Haicheng Tu,Hui-Liang Shen,Yongxiang Xia

DOI: https://doi.org/10.1109/iscas45731.2020.9180816

2020-01-01

Abstract:Under the variety of information and communication technologies, the control center can securely and reliably operate power grid during the system disturbances and natural events. Specifically, when the initial failures are detected by cyber monitoring, the system will timely take emergency protecting operations to restrain the spreading of failures. Although cyber network makes the system more robust, they also increase the risk from the cyber network. In this paper, we firstly consider a control strategy into the cascading failures model. Then, we study how the cyber attack - False negatives attack confuses the control center, and makes the control center can not take emergency operation timely, causing the failure continue spreading. We propose an optimization problem to model the above assumptions and, by solving the optimization problem, study the impact of different attack scenarios on power system.

Yinan Wang,Gangfeng Yan,Ronghao Zheng

DOI: https://doi.org/10.3390/app8050768

2018-01-01

Applied Sciences

Abstract:The integration of modern computing and advanced communication with power grids has led to the emergence of electrical cyber-physical systems (ECPSs). However, the massive application of communication technologies makes the power grids become more vulnerable to cyber attacks. In this paper, we study the vulnerability of ECPSs and develop defence strategies against cyber attacks. Detection and protection algorithms are proposed to deal with the emergency of cascading failures. Moreover, we propose a weight adjustment strategy to solve the unbalanced power flows problem which is caused by splitting incidents. A MATLAB-based platform with advantages of easy programming, fast calculation, and no damage to systems is built for the offline simulation and analysis of the vulnerability of ECPSs. We also propose a five-aspect method of vulnerability assessment which includes the robustness, economic costs, degree of damage, vulnerable equipment, and trip point. The study is of significance to decision makers as they can get specific advice and defence strategies about a special power system.

z zhang,m sun,r deng,c kang

DOI: https://doi.org/10.1109/tpwrs.2022.3169139

IF: 7.326

2022-01-01

IEEE Transactions on Power Systems

Abstract:Machine learning (ML) approaches have been widely developed to enable real-time stability assessment for large-scale electricity grids. However, it also has been extensively recognized that the ML model is vulnerable to adversarial examples, which are instances slightly perturbed from the original examples and remain invisible to human eyes. However, the adversarial examples in power systems should not only result in incorrect decisions but also follow the electricity laws and transfer limits, and can bypass the bad data detector. To this end, this paper proposes a novel concept named physics-constrained robustness verification that aims to compute a lower-bound of adversarial perturbations, evaluating the vulnerability of intelligent stability assessment (ISA) for power systems. We first propose a general formulation to compute the physics-constrained robustness considering both the physical constraints and stealthy/invisible requirements. Then analytical results are provided for the robustness of ISA with mislabelling, power balance, and invisible requirement constraints, consecutively. Furthermore, static stability assessment is employed as an example to evaluate the robustness of the applied ML model by providing explicit formulations. Finally, extensive experiments are conducted to evaluate the physics-constrained robustness of ISA under different settings with the real-world load profiles and provide suggestions to select the ML models.

Yu Zhang,Huifeng Bai,Chao Huo,Ganghong Zhang,Libin Zheng

DOI: https://doi.org/10.1109/powercon58120.2023.10330972

2023-01-01

Abstract:The energy industry has reached a consensus on establishing a digital and intelligent new power system that prioritizes safe and stable operation. Artificial intelligence (AI) is a key technology for efficient scientific decision-making in this system, and the power industry is actively exploring and implementing AI research and practices. Power depth vision technology is critical for intelligent analysis, processing, and decision-making of power images in the new power system. However, well-trained power depth vision models are vulnerable to misjudging vision images that have been maliciously tampered with by indistinguishable noise (i.e., adversarial images), posing a threat to the safe and stable operation of the new power system. Therefore, we propose a stability analysis algorithm for the power depth vision of the new power system based on a black-box adversarial attack. Our algorithm involves a real-world noise simulator with a black-box attack switch (BBAS) that searches for on-manifold adversarial images and steers the generative network in the attack direction. To regulate the BBAS state, we present hard and soft filters with distinct constraints as alternatives. Additionally, we propose neighbor random sampling based on Taylor series approximation to define a bag of imitations of the generative noise image, which widens the search space of the adversarial images. Finally, we offer two stability analysis patterns for the training and testing procedure, and our experiments on insulator string detection demonstrate the effectiveness of our algorithm.

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Zhenyong Zhang,Zhibo Yang,David K.Y. Yau,Youliang Tian,Jianfeng Ma

DOI: https://doi.org/10.1016/j.apenergy.2023.121405

IF: 11.2

2023-06-24

Applied Energy

Abstract:Towards the low-carbon goal, a smart grid features remote connection, data sharing, and cyber–physical integration to increase the flexibility of energy supplies, to reduce electricity wastage, and to enhance safety under intermittent renewables. In this context, machine learning (ML) is increasingly employed in smart grids to solve tasks that require deep data analytics. However, it is well recognized that ML models are vulnerable to adversarial examples that might be contained in open shared data, which creates opportunities for potential attackers to launch cyberattacks. In particular, system operating states acting as critical inputs to ML-based smart grid applications (MLsgAPPs) can be manipulated by malicious actors to mislead the system operator into making wrong decisions that in turn may cause major blackouts and other damaging cascading events. It is thus imperative to advance vulnerability assessment for MLsgAPPs. In this paper, we propose a physics-constrained robustness evaluation framework for MLsgAPPs, which is a first attempt of using tree ensemble (TE) models. Unlike adversarial attacks against prior studied image-classification tasks, adversarial examples against TE-based smart grid applications (TEsgAPPs) must not only cheat human intuition but also follow laws of physics and bypass error-checking mechanisms for power systems. Thus, formulation of the traditional robustness evaluation problem must be reconsidered to account for domain-specific misclassification, physical limit, power balance, and error-bypass constraints, in order to obtain tight lower bounds of the magnitudes of tolerated adversarial perturbations. We adopt a formal modeling approach to construct a discrete tree structure and to specify the model evasion conditions. We propose an efficient robustness evaluation method by transforming variables considering l1 and l∞ norms, followed by a generalization that expands the variable space to admit other types of norms. Using TE-based power system security assessment as an example, comprehensive simulations are conducted for evaluating the physics-constrained robustness under different TE models and model parameters.

energy & fuels,engineering, chemical

Chunyu Chen,Xiao Zhang,Mingjian Cui,Kaifeng Zhang,Junbo Zhao,Fangxing Li

DOI: https://doi.org/10.1109/tii.2021.3107539

IF: 12.3

2022-01-01

IEEE Transactions on Industrial Informatics

Abstract:The progression of modern computing technologies assists the development of cyber-physical systems, which are transforming the legacy electrical power systems into smarter ones. The informationalization of the grid poses potential vulnerabilities concerning cyberattacks. With dynamic variations over time, cyberattacks can cause significant impacts on the secondary frequency control with various attack scenarios. In this article, by divulging the characteristics of dynamic attacks, the stability and dynamic responses of secondary frequency control systems are analyzed. The complete attack models considering dynamic load altering attack and dynamic false data injection attack are both derived first. Then the system stability is evaluated with different attack models through mathematical analysis. Eventually, the simulation studies against two benchmark power system models validate the evaluation results.

Bingjing Yan,Zhenze Jiang,Pengchao Yao,Qiang Yang,Wei Li,Albert Y. Zomaya

DOI: https://doi.org/10.23919/pcmp.2023.000138

IF: 10.5

2024-01-01

Protection and Control of Modern Power Systems

Abstract:Modern power grid is fast emerging as a complex cyber-physical power system (CPPS) integrating physical current-carrying components and processes with cyber-embedded computing, which faces increasing cyberspace security threats and risks. In this paper, the state (i.e., voltage) offsets resulting from false data injection (FDI) attacks and the bus safety characterization are applied to quantify the attack consequences. The state offsets are obtained by the state estimation method, and the bus safety characterization considers the power network topology as well as the vulnerability and connection relationship of buses. Considering the indeterminacy of attacker's resource consumption and reward, a zero-sum game-theoretical model from the defender's perspective with incomplete information is explored for the optimal allocation of limited defensive resources. The attacker aims to falsify measurements without triggering threshold alarms to break through the protection, leading to load shedding, over-voltage or under-voltage. The defender attempts to ensure the estimation results to be as close to the actual states as possible, and guarantee the system's safety and efficient defensive resource utilization. The proposed solution is extensively evaluated through simulations using the IEEE 33-bus test network and real-time digital simulator (RTDS) based testbed experiments of the IEEE 14-bus network. The results demonstrate the effectiveness of the proposed game-theoretical approach for optimal defensive resource allocation in CPPS when limited resources are available when under FDI attacks.

Sayawu Yakubu Diaba,Miadreza Shafie-Khah,Mohammed Elmusrati

DOI: https://doi.org/10.1109/access.2023.3247193

IF: 3.9

2023-03-04

IEEE Access

Abstract:Supervisory Control and Data Acquisition system linked to Intelligent Electronic Devices over a communication network keeps an eye on smart grids' performance and safety. The lack of algorithms protecting the power system communication protocols makes them vulnerable to cyberattacks, which can result in a hacker introducing false data into the operational network. This can result in delayed attack detection, which might harm the infrastructure, cause financial loss, or even result in fatalities. Similarly, attackers may be able to feed the system with fake information to hoax the operator and the algorithm into making bad decisions at crucial moments. This paper attempts to identify and classify such cyber-attacks by using numerous deep learning algorithms and optimizing the data features with a metaheuristic algorithm. We proposed a Restricted Boltzmann Machine-based nature-inspired artificial root foraging optimization algorithm. Using a publicly available dataset produced in Mississippi State University's Oak Ridge National Laboratory, simulations are run on the Jupiter Notebook. Traditional supervised machine learning algorithms like Artificial Neural Networks, Convolutional Neural Networks, and Support Vector Machines are measured with the proposed algorithm to demonstrate the effectiveness of the algorithms. Simulations show that the proposed algorithm produced superior results, with an accuracy of 97.8% for binary classification, 95.6% for three-class classification, and 94.3% for multi-class classification. Thereby outperforming its counterpart algorithms in terms of accuracy, precision, recall, and f1 score.

computer science, information systems,telecommunications,engineering, electrical & electronic

Huaizhi Wang,Jiaqi Ruan,Bin Zhou,Canbing Li,Qiuwei Wu,Muhammad Qamar Raza,Guang-Zhong Cao

DOI: https://doi.org/10.1109/tii.2019.2902163

IF: 12.3

2019-01-01

IEEE Transactions on Industrial Informatics

Abstract:Understanding potential behaviors of attackers is of paramount importance for improving the cybersecurity of power systems. However, the attack behaviors in existing studies are often modeled statically on a single snapshot, which neglects the reality of a dynamically time-evolving power system. Accordingly, a dynamic cyber-attack model with local network information is proposed to characterize the typical data injection attack with the integration of potential dynamic behaviors of an attacker. The proposed model collaboratively alters the meter measurement in a stealthy way to illegally contaminate the system state, thus posing severe threats to cyber physical power systems. We then develop a novel anomaly detection countermeasure from the perspective of state estimation to effectively recognize the dynamic injection attack. In this countermeasure, an interval state forecasting method is proposed to approximate the possible largest variation bounds of each state variable based on a worst-case analysis considering the forecasting uncertainties of renewable energy sources, electric loads, and network parameter perturbations. In addition, the kernel quantile regression is introduced and implemented to formulate the uncertainties in renewable energy and electric load forecast as a series of confidence intervals. When any state variable falls outside its preforecasted intervals, the proposed countermeasure detects the anomaly and sets an alarm condition indicating the possibility of data contamination. Finally, the results from our extensive studies on several IEEE standard test systems have been presented to demonstrate the feasibility of the dynamic attack and the effectiveness of the detection countermeasure.

Tianqiao Zhao,Meng Yue,Jianhui Wang

DOI: https://doi.org/10.1109/tpwrs.2022.3233735

IF: 7.326

2023-11-01

IEEE Transactions on Power Systems

Abstract:The increasing complexity associated with renewable generation brings more challenges to power system stability assessment (SA). Data-driven approaches based on machine learning (ML) techniques for stability assessment have received significant research interest and shown their promising performance. However, ML-based models are recognized to be vulnerable to adversarial disturbances, where a slight perturbation to power system measurements could lead to unacceptable errors. To address this issue, this paper develops a novel lightweight mitigation strategy, i.e., robust online stability assessment (ROSA), to enhance the ML-based assessment model against both white-box and the black-box adversarial disturbances (i.e., purification) in the online implementation. The ROSA involves a supervised learning-based module for the primary stability assessment and a self-supervised learning-based module. The two modules are trained jointly with different objective (loss) functions and implemented in sequence. A suitable purification objective and various time-series data augmentation methods are designed for SA applications to tackle adversarial disturbances adaptively. Case studies are performed, and the comparative results have clearly illustrated the competitive, robust accuracy against various adversarial scenarios and verified the effectiveness of the proposed online purification strategy.

engineering, electrical & electronic

Hongyu Chen,Jingyu Wang,Dongyuan Shi

DOI: https://doi.org/10.1109/powercon.2018.8602194

2018-01-01

Abstract:In recent years, cyber-attacks have become an imminent danger threatening the stable power supply. Data-driven approaches based on machine learning techniques are frequently used to detect cyber-attacks. To get satisfactory detection performances, these approaches have to establish an in-depth understanding of power system operating behaviors, not only under normal conditions but also under contingencies like short-circuit faults. Contingency data appears far more rarely than normal data in the historical measurement database. If normal and contingency data are uniformly sampled to generate training datasets, the included contingency examples may be too few for machine learning models to recognize the operating patterns thoroughly. In this paper, a data preparation method combining Random Matrix Theory (RMT) and Adaptive Synthetic Sampling (ADASYN) algorithm is proposed. RMT is applied to extract rare contingency data from the historical operating database and ADASYN is used to synthetically generate new contingency examples according to the existing ones. Case studies show that this method can facilitate the learning of the intrinsic statistical characteristics of power system operating data, and then enhance the detection of cyber-attacks.

M. Chow,Zhenyong Zhang,Ruilong Deng,Mingyang Sun,C. Kang

DOI: https://doi.org/10.1109/TPWRS.2022.3169139

IF: 7.326

2023-01-01

IEEE Transactions on Power Systems

Abstract:Machine learning (ML) algorithms have been widely developed to enable real-time security assessment for large-scale electricity grids. However, it also has been extensively recognized that the ML models are vulnerable to adversarial examples, which are slightly perturbed instances that can mislead the classifications but cannot be distinguished by human eyes. Considering the adversarial examples against the ML-based security assessment, they must not only cause misclassification but also follow the power balance and transfer limits and bypass the bad data detection. To this end, this paper proposes a novel concept named physics-constrained robustness that aims to computing a lower-bound of adversarial perturbations, evaluating the vulnerability of the ML-based intelligent security assessment (ISA) for power systems. A general optimization problem is formulated to compute the physics-constrained robustness of ISA with the mislabeling, power balance, power limitation, and invisible constraints. The analytical results and comparing relationship of ISA’s robustness with different constraints are provided. By using the static security assessment as an example, we provide explicit formulations to evaluate the physics-constrained robustness of. Finally, extensive experiments are conducted to evaluate the physics-constrained robustness of ISA in static and dynamic cases with the real-world load profiles from New York State and provide suggestions to select the ML models and parameters.

Physics,Engineering,Computer Science

Aniruddha Agrawal,Donnagratia Syndor,Dallang M. Momin,Shaik Affijulla

DOI: https://doi.org/10.1515/ijeeps-2021-0176

2021-09-10

International Journal of Emerging Electric Power Systems

Abstract:Abstract Smart electric grids are practising flexible, reliable and robust operations during delivery and consumption of power. However, these grids are highly vulnerable to a wide range of cyber attacks due to the deployment of an extensive communication network. In this paper, the nature of cyber attack on given power system based on proposed cyber attack models and theorems is analysed by utilizing steady state voltage stability (L index). Further, a cyber attack factor is introduced which may mislead the bus voltage stability virtually. The proposed cyber attack models and theorems are validated by executing cyber attacks on WSCC 9 bus and IEEE 14 bus test systems by using Siemens PSS/E and MATLAB softwares. Through the proposed theorems, the paper exposes and quantifies the threat of cyber attacks in the electric power grid. The simulation results reveal that the proposed cyber attack models may misrepresent the bus voltage stability, thereby misleading the energy management centre (EMC) operator into taking incorrect countermeasures. The above incorrect actions may force voltage instability which further leads to major interruptions in the electric power supply and possible cascading failure of the electric power grid. Moreover, the proposed theorems and rigorous simulations presented in the paper support the EMC operator in intelligently identifying a cyber attack, thereby enabling development of appropriate corrective actions during such cyber attacks on the smart electric grid. Thus, the concept of proposed methodology could best assist the power system operator to build detection algorithms for discrimination of cyber attacks from electrical faults towards strong electric grid resilience character.

Xiaoliang Wang,Fei Xue,Shaofeng Lu,Lin Jiang,Ettore Bompard,Marcelo Masera,Qigang Wu

DOI: https://doi.org/10.1016/j.ijepes.2023.109678

IF: 5.659

2023-01-01

International Journal of Electrical Power & Energy Systems

Abstract:This paper proposes a new mode of cyber-physical attack based on injecting false commands, which poses an increasing risk to modern power systems as a typical example of Cyber-Physical Systems (CPS). Such attacks can trigger physical attacks by driving the system into vulnerable states. To address the critical issues arising from this new mode, we define an inverse-community (IC) in power flow distribution and evaluate it using inversemodularity. To identify the most vulnerable state of the IC that represents the inherent vulnerability of the system, we employ a full malicious power dispatch problem. We also analyze an example of the proposed mode, where a partial malicious power dispatch that maximizes inverse-modularity is combined with physical attacks aimed at disconnecting vulnerable IC boundary lines, making cascading failures highly likely. To demonstrate the potential impact of this coordinated cyber-physical attack, we use the IEEE-118 and IEEE-300 bus systems for simulation. The results show the effectiveness of this attack strategy and provide a new perspective to analyze cyber-physical security issues in modern power systems.

Jiongcong CHEN,Gaoqi LIANG,Zexiang CAI,Chunchao HU,Yan XU,Fengji LUO,Junhua ZHAO

DOI: https://doi.org/10.1007/s40565-016-0223-6

IF: 4.469

2016-01-01

Journal of Modern Power Systems and Clean Energy

Abstract:Static security assessment (SSA) is an important procedure to ensure the static security of the power system. Researches recently show that cyber-attacks might be a critical hazard to the secure and economic operations of the power system. In this paper, the influences of false data injection attack (FDIA) on the power system SSA are studied. FDIA is a major kind of cyber-attacks that can inject malicious data into meters, cause false state estimation results, and evade being detected by bad data detection. It is firstly shown that the SSA results could be manipulated by launching a successful FDIA, which can lead to incorrect or unnecessary corrective actions. Then, two kinds of targeted scenarios are proposed, i.e., fake secure signal attack and fake insecure signal attack. The former attack will deceive the system operator to believe that the system operates in a secure condition when it is actually not. The latter attack will deceive the system operator to make corrective actions, such as generator rescheduling, load shedding, etc. when it is unnecessary and costly. The implementation of the proposed analysis is validated with the IEEE-39 benchmark system.

Bingdong Wang,Junjie Song,Liang Wan,Youliang Tian,Xin Wang,Zhenyong Zhang

DOI: https://doi.org/10.1109/ICPS58381.2023.10128077

2023-01-01

Abstract:Advanced communication infrastructure makes the power system smarter but also introduces cybersecurity issues. False data injection attack (FDIA) is a kind of cyberattack that can cause significant damage to the power system. To defend against FDIAs, moving target defense (MTD) was recently proposed by perturbing the branch parameters. However, most of the existing research ignores the impact of MTD on power system stability. Considering the system dynamics, we analyze and investigate the impact of MTD on small-signal stability without sacrificing its effectiveness. We present a sufficient condition for maintaining the stability of the power system with MTD. Finally, we evaluate our findings with the IEEE 68-bus power system.

Omer Sen,Bozhidar Ivanov,Christian Kloos,Christoph Zol_,Philipp Lutat,Martin Henze,Andreas Ulbig

DOI: https://doi.org/10.1016/j.ijcip.2024.100727

2024-12-09

Abstract:The power grid is a critical infrastructure essential for public safety and welfare. As its reliance on digital technologies grows, so do its vulnerabilities to sophisticated cyber threats, which could severely disrupt operations. Effective protective measures, such as intrusion detection and decision support systems, are essential to mitigate these risks. Machine learning offers significant potential in this field, yet its effectiveness is constrained by the limited availability of high-quality data due to confidentiality and access restrictions. To address this, we introduce a simulation environment that replicates the power grid's infrastructure and communication dynamics. This environment enables the modeling of complex, multi-stage cyber attacks and defensive responses, using attack trees to outline attacker strategies and game-theoretic approaches to model defender actions. The framework generates diverse, realistic attack data to train machine learning algorithms for detecting and mitigating cyber threats. It also provides a controlled, flexible platform to evaluate emerging security technologies, including advanced decision support systems. The environment is modular and scalable, facilitating the integration of new scenarios without dependence on external components. It supports scenario generation, data modeling, mapping, power flow simulation, and communication traffic analysis in a cohesive chain, capturing all relevant data for cyber security investigations under consistent conditions. Detailed modeling of communication protocols and grid operations offers insights into attack propagation, while datasets undergo validation in laboratory settings to ensure real-world applicability. These datasets are leveraged to train machine learning models for intrusion detection, focusing on their ability to identify complex attack patterns within power grid operations.

Cryptography and Security

Shuva Paul,Zhen Ni,Fei Ding

DOI: https://doi.org/10.1109/isgt45199.2020.9087639

2020-01-01

Abstract:Due to the increasing number of heterogeneous devices connected to electric power grid, the attack surface increases the threat actors. Game theory and machine learning are being used to study the power system failures caused by external manipulation. Most of existing works in the literature focus on one-shot process of attacks and fail to show the dynamic evolution of the defense strategy. In this paper, we focus on an adversarial multistage sequential game between the adversaries of the smart electric power transmission and distribution system. We study the impact of exploration rate and convergence of the attack strategies (sequences of action that creates large scale blackout based on the system capacity) based on the reinforcement learning approach. We also illustrate how the learned attack actions disrupt the normal operation of the grid by creating transmission line outages, bus voltage violations, and generation loss. This simulation studies are conducted on IEEE 9 and 39 bus systems. The results show the improvement of the defense strategy through the learning process. The results also prove the feasibility of the learned attack actions by replicating the disturbances created in simulated power system.

Yingshuai Hao,Meng Wang,Joe Chow

DOI: https://doi.org/10.48550/arXiv.1512.05008

2015-12-15

Systems and Control

Abstract:Cyber data attacks are the worst-case interacting bad data to power system state estimation and cannot be detected by existing bad data detectors. In this paper, we for the first time analyze the likelihood of cyber data attacks by characterizing the actions of a malicious intruder. We propose to use Markov decision process to model an intruder's strategy, where the objective is to maximize the cumulative reward across time. Linear programming method is employed to find the optimal attack policy from the intruder's perspective. Numerical experiments are conducted to study the intruder's attack strategy in test power systems.