Modeling an Attack-Mitigation Dynamic Game-Theoretic Scheme for Security Vulnerability Analysis in a Cyber-Physical Power System

Gao, BoYu; Shi, Libao

doi:10.1109/access.2020.2973030

Cited by 30 publications

(25 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The main focus of [46] is to define the formulation of the attack vector with prevention and detection mechanisms for various components, thus cohesively providing countermeasures against cyber–physical security threats. The vulnerabilities and operational threats of transmission lines are considered in [47] regarding cyber and physical attacks in a cyber–physical power network by constructing specific game‐theoretical models.…”

Section: Review Of State‐of‐the‐artmentioning

confidence: 99%

Cyber–physical security for on‐going smart grid initiatives: a survey

Hossain

Peng

2020

IET cyber-phys. syst.

View full text Add to dashboard Cite

The smart grid is an upgraded concept of electricity network with tight coupling among information, control, and bidirectional communication technologies. Along with the silent features of the ongoing smart grid, cyber-physical security appears to be a deep concern due to its significant dependence on sensing technologies, complex networks of computers, intelligence, and wide-area communication infrastructures. Moreover, the smart grid is an extensive critical infrastructure and vulnerable to coordinated cyber-physical attacks. As a result, cyber-physical attacks cause significant threats to the confidentiality and integrity of the power data, including power outages, cascading failures, and unnecessary expenditure. In this study, security issues of smart grid, including cyber-physical interdependency, attack varieties, detection methods, requirements, standards, challenges, and future prospects, are taken into consideration for both cyber and physical systems, aiming to provide an extensive understanding of vulnerabilities and solutions for the smart power grid. By revealing the inherent features of cyber-physical security in the smart grid, this survey study is addressed to facilitate future research in these two areas.

show abstract

Section: Review Of State‐of‐the‐artmentioning

confidence: 99%

Cyber–physical security for on‐going smart grid initiatives: a survey

Hossain

Peng

2020

IET cyber-phys. syst.

View full text Add to dashboard Cite

show abstract

“…Existing studies have addressed the subjects of vulnerability identification in information systems [4], [5], threat analysis for secure software design [6], topic analysis in software repositories [7], management issues related to vulnerabilities in information systems [8], economic issues in the black market of information security threats [9], security vulnerability analysis in different applications, e.g., power systems [10], [11], fog computing-enabled robust demand response with consideration of collusion attacks in the Internet of Energy [12], cross-lingual multi-keyword ranked search with semantic extensions over encrypted data [13], and posters' behavior in online forums [14]. However, so far, there have been few in-depth studies on vulnerabilities dealing with the automated classification and risk-level prediction of vulnerabilities and the automated generation of solutions for various types of vulnerabilities in software and information systems.…”

Section: Figure 1 Annualized Number Of Vulnerabilities In the China mentioning

confidence: 99%

“…Features are extracted from three dimensions: TD-IDF with bigrams, key topics, and record-level statistics, as discussed in detail in Section IV. We conduct experiments for different topic numbers (10,20,30,40, and 50) in this research. We present the classification and prediction results when the topic number is 30 for the following reasons: (1) The classification and prediction performance are similar for different topic numbers.…”

Section: A Data Preparation and Feature Extractionmentioning

confidence: 99%

A General Framework to Understand Vulnerabilities in Information Systems

Zhang

Xie²,

Yang

et al. 2020

IEEE Access

View full text Add to dashboard Cite

Firms and organizations are increasingly facing security issues related to vulnerabilities in their information systems. Firms, especially small and medium-sized enterprises, usually have very limited security resources and thus have difficulty understanding vulnerabilities and fixing them accordingly. This study aims to build a general framework that can help firms understand the characteristics of vulnerabilities in information systems: for instance, what category a specific vulnerability belongs to, what potential risks it poses, and what the key clues are to addressing it. To this end, we collect data on real vulnerabilities that have emerged in firms' information systems from a popular vulnerability report platform. Features are extracted at four different levels, namely, the word, phrase, topic, and record levels. The experimental results show that the general framework helps characterize the modes and patterns of various types of vulnerabilities. This study contributes to the security literature by providing a deeper understanding of the characteristics of vulnerabilities and their related suggested solutions. Firms can apply this framework to ensure information security.

show abstract

“…Malicious attacks can be divided into three types, namely False Data Injection Attack (FDIA) [3], False Command Injection Attack (FCIA) [4] and Distributed Denial of Service (DDoS) attack [5] [6]. The former two refer to unauthorized agents intruding a system and falsifying its data.…”

Section: Introductionmentioning

confidence: 99%

Pattern Analysis of Topological Attacks in Cyber-Physical Power Systems Considering Cascading Outages

et al. 2020

View full text Add to dashboard Cite

Modern cyber-physical power systems are vulnerable to cyber attacks. Given that cyber and physical networks are coupled tightly, attacks in the cyber layer can penetrate the physical layer, causing the outage of transmission lines and other physical equipment, thus changing the topology of the grid. In some extreme scenarios, the topological change will disrupt the emergency response of the grid, eventually causing cascading outages along with a blackout. Therefore, as the defender, the operator of a cyberphysical power system should identify critical cyber attacks. In this paper, patterns of sequential cyber topological attacks are analyzed. Firstly, a coordinated attack process is established, including mechanism and probability analysis considering the different timescales. Secondly, the concept of patterns is defined as minimal attack sequences aimed at causing blackouts. Furthermore, the representativeness of patterns is illustrated, which can significantly reduce the storage of risky attack sequences. Thirdly, to address the problem that the identification of patterns is computationally intensive, a search strategy that selects the next attack target dynamically and increases the search depth gradually is proposed to avoid unnecessary search trials. Lastly, tests are carried out on the IEEE 39-node system using the AC power flow model, which validates the representativeness of patterns and the performance of the proposed search strategy.

show abstract

Modeling an Attack-Mitigation Dynamic Game-Theoretic Scheme for Security Vulnerability Analysis in a Cyber-Physical Power System

Cited by 30 publications

References 25 publications

Cyber–physical security for on‐going smart grid initiatives: a survey

Cyber–physical security for on‐going smart grid initiatives: a survey

A General Framework to Understand Vulnerabilities in Information Systems

Pattern Analysis of Topological Attacks in Cyber-Physical Power Systems Considering Cascading Outages

Contact Info

Product

Resources

About