Information Security Risk Propagation Model Based on the SEIR Infectious Disease Model for Smart Grid

Zhu, Bin; Deng, Song; Xu, Yunan; Yuan, Xinya; Zhang, Zi

doi:10.3390/info10100323

Cited by 11 publications

(4 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Percolation theory was also used in Reference [ 24 ] to analyze the propagation of node failures in a network of CPSs comprising cyber and physical nodes organized in two distinct layers, such as in the case of the power grid. The Susceptible–Exposed–Infected–Recovered (SEIR) infectious disease model was used in Reference [ 25 ] to study malware infection propagation in the smart grid. A quantitative risk assessment model that provides asset-wise and overall risks for a given CPS and also considers risk propagation among dependent nodes was proposed in Reference [ 26 ].…”

Section: Related Workmentioning

confidence: 99%

Cyber Risk Propagation and Optimal Selection of Cybersecurity Controls for Complex Cyberphysical Systems

Kavallieratos

Σπαθούλας

Katsikas

2021

Sensors

View full text Add to dashboard Cite

The increasingly witnessed integration of information technology with operational technology leads to the formation of Cyber-Physical Systems (CPSs) that intertwine physical and cyber components and connect to each other to form systems-of-systems. This interconnection enables the offering of functionality beyond the combined offering of each individual component, but at the same time increases the cyber risk of the overall system, as such risk propagates between and aggregates at component systems. The complexity of the resulting systems-of-systems in many cases leads to difficulty in analyzing cyber risk. Additionally, the selection of cybersecurity controls that will effectively and efficiently treat the cyber risk is commonly performed manually, or at best with limited automated decision support. In this work, we propose a method for analyzing risk propagation and aggregation in complex CPSs utilizing the results of risk assessments of their individual constituents. Additionally, we propose a method employing evolutionary programming for automating the selection of an optimal set of cybersecurity controls out of a list of available controls, that will minimize the residual risk and the cost associated with the implementation of these measures. We illustrate the workings of the proposed methods by applying them to the navigational systems of two variants of the Cyber-Enabled Ship (C-ES), namely the autonomous ship and the remotely controlled ship. The results are sets of cybersecurity controls applied to those components of the overall system that have been identified in previous studies as the most vulnerable ones; such controls minimize the residual risk, while also minimizing the cost of implementation.

show abstract

Section: Related Workmentioning

confidence: 99%

Cyber Risk Propagation and Optimal Selection of Cybersecurity Controls for Complex Cyberphysical Systems

Kavallieratos

Σπαθούλας

Katsikas

2021

Sensors

View full text Add to dashboard Cite

show abstract

“…Information security is discussed in [12], where risk propagation model based on the Susceptible-Exposed-Infected-Recovered (SEIR) infectious disease model is proposed for a smart grid. The high volatility and uncertainty of load profiles and the tremendous communication pressure are discussed in a two-stage household electricity demand estimation study by [13].…”

Section: Smart Gridmentioning

confidence: 99%

Machine Learning-Based Node Characterization for Smart Grid Demand Response Flexibility Assessment

et al. 2021

View full text Add to dashboard Cite

As energy distribution systems evolve from a traditional hierarchical load structure towards distributed smart grids, flexibility is increasingly investigated as both a key measure and core challenge of grid balancing. This paper contributes to the theoretical framework for quantifying network flexibility potential by introducing a machine learning based node characterization. In particular, artificial neural networks are considered for classification of historic demand data from several network substations. Performance of the resulting classifiers is evaluated with respect to clustering analysis and parameter space of the models considered, while the bootstrapping based statistical evaluation is reported in terms of mean confusion matrices. The resulting meta-models of individual nodes can be further utilized on a network level to mitigate the difficulties associated with identifying, implementing and actuating many small sources of energy flexibility, compared to the few large ones traditionally acknowledged.

show abstract

“…Based on dynamic game models, Laszka et al [22] proposed a multi-attribute utility-based game model by assuming that the attacker knows all of the defender's strategies. Zhu et al [23] proposed a new state evolution model for network security based on the infectious disease model. Wang et al [24] portrayed the possible dynamic characteristics of the attack and defense of the grid system in a controlled environment and proposed a boundary between attack and defense.…”

Section: Literature Reviewmentioning

confidence: 99%

Multi-Player Evolutionary Game of Network Attack and Defense Based on System Dynamics

2021

View full text Add to dashboard Cite

We formalize the adversarial process between defender and attackers as a game and study the non-cooperative evolutionary game mechanism under bounded rationality. We analyze the long-term dynamic process between the attacking and defending parties using the evolutionary stable strategies derived from the evolutionary game model. First, we construct a multi-player evolutionary game model consisting of a defender and multiple attackers, formally describe the strategies, and construct a three-player game payoff matrix. Then, we propose two punishment schemes, i.e., static and dynamic ones. Moreover, through the combination of mathematical derivation with simulation, we obtain the evolutionary stable strategies of each player. Different from previous work, in this paper, we consider the influence of strategies among different attackers. The simulation shows that (1) in the static punishment scheme, increasing the penalty can quickly control the occurrence of network attacks in the short term; (2) in the dynamic punishment scheme, the game can be stabilized effectively, and the stable state and equilibrium values are not affected by the change of the initial values.

show abstract

Information Security Risk Propagation Model Based on the SEIR Infectious Disease Model for Smart Grid

Cited by 11 publications

References 28 publications

Cyber Risk Propagation and Optimal Selection of Cybersecurity Controls for Complex Cyberphysical Systems

Cyber Risk Propagation and Optimal Selection of Cybersecurity Controls for Complex Cyberphysical Systems

Machine Learning-Based Node Characterization for Smart Grid Demand Response Flexibility Assessment

Multi-Player Evolutionary Game of Network Attack and Defense Based on System Dynamics

Contact Info

Product

Resources

About