Shahid Tufail,Imtiaz Parvez,Shanzeh Batool,Arif Sarwat

DOI: https://doi.org/10.3390/en14185894

IF: 3.2

2021-09-17

Energies

Abstract:The world is transitioning from the conventional grid to the smart grid at a rapid pace. Innovation always comes with some flaws; such is the case with a smart grid. One of the major challenges in the smart grid is to protect it from potential cyberattacks. There are millions of sensors continuously sending and receiving data packets over the network, so managing such a gigantic network is the biggest challenge. Any cyberattack can damage the key elements, confidentiality, integrity, and availability of the smart grid. The overall smart grid network is comprised of customers accessing the network, communication network of the smart devices and sensors, and the people managing the network (decision makers); all three of these levels are vulnerable to cyberattacks. In this survey, we explore various threats and vulnerabilities that can affect the key elements of cybersecurity in the smart grid network and then present the security measures to avert those threats and vulnerabilities at three different levels. In addition to that, we suggest techniques to minimize the chances of cyberattack at all three levels.

energy & fuels

Muhammed Zekeriya Gunduz,Resul Das

DOI: https://doi.org/10.1016/j.comnet.2019.107094

IF: 5.493

2020-03-01

Computer Networks

Abstract:The smart grid is one of the most significant applications of the Internet of Things (IoT). As information and communication technologies (ICT) developed and applied in traditional power systems, the improvement of smart grid cyber-physical-systems(CPS) increases too. IoT-based smart grid systems are critical infrastructures, also they have complex architectures and include critical devices. They contain communication systems that can lead to national security deficits, disruption of public order, loss of life or large-scale economic damage when the confidentiality, integrity, or availability of the communication is broken down. These huge systems may be vulnerable to cyber-attacks. Therefore, there is a lot of research effort to enhance smart grid security in industry, government, and academia. The security approaches are important to improve solutions against cyber-attacks in smart grid applications. We present a comprehensive survey supported by a wide review of earlier work. Additionally, recent advances and countermeasures are presented on smart grid cyber-security. In this paper, the threats and potential solutions of the IoT-based smart grid are analyzed. We focus on cyber-attack types and provide an in-depth of the cyber-security state of the smart grid. Particularly, we concentrate on the discussion and examination of network vulnerabilities, attack countermeasures, and security requirements. We aim to supply a deep understanding of cyber-security vulnerabilities and solutions and give a guide on future research directions for cyber-security in smart grid applications.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Adnan Anwar,Abdun Naser Mahmood

DOI: https://doi.org/10.48550/arXiv.1401.3936

2014-01-22

Abstract:Smart grid security is crucial to maintain stable and reliable power system operation during the contingency situation due to the failure of any critical power system component. Ensuring a secured smart grid involves with a less possibility of power grid collapse or equipment malfunction. Due to lack of the proper security measures, a major blackout may occur which can even lead to a cascading failure. Therefore, to protect this critical power system infrastructure and to ensure a reliable and an uninterrupted power supply to the end users, smart grid security issues must be addressed with high priority. In a smart grid environment, electric power infrastructure is modernized by incorporating the current and future requirements and advanced functionalities to its consumers. To make the smart grid happen, cyber system is integrated with the physical power system. Although adoption of cyber system has made the grid more energy efficient and modernized, it has introduced cyber-attack issues which are critical for national infrastructure security and customer satisfaction. Due to the cyber-attack, power grid may face operational failures and loss of synchronization. This operational failure may damage critical power system components which may interrupt the power supply and make the system unstable resulting high financial penalties. In this chapter, some recent cyber attack related incidents into a smart grid environment are discussed. The requirements and the state of the art of cyber security issues of a critical power system infrastructure are illustrated elaborately.

Cryptography and Security

Daisuke Mashima,Yao Chen,Muhammad M. Roomi,Subhash Lakshminarayana,Deming Chen

DOI: https://doi.org/10.1561/3300000035

2024-04-06

Abstract:Smart Grid is a power grid system that uses digital communication technologies. By deploying intelligent devices throughout the power grid infrastructure,from power generation to consumption, and enabling communication among them, it revolutionizes the modern power grid industry with increased efficiency, reliability, and availability. However, reliance on information and communication technologies has also made the smart grids exposed to new vulnerabilities and complications that may negatively impact the availability and stability of electricity services, which are vital for people's daily lives. The purpose of this monograph is to provide an up-to-date and comprehensive survey and tutorial on the cybersecurity aspect of smart grids. The book focuses on the sources of the cybersecurity issues, the taxonomy of threats, and the survey of various approaches to overcome or mitigate such threats. It covers the state-of-the-art research results in recent years, along with remaining open challenges. We hope that this monograph can be used both as learning materials for beginners who are embarking on research in this area and as a useful reference for established researchers in this field.

Cryptography and Security

O. V. Gnana Swathika,Aayush Karthikeyan,Kreet Rout,Shreyash Hatkar

DOI: https://doi.org/10.1109/access.2024.3443312

IF: 3.9

2024-08-25

IEEE Access

Abstract:Soaring energy demand in power sector demands an intelligent electricity grid which is able to meet the energy requirements of consumers with higher efficiency and reliability. This paper discusses about how Smart Grid (SG) is the solution for such requirements in the energy sector. SG constitutes of three main components: Information Technology (IT), Operational Technology (OT), and Advanced Metering Infrastructure (AMI). It is important to synchronize these three components in order to seamlessly deliver electricity to the consumers connected to the electric network. Cyberattack is increasing sharply in the SG infrastructure and triggers disrupting or malicious manipulation of entire electricity network. It is crucial to maintain the data traffic, power transmission and distribution with high reliability. This paper aims at arriving at the taxonomy of attacks that are subjected to IT, OT and AMI components of SG. This exhaustive taxonomy further opens avenues to evolve mitigation strategies for these attacks which will eventually aid in SG protection. Elaborate discussion about various mitigation strategies for various types of attacks is performed. The systematic approach of methods and techniques along with the type of solution it provides to SG applications is discussed. It is evident from literature that Machine Learning (ML), Deep Learning (DL) and signal processing techniques are very efficient and robust in attack detection and retaliating in SG. ML model pro. Hence the importance of framework and tools in SG environment is analyzed. A case study is also presented that emphasizes on SG Attacks on the specific system and its mitigation strategies.

computer science, information systems,telecommunications,engineering, electrical & electronic

Selcuk Yilmaz,Murat Dener

DOI: https://doi.org/10.3390/sym16101295

2024-10-02

Symmetry

Abstract:Smart Grids are an area where next-generation technologies, applications, architectures, and approaches are utilized. These grids involve equipping and managing electrical systems with information and communication technologies. Equipping and managing electrical systems with information and communication technologies, developing data-driven solutions, and integrating them with Internet of Things (IoT) applications are among the significant applications of Smart Grids. As dynamic systems, Smart Grids embody symmetrical principles in their utilization of next-generation technologies and approaches. The symmetrical integration of Wireless Sensor Networks (WSNs) and energy harvesting techniques not only enhances the resilience and reliability of Smart Grids but also ensures a balanced and harmonized energy management system. WSNs carry the potential to enhance various aspects of Smart Grids by offering energy efficiency, reliability, and cost-effective solutions. These networks find applications in various domains including power generation, distribution, monitoring, control management, measurement, demand response, pricing, fault detection, and power automation. Smart Grids hold a position among critical infrastructures, and without ensuring their cybersecurity, they can result in national security vulnerabilities, disruption of public order, loss of life, or significant economic damage. Therefore, developing security approaches against cyberattacks in Smart Grids is of paramount importance. This study examines the literature on "Cybersecurity with WSN in Smart Grids," presenting a systematic review of applications, challenges, and standards. Our goal is to demonstrate how we can enhance cybersecurity in Smart Grids with research collected from various sources. In line with this goal, recommendations for future research in this field are provided, taking into account symmetrical principles.

multidisciplinary sciences

Turki Alsuwian,Aiman Shahid Butt,Arslan Ahmed Amin

DOI: https://doi.org/10.3390/su142114226

IF: 3.9

2022-11-01

Sustainability

Abstract:The incorporation of communication technology with Smart Grid (SG) is proposed as an optimal solution to fulfill the requirements of the modern power system. A smart grid integrates multiple energy sources or microgrids and is supported by an extensive control and communication network using the Internet of Things (IoT) for a carbon-free, more reliable, and intelligent energy system. Along with many benefits, the system faces novel security challenges, data management, integration, and interoperability challenges. The advanced control and communication network in the smart grid is susceptible to cyber and cyber-physical threats. A lot of research has been done to improve the cyber security of the smart grid. This review aims to provide an overview of the types of cyber security threats present for smart grids with an insight into strategies to overcome the challenges. As the selection of techniques and technologies may vary according to the threats faced, therefore the adoption of researched methods is compared and discussed. As cyber-security is the greatest challenge in smart grid implementation, this review is beneficial during the planning and operation of smart grids for enhanced security.

environmental sciences,environmental studies,green & sustainable science & technology

Yilin Mo,Tiffany Hyun-Jin Kim,Kenneth Brancik,Dona Dickinson,Heejo Lee,Adrian Perrig,Bruno Sinopoli

DOI: https://doi.org/10.1109/jproc.2011.2161428

IF: 20.6

2012-01-01

Proceedings of the IEEE

Abstract:It is often appealing to assume that existing solutions can be directly applied to emerging engineering domains. Unfortunately, careful investigation of the unique challenges presented by new domains exposes its idiosyncrasies, thus often requiring new approaches and solutions. In this paper, we argue that the "smart" grid, replacing its incredibly successful and reliable predecessor, poses a series of new security challenges, among others, that require novel approaches to the field of cyber security. We will call this new field cyber-physical security. The tight coupling between information and communication technologies and physical systems introduces new security concerns, requiring a rethinking of the commonly used objectives and methods. Existing security approaches are either inapplicable, not viable, insufficiently scalable, incompatible, or simply inadequate to address the challenges posed by highly complex environments such as the smart grid. A concerted effort by the entire industry, the research community, and the policy makers is required to achieve the vision of a secure smart grid infrastructure.

Xu Li,Xiaohui Liang,Rongxing Lu,Xuemin (Sherman) Shen,Xiaodong Lin,Haojin Zhu

DOI: https://doi.org/10.1109/mcom.2012.6257525

IF: 9.03

2012-01-01

IEEE Communications Magazine

Abstract:Smart grid has emerged as the next-generation power grid via the convergence of power system engineering and information and communication technology. In this article, we describe smart grid goals and tactics, and present a three-layer smart grid network architecture. Following a brief discussion about major challenges in smart grid development, we elaborate on smart grid cyber security issues. We define a taxonomy of basic cyber attacks, upon which sophisticated attack behaviors may be built. We then introduce fundamental security techniques, whose integration is essential for achieving full protection against existing and future sophisticated security attacks. By discussing some interesting open problems, we finally expect to trigger more research efforts in this emerging area.

Omer Sen,Yanico Aust,Martin Neumuller,Immanuel Hacker,Andreas Ulbig

2024-12-09

Abstract:The modernization of power grid infrastructures necessitates the incorporation of decision support systems to effectively mitigate cybersecurity threats. This paper presents a comprehensive framework based on integrating Attack-Defense Trees and the Multi-Criteria Decision Making method to enhance smart grid cybersecurity. By analyzing risk attributes and optimizing defense strategies, this framework enables grid operators to prioritize critical security measures. Additionally, this paper incorporates findings on decision-making processes in intelligent power systems to present a comprehensive approach to grid cybersecurity. The proposed model aims to optimize the effectiveness and efficiency of grid cybersecurity efforts while offering insights into future grid management challenges.

Cryptography and Security

Yilin Mo,Tiffany Hyun‐Jin Kim,Kenneth Brancik,D. C. Dickinson,Hee‐Jo Lee,Adrian Perrig,Bruno Sinopoli

2012-01-01

Abstract:It is often appealing to assume that existing solutions can be directly applied to emerging engineering do- mains. Unfortunately, careful investigation of the unique chal- lenges presented by new domains exposes its idiosyncrasies, thus often requiring new approaches and solutions. In this paper, we argue that the Bsmart( grid, replacing its incredibly successful and reliable predecessor, poses a series of new se- curity challenges, among others, that require novel approaches to the field of cyber security. We will call this new field cyber- physical security. The tight coupling between information and communication technologies and physical systems introduces new security concerns, requiring a rethinking of the commonly used objectives and methods. Existing security approaches are either inapplicable, not viable, insufficiently scalable, incom- patible, or simply inadequate to address the challenges posed by highly complex environments such as the smart grid. A con- certed effort by the entire industry, the research community, and the policy makers is required to achieve the vision of a secure smart grid infrastructure.

Xiao Chun Yin,Zeng Guang Liu,Lewis Nkenyereye,Bruce Ndibanje

DOI: https://doi.org/10.3390/s19224952

2019-11-14

Abstract:We present an innovative approach for a Cybersecurity Solution based on the Intrusion Detection System to detect malicious activity targeting the Distributed Network Protocol (DNP3) layers in the Supervisory Control and Data Acquisition (SCADA) systems. As Information and Communication Technology is connected to the grid, it is subjected to both physical and cyber-attacks because of the interaction between industrial control systems and the outside Internet environment using IoT technology. Often, cyber-attacks lead to multiple risks that affect infrastructure and business continuity; furthermore, in some cases, human beings are also affected. Because of the traditional peculiarities of process systems, such as insecure real-time protocols, end-to-end general-purpose ICT security mechanisms are not able to fully secure communication in SCADA systems. In this paper, we present a novel method based on the DNP3 vulnerability assessment and attack model in different layers, with feature selection using Machine Learning from parsed DNP3 protocol with additional data including malware samples. Moreover, we developed a cyber-attack algorithm that included a classification and visualization process. Finally, the results of the experimental implementation show that our proposed Cybersecurity Solution based on IDS was able to detect attacks in real time in an IoT-based Smart Grid communication environment.

Tianming Zheng,Ming Liu,Deepak Puthal,Ping Yi,Yue Wu,Xiangjian He

DOI: https://doi.org/10.48550/arXiv.2205.11783

2022-05-24

Cryptography and Security

Abstract:As a national critical infrastructure, the smart grid has attracted widespread attention for its cybersecurity issues. The development towards an intelligent, digital, and Internetconnected smart grid has attracted external adversaries for malicious activities. It is necessary to enhance its cybersecurity by either improving the existing defense approaches or introducing novel developed technologies to the smart grid context. As an emerging technology, digital twin (DT) is considered as an enabler for enhanced security. However, the practical implementation is quite challenging. This is due to the knowledge barriers among smart grid designers, security experts, and DT developers. Each single domain is a complicated system covering various components and technologies. As a result, works are needed to sort out relevant contents so that DT can be better embedded in the security architecture design of smart grid. In order to meet this demand, our paper covers the above three domains, i.e., smart grid, cybersecurity, and DT. Specifically, the paper i) introduces the background of the smart grid; ii) reviews external cyber attacks from attack incidents and attack methods; iii) introduces critical defense approaches in industrial cyber systems, which include device identification, vulnerability discovery, intrusion detection systems (IDSs), honeypots, attribution, and threat intelligence (TI); iv) reviews the relevant content of DT, including its basic concepts, applications in the smart grid, and how DT enhances the security. In the end, the paper puts forward our security considerations on the future development of DT-based smart grid. The survey is expected to help developers break knowledge barriers among smart grid, cybersecurity, and DT, and provide guidelines for future security design of DT-based smart grid.

Xueyi Wang,Shancang Li,Md Arafatur Rahman

DOI: https://doi.org/10.3390/electronics13112177

IF: 2.9

2024-06-03

Electronics

Abstract:Smart grids are a cornerstone of the transition to a decentralised, low-carbon energy system, which offer significant benefits, including increased reliability, improved energy efficiency, and seamless integration of renewable energy sources. However, ensuring the security and resilience of smart grids is paramount. Cyber attacks, physical disruptions, and other unforeseen threats pose a significant risk to the stability and functionality of the grid. This paper identifies the research gaps and technical hurdles that hinder the development of a robust and secure smart grid infrastructure. This paper addresses the critical gaps in smart grid security research, outlining the technical challenges and promising avenues for exploration by both the industry and academia. A novel framework designed to enhance the reliability and security of smart grids was proposed against cyber attacks, considering the interconnectedness of the physical and cyber components. The paper further explores future research trends and identifies the key open issues in the ongoing effort to strengthen the security and resilience of smart grids.

engineering, electrical & electronic,computer science, information systems,physics, applied

Abdellah Chehri,Issouf Fofana,Xiaomin Yang

DOI: https://doi.org/10.3390/su13063196

IF: 3.9

2021-03-15

Sustainability

Abstract:Smart grids (SG) emerged as a response to the need to modernize the electricity grid. The current security tools are almost perfect when it comes to identifying and preventing known attacks in the smart grid. Still, unfortunately, they do not quite meet the requirements of advanced cybersecurity. Adequate protection against cyber threats requires a whole set of processes and tools. Therefore, a more flexible mechanism is needed to examine data sets holistically and detect otherwise unknown threats. This is possible with big modern data analyses based on deep learning, machine learning, and artificial intelligence. Machine learning, which can rely on adaptive baseline behavior models, effectively detects new, unknown attacks. Combined known and unknown data sets based on predictive analytics and machine intelligence will decisively change the security landscape. This paper identifies the trends, problems, and challenges of cybersecurity in smart grid critical infrastructures in big data and artificial intelligence. We present an overview of the SG with its architectures and functionalities and confirm how technology has configured the modern electricity grid. A qualitative risk assessment method is presented. The most significant contributions to the reliability, safety, and efficiency of the electrical network are described. We expose levels while proposing suitable security countermeasures. Finally, the smart grid’s cybersecurity risk assessment methods for supervisory control and data acquisition are presented.

environmental sciences,environmental studies,green & sustainable science & technology

Omer Sen,Yanico Aust,Simon Glomb,Andreas Ulbig

2024-12-06

Abstract:This study delves into the role of process awareness in enhancing intrusion detection within Smart Grids, considering the increasing fusion of ICT in power systems and the associated emerging threats. The research harnesses a co-simulation environment, encapsulating IT, OT, and ET layers, to model multi-stage cyberattacks and evaluate machine learning-based IDS strategies. The key observation is that process-aware IDS demonstrate superior detection capabilities, especially in scenarios closely tied to operational processes, as opposed to IT-only IDS. This improvement is notable in distinguishing complex cyber threats from regular IT activities. The findings underscore the significance of further developing sophisticated IDS benchmarks and digital twin datasets in Smart Grid environments, paving the way for more resilient cybersecurity infrastructures.

Cryptography and Security

Leonardo Babun,Hidayet Aksu,A. Selcuk Uluagac

DOI: https://doi.org/10.48550/arXiv.1912.00533

2019-12-02

Cryptography and Security

Abstract:Cyber-Physical Systems (CPS) play a significant role in our critical infrastructure networks from power-distribution to utility networks. The emerging smart-grid concept is a compelling critical CPS infrastructure that relies on two-way communications between smart devices to increase efficiency, enhance reliability, and reduce costs. However, compromised devices in the smart grid poses several security challenges. Consequences of propagating fake data or stealing sensitive smart grid information via compromised devices are costly. Hence, early behavioral detection of compromised devices is critical for protecting the smart grid's components and data. To address these concerns, in this paper, we introduce a novel and configurable system-level framework to identify compromised smart grid devices. The framework combines system and function call tracing techniques with signal processing and statistical analysis to detect compromised devices based on their behavioral characteristics. We measure the efficacy of our framework with a realistic smart grid substation testbed that includes both resource-limited and resource-rich devices. In total, using our framework, we analyze six different types of compromised device scenarios with different resources and attack payloads. To the best of our knowledge, the proposed framework is the first in detecting compromised CPS smart grid devices with system and function-level call tracing techniques. The experimental results reveal an excellent rate for the detection of compromised devices. Specifically, performance metrics include accuracy values between 95% and 99% for the different attack scenarios. Finally, the performance analysis demonstrates that the use of the proposed framework has minimal overhead on the smart grid devices' computing resources.

Saad H. Mohammed,Abdulmajeed Al-Jumaily,Mandeep Jit Singh,Víctor P. Gil Jiménez,Aqeel S. Jaber,Yaseein Soubhi Hussein,Mudhar M. Al-Najjar,Dhiya Al-Jumeily

DOI: https://doi.org/10.1109/access.2024.3370911

IF: 3.9

2024-01-01

IEEE Access

Abstract:The Smart Grid is a modern power grid that relies on advanced technologies to provide reliable and sustainable electricity. However, its integration with various communication technologies and IoT devices makes it vulnerable to cyber-attacks. Such attacks can lead to significant damage, economic losses, and public safety hazards. To ensure the security of the smart grid, increasingly strong security solutions are needed. This paper provides a comprehensive analysis of the vulnerabilities of the smart grid and the different approaches for detecting cyber-attacks. It examines the different vulnerabilities of the smart grid, including system vulnerabilities and cyber-attacks, and discusses the vulnerabilities of all its elements. The paper also investigates various approaches for detecting cyber-attacks, including rule-based, signature-based, anomaly detection, and ma-chine learning-based methods, with a focus on their effectiveness and related research. Finally, prospective cybersecurity approaches for the smart grid, such as AI approaches and blockchain, are discussed along with the challenges and future prospects of cyberattacks on the smart grid. The paper’s findings can help policymakers and stakeholders make informed decisions about the security of the smart grid and develop effective strategies to protect it from cyber-attacks.

computer science, information systems,telecommunications,engineering, electrical & electronic

Muhammad Nouman Nafees,Neetesh Saxena,Alvaro Cardenas,Santiago Grijalva,Pete Burnap

DOI: https://doi.org/10.1145/3565570

IF: 16.6

2023-02-03

ACM Computing Surveys

Abstract:The smart grid, regarded as the complex cyber-physical ecosystem of infrastructures, orchestrates advanced communication, computation, and control technologies to interact with the physical environment. Due to the high rewards that threats to the grid can realize, adversaries can mount complex cyber-attacks such as advanced persistent threats-based and coordinated attacks to cause operational malfunctions and power outages in the worst scenarios: The latter of which was reflected in the Ukrainian power grid attack. Despite widespread research on smart grid security, the impact of targeted attacks on control and power systems is anecdotal. This paper reviews the smart grid security from collaborative factors, emphasizing the situational awareness. Specifically, we propose a threat modeling framework and review the nature of cyber-physical attacks to understand their characteristics and impacts on the smart grid’s control and physical systems. We examine the existing threats detection and defense capabilities, such as intrusion detection systems, moving target defense, and co-simulation techniques, along with discussing the impact of attacks through situational awareness and power system metrics. We discuss the human factor aspects for power system operators in analyzing the impacts of cyber-attacks. Finally, we investigate the research challenges with key research gaps to shed light on future research directions.

computer science, theory & methods

Cengiz Kaygusuz,Leonardo Babun,Hidayet Aksu,A. Selcuk Uluagac

DOI: https://doi.org/10.1109/icc.2018.8423022

2018-05-01

Abstract:The smart grid concept has transformed the traditional power grid into a massive cyber-physical system that depends on advanced two-way communication infrastructure to integrate a myriad of different smart devices. While the introduction of the cyber component has made the grid much more flexible and efficient with so many smart devices, it also broadened the attack surface of the power grid. Particularly, compromised devices pose great danger to the healthy operations of the smart-grid. For instance, the attackers can control the devices to change the behaviour of the grid and can impact the measurements. In this paper, to detect such misbehaving malicious smart grid devices, we propose a machine learning and convolution-based classification framework. Our framework specifically utilizes system and library call lists at the kernel level of the operating system on both resource-limited and resource-rich smart grid devices such as RTUs, PLCs, PMUs, and IEDs. Focusing on the types and other valuable features extracted from the system calls, the framework can successfully identify malicious smart-grid devices. In order to test the efficacy of the proposed framework, we built a representative testbed conforming to the IEC-61850 protocol suite and evaluated its performance with different system calls. The proposed framework in different evaluation scenarios yields very high accuracy (avg. 91%) which reveals that the framework is effective to overcome compromised smart grid devices problem.