Subhash Lakshminarayana,E. Veronica Belmega,H. Vincent Poor

DOI: https://doi.org/10.48550/arXiv.1908.02392

2019-08-07

Abstract:This work proposes a moving target defense (MTD) strategy to detect coordinated cyber-physical attacks (CCPAs) against power grids. A CCPA consists of a physical attack, such as disconnecting a transmission line, followed by a coordinated cyber attack that injects false data into the sensor measurements to mask the effects of the physical attack. Such attacks can lead to undetectable line outages and cause significant damage to the grid. The main idea of the proposed approach is to invalidate the knowledge that the attackers use to mask the effects of the physical attack by actively perturbing the grid's transmission line reactances using distributed flexible AC transmission system (D-FACTS) devices. We identify the MTD design criteria in this context to thwart CCPAs. The proposed MTD design consists of two parts. First, we identify the subset of links for D-FACTS device deployment that enables the defender to detect CCPAs against any link in the system. Then, in order to minimize the defense cost during the system's operational time, we use a game-theoretic approach to identify the best subset of links (within the D-FACTS deployment set) to perturb which will provide adequate protection. Extensive simulations performed using the MATPOWER simulator on IEEE bus systems verify the effectiveness of our approach in detecting CCPAs and reducing the operator's defense cost.

Cryptography and Security,Information Theory,Systems and Control

z zhang,y tian,r deng,j ma

DOI: https://doi.org/10.1109/JIOT.2022.3161790

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:The smart grid (SG), as one of the largest evolutionary critical infrastructures, witnesses the deep integration of electricity facilities and Internet of Things (IoT). But recent events show that the vulnerabilities exposed in IoT devices can be exploited by adversaries to construct the cyberattacks on SG. To address this threat, plenty of countermeasures have been proposed to enhance the SG’s security. However, the additional costs introduced by some countermeasures make the utilities hesitate to implement them practically. To alleviate this concern, in this article, we propose a double-benefit moving target defense (dB-MTD) to protect the SG from cyber–physical attacks (CPAs) and also gain generation-cost benefits. The dB-MTD enables the prevention of stealthy CPAs on the transmission lines by perturbing the reactances with the distributed flexible AC transmission system (D-FACTS). To reduce the infrastructure cost, we minimize the number of required D-FACTS devices for a specific protection goal. Although it needs investment on D-FACTS, we find that the utility can make profits from the generation costs by appropriately setting the reactance perturbations. Therefore, we formulate an optimization problem to compute the optimal reactance perturbations to maximize the generation-cost benefits, without sacrificing the protection performance of dB-MTD. Finally, using the real-world load profiles, we conduct extensive simulations to evaluate the impact of CPA on the system operation and the benefits obtained by the dB-MTD from the aspects of the D-FACTS deployment and the generation-cost profits.

Zhenyong Zhang,Ruilong Deng,Peng Cheng,Mo-Yuen Chow

DOI: https://doi.org/10.1109/tcns.2021.3100411

IF: 4.347

2021-01-01

IEEE Transactions on Control of Network Systems

Abstract:Moving target defense (MTD) is a new defensive strategy protecting the power system state estimation from cyberattacks. Using the distributed flexible ac transmission system (D-FACTS), MTD works by actively perturbing the branch parameters that are needed to construct the false data injection (FDI) attacks. Although there are many pioneer works on MTD, the relationship between the construction of MTD and detection of FDI attacks has not been revealed. In this article, we reveal the correlation between MTD design and FDI detection and optimize MTD's performance in terms of detecting FDI attacks. We provide a sufficient condition for a specially designed MTD to detect and identify the FDI attack and a necessary condition for general MTDs to protect the state estimates from being independently modified. With the aim to reduce the number of measurements that can be manipulated by the attacker after MTD, we develop a heuristic algorithm to compute a near-optimal solution for the deployment of D-FACTS devices. Moreover, we prove that the coordinated design of consecutive perturbation schemes within an MTD cycle can improve the performance of MTD in terms of detecting FDI attacks. Finally, we conduct extensive simulations with the IEEE power system test cases to validate our findings.

computer science, information systems,automation & control systems

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Sheng Xu,Yongxiang Xia,Hui-Liang Shen

DOI: https://doi.org/10.1109/tcsii.2020.2999875

2020-01-01

Abstract:In this brief, we analyze the damage caused by malware-induced cyber attacks in Cyber-Physical Power Systems (CPPSs). Incubation period and detection probability of the malware are considered in our analytical framework. From attacker's perspective, the trade-off between attack effectiveness and detection risk is studied to help choose the best attack timing and obtain the maximum payoff. Moreover, we conduct case studies in CPPSs formed by coupling IEEE 118-Bus System with scale-free communication networks. Simulation results reveal that the maximum expected payoff for the attacker is affected by the coupling pattern and the structure of communication network in CPPSs.

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau,Peng Cheng,Mo-Yuen Chow

DOI: https://doi.org/10.1109/tsmc.2022.3222793

2022-01-01

IEEE Transactions on Systems Man and Cybernetics Systems

Abstract:Moving target defense (MTD) is a new defensive mechanism developed in power systems to thwart false data injection attacks (FDIAs). However, since the MTD works by perturbing the branch parameters with the distributed flexible ac transmission system (D-FACTS), it might cause additional infrastructure and operation costs and affect the system dynamics. This is a complicated problem because it is closely related to which branches should be perturbed and how much they are changed. In this article, we analyze the essentials of MTD and construct an effective and low-cost MTD. To begin with, we provide a sufficient and necessary condition for MTD to protect a bus from being affected by the intended FDIA. Based on this result, we propose a new metric to quantify the protection level of MTD and an efficient algorithm to minimize the number of required D-FACTS devices for protecting a specific set of buses. To reduce the operation cost, we develop two strategies to make the increasing operation cost zero for activating the MTD. Furthermore, we analyze the impact of MTD on the system dynamics with a special emphasize on small signal stability. Finally, we conduct extensive simulations to validate our findings with the test cases of power systems in MATPOWER.

Kang-Di Lu,Zheng-Guang Wu,Tingwen Huang

DOI: https://doi.org/10.1109/tmech.2022.3214314

2023-01-01

Abstract:With the rapid development of communication, control, and computer technology, traditional power systems have evolved into cyber-physical power system (CPPS). However, CPPS not only affords convenience but also introduces more cyber-attacks. Among many types of cyber-attacks, false data injection attacks (FDIAs) have drawn much attention in the CPPS security domain due to their stealthiness. Most FDIAs are based on the static model on a single snapshot and often ignore the reality of dynamically time-evolving CPPS. Accordingly, this article proposes a novel three-stage dynamic false data injection attack (DFDIA) model in CPPS by considering potential dynamic behaviors. To consider both attack location and attack amplitude, the designing DFDIA is formulated as two constrained single-objective optimization problems. Two versions of constrained differential evolution are presented as the solver to determine the attack location and optimize the attack vector for collaboratively altering the meter measurements. Then, an interval state forecasting-based countermeasure is proposed to detect the established DFDIA. In this detector, the variation bounds of state values are determined via ensemble deep learning-based state forecasting method. Finally, extensive simulation results on several IEEE bus systems demonstrate the feasibility of DFDIA and the effectiveness of the defense mechanism.

Subhash Lakshminarayana,E. Veronica Belmega,H. Vincent Poor

DOI: https://doi.org/10.48550/arXiv.2006.07697

2021-07-27

Abstract:This work proposes a moving target defense (MTD) strategy to detect coordinated cyber-physical attacks (CCPAs) against power grids. The main idea of the proposed approach is to invalidate the knowledge that the attackers use to mask the effects of their physical attack by actively perturbing the grid's transmission line reactances via distributed flexible AC transmission system (D-FACTS) devices. The proposed MTD design consists of two parts. First, we identify the subset of links for D-FACTS device deployment that enables the defender to detect CCPAs against any link in the system. Then, in order to minimize the defense cost during the system's operational time, we formulate a zero-sum game to identify the best subset of links to perturb (which will provide adequate protection) against a strategic attacker. The Nash equilibrium robust solution is computed via exponential weights, which does not require complete knowledge of the game but only the observed payoff at each iteration. Extensive simulations performed using the MATPOWER simulator on IEEE bus systems verify the effectiveness of our approach in detecting CCPAs and reducing the operator's defense cost.

Cryptography and Security,Information Theory,Systems and Control

Zhenyong Zhang,Ruilong Deng,David K. Y. Yau,Peng Cheng,Jiming Chen

DOI: https://doi.org/10.1109/tifs.2019.2928624

IF: 7.231

2019-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Recent studies have considered thwarting false data injection (FDI) attacks against state estimation in power grids by proactively perturbing branch susceptances. This approach is known as moving target defense (MTD). However, despite of the deployment of MTD, it is still possible for the attacker to launch stealthy FDI attacks generated with former branch susceptances. In this paper, we prove that, an MTD has the capability to thwart all FDI attacks constructed with former branch susceptances only if (i) the number of branches l in the power system is not less than twice that of the system states n (i.e., l ≥ 2n, where n + 1 is the number of buses); (ii) the susceptances of more than n branches, which cover all buses, are perturbed. Moreover, we prove that the state variable of a bus that is only connected by a single branch (no matter it is perturbed or not) can always be modified by the attacker. Nevertheless, in order to reduce the attack opportunities of potential attackers, we first exploit the impact of the susceptance perturbation magnitude on the dimension of the stealthy attack space, in which the attack vector is constructed with former branch susceptances. Then, we propose that, by perturbing an appropriate set of branches, we can minimize the dimension of the stealthy attack space and maximize the number of covered buses. Besides, we consider the increasing operation cost caused by the activation of MTD. Finally, we conduct extensive simulations to illustrate our findings with IEEE standard test power systems.

Wangkun Xu,Imad M. Jaimoukha,Fei Teng

DOI: https://doi.org/10.1109/TIFS.2022.3210864

2022-12-21

Abstract:Recently, moving target defence (MTD) has been proposed to thwart false data injection (FDI) attacks in power system state estimation by proactively triggering the distributed flexible AC transmission system (D-FACTS) devices. One of the key challenges for MTD in power grid is to design its real-time implementation with performance guarantees against unknown attacks. Converting from the noiseless assumptions in the literature, this paper investigates the MTD design problem in a noisy environment and proposes, for the first time, the concept of robust MTD to guarantee the worst-case detection rate against all unknown attacks. We theoretically prove that, for any given MTD strategy, the minimal principal angle between the Jacobian subspaces corresponds to the worst-case performance against all potential attacks. Based on this finding, robust MTD algorithms are formulated for the systems with both complete and incomplete configurations. Extensive simulations using standard IEEE benchmark systems demonstrate the improved average and worst-case performances of the proposed robust MTD against state-of-the-art algorithms. All codes are available at <a class="link-external link-https" href="https://github.com/xuwkk/Robust_MTD" rel="external noopener nofollow">this https URL</a>.

Systems and Control

Jue Tian,Rui Tan,Xiaohong Guan,Ting Liu

DOI: https://doi.org/10.1109/tsg.2018.2791512

IF: 10.275

2019-03-01

IEEE Transactions on Smart Grid

Abstract:Recent research has proposed a moving target defense (MTD) approach that actively changes transmission line susceptance to preclude stealthy false data injection (FDI) attacks against the state estimation of a smart grid. However, existing studies were often conducted under a weak adversarial setting, in that they ignore the possibility that alert attackers can also try to detect the activation of MTD before they launch the FDI attacks. We call this new threat as parameter confirming-first (PCF) FDI. To improve the stealthiness of MTD, we propose a hidden MTD approach that cannot be detected by the attackers and prove its equivalence to an MTD that maintains the power flows of the whole grid. Moreover, we analyze the completeness of MTD and show that any hidden MTD is incomplete in that FDI attacks may bypass the hidden MTD opportunistically. This result suggests that the stealthiness and completeness are two conflicting goals in MTD design. Finally, we propose an approach to enhancing the hidden MTD against a class of highly structured FDI attacks. We also discuss the MTD’s operational costs under the dc and ac models. We conduct simulations to show the effectiveness of the hidden MTD against PCF-FDI attacks under realistic settings.

engineering, electrical & electronic

Qi Wang,Shutan Wu,Zhong Wu,Jianxiong Hu,Quanpeng He,Yujian Ye,Yi Tang

DOI: https://doi.org/10.1016/j.ijepes.2024.110350

IF: 5.659

2024-11-16

International Journal of Electrical Power & Energy Systems

Abstract:False data injection attacks (FDIAs), as strategically designed cyberattacks, can bypass bad data detection mechanisms and thus pose potential economic and stability risks to power systems. In addition to increasing the detection capability of the system, the proactive property transformation of the system can effectively utilize the information gap between the attacker and the system operator, increasing the detection rate against FDIAs. In this paper, a moving target defense (MTD) method based on topology switching (TS) actions is proposed to overcome FDIAs. Specifically, we investigated the feasibility of proactive defense via TS actions, which reconfigured the topology via busbar switching. To make sequential defense decisions on the basis of the perceived current state of the system, the game between the attacker and the defender was modeled as a Markov decision process (MDP). Finally, the deep reinforcement learning-based MTD optimal algorithm was designed to achieve a fast and efficient decision-making strategy. The simulation results demonstrated the effects of the proposed method against FDIAs.

engineering, electrical & electronic

Zhenyong Zhang,Ruilong Deng

DOI: https://doi.org/10.1109/jas.2023.123039

2023-01-01

IEEE/CAA Journal of Automatica Sinica

Abstract:In order to accommodate the effects of false data injection attacks (FDIAs), the moving target defense (MTD) strategy is recently proposed to enhance the security of the smart grid by perturbing branch susceptances. However, most pioneer work only focus on the defending performance of MTD in terms of detecting FDIAs and the impact of MTD on the static factors such as the power and economic losses. Considering the system dynamics, in this letter, the impact of MTD on the frequency stability is analytically studied. The condition required to maintain the stability of the grid frequency is provided and how the susceptance perturbation of each branch affects the frequency stability is given. The defending cost of MTD is also optimized considering both the defending performance and frequency stability constraints.

Zhen Yu,Binger Ye,Jiazhou Wang,Yinguo Yang,Qiuyu Lu,Yu Zhu,Shuangxi Wu,Yang Liu

DOI: https://doi.org/10.1109/isgtasia54193.2022.10003582

2022-01-01

Abstract:In the power system, false data injection (FDI) attacks could deceive the system state estimation seriously. Recent research proposed a moving target defense (MTD) method that modifies the line parameters using distributed flexible AC transmission systems (D-FACTS) to defend against FDI attacks. However, existing MTD methods often ignore the economic cost of D-FACTS devices deployment and operation. Moreover, the current rank-maximization-based D-FACTS devices deployment strategy cannot detect all FDI attacks for certain typologies. To address these issues, we propose a D-FACTS devices deployment and operation scheme to jointly optimize security performance and economic cost. We first propose an enhanced deployment scheme to protect more buses via additional carefully selected D-FACTS devices. We further propose a novel D-FACTS operation scheme to minimize power losses and conduct MTD detection together. Simulation results demonstrate that the proposed MTD-oriented deployment and operation scheme can maximize the system's defense performance while minimizing power losses.

Zhenyong Zhang,Ruilong Deng,David Yau,Peng Cheng,Jiming Chen

DOI: https://doi.org/10.1109/isgt.2019.8791651

2019-01-01

Abstract:Recent studies have considered thwarting false data injection (FDI) attacks against state estimation in a power grid by proactively perturbing branch susceptances. The approach is known as moving target defense (MTD). However, the effectiveness of MTD has not been thoroughly analyzed in the existing literature. In this paper, we prove that, despite of the deployment of MTD, it is possible for the attacker to launch stealthy FDI attacks if the number of branches l of the power system is less than twice the number of system states n (i.e., l < 2n, where n + 1 is the number of buses) based on the DC power flow model. Moreover, MTD has the complete capability to detect any FDI attacks with the form a = H c only if the susceptances of more than n branches, which cover all buses, are perturbed. In addition, we analyze the impact of the susceptance perturbations on the attack space. We illustrate our findings on an IEEE test power system using load traces from the state of New York.

Jichao Bi,Fengji Luo,Gaoqi Liang,Xiaofan Yang,Shibo He,Zhao Yang Dong

DOI: https://doi.org/10.1109/TNSE.2022.3197682

IF: 6.6

2023-01-01

IEEE Transactions on Network Science and Engineering

Abstract:Cyber-physical security has been becoming an important issue for many critical infrastructures in human society, including electrical power grids. This paper proposes an impact assessment framework for smart grids suffering false data injection attack against smart meters. Firstly, the propagation model of malicious false data codes in smart meter communication networks is established. Based on this, a security-constrained economic dispatch model is formulated to assess how false data codes would mislead the grid operator's actions. A defense strategy is proposed, which enhances the grid's vulnerability through effectively deploying defense resources in smart meter networks. Extensive numerical simulations are conducted to evaluate the impact of different attack scenarios as well as the effectiveness of the defense strategy.

Feiyang Hong,Zhejing Bao,Miao You

DOI: https://doi.org/10.1109/CCDC52312.2021.9601681

2021-01-01

Abstract:Recent studies show that the cyber-attacks such as false data injection attack (FDIA) are capable of severely threatening power system security, in such a way that the undetected errors are introduced into the states estimations by evading the conventional bad data detection (BDD) methods. This paper proposes a tri-level optimization model against the FDIA by formulating the attack actions and identifying the optimal defense strategies constrained by the limited resources. In the lower level, an economic dispatching is implemented to seek the operational strategy aiming at minimizing the operating costs under the given attack. The middle level formulates the behaviors of the attacker to discover the most destructive attack strategy intended by the attacker based on the defense strategy determined by the upper level. The upper level represents the actions of the planner and determines the optimal defense allocation on the measuring meters. The min-max-min tri-level model can be solved by the column-and-constraint generation (C&CG) algorithm. Simulations are implemented to identify the components which should be protected under the limited defense resources and severe attacks.

Jian Yu,Qiang Li

DOI: https://doi.org/10.3390/electronics12112484

IF: 2.9

2023-06-01

Electronics

Abstract:This work proposes a method for the intelligent deployment of distributed flexible AC transmission system (D-FACTS) devices. In recent years, in the field of moving target defense (MTD) strategies to detect coordinated cyber–physical attacks (CCPAs), establishing how to deploy D-FACTS devices has become an important research point. Although some research results have been proposed, the obtained deployment solutions are unintelligent due to not carefully considering smart attackers' behaviors. A method for achieving the intelligent deployment of D-FACTS devices is proposed in this paper. First, the basic concept of corrupting CCPAs is summarized; second, based on considering practical constraints and the basic concept, a protected transmission line set is confirmed; and third, a zero-sum game model is formulated, and a robust Nash equilibrium solution is computed. Due to the game's characteristics, this solution reflects the smart attackers' sense of action. Relying on the solution, those lines that are most likely to be tripped form a new protected transmission line set. Finally, a comprehensive algorithm using a metric proposed in previous studies is proposed for finding an intelligent solution for the deployment of D-FACTS devices. We validated our results through extensive simulations using IEEE 14-bus, 30-bus, and 118-bus power systems provided by MATPOWER and the real-world load profiles from New York State. Our work, in tracking the targets that attackers are most likely to attack, opens up new ideas for the intelligent deployment of D-FACTS devices.

engineering, electrical & electronic,computer science, information systems,physics, applied

Chensheng Liu,Yang Tang,Ruilong Deng,Min Zhou,Wenli Du

DOI: https://doi.org/10.1109/tii.2023.3306937

IF: 12.3

2023-01-01

IEEE Transactions on Industrial Informatics

Abstract:Enabled by the widely existed distributed flexible alternating current transmission system devices in power systems, moving target defense (MTD) has been considered as an effective way to detect stealthy false data injection (FDI) attacks. However, due to the limitation of power system topology, not all stealthy FDI attacks can be detected in power system with MTD. In this article, the authors propose a joint meter coding (MC) and moving target defense (MC-MTD) method to cost-effectively improve the detection of stealthy FDI attacks through integrating MC with MTD. Detection conditions and requirements on MC-MTD are theoretically analyzed, which reveal the close coupling between MC and MTD in collaboratively detecting stealthy FDI attacks. The design of the coding matrix and the selection of encoded measurements are theoretically analyzed to integrate MC with MTD in a special case that the coding matrix is diagonal. An optimization of MC-MTD is formulated and approximately solved to improve detection effectiveness with a small defending cost. Finally, simulations are carried out on both direct and alternating current state estimations to validate the performance of MC-MTD.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Jiazhou Wang,Jue Tian,Yang Liu,Dong Yang,Ting Liu

DOI: https://doi.org/10.1109/jiot.2023.3245628

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:In recent studies, moving target defense (MTD) has been applied to detect false data injection (FDI) attacks using distributed flexible AC transmission system (D-FACTS) devices. However, the inherent conflict between the security goals of MTD (i.e., detecting FDI attacks) and the economic goals of D-FACTS devices (i.e., reducing power losses) would impede the application of MTD in real systems. Moreover, the detection capabilities of existing MTDs are often insufficient. This paper proposes a multi-stage MTD (MMTD) approach to resolve these two issues by adding a group of designed security-oriented schemes before D-FACTS’ economy-oriented scheme to detect FDI attacks. We keep these security-oriented schemes for a very short time interval and then revert to the economy-oriented scheme for the remaining time to ensure the economic requirements. We prove that a designed MMTD can significantly improve the detection capability compared to existing one-stage MTDs. We find the supremum of MMTD’s detection capability and study its relationship with system topology and D-FACTS deployment. Meanwhile, a greedy algorithm is proposed to search the MMTD strategy to reach this supremum. Simulation results show that the proposed MMTD can achieve the supremum against FDI attacks while outperforming current MTD strategies on economic indicators.

computer science, information systems,telecommunications,engineering, electrical & electronic