Arman Goudarzi,Yanjun Li,Shah Fahad,Ji Xiang

DOI: https://doi.org/10.1016/j.scs.2021.103073

IF: 11.7

2021-01-01

Sustainable Cities and Society

Abstract:The advent of smart grid technologies due to the explosive increase in the electricity demand, has necessitated utilities around the globe in establishing intelligent demand response programs (DRPs) to influence customers' consumption patterns. The successful implementation of DRPs together with dynamic pricing strategies not only reduces energy prices in electricity markets but also improves network reliability and overall system efficiency. This study proposes a game theory-based DRP (GTDRP) which merges the incentive- and price-based DRP concepts with a focus on residential, commercial, and industrial sectors. Three pricing strategies are structured and compared, that is, fixed pricing, time-of-use pricing (for both utility- and customer-side), and real-time pricing along with their combination. Also, an enthusiasm-aided teaching and the learning-based optimization algorithm are developed to solve the GTDRP model through a self-adaptive power violation criterion. To validate the practicality of the presented model, three case studies through seven different scenarios are investigated. Results of the case studies demonstrate that the formulated multi-criteria security-constrained GTDRP can create a win-win situation for the utility and customers in the electricity markets, such that the utility profits increase, the customers' related costs reduce, and the load curve is flattened.

Lanting Zeng,Dawei Qiu,Mingyang Sun

DOI: https://doi.org/10.1016/j.apenergy.2022.119688

IF: 11.2

2022-01-01

Applied Energy

Abstract:Demand response improves grid security by adjusting the flexibility of consumers meanwhile maintaining their demand–supply balance in real-time. With the large-scale deployment of distributed digital communication technologies and advanced metering infrastructures, data-driven approaches such as multi-agent reinforcement learning (MARL) are being widely employed to solve demand response problems. Nevertheless, the massive interaction of data inside and outside the demand response management system may lead to severe threats from the perspective of cyber-attacks. The cyber security requirements of MARL-based demand response problems are less discussed in the existing studies. To this end, this paper proposes a robust adversarial multi-agent reinforcement learning framework for demand response (RAMARL-DR) with an enhanced resilience against adversarial attacks. In particular, the proposed RAMARL-DR first constructs an adversary agent that aims to cause the worst-case performance via formulating an adversarial attack; and then adopts periodic alternating robust adversarial training scenarios with the optimal adversary aiming to diminish the severe impacts induced by adversarial attacks. Case studies are conducted based on an OpenAI Gym environment CityLearn, which provides a standard evaluation platform of MARL algorithms for demand response problems. Empirical results indicate that the MARL-based demand response management system is vulnerable when the adversary agent occurs, and its performance can be significantly improved after periodic alternating robust adversarial training. It can be found that the adversary agent can result in a 41.43% higher metric value of Ramping than the no adversary case, whereas the proposed RAMARL-DR can significantly enhance the system resilience with an approximately 38.85% reduction in the ramping of net demand.

Jichao Bi,Shibo He,Fengji Luo,Jiming Chen,Da -Wen Huang,Mingyang Sun

DOI: https://doi.org/10.1109/trustcom56396.2022.00024

2022-01-01

Abstract:Backboned by smart meter networks, Advanced Metering Infrastructures (AMIs) play a critical role in smart grids. This paper studies a new False Data Injection Attack (FDIA) scenario targeting AMIs, in which the attacker injects and propagates computer worms (i.e., false data codes) to maliciously increase the readings of networked smart meters and create economic loss to the end customers. This paper establishes the false data code propagation and attack models in such a scenario; based on this, this paper proposes a differential game model for describing the attack and defense process for FDIA against AMIs. A computationally efficient algorithm is developed to solve the proposed differential model and obtain the potential Nash equilibrium (NE) strategy pair. Extensive numerical simulations are conducted to validate the effectiveness of the proposed method under different energy tariff structures.

z zhang,y tian,r deng,j ma

DOI: https://doi.org/10.1109/JIOT.2022.3161790

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:The smart grid (SG), as one of the largest evolutionary critical infrastructures, witnesses the deep integration of electricity facilities and Internet of Things (IoT). But recent events show that the vulnerabilities exposed in IoT devices can be exploited by adversaries to construct the cyberattacks on SG. To address this threat, plenty of countermeasures have been proposed to enhance the SG’s security. However, the additional costs introduced by some countermeasures make the utilities hesitate to implement them practically. To alleviate this concern, in this article, we propose a double-benefit moving target defense (dB-MTD) to protect the SG from cyber–physical attacks (CPAs) and also gain generation-cost benefits. The dB-MTD enables the prevention of stealthy CPAs on the transmission lines by perturbing the reactances with the distributed flexible AC transmission system (D-FACTS). To reduce the infrastructure cost, we minimize the number of required D-FACTS devices for a specific protection goal. Although it needs investment on D-FACTS, we find that the utility can make profits from the generation costs by appropriately setting the reactance perturbations. Therefore, we formulate an optimization problem to compute the optimal reactance perturbations to maximize the generation-cost benefits, without sacrificing the protection performance of dB-MTD. Finally, using the real-world load profiles, we conduct extensive simulations to evaluate the impact of CPA on the system operation and the benefits obtained by the dB-MTD from the aspects of the D-FACTS deployment and the generation-cost profits.

Xinyu Yang,Xiaofei He,Jie Lin,Wei Yu,Qingyu Yang

DOI: https://doi.org/10.1109/trustcom.2016.0094

2016-01-01

Abstract:The diverse cyber attacks, that make operation of the smart grid challenging, must be addressed before wide adoption of smart grids can be fully realized. Although a number of research efforts have been devoted to defending against these threats, a majority of existing schemes focus on the design of a specific defensive strategy to deal with a specific threat. In this paper we address the issue of coalitional attacks that can be launched by multiple adversaries cooperatively in the smart grid. We propose a game-theoretic based model to capture the interaction among multiple adversaries and quantify the capacity of the defender based on the extended Iterated Public Goods Game (IPGG) model. In the formalized game model, each participant can either cooperate by participating in the coalitional attack, or defect by standing aside in each round of the attack. We consider the generic defensive strategy that has a probability to detect the coalitional attack. When the coalitional attack is detected, all the participating adversaries are penalized. The expected payoff of each participant is derived through the zero-determinant strategy that provides the participants competitive benefits. Via a combination of theoretical analysis and experiments, our results show that our formalized game model can enable the defender to greatly reduce the maximum value of the expected average payoff to the adversaries via provisioning sufficient defensive resources, which is reflected by setting a proper penalty factor against the adversaries.

Xiaofei He,Xinyu Yang,Jie Lin,Linqiang Ge,Wei Yu,Qingyu Yang

DOI: https://doi.org/10.1109/PCCC.2015.7410291

2015-01-01

Abstract:The smart grid is a new type of energy-based cyber-physical system (CPS), which enables interactions between the utility provider and customers through smart meters and advanced metering infrastructures (AMU. Nonetheless, an adversary can inject misleading energy usage information to the utility provider through compromised smart meters and disrupt the grid and electricity market operations. To address this issue, in this paper, we propose an Energy Dispatching False Data Defense (EDF2D) approach, which can effectively detect the forged interactive information between customers and the utility provider with a great accuracy and mitigate the damage raised by attacks on grid operations. Particularly, EDF2D uses the historical interactive information of normal users to determine the conditional probabilities of data anomalies. Based on these conditional probabilities, a Bayesian network designed for detecting false data can be established by EDF2D, and this network is then used to confirm the authenticity of interactive information received by the utility provider originally transmitted from customers. Through a combination of theoretical analysis and performance evaluation, our experimental data shows that EDF2D can effectively detect harmful false interactive data forged by the adversary and mitigate false data injection attacks on smart grid operations.

Chensheng Liu,Wangli He,Ruilong Deng,Yu-Chu Tian,Wenli Du

DOI: https://doi.org/10.1109/tii.2022.3172688

IF: 12.3

2023-01-01

IEEE Transactions on Industrial Informatics

Abstract:Due to the close relevance to the reliability and efficiency of power systems, network parameters such as branch admittance have been the target of various cyberattacks. However, existing attack models are generally based on the impractical assumption that attackers can directly modify the data of network parameter stored in well-secured control centers. This article proposes a practical attack model and designs an optimal strategy to detect malicious modification of critical network parameters. Specifically, the vulnerability of network parameter error processing is discovered and exploited to indirectly modify the data of network parameter without accessing to the well-secured control center. A model of false-data-injection-enabled network parameter modification is proposed, which significantly reduces the requirements on attackers’ capability and system information. An optimal detection strategy is designed based on the analysis of the minimal protection set at a single branch, which can significantly reduce the number of protected measurements in detecting malicious modification of critical network parameters. Finally, numerical simulations are carried out on the PJM 5-bus and the IEEE 118-bus test systems to validate the theoretical results.

Kang-Di Lu,Zheng-Guang Wu,Tingwen Huang

DOI: https://doi.org/10.1109/tmech.2022.3214314

2023-01-01

Abstract:With the rapid development of communication, control, and computer technology, traditional power systems have evolved into cyber-physical power system (CPPS). However, CPPS not only affords convenience but also introduces more cyber-attacks. Among many types of cyber-attacks, false data injection attacks (FDIAs) have drawn much attention in the CPPS security domain due to their stealthiness. Most FDIAs are based on the static model on a single snapshot and often ignore the reality of dynamically time-evolving CPPS. Accordingly, this article proposes a novel three-stage dynamic false data injection attack (DFDIA) model in CPPS by considering potential dynamic behaviors. To consider both attack location and attack amplitude, the designing DFDIA is formulated as two constrained single-objective optimization problems. Two versions of constrained differential evolution are presented as the solver to determine the attack location and optimize the attack vector for collaboratively altering the meter measurements. Then, an interval state forecasting-based countermeasure is proposed to detect the established DFDIA. In this detector, the variation bounds of state values are determined via ensemble deep learning-based state forecasting method. Finally, extensive simulation results on several IEEE bus systems demonstrate the feasibility of DFDIA and the effectiveness of the defense mechanism.

Jichao Bi,Fengji Luo,Gaoqi Liang,Xiaofan Yang,Shibo He,Zhao Yang Dong

DOI: https://doi.org/10.1109/TNSE.2022.3197682

IF: 6.6

2023-01-01

IEEE Transactions on Network Science and Engineering

Abstract:Cyber-physical security has been becoming an important issue for many critical infrastructures in human society, including electrical power grids. This paper proposes an impact assessment framework for smart grids suffering false data injection attack against smart meters. Firstly, the propagation model of malicious false data codes in smart meter communication networks is established. Based on this, a security-constrained economic dispatch model is formulated to assess how false data codes would mislead the grid operator's actions. A defense strategy is proposed, which enhances the grid's vulnerability through effectively deploying defense resources in smart meter networks. Extensive numerical simulations are conducted to evaluate the impact of different attack scenarios as well as the effectiveness of the defense strategy.

Feiyang Hong,Zhejing Bao,Miao You

DOI: https://doi.org/10.1109/CCDC52312.2021.9601681

2021-01-01

Abstract:Recent studies show that the cyber-attacks such as false data injection attack (FDIA) are capable of severely threatening power system security, in such a way that the undetected errors are introduced into the states estimations by evading the conventional bad data detection (BDD) methods. This paper proposes a tri-level optimization model against the FDIA by formulating the attack actions and identifying the optimal defense strategies constrained by the limited resources. In the lower level, an economic dispatching is implemented to seek the operational strategy aiming at minimizing the operating costs under the given attack. The middle level formulates the behaviors of the attacker to discover the most destructive attack strategy intended by the attacker based on the defense strategy determined by the upper level. The upper level represents the actions of the planner and determines the optimal defense allocation on the measuring meters. The min-max-min tri-level model can be solved by the column-and-constraint generation (C&CG) algorithm. Simulations are implemented to identify the components which should be protected under the limited defense resources and severe attacks.

Mingjian Tuo,Arun Venkatesh Ramesh,Xingpeng Li

DOI: https://doi.org/10.48550/arXiv.2005.13207

2020-05-27

Abstract:With improvement in smart grids through two-way communication, demand response (DR) has gained significant attention due to the inherent flexibility provided by shifting non-critical loads from peak periods to off-peak periods, which can greatly improve grid reliability and reduce cost of energy. Operators utilize DR to enhance operational flexibility and alleviate network congestion. However, the intelligent two-way communication is susceptible to cyber-attacks. This paper studies the benefits of DR in security-constrained economic dispatch (SCED) and then the vulnerability of the system to line overloads when cyber-attack targets DR signals. This paper proposes a false demand response signal and load measurement injection (FSMI) cyber-attack model that sends erroneous DR signals while hacking measurements to make the attack undetectable. Simulation results on the IEEE 24-bus system (i) demonstrate the cost-saving benefits of demand response, and (ii) show significant line overloads when the demand response signals are altered under an FSMI attack.

Systems and Control,Optimization and Control

Bingjing Yan,Zhenze Jiang,Pengchao Yao,Qiang Yang,Wei Li,Albert Y. Zomaya

DOI: https://doi.org/10.23919/pcmp.2023.000138

IF: 10.5

2024-01-01

Protection and Control of Modern Power Systems

Abstract:Modern power grid is fast emerging as a complex cyber-physical power system (CPPS) integrating physical current-carrying components and processes with cyber-embedded computing, which faces increasing cyberspace security threats and risks. In this paper, the state (i.e., voltage) offsets resulting from false data injection (FDI) attacks and the bus safety characterization are applied to quantify the attack consequences. The state offsets are obtained by the state estimation method, and the bus safety characterization considers the power network topology as well as the vulnerability and connection relationship of buses. Considering the indeterminacy of attacker's resource consumption and reward, a zero-sum game-theoretical model from the defender's perspective with incomplete information is explored for the optimal allocation of limited defensive resources. The attacker aims to falsify measurements without triggering threshold alarms to break through the protection, leading to load shedding, over-voltage or under-voltage. The defender attempts to ensure the estimation results to be as close to the actual states as possible, and guarantee the system's safety and efficient defensive resource utilization. The proposed solution is extensively evaluated through simulations using the IEEE 33-bus test network and real-time digital simulator (RTDS) based testbed experiments of the IEEE 14-bus network. The results demonstrate the effectiveness of the proposed game-theoretical approach for optimal defensive resource allocation in CPPS when limited resources are available when under FDI attacks.

Jichao Bi,Fengji Luo,Shibo He,Gaoqi Liang,Wenchao Meng,Mingyang Sun

DOI: https://doi.org/10.1109/tsg.2022.3174918

IF: 10.275

2022-01-01

IEEE Transactions on Smart Grid

Abstract:Defending microgrids against cyberattacks has been recognized as a significant task in modern energy systems. This paper studies a False Data Injection Attack (FDIA) scenario targeting microgrids, in which the attacker maliciously propagates false data malware in the communication network of a microgrid system, aiming at misleading the microgrid’s operation. Firstly, this paper establishes the propagation and attack models for the false data malware; then, the impact of the FDIA is quantified through the formulation of a network-constrained microgrid dispatch model. Based on this, a false data malware propagation-aware game between the attacker and the defender is established and an effective computational approach is developed for solving the proposed game and obtaining the potential Nash equilibrium strategy pair. Extensive numerical simulations are conducted to validate the proposed framework.

Ying Wan,Cheng Long,Ruilong Deng,Guanghui Wen,Xinghuo Yu,Tingwen Huang

DOI: https://doi.org/10.1109/tcyb.2020.2978274

IF: 11.8

2021-01-01

IEEE Transactions on Cybernetics

Abstract:In building-microgrid communities, renewable generation and time-varying load usually cause power fluctuations, which influence the ancillary support to the main grid. Thermostatically controlled loads (TCLs) can be utilized to compensate such power variations due to their aggregated and controllable power consumptions. Meanwhile, one basic requirement for the users' side of TCLs is to realize the fair sharing of power states and comfort states. This article proposes a distributed event-based control strategy, where information of neighboring TCLs is exchanged only when a dynamic event-triggered condition is satisfied, and thus it intelligently determines the necessary transmission frequency to save communication resources. From a cybersecurity perspective, the communication network of TCLs may be subject to hybrid attacks, for example, denial-of-service (DoS) and false data-injection (FDI) attacks. During DoS attack intervals, no information can be communicated even through the event-triggered condition is satisfied. Furthermore, the control inputs may also be tampered by FDI attacks. By utilizing the Lyapunov stability and hybrid control theories, sufficient conditions regarding the attack parameters are derived such that fair sharing of power states and comfort states of all involved TCLs can be achieved exponentially. The exclusion of Zeno behaviors is proved and a corollary for ideal communication situations is also deduced. Finally, simulation examples with various attack parameters are conducted to verify the effectiveness of the main results.

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Zhimei Zhang,Shaowei Huang,Ying Chen,Boda Li,Shengwei Mei

DOI: https://doi.org/10.1109/tpwrs.2021.3091616

IF: 7.326

2022-01-01

IEEE Transactions on Power Systems

Abstract:Since modern smart grids have various and deeply coupled cyber-physical components, they are vulnerable to malicious cyber attacks. Although regular defenses including firewall and IDS are deployed, they may be weakened by zero-day vulnerabilities and sophisticated attack schemes. Therefore, defense strategies to mitigate the risk of blackouts during cyber attacks are necessary. This paper proposes a cyber-physical coordinated defense strategy to overcome the disruption and minimize the risk as much as possible. At the cyber layer, a zero-sum multilevel Markovian Stackelberg game is proposed to model sequential actions of the attacker and the defender. The defender distributes defensive resources to protect lines in a real-time manner, according to the attacker's action. If cyber attacks should result in physical outages, defense at the physical layer is then employed. A security-constrained optimal power flow reserving security margin of critical components will be performed to minimize the blackout scale and potential future risk. To solve the corresponding optimization problem and further get the optimal defense strategy, this paper devises a novel "water-pouring" algorithm. Lastly, test results show that the proposed dynamic defense strategy mitigates risk significantly and outperforms existing methods.

Qingyang Li,Yang Li,Shichao Liu,Xiaozhe Wang,Hicham Chaoui

DOI: https://doi.org/10.1109/jetcas.2022.3151645

IF: 5.877

2022-03-01

IEEE Journal on Emerging and Selected Topics in Circuits and Systems

Abstract:While securing wide-area damping controllers (WADCs) against cyber attacks becomes critical, most existing efforts deal with model-based attacks. A smart attacker may not follow the prescribed models and can intelligently change the attack actions. To tackle this challenge, this work proposes a stochastic game theoretic framework that can model the dynamic interaction between the attacker (a jammer) and the defender (intrusion detector in the WADC) with the player’s type uncertainty to optimally manage the vulnerability of the power system. Uniquely, the always opponent assumption of the other player made in most of the existing works is removed as this assumption may lead to serious resource waste due to the high over-defense rate. In this incomplete information stochastic game, the attacker intelligently jams the communication links between phasor measurement units (PMUs) and WADCs, while the intrusion detection of the WADCs is considered as the defense action. The vulnerability level of the power system resulted from the attack and defense actions in the cyber-layer is indexed by the trace of the observability Gramian. Therefore, the proposed stochastic game framework provides a cyber-physical view to make the optimal cyber-layer intrusion detection system (IDS) triggering strategy for the WADC. As the types of the other player are unknown to the defender, a Bayesian based posterior type belief update method is proposed for the defender to update the type belief about the opponent by the boundary probability based on the Bayesian Nash Equilibrium. The proposed cyber-layer IDS triggering strategy is tested and compared with other game approaches on the IEEE 39-bus 10-generator system. Simulation results show that the proposed approach can achieve the same defense performance compared to the complete information stochastic game while reducing the over-defense rate from 40% to 16%.

Huifeng Zhang,Zhuxiang Chen,Chengqian Yu,Dong Yue,Xiangpeng Xie,Gerhard P. Hancke

DOI: https://doi.org/10.1109/tsmc.2024.3357497

2024-01-01

IEEE Transactions on Systems, Man, and Cybernetics: Systems

Abstract:To address the false data injection (FDI) and denial of service (DoS) attack, this article proposes an event-trigger-based resilient distributed energy management approach for cyber–physical system of smart grid. Here, an event-trigger-based resilient consensus algorithm (ERCA) is proposed with the attack identification and compensation mechanism. The event-triggered mechanism is improved within distributed optimization combined with reliable acknowledgment (ACK) signals technique to mitigate the impact of data loss or transmission delay, and trust nodes-based compensation approach is proposed during resilient coordinated optimization for state correction to ensure the stability and security of power grid system. The optimality and convergence of the proposed method are proved theoretically that the proposed method can approximate to optimal solution well and achieve consensus by ensuring the proactive involvement of all participants under coordinated cyber attack. According to those obtained simulation results, it reveals that the proposed algorithm can effectively solve the energy management issue under coordinated DoS and FDI attack.

automation & control systems,computer science, cybernetics

Matthias Pilz,Fariborz Baghaei Naeini,Ketil Grammont,Coline Smagghe,Mastaneh Davis,Jean-Christophe Nebel,Luluwah Al-Fagih,Eckhard Pfluegel

DOI: https://doi.org/10.48550/arXiv.1810.07670

2018-10-18

Abstract:The introduction of advanced communication infrastructure into the power grid raises a plethora of new opportunities to tackle climate change. This paper is concerned with the security of energy management systems which are expected to be implemented in the future smart grid. The existence of a novel class of false data injection attacks that are based on modifying forecasted demand data is demonstrated, and the impact of the attacks on a typical system's parameters is identified, using a simulated scenario. Monitoring strategies that the utility company may employ in order to detect the attacks are proposed and a game--theoretic approach is used to support the utility company's decision--making process for the allocation of their defence resources. Informed by these findings, a generic security game is devised and solved, revealing the existence of several Nash Equilibrium strategies. The practical outcomes of these results for the utility company are discussed in detail and a proposal is made, suggesting how the generic model may be applied to other scenarios.

Computer Science and Game Theory,Cryptography and Security

Thusitha Dayaratne,Carsten Rudolph,Ariel Liebman,Mahsa Salehi

2023-12-14

Abstract:Utility companies are increasingly leveraging residential demand flexibility and the proliferation of smart/IoT devices to enhance the effectiveness of residential demand response (DR) programs through automated device scheduling. However, the adoption of distributed architectures in these systems exposes them to the risk of false data injection attacks (FDIAs), where adversaries can manipulate decision-making processes by injecting false data. Given the limited control utility companies have over these distributed systems and data, the need for reliable implementations to enhance the resilience of residential DR schemes against FDIAs is paramount. In this work, we present a comprehensive framework that combines DR optimisation, anomaly detection, and strategies for mitigating the impacts of attacks to create a resilient and automated device scheduling system. To validate the robustness of our framework against FDIAs, we performed an evaluation using real-world data sets, highlighting its effectiveness in securing residential DR systems.

Systems and Control,Cryptography and Security