Zhixun Zhang,Jianqiang Hu,Jianquan Lu,Jinde Cao,Jie Yu

DOI: https://doi.org/10.1109/tcsi.2023.3307821

2024-01-01

Abstract:The development of integrated energy system has promoted the development of the power system into the largest and most complex cyber-physical energy system, where the change in the openness of the load frequency control (LFC) system has also increased its susceptibility to false data injection attacks (FDIAs). This paper porposes an artificial intelligence (AI) based detection and countermeasure strategy to protect LFC systems from FDIAs. First, The levenberg-marquarelt-back propagation (LM-BP) neural networks (NNs) is trained by collecting the historical data of frequency deviation, power deviation of contact line, and active power load deviation. Second, the output control signal of LM-BP NNs is tested against the output of the system controller for residuals to determine whether has FDIAs. Furthermore, to resist the negative effects of FDIAs, the control signal calculated by the LM-BP NNs will replace the traditional proportion integration differentiation (PID) output. Finally, The advantages of the proposed strategy are illustrated by the two interconnected power systems.

Wenting Wang,Dongqin Feng,Mingliang Chen,Shuxian Yang

DOI: https://doi.org/10.1109/ccdc62350.2024.10588015

2024-01-01

Abstract:This work investigates the problem of detecting and localizing attacks on a class of power cyber-physical systems (CPSs) in the presence of dynamic load alteration attacks (D-LAA). The power CPS is modeled as a discrete-time system with an unknown input, assuming that the sampling process is periodic and the D-LAA is bounded. This study delves into the investigation of attack detection and localization within a specific category of power cyber-physical systems (CPSs) when dealing with dynamic load alteration attacks (D-LAA). A novel Maximum Correntropy Robust Two-Stage Kalman Filter (MCRTSKF) is proposed so that the accurate state estimation for power CPS is achieved in spite of anomalous noise. Meanwhile, some essential parameters for the designed filter are obtained through the fixed-point iteration-stop parameter selection method. Furthermore, based on the state estimate value, the attack detection and localization procedure is presented. Finally, the validity and effectiveness of the proposed attack detection and localization schemes are illustrated by case studies on an IEEE 9-bus system.

Alireza Abbaspour,Arman Sargolzaei,Parisa Forouzannezhad,Kang K. Yen,Arif I. Sarwat

DOI: https://doi.org/10.1109/tie.2019.2944091

IF: 7.7

2020-09-01

IEEE Transactions on Industrial Electronics

Abstract:Smart power grids are being enhanced by adding a communication infrastructure to improve their reliability, sustainability, and efficiency. Despite all of these significant advantages, their open communication architecture and connectivity renders the power systems' vulnerability to a range of cyberattacks. This article proposes a novel resilient control system for load frequency control (LFC) system under false data injection (FDI) attacks. It is common to use encryption in data transfer links as the first layer of defending mechanism; here, we propose a second defense layer that can jointly detect and mitigate FDI attacks on power systems. In this article, we propose a new anomaly detection technique that consists of a Luenberger observer and an artificial neural network (ANN). Since FDI attacks can happen rapidly, the observer structure is enhanced by the extended Kalman filter to improve the ANN ability for online detection and estimation. The resilient controller is designed based on the attack estimation, which can eliminate the need for control reconfiguration. The resiliency of the proposed design against FDI attacks is tested on the LFC system. The simulation results clearly show that the proposed control system can successfully detect anomalies and compensate for their adverse effects.

automation & control systems,engineering, electrical & electronic,instruments & instrumentation

Andrew D. Syrmakesis,Hassan Haes Alhelou,Nikos D. Hatziargyriou

DOI: https://doi.org/10.1109/tpwrs.2023.3242015

IF: 7.326

2024-01-01

IEEE Transactions on Power Systems

Abstract:The integration of modern power systems with information and communication technologies exposes them to various cyber threats. Load frequency control (LFC) is a communication-based automation in power systems that regulates the frequency of the grid. Its critical role makes it a highly attractive target for adversaries. This paper proposes a novel detection and isolation method of False Data Injection Attacks (FDIAs) against LFC. The defense method employs sliding mode observation techniques to detect FDIAs against LFC in real-time and discover which parts of the control loop have been compromised. Attacks are identified by comparing the generated residuals with a specific threshold that is designed in an adaptive manner. The proposed method is able to successfully distinguish the FDIAs from other system disturbances and is robust against uncertainties in power system parameters and noisy measurements. The effectiveness and scalability of the proposed defense method are confirmed on realistic power system models, considering nonlinearities, different topologies and diverse types of transmission links.

engineering, electrical & electronic

Xiaoli Chen,Songlin Hu,Yu Li,Dong Yue,Chunxia Dou,Lei Ding

DOI: https://doi.org/10.1109/tsg.2022.3147693

IF: 10.275

2022-05-01

IEEE Transactions on Smart Grid

Abstract:This paper proposes a co-estimation and resilient compensation control framework for multi-area load frequency control (LFC) systems in the presence of false data injection (FDI) attacks and denial-of-service (DoS) attacks. To relax the requirement on existing DoS attack models, which are usually considered under the assumption that both its frequency and duration are constrained, a new DoS model within a known bounds of the sleeping and active period of the attack signal is proposed. The injected FDI attack signal is generated by an external dynamic systems. A switching impulsive observer and a switching state observer are constructed to estimate the unknown FDI attack signal and the system state, respectively. Moreover, a new exponential stability criteria of the output feedback multi-area LFC systems under DoS and FDI attacks is first derived by using attack parameter dependent time varying Lyapunov function method. Then, a co-design method of a resilient attack compensation controller, state estimator, and attack estimator is developed. Finally, case studies are considered for verification of the effectiveness of the proposed theoretical results.

engineering, electrical & electronic

Zhixun Zhang,Jianqiang Hu,Jianquan Lu,Jinde Cao,Fawaz E Alsaadi

DOI: https://doi.org/10.1109/tnse.2022.3199881

IF: 6.6

2022-11-02

IEEE Transactions on Network Science and Engineering

Abstract:The load frequency control (LFC) system, a critical component maintaining frequency stability in the smart grid, is vulnerable to invisible false data injection attacks (FDIAs). These FDIAs can get behind the bad data detection (BDD) system and cause significant damage to the smart grid. Firstly, This paper proposes a detection and defense model against unobservable FDIAs in the LFC system based on the combination of the attack-detection evolutionary game (AEG) model and Kalman filtering (KF) algorithm. Then, Support vector machines (SVM) and K-Nearest neighbor (KNN) are two detection algorithms of the AEG model that are trained by gathering historical data of frequency deviation, tie-line power deviation, and active power load deviation in the smart grid responding to two different forms of FDIAs. The optimal detection algorithm is provided by analyzing the evolution of the equilibrium point of the game. Finally, a mitigation method based on the KF algorithm is proposed, in which the optimal control signal is estimated and issued to the LFC system in order to restore the system frequency stability. Simulation results on a two-area interconnected power system demonstrate the effectiveness of the proposed detection and defense strategies.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Xing-Chen ShangGuan,Yong He,Chuan-Ke Zhang,Li Jin,Lin Jiang,Min Wu,Joseph William Spencer

DOI: https://doi.org/10.1016/j.conengprac.2020.104678

IF: 4.057

2021-02-01

Control Engineering Practice

Abstract:<p>Load frequency control (LFC) scheme of modern power systems tends to employ open communication networks to transmit control/measurement signals, which makes the LFC scheme more vulnerable to cyber-attacks such as a denial-of-service (DoS) attack. The DoS attack prevents signal transmission and degrades the performance of or even results in instability in the LFC scheme. This paper proposes a switching system-based approach to the LFC scheme of a multi-area power system that is resilient to DoS attacks. After modelling the LFC scheme under DoS attacks as switching subsystems based on the duration of DoS attacks, a new stability criterion in terms of the duration and frequency of DoS attacks is developed. The derived criterion can be used to calculate the maximum duration and frequency of DoS attacks that the LFC system with a given proportional–integral (PI)-type controller can tolerate and to determine the control gains of the PI-type controller for a given duration and frequency of DoS attack. Moreover, a resilient LFC scheme is proposed based on a dual-loop communication channel equipped with the designed PI controller. The effectiveness of the proposed LFC scheme is evaluated on a traditional three-area power system and a deregulated three-area power system under DoS attacks.</p>

automation & control systems,engineering, electrical & electronic

Meng Zhang,Shanling Dong,Peng Shi,Guanrong Chen,Xiaohong Guan

DOI: https://doi.org/10.1109/tase.2022.3208016

IF: 6.636

2022-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:Information and communication technology tremendously facilitates the operation efficiency and economy of modern power systems in recent years. However, risks such as bandwidth constraints and malicious attacks threaten the secure load frequency control (LFC) of power systems. To mitigate such risks, this paper proposes distributed observer-based event-triggered LFC schemes for multi-area power systems under cyber attacks. Considering the practical situation that only local system output information may be available, distributed observer-based LFC schemes are designed. Meanwhile, to reduce the communication burden, an event-triggered mechanism is adopted to design control laws, where both static and dynamic event-triggered approaches are taken and the dynamic one is proved to be more economical in terms of control cost. Verifiable sufficient conditions are established to guarantee the stability of the closed-loop system in the presence of cyber attacks and the controller gains are explicitly derived. Finally, validation studies on a three-area interconnected power system are carried out to demonstrate the proposed control schemes. Note to Practitioners—Load frequency is a crucial index for evaluating the quality of electric energy and thus LFC has brought considerable attention in the area of power systems control. Although many achievements have been made on the LFC of multi-area power systems, the risks such as bandwidth constraints and malicious attacks affect the normal operation of LFC due to the interconnection between different power systems. To deal with these risks, this paper focuses on designing event-triggered LFC to guarantee the stability of the frequency deviation while reducing the communication burden and mitigating cyber attacks. More importantly, the proposed event-triggered LFC is designed based on an observer and can be implemented in a distributed manner, which is relatively practical in real applications. The results presented in this paper aim to provide a helpful reference for stable and secure LFC design of multi-area power systems, such that the corresponding application research can be promoted.

automation & control systems

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tpwrs.2022.3229667

IF: 7.326

2022-01-01

IEEE Transactions on Power Systems

Abstract:In cyber-physical power systems (CPPSs), additional control as the compensating control plays a very important part in load frequency control (LFC) systems. The additional control in the LFC system is constrained by limited communication resources and cyber-attacks, which may cause performance degradation or destabilize the system. Accordingly, this paper proposes resilient event-triggered LFC for CPPSs with an additional control loop under denial-of-service (DoS) attacks. Firstly, a resilient event-triggered communication scheme is presented to reduce the occupation of communication resources under DoS attacks in the additional control loop. Then, different from existing event-triggered LFC systems, this paper establishes a novel switched LFC system model, where the resilient event generator is integrated into an additional control loop when suffering from DoS attacks. It is the first time that the additional control loop of the LFC system simultaneously considers communication resources and cyber-security. Furthermore, we derive exponential stabilization criteria by applying the Lyapunov stability theory based on the established model. Criteria are derived to obtain the weighting matrix and controller gain simultaneously by applying the linear matrix inequality technique. Finally, a one-area and two multi-area CPPSs with the additional control loop under DoS attacks are used to testify the availability of the proposed resilient event-triggered LFC scheme.

Sohrab Mokhtari,Kang K. Yen

DOI: https://doi.org/10.3390/electronics13163239

IF: 2.9

2024-08-16

Electronics

Abstract:The integration of advanced information and communication technology in smart grids has exposed them to increased cyber attacks. Traditional model-based fault detection systems rely on mathematical models to identify malicious activities but struggle with the complexity of modern systems. This paper explores the application of artificial intelligence, specifically machine learning, to develop fault detection mechanisms that do not depend on these models. We focus on operational technology for fault detection, isolation, and identification (FDII) within smart grids, specifically examining a load frequency control (LFC) system. Our proposed approach uses sensor data to accurately identify threats, demonstrating promising results in simulated environments.

engineering, electrical & electronic,computer science, information systems,physics, applied

Qiang Lan,Shuyu Jia,Qinglai Guo,Li He,Peng Yang

DOI: https://doi.org/10.1109/ei252483.2021.9713104

2021-01-01

Abstract:Modern power system is a typical cyber-physical system due to the coupling of primary and secondary systems. The development of renewable energy and smart grids make many new application scenarios. Various new communication technologies make the system complex. Cyber systems and complex network environments have introduced a series of security issues. All of which make them easy to become ideal targets for cyberattacks. Therefore, it is of great significance to the research of cyber security in cyber-physical systems. This paper selects a scenario of centralized LFC, considers the linearized discrete system model under partial observation with Gaussian disturbance. Based on the known and un-changed characteristics of the physical model of the control system, dynamic watermarking is used to detect data integrity attacks from malicious sensors.

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Songlin Hu,Xiaohua Ge,Wei Zhang,Dong Yue

DOI: https://doi.org/10.1109/tifs.2024.3361159

IF: 7.231

2024-02-17

IEEE Transactions on Information Forensics and Security

Abstract:This paper is concerned with a resilient load frequency control (LFC) of multi-area power systems subject to unknown load disturbances and intermittent denial-of-service (DoS) attacks. The central aim is to develop a feasible and less conservative DoS-resilient LFC scheme that constrains jammer's actions as less as possible and explores available attack information as much as possible in desired analysis and design criteria. Towards this aim, we first present a partially known DoS model that bounds merely the DoS-on durations. We then elaborate a sampled-data-based transmission paradigm which characterizes explicitly the uniform sampling instants and intermittent DoS-on and -off instants as well as the nonuniform arriving instants of the transmitted system data. Furthermore, we develop a novel attack-parameter-dependent Lyapunov functional to establish less conservative conditions for both stability analysis and controller design. It is shown that the exponential stability of the resultant closed-loop LFC system can be guaranteed, while also preserving both the desired minimum sleeping rate of DoS attacks and the prescribed performance index against changing load disturbances. Finally, several case studies of a three-area power system are provided to verify the effectiveness and superiority of the derived theoretical results.

computer science, theory & methods,engineering, electrical & electronic

Feiyang Hong,Zhejing Bao,Miao You

DOI: https://doi.org/10.1109/CCDC52312.2021.9601681

2021-01-01

Abstract:Recent studies show that the cyber-attacks such as false data injection attack (FDIA) are capable of severely threatening power system security, in such a way that the undetected errors are introduced into the states estimations by evading the conventional bad data detection (BDD) methods. This paper proposes a tri-level optimization model against the FDIA by formulating the attack actions and identifying the optimal defense strategies constrained by the limited resources. In the lower level, an economic dispatching is implemented to seek the operational strategy aiming at minimizing the operating costs under the given attack. The middle level formulates the behaviors of the attacker to discover the most destructive attack strategy intended by the attacker based on the defense strategy determined by the upper level. The upper level represents the actions of the planner and determines the optimal defense allocation on the measuring meters. The min-max-min tri-level model can be solved by the column-and-constraint generation (C&CG) algorithm. Simulations are implemented to identify the components which should be protected under the limited defense resources and severe attacks.

Siwei Qiao,Xinghua Liu,Gaoxi Xiao,Meng Zhang,Yu Kang,Shuzhi Sam Ge

DOI: https://doi.org/10.1109/tase.2024.3446883

IF: 6.636

2024-01-01

IEEE Transactions on Automation Science and Engineering

Abstract:A memory output sliding mode load frequency control (MOSMLFC) strategy is proposed for multi-area interconnected power systems under historical-frequency-triggered denial-of-service (DoS) attacks. Due to the use of the open network, the multi-area power system is prone to cyber-attacks. Different types of attack models have been built to describe the actual attack behavior, so that effective strategies can be quickly formulated in the event of an attack. Therefore, a historical-frequency-triggered DoS attacks model is presented from the perspective of attackers, with the aim of destroying the stable state of the multi-area power system. It is assumed that attackers determine the timing of DoS attacks by monitoring the operational status of multi-area power systems and designing the triggering condition with historical frequency. A MOSMLFC strategy is investigated to ensure the security performance of multi-area power systems under historical-frequency-triggered DoS attacks, which applies the memory output information of the power system to realize the controller design. The security condition of multi-area power systems under historical-frequency-triggered DoS attacks is obtained by Lyapunov’s theorem and linear matrix inequality (LMI). Numerical examples are tested over the IEEE 10-generator 39-bus system and the results prove the usefulness and superiority of the proposed method. Note to Practitioners —Load frequency control is widely applied in multi-area power systems to achieve a balance between the load demand and generation. Frequent cyber-attacks are a threat to the normal operation of the power system. It is therefore necessary to develop appropriate strategies to defend against cyber-attacks. So far, there have been many different forms of cyber-attacks. This has prompted defenders to build different types of attack models to describe the actual attack behavior in order to preemptively formulate appropriate defensive strategies. Smart attacker may notice that certain characteristics of the target system are important, such as the power system frequency. This motivates us to propose a historical frequency-triggered DoS attack model that contributes to a deep understanding of the impact of cyber-attacks on the power system. We propose a unique sliding mode control approach to ensure the stable performance of power system state and output simultaneously.

Wenjie Liu,Lidong Li,Jian Sun,Fang Deng,Gang Wang,Jie Chen

2024-06-06

Abstract:The rise of cyber-security concerns has brought significant attention to the analysis and design of cyber-physical systems (CPSs). Among the various types of cyberattacks, denial-of-service (DoS) attacks and false data injection (FDI) attacks can be easily launched and have become prominent threats. While resilient control against DoS attacks has received substantial research efforts, countermeasures developed against FDI attacks have been relatively limited, particularly when explicit system models are not available. To address this gap, the present paper focuses on the design of data-driven controllers for unknown linear systems subject to FDI attacks on the actuators, utilizing input-state data. To this end, a general FDI attack model is presented, which imposes minimally constraints on the switching frequency of attack channels and the magnitude of attack matrices. A dynamic state feedback control law is designed based on offline and online input-state data, which adapts to the channel switching of FDI attacks. This is achieved by solving two data-based semi-definite programs (SDPs) on-the-fly to yield a tight approximation of the set of subsystems consistent with both offline clean data and online attack-corrupted data. It is shown that under mild conditions on the attack, the proposed SDPs are recursively feasible and controller achieves exponential stability. Numerical examples showcase its effectiveness in mitigating the impact of FDI attacks.

Systems and Control

Xing Liu,Lin Qiu,Jose Rodriguez,Kui Wang,Yongdong Li,Youtong Fang

DOI: https://doi.org/10.1109/tpel.2024.3416292

IF: 5.967

2024-01-01

IEEE Transactions on Power Electronics

Abstract:In this literature, we concentrate on investigating a learning-based resilient predictive control framework using variable-step event-triggered mechanism, which aims to avoid unnecessary events and enhance the system robustness subject to actuator false data injection (FDI) attacks. To be more precise, to improve the robust performance of the controlled system under both actuator attacks and parametric uncertainties, a learning-based robust model predictive control (MPC) architecture is developed. In this control architecture, an online learning strategy is incorporated into a neural network weight update policy, which can provide a reinforced structure and accelerate the learning process. Meanwhile, in order to circumvent the unnecessary triggering and commutation behavior, a tentative verification of a triggering condition and a delayed triggering with a variable-step waiting horizon are embedded into the suggested event-triggered mechanism. The main feature of our development is that it not only enhances the control property under the actuator FDI attacks, but also attenuates the inherent issues of unnecessary switching losses and parametric uncertainties affecting the system, opening a wide research field for resilient finite control-set MPC. Finally, we highlight its advantages with a case study.

Jin Yang,Qishui Zhong,Kaibo Shi,Shouming Zhong

DOI: https://doi.org/10.1109/tii.2023.3242587

IF: 12.3

2023-01-01

IEEE Transactions on Industrial Informatics

Abstract:A distributed coordination load frequency control (LFC) approach is proposed for interconnected power systems, and a detection and compensation mechanism targeting denial-of-service (DoS) attacks is designed in this work. Firstly, different from traditional LFC, a hybrid-type distributed control strategy is proposed, which takes full advantage of local control information and coordination control information. Then, for discovering DoS attacks timely, a feasible detection algorithm targeting DoS attacks is presented. Furthermore, in order to weaken the harm of cyber-attacks, a triggered-type compensation mechanism for control data is proposed. By constructing appropriate Lyapunov-Krasovskii functionals, a stability criterion with an $H_{infty }$ performance index is developed. At last, the feasibility of detection and compensation mechanism targeting DoS attacks and the effectiveness of proposed control approach are demonstrated by presenting contrastive illustrative examples.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Chunyu Chen,Yang Chen,Kaifeng Zhang,Wenjun Bi,Meng Tian

DOI: https://doi.org/10.48550/arXiv.2003.05661

2020-03-12

Abstract:Security is one of the biggest concern in power system operation. Recently, the emerging cyber security threats to operational functions of power systems arouse high public attention, and cybersecurity vulnerability thus become an emerging topic to evaluate compromised operational performance under cyber attack. In this paper, vulnerability of cyber security of load frequency control (LFC) system, which is the key component in energy manage system (EMS), is assessed by exploiting the system response to attacks on LFC variables/parameters. Two types of attacks: 1) injection attack and 2) scale attack are considered for evaluation. Two evaluation criteria reflecting the damage on system stability and power generation are used to quantify system loss under cyber attacks. Through a sensitivity-based method and attack tree models, the vulnerability of different LFC components is ranked. In addition, a post-intrusion cyber attack detection scheme is proposed. Classification-based schemes using typical classification algorithms are studied and compared to identify different attack scenarios.

Systems and Control

Jiazi Zhang,Zhigang Chu,Lalitha Sankar,Oliver Kosut

DOI: https://doi.org/10.48550/arXiv.1703.07500

2018-05-02

Abstract:This paper studies physical consequences of unobservable false data injection (FDI) attacks designed only with information inside a sub-network of the power system. The goal of this attack is to overload a chosen target line without being detected via measurements. To overcome the limited information, a multiple linear regression model is developed to learn the relationship between the external network and the attack sub-network from historical data. The worst possible consequences of such FDI attacks are evaluated by solving a bi-level optimization problem wherein the first level models the limited attack resources, while the second level formulates the system response to such attacks via DC optimal power flow (OPF). The attack model with limited information is reflected in the DC OPF formulation that only takes into account the system information for the attack sub-network. The vulnerability of this attack model is illustrated on the IEEE 24-bus RTS and IEEE 118-bus systems.

Systems and Control