Multilevel Programming-Based Coordinated Cyber Physical Attacks and Countermeasures in Smart Grid

Tian, Meng; Cui, Mingjian; Dong, Zhengcheng; Wang, Xianpei; Yin, Shengfei; Zhao, Le

doi:10.1109/access.2018.2890604

Cited by 37 publications

(24 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The same concept was exploited in [6] by an attacker seeking to maximize the loading of a transmission line. Zhang and Sankar developed in [7] an elaborate bilevel formulation for an attacker using load redistribution in order to hide a physical change in the grid topology, while a model of an attacker seeking to maximize the number of overloads induced through load redistribution has been presented in [8].…”

Section: A Related Literaturementioning

confidence: 99%

“…Expression (3) imposes a limit on the maximum number of load meters that can be manipulated by the attacker, while (4) enforces that the false load measurement data injection is balanced across the grid and ( 5) sets the maximum relative amount of false data that can be injected by the attacker at any node 1 . Equalities (7,8) model the power flow of the grid as perceived by the cyber-attacker only. Notice that the power balance constraint (7) includes the optimal values of the generation redispatch variables (p g ) as decided in the gridoperator's lower-level problem (20 -26).…”

Section: Cyber-attacker Decision-making Problemmentioning

confidence: 99%

“…We adopt the single-area version (24 bus) of the IEEE-RTS96 benchmark 4 . Following the practice of relevant studies (e.g., [5], [6], [8]) we simulate a stressed operational condition by reducing all branch transmission capacities to 65% of the original values. We further model a malicious cyber-attacker seeking to overload at least U = 2 transmission elements to at least ρ = 5% of the respective capacities.…”

Section: A Test Case Setupmentioning

confidence: 99%

See 2 more Smart Citations

Cyber-physical risk modeling with imperfect cyber-attackers

Karangelos¹,

Wehenkel²

2021

Preprint

View full text Add to dashboard Cite

We model the risk posed by a malicious cyberattacker seeking to induce grid insecurity by means of a load redistribution attack, while explicitly acknowledging that such an actor would plausibly base its decision strategy on imperfect information. More specifically, we introduce a novel formulation for the cyber-attacker's decision-making problem and analyze the distribution of decisions taken with randomly inaccurate data on the grid branch admittances or capacities, and the distribution of their respective impact. Our findings indicate that inaccurate admittance values most often lead to suboptimal cyber-attacks that still compromise the grid security, while inaccurate capacity values result in notably less effective attacks. We also find common attacked cyber-assets and common affected physicalassets between all (random) imperfect cyber-attacks, which could be exploited in a preventive and/or corrective sense for effective cyber-physical risk management.

show abstract

Section: A Related Literaturementioning

confidence: 99%

Section: Cyber-attacker Decision-making Problemmentioning

confidence: 99%

Section: A Test Case Setupmentioning

confidence: 99%

See 1 more Smart Citation

Cyber-physical risk modeling with imperfect cyber-attackers

Karangelos¹,

Wehenkel²

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…Analysis based on topological models or simulation platforms always focus on implementation scheme rather than the decision strategies of the attack and so the intention of the attacker and other subjective factors are generally omitted. Some studies concerning with attack intention employed game theory and multilevel programming to model attack-and-defense competition with optimal strategies, such as Static game for attack probability modeling [19][20][21], Colonel Blotto game and Stackelberg game for optimal attack resource allocation [22,29], Markov game for dynamic attack modeling [23][24][25], Tri-level programming model for vulnerability assessment and component protection [26][27][28]. However, the factors affecting attack decision making and the diversity of attack intention have not been fully coved in existing studies, primarily due to the difficulty of data acquisition of necessary information for characterizing the attack behaviors in detail.…”

Section: Introductionmentioning

confidence: 99%

Risk Assessment of Cyber Attacks on Power Grids Considering the Characteristics of Attack Behaviors

2020

View full text Add to dashboard Cite

The quick development of smart grids coupled with IoT devices has opened breaches of security leading to cyberattacks done by attackers with different purposes. In this study, a behavior model is proposed to investigate the risk of cyber attacks on power grids, where the utility value is determined by subjective attack attitude and characteristics of candidate targets firstly, and then the behaviors of attack target selection and attack resource allocation are described by the probability response and utility attenuation model respectively based on data analysis of historical events. The simulation results on RTS79 system indicate that the risk and the vulnerable nodes of the power grid vary with the characteristics of attack behaviors and characteristic attributes of targets, which should be considered in the cyber security defense dynamically.

show abstract

“…Large-scale blackouts have happened worldwide during the past decades, resulting in economic loss, social inconvenience, and cyber physical-attacks [1]- [5]. For the sake of ensuring security and reliability of the power system operation, the principle of N − 1 security is widely employed in industry [6], where the whole system is required to withstand the failure of any single component.…”

Section: Introductionmentioning

confidence: 99%

Cascading Outage Analyses by Integrating Distribution Factor Method With AC Power Flow

Liu

Xue

2019

IEEE Access

View full text Add to dashboard Cite

Cascading failure may incur catastrophic consequences. The high order and nonsimultaneousness properties are the leading causes for the massive power flow (PF) calculations of the online static security assessment (SSA). Current PF models fail to satisfy the requirements for accuracy, speed, and robustness. This paper proposes a novel method where line outage distribution factor (LODF) model and AC model are coordinated by a binary classifier. The classifier determines the feasibility of LODF model in a specific case by evaluating its potential error. Cases are preferred to be analyzed by LODF model, while the ones with large potential errors will be analyzed by AC model. Case studies of three IEEE systems and the Texas 2000-bus system are given to verify the effectiveness, flexibility, and robustness of the proposed method. INDEX TERMS Cascading outages, classifier, feature, power flow calculation.

show abstract

Multilevel Programming-Based Coordinated Cyber Physical Attacks and Countermeasures in Smart Grid

Cited by 37 publications

References 38 publications

Cyber-physical risk modeling with imperfect cyber-attackers

Cyber-physical risk modeling with imperfect cyber-attackers

Risk Assessment of Cyber Attacks on Power Grids Considering the Characteristics of Attack Behaviors

Cascading Outage Analyses by Integrating Distribution Factor Method With AC Power Flow

Contact Info

Product

Resources

About