Combined data integrity and availability attacks on state estimation in cyber-physical power grids

2017 IEEE International Conference on Smart Grid Communications (SmartGridComm)

Teixeira

López

et al. 2017

Self Cite

It is challenging to assess the vulnerability of a cyber-physical power system to data attacks. In order to support vulnerability assessment, with the exception of analytic methods, a suitable platform for security tests needs to be developed. In this paper we analyze the cyber security of energy management system (EMS) against data attacks. First we extend our analytic framework that characterizes data attacks as optimization problems with the objectives specified as security metrics and constraints corresponding to the communication network properties. Second, we build a platform in the form of co-simulationcoupling the power system simulator DIgSILENT PowerFactory with communication network simulator OMNeT++, and Matlab for EMS applications (state estimation, optimal power flow). Then the framework is used to conduct attack simulations on the cosimulation based platform for a power grid test case. The results indicate how vulnerable of EMS to data attacks and how cosimulation can help assess vulnerability.

Section: A Data Attacks and Vulnerability Assessment Problemmentioning

confidence: 77%

Section: B Towards Cyber-secure and Resilient State Estimationmentioning

confidence: 99%

Section: B Analytic Vulnerability Assessment Incorporating Communicamentioning

confidence: 99%

See 1 more Smart Citation

Co-simulation for cyber security analysis: Data attacks against energy management system

2017 IEEE International Conference on Smart Grid Communications (SmartGridComm)

Teixeira

López

et al. 2017

Self Cite

“…In reference [15], detection methods that leverage synchrophasor data and other forecast information were presented. The network layer and application layer mitigation schemes, such as multi-path routing and data authentication and protection, are proved to be effective to decrease the vulnerability [16] [17].…”

Section: A State Of the Artmentioning

confidence: 99%

“…In this paper, we extend our prior work reported in [17] to formulate combined attacks with limited adversarial knowledge of the system model and conduct the risk analysis. In order to assess the risk, we first analyze vulnerability of SE with respect to attack resources needed by the adversary and calculate the detection probability of combined attacks.…”

Section: A State Of the Artmentioning

confidence: 99%

Cyber Risk Analysis of Combined Data Attacks Against Power System State Estimation

Teixeira

Cvetković

et al. 2019

IEEE Trans. Smart Grid

Self Cite

Understanding smart grid cyber attacks is key for developing appropriate protection and recovery measures. Advanced attacks pursue maximized impact at minimized costs and detectability. This paper conducts risk analysis of combined data integrity and availability attacks against the power system state estimation. We compare the combined attacks with pure integrity attacks -false data injection (FDI) attacks. A security index for vulnerability assessment to these two kinds of attacks is proposed and formulated as a mixed integer linear programming problem. We show that such combined attacks can succeed with fewer resources than FDI attacks. The combined attacks with limited knowledge of the system model also expose advantages in keeping stealth against the bad data detection. Finally, the risk of combined attacks to reliable system operation is evaluated using the results from vulnerability assessment and attack impact analysis. The findings in this paper are validated and supported by a detailed case study.Index Terms-Combined integrity and availability attack, false data injection, risk analysis, power system state estimation arXiv:1708.08349v1 [cs.CR]

Grid Awareness Under Normal Conditions and Cyber-Threats

Naglič

Joseph

Intelligent Integrated Energy Systems

et al. 2018

Self Cite

The situational grid awareness is becoming increasingly important for power system operations due to smaller operational margins, wide range of uncertainties entailed by renewables and highly critical infrastructure failures due to potential cyber-attacks. In this chapter, we look at some of the state-of-the-art technologies to monitor events in a power system under normal operating condition, followed by detection algorithms for regular business risk events, such as faults and equipment failures, and finally, we look into methods for quantifying vulnerability of under the rare and men-orchestrated cyber-attacks. First, we outline an architecture of a central piece of today's grid awareness system, Wide Area Monitoring, Protection and Control technology. Next, we review an event detection method used to identify and record faults and failures in the grid. Finally, we present a method for vulnerability assessment of grids under cyber-attacks.