Cybersecurity in Power Grids: Challenges and Opportunities

Krause, Tim; Ernst, Raphael; Klaer, Benedikt; Hacker, Immanuel; Henze, Martin

doi:10.3390/s21186225

Cited by 65 publications

(23 citation statements)

References 102 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It was reported in [73,74] that various types of cyberattacks successfully occurred in essential parts of the power grid. This implies that cyber security should be recognized as a critical issue, as comprehensively discussed in [75,76], when moving toward power grid decarbonization.…”

Section: Incorporation Of Decentralized Bad Data Processing Into Dece...mentioning

confidence: 99%

Research Needs for Realization of Zero-Carbon Power Grids with Selected Case Studies

et al. 2022

View full text Add to dashboard Cite

The attainment of carbon neutrality requires a research agenda that addresses the technical and economic challenges that will be encountered as we progress toward 100% renewable electricity generation. Increasing proportions of variable renewable energy (VRE) sources (such as wind turbines and photovoltaic systems) render the supply-and-demand balance of VRE-dominated power grids difficult. The operational characteristics and effects of VRE inverters also require attention. Here, we examine the implications of the paradigm shift to carbon neutrality and summarize the associated research challenges in terms of system planning, operation, and stability, and the need for energy storage integration, demand-side participation, distributed control and estimation, and energy sector coupling. We also highlight the existing literature gaps, and our recent studies that can fill in the gaps, thereby facilitating the improvement of grid operation and estimation. The numerical results of comparative case studies are also provided on the operational stability and economics of power grids with a high level of VRE sources, assisting stakeholders in establishing specific roadmaps and making relevant decisions.

show abstract

Section: Incorporation Of Decentralized Bad Data Processing Into Dece...mentioning

confidence: 99%

Research Needs for Realization of Zero-Carbon Power Grids with Selected Case Studies

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Since an integral part of the PowerDuck data set consists of traffic recordings, we use the switch's SPAN port to capture all GOOSE packets passing through the switch. Moreover, as a realistic attack vector in power grids [4], we assume that an attacker controls a device (i.e., a PC) connected to that switch. For the considered measurement scenarios, we connected a voltage measurement of the public power grid to the three IEDs and implemented a circuit breaker emulation.…”

Section: Testbedmentioning

confidence: 99%

“…based on conventional energy sources to a more decentralized production using renewable energies [4]. However, this evolution also amplifies the risks of cyberattacks since initially air-gapped systems become connected to one another and, in some cases, even to the Internet without implementing sufficient security measures [10].…”

Section: Introductionmentioning

confidence: 99%

PowerDuck: A GOOSE Data Set of Cyberattacks in Substations

Zemanek

Hacker

Wolsing

et al. 2022

Proceedings of the 15th Workshop on Cyber Security Experimentation and Test

Self Cite

View full text Add to dashboard Cite

Power grids worldwide are increasingly victims of cyberattacks, where attackers can cause immense damage to critical infrastructure. The growing digitalization and networking in power grids combined with insufficient protection against cyberattacks further exacerbate this trend. Hence, security engineers and researchers must counter these new risks by continuously improving security measures. Data sets of real network traffic during cyberattacks play a decisive role in analyzing and understanding such attacks. Therefore, this paper presents PowerDuck, a publicly available security data set containing network traces of GOOSE communication in a physical substation testbed. The data set includes recordings of various scenarios with and without the presence of attacks. Furthermore, all network packets originating from the attacker are clearly labeled to facilitate their identification. We thus envision PowerDuck improving and complementing existing data sets of substations, which are often generated synthetically, thus enhancing the security of power grids. CCS CONCEPTS• Security and privacy → Intrusion detection systems; Denial-ofservice attacks; • Networks → Cyber-physical networks; • General and reference → Measurement.

show abstract

“…For the communication between the central control system and the assets standardized protocols such as IEC 60870-5-104 or DNP3 are used. The communication is usually transmitted via exclusive communication channels but neither of these protocols support security mechanisms such as authentication or integrity protection [18]. Also, encryption is not used by a majority of SCADA system operators [19].…”

Section: A Manipulation Strategy and Fundamental Assumptionsmentioning

confidence: 99%

“…Also, encryption is not used by a majority of SCADA system operators [19]. Although newer standards (e.g., IEC 62351) provide additional requirements for cyber security measures for each protocol, these are usually not implemented [18]. Therefore, the communication links are susceptible to cyber attacks.…”

Section: A Manipulation Strategy and Fundamental Assumptionsmentioning

confidence: 99%

A method for assessing the impact of cyber attacks manipulating distributed energy resources on stable power system operation

Linnartz

Winkens

Simon

2021

2021 IEEE PES Innovative Smart Grid Technologies Europe (ISGT Europe)

View full text Add to dashboard Cite

Successful cyber attacks on power systems cause severe disruptions. One possible manipulation strategy is the utilization of distributed energy resources (DERs) to disturb power system operation. In addition to the impact on bulk power system frequency, local cascading effects caused by DER control and protection can increase the severity of this strategy. To investigate these effects, manipulation scenarios including the disconnection as well as the manipulation of active (P) and reactive power (Q) setpoints of DERs are derived. The impact is analyzed using timedomain simulations and quantified using assessment criteria such as voltage band violation and plant protection triggering. Though DER disconnection leads to high amounts of lost P injection the manipulation of Q setpoints offers potential to disconnect additional DERs through local cascading effects. To mitigate the impact of the manipulation scenarios automated tap changer operation as well as a limitation of remotely accessible Q is suitable.

show abstract

Cybersecurity in Power Grids: Challenges and Opportunities

Cited by 65 publications

References 102 publications

Research Needs for Realization of Zero-Carbon Power Grids with Selected Case Studies

Research Needs for Realization of Zero-Carbon Power Grids with Selected Case Studies

PowerDuck: A GOOSE Data Set of Cyberattacks in Substations

A method for assessing the impact of cyber attacks manipulating distributed energy resources on stable power system operation

Contact Info

Product

Resources

About