energy Management System (EMS) to implement the real time dynamic security assessment. On the other hand, the DSAEW system can make intensive dynamic analysis related to the specified case study as an off-line simulation platform. © 2007 IEEE.

Zhigang Chu,Andrea Pinceti,Ramin Kaviani,Roozbeh Khodadadeh,Xingpeng Li,Jiazi Zhang,Karthik Saikumar,Mostafa Sahraei-Ardakani,Christopher Mosier,Robin Podmore,Kory Hedman,Oliver Kosut,Lalitha Sankar

DOI: https://doi.org/10.48550/arXiv.2104.13908

2021-04-29

Abstract:In this paper, we investigate the feasibility and physical consequences of cyber attacks against energy management systems (EMS). Within this framework, we have designed a complete simulation platform to emulate realistic EMS operations: it includes state estimation (SE), real-time contingency analysis (RTCA), and security constrained economic dispatch (SCED). This software platform allowed us to achieve two main objectives: 1) to study the cyber vulnerabilities of an EMS and understand their consequences on the system, and 2) to formulate and implement countermeasures against cyber-attacks exploiting these vulnerabilities. Our results show that the false data injection attacks against state estimation described in the literature do not easily cause base-case overflows because of the conservatism introduced by RTCA. For a successful attack, a more sophisticated model that includes all of the EMS blocks is needed; even in this scenario, only post-contingency violations can be achieved. Nonetheless, we propose several countermeasures that can detect changes due to cyber-attacks and limit their impact on the system.

Systems and Control

Jun'e Li,Jiaqi Liang,Quanying Liu,Donglian Qi,Jianliang Zhang,Yangrong Chen

DOI: https://doi.org/10.3389/fenrg.2022.971725

IF: 3.4

2022-01-01

Frontiers in Energy Research

Abstract:With the rapid development of integrated energy system, the large-scale and high-permeability access of distributed generations (DGs) is making the distribution networks develop into active distribution networks (ADNs). The increased complexity of ADNs also increases the vulnerabilities for cyberattacks. It is a new challenge how to evaluate the situation of an ADN so as to support the decision-making of grid control policies in the condition of cyberattacks probably occur. Hence, in this paper, we proposed a method of situation assessment for ADNs considering cyberattacks. This method is aggregated by two parts. 1) An index system is presented, which includes the indexes of DGs stability, the indexes of security risk considering cyberattacks along with the traditional safety indexes. 2) The entropy weight method is used to assign weights to each index, and taking the normal operation status of ADNs as the reference scenario, an operating situation assessment method for ADNs is proposed based on grey correlation analysis method. Finally, in order to verify the effectiveness of the proposed index system and assessment method, 12 attack scenarios are established from three categories: attacks on DGs, attacks on controllable loads and attacks on both of them, and the situation of the ADN, a case based on IEEE 33-node standard distribution system, is evaluated under each scenario.

Xiaofei He,Xinyu Yang,Jie Lin,Linqiang Ge,Wei Yu,Qingyu Yang

DOI: https://doi.org/10.1109/PCCC.2015.7410291

2015-01-01

Abstract:The smart grid is a new type of energy-based cyber-physical system (CPS), which enables interactions between the utility provider and customers through smart meters and advanced metering infrastructures (AMU. Nonetheless, an adversary can inject misleading energy usage information to the utility provider through compromised smart meters and disrupt the grid and electricity market operations. To address this issue, in this paper, we propose an Energy Dispatching False Data Defense (EDF2D) approach, which can effectively detect the forged interactive information between customers and the utility provider with a great accuracy and mitigate the damage raised by attacks on grid operations. Particularly, EDF2D uses the historical interactive information of normal users to determine the conditional probabilities of data anomalies. Based on these conditional probabilities, a Bayesian network designed for detecting false data can be established by EDF2D, and this network is then used to confirm the authenticity of interactive information received by the utility provider originally transmitted from customers. Through a combination of theoretical analysis and performance evaluation, our experimental data shows that EDF2D can effectively detect harmful false interactive data forged by the adversary and mitigate false data injection attacks on smart grid operations.

Jian Ding,Chunyi Lu,Bo Li

DOI: https://doi.org/10.1007/s11265-022-01741-y

2022-03-08

Journal of Signal Processing Systems

Abstract:Power systems are playing an unsubstitutable role in industrial production and inhabitant life. With the deepening of integration process over industrialization and informatization in the field of power systems, an increasing number of industrial control devices (e.g., PLC, SCADA) are exposing in the Internet, which are attracting more and more attention from attackers and malicious communities as the great values. It is crucial for organizations to monitor and evaluate the security situation of power systems. In this paper, we propose a data-driven based security situation awareness towards power systems, which can monitor and evaluate the security situations in power systems and send warnings to organizations when the system encounters suspicious threats. Specifically, the proposed framework continuously collects public data related to electric safety and scan for the power control devices exposed on the Internet to grasp the security landscape of power systems around the world. We then deploy an extensible honeypot system in the real environment to real-time perceive the internal security situation of power systems. Finally, we leverage a graph structure to fuse the cyber threats inside and outside the power system for capturing a comprehensive security awareness of power systems. Experimental results show that our framework can detect system threats in real time and protect it from penetration and intrusion effectively.

Dulip Madurasinghe,Ganesh Kumar Venayagamoorthy

DOI: https://doi.org/10.1109/access.2024.3475011

IF: 3.9

2024-10-19

IEEE Access

Abstract:The complexity of the power system has increased due to recent grid modernization and active distribution systems. As a result, monitoring and controlling modern power systems have become challenging. Dynamic security assessment (DSA) in power systems is a critical operational situational awareness (OpSA) tool for the energy control center (ECC). State-of-the-art (SOTA) DSA has been based on traditional state estimation utilizing the supervisory control and data acquisition (SCADA) / phasor measurement units (PMU) and transmission network topology processing (TNTP) based on SCADA monitoring of relay signals (TNTP-SMRS). Due to the slow data rates of SCADA, these applications cannot efficiently support an online DSA tool. Furthermore, an inaccurate network model based on TNTP-SMRS can lead to erroneous DSA. In this paper, a distributed dynamic security assessment (D-DSA) based on multi-level distributed linear state estimation (D-LSE) and efficient and reliable hierarchical transmission network topology processing utilizing synchrophasor network (H-TNTP-PMU) has been proposed. The tool can be used in real-time operation at the ECC of modern power systems. D-DSA architecture comprises three levels, namely Level 1 - component level security assessment (substations and transmission lines), Level 2 - area level security assessment, and Level 3 - network level security assessment. D-DSA concurrently evaluates all available substations' security in the substation security assessment (SSA) and all available transmission lines' security in the transmission line security assessment (TSA). Under the area security assessment (ASA), all SSA and TSA in each area are separately integrated to assess the area SSI (ASI-SSI) and TSI (ASI-TSI). Subsequently, each area's area-level security index (ASI) is calculated by fusing ASI-SSI and ASI-TSI. At the network level security assessment, network SSI (NSI-SSI) and TSI (NSI-TSI) are estimated by fusing all ASI-SSIs and ASI-TSI, respectively. Network level security index (NSI) is estimated by fusing the NSI-SSI and NSI-TSI in network security assessment (NSA). Typical results of D-DSA are presented for two test systems, the modified two-area four-machine power system model and the IEEE 68 bus power system model. Results indicate that the proposed D-DSA can complete the assessment accurately at the PMU data frame rate, enabling online security assessment regardless of the network size.

computer science, information systems,telecommunications,engineering, electrical & electronic

Tong Li,Feng Sun,Jian Chen,Lei Wang,Zhibin Yang,Ruitong Liu,Jun Qi

DOI: https://doi.org/10.3389/fenrg.2023.1341984

IF: 3.4

2024-01-12

Frontiers in Energy Research

Abstract:The increasing integration of various energy sources and the adoption of smart grid technologies have revolutionized the way we generate, distribute, and consume energy. While these advancements offer numerous benefits, they also introduce vulnerabilities to cyber–physical attacks. To this aim, this paper investigates a resilient energy management strategy for integrated energy systems. By adopting a switched control approach and incorporating a local estimation mechanism, we have developed a resilient distributed energy management strategy to tackle the energy management problem (EMP) in integrated energy systems (IESs). This methodology demonstrates strong robustness and resilience, successfully detecting data integrity attacks and denial-of-service (DoS) attacks. Finally, we provide a case study to demonstrate the effectiveness of our proposed strategy in a real-world scenario.

energy & fuels

Salim Chehida,Eric Rutten,Guillaume Giraud,Stéphane Mocanu

DOI: https://doi.org/10.1016/j.sysarc.2024.103118

IF: 5.836

2024-03-24

Journal of Systems Architecture

Abstract:Security risk assessment is an important challenge in the design of Cyber Physical Systems (CPS). Even more importantly, the intrinsically dynamical nature of these systems, due to changes in their environment, as well as evolutions in their infrastructures, makes them self-adaptive systems, where security aspects have to be considered in terms of management of detections and reactions for self-protection. In this work, we propose an approach to autonomously mitigate the threats in each reconfiguration at application or infrastructure levels of CPS. We propose and implement a framework for self-adaptive security: software architecture, design method, and integration with model-based decision. We use Attack-Defense Trees for modeling threats, and our approach involves security risk assessment, taking into account its balancing and coordination with quality-of-service aspects. We formulate and formalize the on-line decision problem to be solved at each cycle of the self-adaptation control loop in terms of Constraint Programming (CP) modeling and resolution. The CP model implements a set of constraints that allow to specify secure configurations, evaluated regarding their impact on system performance to pinpoint the most relevant one portraying a good balance between the security and quality of service. We perform validation of our approach with its application to Smart Grids, more particularly to an industrial case study from RTE (the French Energy Transmission company).

computer science, software engineering, hardware & architecture

Liliana Pasquale,Kushal Ramkumar,Wanling Cai,John McCarthy,Gavin Doherty,Bashar Nuseibeh

DOI: https://doi.org/10.48550/arXiv.2306.04481

2023-06-05

Cryptography and Security

Abstract:With software systems permeating our lives, we are entitled to expect that such systems are secure by design, and that such security endures throughout the use of these systems and their subsequent evolution. Although adaptive security systems have been proposed to continuously protect assets from harm, they can only mitigate threats arising from changes foreseen at design time. In this paper, we propose the notion of Sustainable Adaptive Security (SAS) which reflects such enduring protection by augmenting adaptive security systems with the capability of mitigating newly discovered threats. To achieve this objective, a SAS system should be designed by combining automation (e.g., to discover and mitigate security threats) and human intervention (e.g., to resolve uncertainties during threat discovery and mitigation). In this paper, we use a smart home example to showcase how we can engineer the activities of the MAPE (Monitor, Analysis, Planning, and Execution) loop of systems satisfying sustainable adaptive security. We suggest that using anomaly detection together with abductive reasoning can help discover new threats and guide the evolution of security requirements and controls. We also exemplify situations when humans can be involved in the execution of the activities of the MAPE loop and discuss the requirements to engineer human interventions.

SHI Li-bao,ZHOU Hua-feng,Peter T. C. Tam,CHANG Nai-chao,LAN Zhou,NI Yi-xin,XU Zheng

DOI: https://doi.org/10.3969/j.issn.1004-731x.2007.23.012

2007-01-01

Abstract:Mainly focusing on the study of power system dynamics, a real time dynamic security assessment and early warning (RDSAEW) system for the purpose of keeping interconnected power systems operating in security region, monitoring dynamic security margin constantly and ensuring system operation reliability was proposed. The framework of RDSAEW system was designed in accordance with Client/Server and Browser/Server operating modes based on the TCP/IP protocol. And some advanced technologies involving Visual Studio.Net, SQL Server 2000, Shell Programming and parallel computing, etc, were widely used in the design and development of RDSAEW system. On one hand, the RDSAEW system could easily and conveniently integrate with existing Energy Management System (EMS) to implement the real time dynamic security assessment. On the other hand, the RDSAEW system could make intensive dynamic analysis related to the specified case study as an off-line simulation platform.

Kaikai Pan,Andre Teixeira,Claudio David Lopez,Peter Palensky

DOI: https://doi.org/10.1109/smartgridcomm.2017.8340668

2017-10-01

Abstract:It is challenging to assess the vulnerability of a cyber-physical power system to data attacks. In order to support vulnerability assessment, with the exception of analytic methods, a suitable platform for security tests needs to be developed. In this paper we analyze the cyber security of energy management system (EMS) against data attacks. First we extend our analytic framework that characterizes data attacks as optimization problems with the objectives specified as security metrics and constraints corresponding to the communication network properties. Second, we build a platform in the form of co-simulation - coupling the power system simulator DIgSILENT PowerFactory with communication network simulator OMNeT++, and Matlab for EMS applications (state estimation, optimal power flow). Then the framework is used to conduct attack simulations on the cosimulation based platform for a power grid test case. The results indicate how vulnerable of EMS to data attacks and how cosimulation can help assess vulnerability.