Wang Jingxuan,Lucas Chi Kwong Hui,Siu-Ming Yiu,Cui Xingmin,Wang Eric Ke,Fang Junbin

DOI: https://doi.org/10.1007/978-3-319-40253-6_3

2016-01-01

Abstract:It is well-known that critical infrastructures would be targets for cyber attacks. In this paper, we focus on smart grids. In a smart grid system, information from smart meters would be used to perform a state estimation in real time in order to maintain the stability of the system. A wrong estimation can lead to diastrous consequences (e.g. suspension of electricity supply or a big financial loss). Unfortunately, quite a number of recent results showed that attacks on this estimation process are feasible by manipulating readings of only a few meters. In this paper, we focus on nonlinear state estimation which is a more realistic model and widely employed in a real smart grid environment. We summarize and categorize all possible attacks, and review the mechanisms behind. We also briefly talk about the countermeasures. We hope that the community would be able to come up with a better protection scheme for smart grids. © Springer International Publishing Switzerland 2016.

Jingxuan Wang,Lucas C. K. Hui,S. M. Yiu,Eric Ke Wang,Junbin Fang

DOI: https://doi.org/10.1016/j.pmcj.2017.04.005

IF: 3.848

2017-01-01

Pervasive and Mobile Computing

Abstract:It is well-known that critical infrastructures would be targets for cyber attacks. In this paper, we focus on the power systems (i.e. smart grids) in ubiquitous cities, where every meter is linked to an information network through wireless networking. In a smart grid system, information from smart meters would be used to perform a state estimation in real time to maintain the stability of the system. A wrong estimation may lead to disastrous consequences (e.g. suspension of electricity supply or a big financial loss). Unfortunately, quite a number of recent results showed that attacks on this estimation process are feasible by manipulating readings of only a few meters. In this paper, we focus on nonlinear state estimation which is a more realistic model and widely employed in a real power grid environment. We category cyber attacks against nonlinear state estimation, and review the mechanisms behind. State-of-the-art security measures to detect these attacks are discussed via sensor protection. Hope that the community would be able to come up with a secure system architecture for ubiquitous cities.

Aidong Xu,Tengyue Zhang,Liang Chen,Qing Li,Yunan Zhang,Haojie Lin,Peiyao Wang,Sihui Wu,Runhui Zhao,Yixin Jiang

DOI: https://doi.org/10.1088/1755-1315/693/1/012010

2021-01-01

IOP Conference Series Earth and Environmental Science

Abstract:Abstract The concealed false data injection (FDI) attack in the smart grid can successfully pass the power system state estimation commonly used in the residual bad data test without being detected by the existing algorithms, resulting in the state estimation error of the control center and disturbing the normal operation of the power system. In this paper, false data injection attack and attack detection are carried out in the actual power edge security protection system, microgrid control system and intelligent energy security protection system. Among them, the false data attack part simulates the attack of the voltage phase angle, and compares it with the ordinary attack method, and demonstrates the success of these attacks in the actual power grid system.

Muneer Mohammad

DOI: https://doi.org/10.48550/arXiv.1809.07039

2018-09-19

Abstract:In this paper a new class of cyber attacks against state estimation in the electric power grid is considered. This class of attacks is named false data injection attacks. We show that with the knowledge of the system configuration an attacker could successfully inject false data into certain state variable while bypassing existing techniques for bad data detection. In the preliminary section we consider the feasibility of such an attack and the necessary condition to successfully avoid detection. After that we show that with the knowledge of the system configuration, certain line flow measurements could be manipulated to lead to profitable misconduct. By controlling Regional Transmission Organizations (RTOs) view of system power flow and congestion, an attacker could manipulate the LMPs of targeted buses according to prior biddings. Also, in this paper we show the implementation of the false data injection attacks. The numerical example considered was applied to a malicious data detection algorithm that was designed on a microcontroller. The results demonstrated the effectiveness of injecting false data measurements into the state estimation of electric power grids.

Cryptography and Security

Qingyu Yang,Jie Yang,Wei Yu,Dou An,Nan Zhang,Wei Zhao

DOI: https://doi.org/10.1109/tpds.2013.92

IF: 1.968

2013-01-01

Security and Communication Networks

Abstract:It is critical for a power system to estimate its operation state based on meter measurements in the field and the configuration of power grid networks. Recent studies show that the adversary can bypass the existing bad data detection schemes, posing dangerous threats to the operation of power grid systems. Nevertheless, two critical issues remain open: 1) how can an adversary choose the meters to compromise to cause the most significant deviation of the system state estimation, and 2) how can a system operator defend against such attacks? To address these issues, we first study the problem of finding the optimal attack strategy-i.e., a data-injection attacking strategy that selects a set of meters to manipulate so as to cause the maximum damage. We formalize the problem and develop efficient algorithms to identify the optimal meter set. We implement and test our attack strategy on various IEEE standard bus systems, and demonstrate its superiority over a baseline strategy of random selections. To defend against false data-injection attacks, we propose a protection-based defense and a detection-based defense, respectively. For the protection-based defense, we identify and protect critical sensors and make the system more resilient to attacks. For the detection-based defense, we develop the spatial-based and temporal-based detection schemes to accurately identify data-injection attacks.

Yifa Liu,Wenchao Xue,Shuping He,Long Cheng

DOI: https://doi.org/10.1109/iccss53909.2021.9721954

2021-01-01

Abstract:The power grid is a kind of national critical infrastructure directly affiliated to human daily life. Because of the vital functions and potentially significant losses, the power grid becomes an excellent target for many malicious attacks. Due to the special nonlinear measurements, many detection methods do not match the grid very well. The extended Kalman filter based detection is one of the few methods suitable for nonlinear system detection, and therefore can be used in power system to spot malicious attacks. However, the reliability and effectiveness of the extended Kalman filter based detection have not been fully studied and adequately guaranteed. By proposing a two-step false data injection attack strategy, this paper gives a stealthy way to inject false data of increasing magnitude into the power grid, which can eventually cause a certain degree of deviation of the grid state without being detected. In the simulation, the method proposed in this paper caused a voltage deviation of more than 25% before being discovered in the power system.

Jingxuan Wang,Lucas C. K. Hui,S. M. Yiu

DOI: https://doi.org/10.1109/glocomw.2015.7414067

2015-01-01

Abstract:Data framing attacks against linear state estimation was first proposed by Kim et. al. in 2014. Such attack is very interesting since it can mislead the control centre and "help" remove the measurements without malicious data. However, as the nonlinear state estimator is more widely used (than linear state estimator) in industry today, the nonlinear system cannot be simply analyzed with linear state estimator. An open problem is whether we can give this kind of attack on the nonlinear state estimator. This paper gives an affirmative answer. We expect the results of this paper will serve for exploring a more robust and sophisticated solution to avoid the data framing attacks.

Ruilong Deng,Peng Zhuang,Hao Liang

DOI: https://doi.org/10.1109/tsg.2018.2813280

IF: 10.275

2019-01-01

IEEE Transactions on Smart Grid

Abstract:The existing research on false data injection (FDI) attacks against state estimation in transmission systems cannot be trivially extended to distribution feeders. The main reason is that a strong condition that requires the attacker to know the estimated state of distribution systems is needed, which makes the traditional FDI attacks difficult to be implemented in practice. In this paper, we propose a practical FDI attack model against state estimation in distribution systems, without paying expensive cost for obtaining the system state. We show that the attacker can approximate the system state based on power flow or injection measurements without too much effort. For local FDI attacks, the strong condition can be further relaxed to the knowledge of local state, which can be approximated based on a small number of power flow or injection measurements. Simulation results based on the IEEE test feeder demonstrate that the proposed practical FDI attack, even with the approximated system state, is more likely to compromise the state estimation without being detected, in comparison with the traditional attacks. This paper provides a basis to study the attack behaviors in distribution systems and a theoretical guide to develop protective countermeasures.

Meng Zhang,Chao Shen,Ning He,SiCong Han,Qi Li,Qian Wang,XiaoHong Guan

DOI: https://doi.org/10.1007/s11431-019-9544-7

2019-01-01

Science China Technological Sciences

Abstract:As a typical representative of the so-called cyber-physical system, smart grid reveals its high efficiency, robustness and reliability compared with conventional power grid. However, due to the deep integration of electrical components and computinginformation in cyber space, smart gird is vulnerable to malicious attacks, especially for a type of attacks named false data injection attacks (FDIAs). FDIAs are capable of tampering meter measurements and affecting the results of state estimation stealthily, which severely threat the security of smart gird. Due to the significantinfluence of FDIAs on smart grid, the research related to FDIAs has received considerable attention over the past decade. This paper aims to summarize recent advances in FDIAs against smart grid state estimation, especially from the aspects of background materials, construction methods, detection and defense strategies. Moreover, future research directions are discussed and outlined by analyzing existing results. It is expected that through the review of FDIAs, the vulnerabilities of smart grid to malicious attacks can be further revealed and more attention can be devoted to the detection and defense of cyber-physical attacks against smart grid.

Dou An,Feiye Zhang,Qingyu Yang,Chengwei Zhang

DOI: https://doi.org/10.1109/tase.2022.3149764

IF: 6.636

2022-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:A smart grid integrates advanced sensors, efficient measurement methods, progressive control technologies, and other techniques and devices to achieve safe, efficient and economical operation of the grid system. However, the diversified and open environment of a smart grid makes energy and information of the smart grid vulnerable to malicious attacks. As a representative cyber-physical attack, the data integrity attack has an extremely severe impact on the grid operation for it can bypass the traditional detection mechanisms by adjusting the attack vector. In this paper, we first present the attack strategy against dynamic state estimation of power grid in the perspective of adversary and formulate the data integrity attack detection problem that has the characteristic of sequential decision making as a partially observable Markov decision process. Then, a deep reinforcement learning-based approach is proposed to detect against data integrity attacks, which utilizes the Long Short-Term Memory layer to extract the state features of previous time steps in determining whether the system is currently under attack. Moreover, the noisy networks are employed to ensure effective agent exploration, which prevents the agent from sticking to the non-optimal policy. The principle of a multi-step learning is adopted to increase the estimation accuracy of Q value. To address the sparse rewards problem, the prioritized experience replay is proposed to increase training efficiency. Simulation results demonstrated that the proposed detection approach surpasses the benchmarks in the comparison metrics: delay error rate and false rate. Note to Practitioners—In this paper, we present a deep reinforcement learning-based algorithm to defend against the data integrity attacks of smart grid. Most of the previous works discretized the system states and utilized the current state information to identify whether the system is under attack. For this reason, the detection policy may totally ignored the continuously changing characteristics of the grid states, which will lead to poor detection performance. Moreover, the attacked system states only accounts for a small part of the entire grid operation states, the probability of sampling the experience containing the attack state is extremely small, which limits the learning efficiency of previous RL-based detection approaches. In order to increase the accuracy of detection, we first present the attack strategy against power grid’s dynamic state estimation in the perspective of adversary and formulate the partially observable Markov decision process model of attack detection problem. Moreover, we propose a deep reinforcement learning-based detection approach combining the LSTM network to extract the system state features of the previous time steps to determine whether the system is currently being attacked. To address the sparse rewards problem, the prioritized experience replay is used to increase learning efficiency. The experiments demonstrate the effectiveness of proposed detection scheme compared with benchmarks in terms of detection delay as well as accuracy. In conclusion, the proposed detection scheme is helpful in defending against the data integrity attacks without obtaining the opponent’s strategy in advance and can be conveniently applied to the real-world security management system of smart grid.

automation & control systems

Shaojie Xu,Dan Ye,Guangdi Li,Dongsheng Yang

DOI: https://doi.org/10.1109/tase.2024.3364231

IF: 6.636

2024-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:With the continuous expansion of grid nodes, traditional centralized methods exhibit certain limitations in the amount of communication data and computational cost for state estimation. In the past few decades, distributed state estimation has been fully developed in multi-area smart grid (SG). According to different areas or electrical equipment, the SG is divided into several nodes, and each node can estimate the entire state of the SG through local sensor measurement information and neighbor state estimation information. Although malicious attackers can use the different information between local sensor data and neighbor state estimation communication data to attack grid nodes, it will inevitably cause the attack detectors of other nodes to trigger alarms due to the consistency of grid state estimation. In this paper, we propose a globally stealthy attack strategy that biases the state estimation of the attacked node without triggering alarms on all nodes’ detectors. We provide sufficient and necessary conditions to implement a globally stealthy attack on grid nodes and extend it to multi-node attacks in order to reduce the number of communication links and increase the degree of damage. We also give the corresponding attack algorithm to realize these attacks. Finally, our proposed globally stealthy attack methods are simulated and verified in IEEE 39-bus power system. Note to Practitioners—In this paper, we propose two attack strategies against distributed state estimation in smart grids and present the corresponding attack methods. Since the grid is a multi-area power system, attacks between different nodes are more likely than attacks within nodes. Most of the previous literature focused on the ability of an attack to remain stealthy within the attacked node. However, due to the presence of the consistency term of the distributed state estimation, the state of the attacked node will be propagated to other nodes and detected by other nodes. Therefore, in this paper, we consider an approach that can maintain stealthy at all nodes. The effectiveness of the proposed attack strategy against distributed state estimation in smart grid is demonstrated in IEEE 39-bus power system. It is shown that a globally stealthy attack leads to a bias in the state estimation of the attacked node and does not trigger an alarm at any node. In summary, the proposed attack strategy is useful for the research community to design targeted detection strategies and can be conveniently applied to real-world security management systems in smart grids.

automation & control systems

Ruilong Deng,Gaoxi Xiao,Rongxing Lu,Hao Liang,Athanasios V. Vasilakos

DOI: https://doi.org/10.1109/tii.2016.2614396

IF: 12.3

2017-01-01

IEEE Transactions on Industrial Informatics

Abstract:The accurately estimated state is of great importance for maintaining a stable running condition of power systems. To maintain the accuracy of the estimated state, bad data detection (BDD) is utilized by power systems to get rid of erroneous measurements due to meter failures or outside attacks. However, false data injection (FDI) attacks, as recently revealed, can circumvent BDD and insert any bias into the value of the estimated state. Continuous works on constructing and/or protecting power systems from such attacks have been done in recent years. This survey comprehensively overviews three major aspects: constructing FDI attacks; impacts of FDI attacks on electricity market; and defending against FDI attacks. Specifically, we first explore the problem of constructing FDI attacks, and further show their associated impacts on electricity market operations, from the adversary's point of view. Then, from the perspective of the system operator, we present countermeasures against FDI attacks. We also outline the future research directions and potential challenges based on the above overview, in the context of FDI attacks, impacts, and defense.

Feiye Zhang,Qingyu Yang

DOI: https://doi.org/10.3389/fenrg.2022.1005660

IF: 3.4

2022-09-16

Frontiers in Energy Research

Abstract:The smart grid greatly facilitates the transmission of power and information by integrating precise measurement technology and efficient decision support systems. However, deep integration of cyber and physical information entails multiple challenges to grid operation. False data injection attacks can directly interfere with the results of state estimation, which can cause the grid regulator to make wrong decisions and thus poses a huge threat to the stability and security of grid operation. To address this issue, we propose a detection approach against false data injection attacks for dynamic state estimation. The Kalman filter is used to dynamically estimate the state values from IEEE standard bus systems. A long short-term memory (LSTM) network is utilized to extract the sequential observations from states at multiple time steps. In addition, we transform the attack detection problem into supervised learning problem and propose a deep neural network-based detection approach to identify attacks. We evaluate the effectiveness of the proposed detection approach in multiple IEEE standard bus systems. The simulation results demonstrate that the proposed detection approach outperforms benchmarks in improving the detection accuracy of malicious attacks.

energy & fuels

Jinping Hao,Robert J. Piechocki,Dritan Kaleshi,Woon Hau Chin,Zhong Fan

DOI: https://doi.org/10.1109/tii.2015.2475695

IF: 12.3

2015-01-01

IEEE Transactions on Industrial Informatics

Abstract:This paper discusses malicious false data injection attacks on the wide area measurement and monitoring system in smart grids. First, methods of constructing sparse stealth attacks are developed for two typical scenarios: 1) random attacks in which arbitrary measurements can he compromised; and 2) targeted attacks in which specified state variables are modified. It is already demonstrated that stealth attacks can always exist if the number of compromised measurements exceeds a certain value. In this paper, it is found that random undetectable attacks can be accomplished by modifying only a much smaller number of measurements than this value. It is well known that protecting the system from malicious attacks can be achieved by making a certain subset of measurements immune to attacks. An efficient greedy search algorithm is then proposed to quickly find this subset of measurements to be protected to defend against stealth attacks. It is shown that this greedy algorithm has almost the same performance as the brute-force method, but without the combinatorial complexity. Third, a robust attack detection method is discussed. The detection method is designed based on the robust principal component analysis problem by introducing element-wise constraints. This method is shown to be able to identify the real measurements, as well as attacks even when only partial observations are collected. The simulations are conducted based on IEEE test systems.

Le Xie,Yilin Mo,Bruno Sinopoli

DOI: https://doi.org/10.1109/smartgrid.2010.5622048

2010-01-01

Abstract:We present a potential class of cyber attack, named false data injection attack, against the state estimation in deregulated electricity markets. With the knowledge of the system configuration, we show that such attacks will circumvent the bad data measurement detection equipped in present SCADA systems, and lead to profitable financial misconduct such as virtual bidding the ex-post locational marginal price (LMP). We demonstrate the potential attacks on an IEEE 14-bus system.

Xinghua Liu,Siwen Dong,Jingjing Huang,Lei Yang,Xiangqian Tong

DOI: https://doi.org/10.1109/iciea51954.2021.9516062

2021-01-01

Abstract:The accurately estimated state is of great importance to a stable running condition of smart grid. The emergence of cyber attacks brings new challenges to the state estimation of smart grid. Especially, false data injection (FDI) attacks deteriorate the accuracy of state estimation by injecting the false data into the measurement device. To solve the problem, a cubature Kalman filter (CKF) is proposed, which can estimate the dynamic state of smart grid under FDI attacks. Firstly, due to the complexity of the state equation of smart grid, this paper adopts Holt's two-parameter exponential smoothing method to establish the state equation. Secondly, according to the principle that the measurement residuals before and after the FDI attack are equal, the expressions of the attack vectors are established. And they are applied to the measurement quantities to avoid the conventional bad data detection. Then, the cubature Kalman filter algorithm is utilized to estimate the dynamic state of the smart grid attacked by FDI. Finally, the simulated results verify effectiveness of the proposed method.

A. Anwar,A. N. Mahmood

DOI: https://doi.org/10.48550/arXiv.1411.2671

2014-11-11

Cryptography and Security

Abstract:In recent years, Information Security has become a notable issue in the energy sector. After the invention of The Stuxnet worm in 2010, data integrity, privacy and confidentiality has received significant importance in the real-time operation of the control centres. New methods and frameworks are being developed to protect the National Critical Infrastructures like energy sector. In the recent literatures, it has been shown that the key real-time operational tools (e.g., State Estimator) of any Energy Management System (EMS) are vulnerable to Cyber Attacks. In this chapter, one such cyber attack named False Data Injection Attack is discussed. A literature review with a case study is considered to explain the characteristics and significance of such data integrity attacks.

Junjie Yang,Rong Yu,Yi Liu,Shengli Xie,Yan Zhang

DOI: https://doi.org/10.1109/ICC.2015.7249477

2015-01-01

Abstract:False data injection attacks have serious threat to the smart grid, e.g., may incur power outage or blackout. Normally, an intruder should have priori knowledge of the linear structure matrix and then control all smart meters to perform attacks. State-of-the-art studies have proven in theory that false data injection attacks can be unobservable when an intruder coordinately controls a small number of smart meters. However, there are no practical or implementable unobservable false data injection attacks with low-sparsity yet in the literature. In this paper, we propose a two-stage attacking scheme to demonstrate the practical feasibility of unobservable false data injection attacks in the smart grid. In the first stage, we explore the parallel factor analysis to derive the linear structure matrix of the smart grid using the intercepted data. In the second stage, we construct the sparse attack vector via a linear-based relaxation approach, which is used as the false data. Results indicate that we can realize highly successful attacking performance with a low detection probability.

Pengfei Hu,Wengen Gao,Yunfei Li,Feng Hua,Lina Qiao,Guoqing Zhang

DOI: https://doi.org/10.1109/access.2023.3273730

IF: 3.9

2023-05-12

IEEE Access

Abstract:Power system state estimation is an essential component of the modern power system energy management system (EMS), and accurate state estimation is an indispensable basis for subsequent work. However, the attacker can inject biases into measurements to launch false data injection attacks (FDIAs) in smart grids, which ultimately cause state estimates to deviate from security values. This paper proposed the joint use of static state estimation and dynamic state estimation to detect the FDIA, i.e. the joint use of weighted least squares (WLS) and extended Kalman filter (EKF) with exponential weighting function (WEKF), which improves the robustness of state estimation. Since the WLS estimation considers only the measurements at the current moment, the recursive feature of the WEKF enables the estimation process to involve both historical state and current measurements. Therefore, consistency tests and residual tests were performed using the estimations of WLS and WEKF to effectively detect FDIA. In addition, a cluster partitioning approach with approximate equal redundancy of subsystems is proposed to locate the FDIA. The detection of FDIA triggers the partitioning of the network system, and then the chi-square test is used separately in each sub-network to determine the location of FDIA. Finally, the experimental results in the IEEE-14 bus system and the IEEE-30 bus system demonstrate that the approach can effectively detect and locate FDIAs.

computer science, information systems,telecommunications,engineering, electrical & electronic

Dou An,Feiye Zhang,Feifei Cui,Qingyu Yang

DOI: https://doi.org/10.1109/tase.2023.3236102

IF: 6.636

2024-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:With the continuous expansion of the power grid nodes scale, traditional centralized state estimation method shows certain limitations in estimation efficiency and accuracy. Recently, some power grids adopt a distributed state estimation method, in which each partition independently estimates the partial state information by partitioning the entire power system. However, the deviation of the state estimation in certain partition will result in the deviation of the estimation results in the entire power grid system. In this paper, we propose the attack strategy against the distributed state estimation in smart grids from two perspectives, i.e. the attack against local physical measurement value of the power system partition and the attack against the measurement value of coordination center. Moreover, the theoretical analysis of the state estimation deviation caused by the proposed data integrity attack and the propagation processes of proposed attack vectors in measurement calculations are formalized. The effectiveness of the proposed attack strategy is verified in the IEEE-30 bus and IEEE-118 bus systems. Simulation results show that attacking against a certain partition of a distributed system can indirectly affect the state estimation results of other partitions and attacking against the measurement value of coordination center can directly threaten the state estimation results of the entire power grid. Note to Practitioners— This paper proposes two attack strategies against the distributed state estimation of power grid from two perspectives, i.e. the attack against local physical measurement value of the power system partition and the attack against the measurement value of coordination center. Most of the previous works fail to formalize the state estimation deviation of both partial and entire state estimation results of power grid after the attacker launches the attack against the distributed state estimation. We formalize the state estimation deviation caused by the proposed data integrity attack and the propagation processes of proposed attack vectors in measurement calculations. The effectiveness of the proposed attack strategy against the state estimation of power grid is verified in the IEEE-30 bus and IEEE-118 bus systems. Simulation results show that attacking against a certain partition of power grid can indirectly cause the deviation in the state estimation results of entire power grid and attacking against the measurement value of the coordination center can directly threaten the state estimation results of the entire power grid. In conclusion, the proposed attack strategies are helpful for the research community to design detection strategies in a targeted manner and can be conveniently applied to the real-world security management system of smart grid.