Your search keyword '"False data injection"' showing total 332 results

151. Sécurité de la Commande Prédictive distribuée sous injection de données faussées

Author

Nogueira, Rafael Accácio, Institut d'Électronique et des Technologies du numéRique (IETR), Université de Rennes (UR)-Institut National des Sciences Appliquées - Rennes (INSA Rennes), Institut National des Sciences Appliquées (INSA)-Institut National des Sciences Appliquées (INSA)-CentraleSupélec-Centre National de la Recherche Scientifique (CNRS)-Nantes Université - pôle Sciences et technologie, Nantes Université (Nantes Univ)-Nantes Université (Nantes Univ), CentraleSupélec, and Hervé Guéguen

Subjects

[INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], Sécurité de systèmes cyber-physiques, False Data Injection, Commande Prédictive distribuée, Security of cyber-physical systems, Distributed Model Predictive Control, Injection de données faussées, [SPI.AUTO]Engineering Sciences [physics]/Automatic

Abstract

Computing devices are everywhere, controlling systems of different scales, from drones of the size of a coin to country-wise energy distribution grids. The amalgamation of these devices and the physical systems essential for our everyday lives originates the cyber-physical systems. Depending on their scale, the computation is divided into multiple computing devices, which need to negotiate to find a consensus of the best control to be applied. The communication among agents is vital for the consensus to be achieved. However, the negotiation is sensitive to deviations in the exchanged values. An attacker can use this information to influence the negotiation to benefit a group of agents. This thesis proposes a study from the conception of the control of such systems to its security. And then, we propose methods to secure the system from attacks where an ill-intentioned agent injects false data into the negotiation. The performance of the proposed methods is assessed through academic simulations of a small district heating network.; Les dispositifs informatiques sont partout, ils commandent systèmes de différentes échelles, dès drones de la taille d'une pièce aux systèmes de distribution d'énergie de la taille des pays. La mixture de ces dispositifs avec des systèmes physiques essentiels pour la vie quotidienne origine les systèmes cyber-physiques. Dépendant de l'échelle des systèmes, la computation est divisée en différents dispositifs, qui nécessitent de négocier pour trouver un consensus de la meilleure commande à être appliquée. La communication entre agents est d'extrême importance pour que le consensus soit achevé. Par contre, la négociation est sensible à déviations dans les valeurs échangées. An attaquant peut utiliser cette information pour influencer la négociation pour bénéficier un groupe d'agents. Cette thèse propose une étude de la conception de la commande de tels systèmes jusqu'à leur sécurité. Et après, on propose des méthodes pour sécuriser le système contre des attaques où l'agent malintentionné injecte de la fausse information pendant la négociation. La performance des méthodes est étudiée en utilisant des simulations d'un petit réseau de distribution de chaleur.

Published

2022

152. Cybersecurity Enhancement of Smart Grid: Attacks, Methods, and Prospects

Author

Usman Inayat, Muhammad Fahad Zia, Sajid Mahmood, Tarek Berghout, and Mohamed Benbouzid

Subjects

cyber–physical power system, cybersecurity, cyberattack, false data injection, denial of service, spoofing attack, smart grid, Computer Networks and Communications, Hardware and Architecture, Control and Systems Engineering, Signal Processing, Electrical and Electronic Engineering

Abstract

Smart grid is an emerging system providing many benefits in digitizing the traditional power distribution systems. However, the added benefits of digitization and the use of the Internet of Things (IoT) technologies in smart grids also poses threats to its reliable continuous operation due to cyberattacks. Cyber–physical smart grid systems must be secured against increasing security threats and attacks. The most widely studied attacks in smart grids are false data injection attacks (FDIA), denial of service, distributed denial of service (DDoS), and spoofing attacks. These cyberattacks can jeopardize the smooth operation of a smart grid and result in considerable economic losses, equipment damages, and malicious control. This paper focuses on providing an extensive survey on defense mechanisms that can be used to detect these types of cyberattacks and mitigate the associated risks. The future research directions are also provided in the paper for efficient detection and prevention of such cyberattacks.

Published

2022

153. Random Bad State Estimator to Address False Data Injection in Critical Infrastructures

Author

Masetti G., Chiaradonna S., Robol L., and Di Giandomenico F.

Subjects

Critical infrastructures, False data injection, Power grids, Randomness elements, Fault diagnosis, State estimation

Abstract

Given their crucial role for a society and economy, an essential component of critical infrastructures is the Bad State Estimator (BSE), responsible for detecting malfunctions affecting elements of the physical infrastructure. In the past, the BSE has been conceived to mainly cope with accidental faults, under assumptions characterizing their occurrence. However, evolution of the addressed systems category consisting in pervasiveness of ICT-based control towards increasing smartness, paired with the openness of the operational environment, contributed to expose critical infrastructures to intentional attacks, e.g. exploited through False Data Injection (FDI). In the flow of studies focusing on enhancements of the traditional BSE to account for FDI attacks, this paper proposes a new solution that introduces randomness elements in the diagnosis process, to improve detection abilities and mitigate potentially catastrophic common-mode errors. Differently from existing alternatives, the strength of this new technique is that it does not require any additional components or alternative source of information with respect to the classic BSE. Numerical experiments conducted on two IEEE transmission grid tests, taken as representative use cases, show the applicability and benefits of the new solution.

Published

2022

154. A Stream Learning Approach for Real-Time Identification of False Data Injection Attacks in Cyber-Physical Power Systems

Author

Ehsan Hallaji, Roozbeh Razavi-Far, Meng Wang, Mehrdad Saif, and Bruce Fardanesh

Subjects

Signal Processing (eess.SP), FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, Artificial Intelligence and Robotics, Computer Networks and Communications, Computer Vision and Pattern Recognition (cs.CV), false data injection, Computer Science - Computer Vision and Pattern Recognition, Systems and Control (eess.SY), cyber-physical systems, Electrical Engineering and Systems Science - Systems and Control, Machine Learning (cs.LG), power systems, Engineering, FOS: Electrical engineering, electronic engineering, information engineering, Electrical Engineering and Systems Science - Signal Processing, Safety, Risk, Reliability and Quality, change detection, Attack identification, Information Security, Electrical and Computer Engineering, statistical learning, non-stationary environments, Cryptography and Security (cs.CR), unobservable attacks

Abstract

This paper presents a novel data-driven framework to aid in system state estimation when the power system is under unobservable false data injection attacks. The proposed framework dynamically detects and classifies false data injection attacks. Then, it retrieves the control signal using the acquired information. This process is accomplished in three main modules, with novel designs, for detection, classification, and control signal retrieval. The detection module monitors historical changes in phasor measurements and captures any deviation pattern caused by an attack on a complex plane. This approach can help to reveal characteristics of the attacks including the direction, magnitude, and ratio of the injected false data. Using this information, the signal retrieval module can easily recover the original control signal and remove the injected false data. Further information regarding the attack type can be obtained through the classifier module. The proposed ensemble learner is compatible with harsh learning conditions including the lack of labeled data, concept drift, concept evolution, recurring classes, and independence from external updates. The proposed novel classifier can dynamically learn from data and classify attacks under all these harsh learning conditions. The introduced framework is evaluated w.r.t. real-world data captured from the Central New York Power System. The obtained results indicate the efficacy and stability of the proposed framework., Comment: Accepted for publication in IEEE Transactions on Information Forensics and Security

Published

2022

155. Security of Cyber-Physical Systems.

Author

Sargolzaei, Arman and Sargolzaei, Arman

Subjects

History of engineering & technology, Technology: general issues, Cyber Physical System, Federated Learning, Lyapunov theory, anomaly detection, anomaly isolation, artificial neural networks, attack estimation, autonomous vehicles, blockchain, contested environments, cooperative automated driving systems, demand response, device authentication, disaster, edge intelligence, enhanced security, false data injection, fault detection, financial transactions, greybox fuzzing, hardware-in-the-loop testing, home area networks, industrial control systems, intrusion detection system, inverter-based energy resources, islanded microgrids, machine learning, networked control systems, out-of-bounds, patch, power system resilience, privacy, remedial testing, resilience management systems, resilient control design, resource-limitations, road capacity, safety, secondary control, secure control design, security, situational awareness, smart grids, time-delay switch attack, traffic microsimulation tool, transportation systems, vehicle powertrain, vulnerability detection, vulnerable detection

Abstract

Summary: Cyber-physical system (CPS) innovations, in conjunction with their sibling computational and technological advancements, have positively impacted our society, leading to the establishment of new horizons of service excellence in a variety of applicational fields. With the rapid increase in the application of CPSs in safety-critical infrastructures, their safety and security are the top priorities of next-generation designs. The extent of potential consequences of CPS insecurity is large enough to ensure that CPS security is one of the core elements of the CPS research agenda. Faults, failures, and cyber-physical attacks lead to variations in the dynamics of CPSs and cause the instability and malfunction of normal operations. This reprint discusses the existing vulnerabilities and focuses on detection, prevention, and compensation techniques to improve the security of safety-critical systems.

156. Efficient Geographical Information-Based En-route Filtering Scheme in Wireless Sensor Networks.

Author

Chuanjun Yi, Geng Yang, Hua Dai, Liang Liu, and Yunhua Chen

Subjects

GEOGRAPHIC information systems, WIRELESS sensor nodes, INFORMATION filtering, MESSAGE authentication codes, MULTISENSOR data fusion

Abstract

The existing en-route filtering schemes only consider some simple false data injection attacks, which results in lower safety performance. In this paper, we propose an efficient geographical information-based en-route filtering scheme (EGEFS), in which each forwarding node verifies not only the message authentication codes (MACs), but also the report identifier and the legitimacy and authenticity of locations carried in a data report. Thus, EGEFS can defend against not only the simple false data injection attacks and the replay attack, but also the collusion attack with forged locations proposed in this paper. In addition, we propose a new method for electing the center-of-stimulus (CoS) node, which can ensure that only one detecting node will be elected as the CoS node to generate one data report for an event. The simulation results show that, compared to the existing en-route filtering schemes, EGEFS has higher safety performance, because it can resist more types of false data injection attacks, and it also has higher filtering efficiency and lower energy expenditure. [ABSTRACT FROM AUTHOR]

Published

2018

157. Undetectable Timing-Attack on Linear State-Estimation by Using Rank-1 Approximation.

Author

Barreto, Sergio, Pignati, Marco, Dan, Gyorgy, Le Boudec, Jean-Yves, and Paolone, Mario

Abstract

Smart-grid applications based on synchrophasor measurements have recently been shown to be vulnerable to timing attacks. A fundamental question is whether timing attacks could remain undetected by bad-data detection algorithms used in conjunction with state-of-the-art situational-awareness state estimators. In this paper, we analyze the detectability of timing attacks on linear state-estimation. We show that it is possible to forge delay attacks that are undetectable. We give a closed form for an undetectable attack; it imposes two phase offsets to two or more synchrophasor-based measurement units that can be translated to synchrophasors’ time delays. We also propose different methods for combining two-delays attacks to produce a larger impact. We simulate the attacks on a benchmark power-transmission grid, we show that they are successful and can lead to physical grid damage. To prove undetectability, we use classic bad-data detection techniques such as the largest normalized residual and the ${\chi ^{2}}$ -test. [ABSTRACT FROM AUTHOR]

Published

2018

158. Identification of False Data Injection Attacks With Considering the Impact of Wind Generation and Topology Reconfigurations.

Author

Mohammadpourfard, Mostafa, Sami, Ashkan, and Weng, Yang

Abstract

Robust control of the power grid relies on accurate state estimation. Recent studies show that state estimators are vulnerable to false data injection attacks that can pass the bad data detection mechanisms. A grand restriction of the existing countermeasures is dealing with integration of renewable energy sources and topology changes because they are designed for a specific system configuration. In this paper, to detect cyber-attacks in power systems that are affected by sustainable energy sources or system reconfigurations, a unsupervised anomaly detection algorithm is developed. The proposed method first analyzes recent historical data and detects the state vectors that are different from normal trend since they may indicate attacks. Then, among the recent state records, most similar state vectors to this suspicious vector are determined. These vectors are combined to form a new vector in a way that the attacked states have smaller/larger values than the normal ones. Finally, different outlier detection algorithms are applied on the new vector and the attacked states are determined through a majority voting among those algorithms. The proposed method is tested on the IEEE 14 bus system with different attack scenarios including attacks to the system after a contingency and integration of wind farms. Results demonstrate the robustness of our method in dealing with changes. [ABSTRACT FROM AUTHOR]

Published

2018

159. Deep learning-based framework for real-time transient stability prediction under stealthy data integrity attacks.

Author

Kesici, Mert, Mohammadpourfard, Mostafa, Aygul, Kemal, and Genc, Istemihan

Subjects

*DEEP learning, *DATA integrity, *MACHINE learning, *PHASOR measurement, *PRINCIPAL components analysis, *INDEPENDENT system operators, *TEST systems

Abstract

Cyber-attacks can degrade the performance of online transient stability prediction (TSP) and assessment functions offered for power systems. This paper proposes a cyber-resilient real-time TSP framework created by considering both perspectives, of the attacker, and of the smart grid operator. From the attacker's viewpoint, to minimize the attack cost, a model-free data-driven algorithm for finding the measurements to which the TSP function is vulnerable is considered. The attack vector that maximizes the TSP classifier's inaccuracy reduces the performance of TSP significantly. From the perspective of the system operator and to defend the system against data integrity attacks, two unsupervised learning algorithms which are principal component analysis and fuzzy c-means clustering, are combined and employed to detect the falsified phasor measurement units (PMUs) in the system. In the proposed framework, a denoising autoencoder model is also developed to eliminate the effect of stealthy cyber-attacks. When a cyber-attack is detected, the denoising autoencoder-based model is triggered to recover the damage of the cyber-attack, while a well-tuned long short-term memory model is implemented for the TSP application. The proposed framework is tested on two IEEE test systems, including 39-bus and 127-bus systems, with various attack scenarios. Results show that the developed system is more resilient to the attacks than the existing well-established TSP functions. • To the best of our knowledge, this is the first paper considering stealthy FDIAs for the TSP problem. • A comprehensive analysis of the effects of a variety of stealthy FDIAs on TSP is performed. • A deep learning-based framework based on LSTM and DAE for TSP under stealthy FDIAs is proposed. • A model-free data-driven algorithm is developed to minimize the attack cost for the adversary. • PCA and FCM clustering algorithms are combined and employed for FDIA detection. [ABSTRACT FROM AUTHOR]

Published

2023

160. A Novel Bilevel False Data Injection Attack Model Based on Pre-and Post-Dispatch

Author

Gao, Shibin (author), Lei, Jieyu (author), Wei, Xiaoguang (author), Liu, Y. (author), Wang, Tao (author), Gao, Shibin (author), Lei, Jieyu (author), Wei, Xiaoguang (author), Liu, Y. (author), and Wang, Tao (author)

Abstract

This letter develops a new bilevel optimization model to construct false data injection attack based on pre- and post- dispatch. In order to enhance the attack concealment, the proposed bilevel model can minimize the variation of uploaded measurements between pre- and post-attack before dispatching, after which the attack can lead the system to an uneconomic and insecure operating state after dispatching. Simulation results validate the effectiveness of the proposed bilevel model in term of operating cost and network overloads., Green Open Access added to TU Delft Institutional Repository 'You share, we take care!' - Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public., Intelligent Electrical Power Grids

Published

2022

161. Vulnerability Identification and Remediation of FDI Attacks in Islanded DC Microgrids Using Multi-agent Reinforcement Learning

Author

Abianeh, Ali Jafarian, Wan, Yihao, Ferdowsi, Farzad, Mijatovic, Nenad, Dragicevic, Tomislav, Abianeh, Ali Jafarian, Wan, Yihao, Ferdowsi, Farzad, Mijatovic, Nenad, and Dragicevic, Tomislav

Abstract

This paper proposes a novel approach to uncover deficiencies of the existing cyber-attack detection schemes and thereby to serve as a foundation for establishing more reliable cybersecure solutions, with particular application in DC microgrids. For this purpose, a multi-agent deep Reinforcement Learning (RL) based algorithm is proposed to automatically discover the vulnerable spots on the conventional index-based cyberattack detection schemes, and automatically generate coordinated stealthy destabilizing False Data Injection (FDI) attacks on cyberprotected islanded DC microgrids. To enable a continuous action space for the trained RL agents and enhance the algorithm’s precision and convergence rate, Deep Deterministic Policy Gradient DDPG) is incorporated. Using this approach, susceptibility of a state-of-the-art detection scheme to several different coordinated FDI attacks on the distributed communication links is identified. The proposed algorithm is also enhanced with a sniffing feature to enable maintaining the stealthy attacks even under the sudden disconnection of any of the compromised links. To address the discovered deficiencies within the index-based detection scheme, a complementary multi-agent RL detection algorithm using Deep Q-Network (DQN) is integrated, which provides a more reliable overall identification performance. Taking into account the communication delays and load changes, the effectiveness of the proposed algorithm is verified by the experimental tests.

Published

2022

162. False Data Injection of a Robotic Navigation System: Concepts and Simulations

Author

Kersten, Philip, Naval Postgraduate School, Systems Engineering (SE), and Space Systems Academics Group

Subjects

Spoofing, Extended Kalman, Filter, Stealthy, False Data Injection, Fault Detection, Robotic Vehicle, Navigation

Abstract

Today, robotic vehicles (RV) play an essential role in both modern industry and the military. More and more RVs become autonomously operated and are prone to cyber-attacks of their embedded control systems. These attacks can be detected and prevented with the appropriate tools but can also be almost undetectable if executed correctly. In this work, a type of cyber-attack, namely false data injection is performed to spoof an Extended Kalman Filter (EKF) and a conventional fault detection mechanism is used to attempt to identify the attack. A two-wheeled differentially steered robotic vehicle based on the TurtleBot 3 ‘Burger’ is simulated in MATLAB. The navigation system is attacked by injecting false data into the measurement device - a LiDAR sensor. The false data injection alters the range and bearing measurements and aims to change the measured heading angle of the robot and alter its trajectory. The attack is then tuned to make it undetectable by the implemented counter measures. In this thesis, it is demonstrated that false data injection can be executed in such a way that it is almost impossible for the fault detection mechanism to perceive an attack. The simulations have shown that the key to stealth is to inject the false data in a slow and steady manner to deceive the EKF by steering its output. The deviation introduced is mostly unnoticeable as long as it is in the same order of magnitude of the noise, which is part of the robot’s navigation system. In contrast, sudden and severe changes of measurement data are detected easily by the EKF and the fault detection mechanism. Universitaet der Bundeswehr Muenchen Fakultaet fuer Luft- und Raumfahrttechnik Institute for Space Technology and Applications Werner-Heisenberg-Weg 39 85579 Neubiberg, Germany German Armed Forces Approved for public release; distribution is unlimited.

Published

2022

163. False Image Injection Prevention Using iChain

Author

Mohiuddin Ahmed

Subjects

blockchain, cyber attacks, false data injection, healthcare, image, tampering, Technology, Engineering (General). Civil engineering (General), TA1-2040, Biology (General), QH301-705.5, Physics, QC1-999, Chemistry, QD1-999

Abstract

The advances in information and communication technology are consistently beneficial for the healthcare sector. A trend in the healthcare sector is the progressive shift in how data are acquired and the storage of such data in different facilities, such as in the cloud, due to the efficiency and effectiveness offered. Digital images related to healthcare are sensitive in nature and require maximum security and privacy. A malicious entity can tamper with such stored digital images to mislead healthcare personnel and the consequences of wrong diagnosis are harmful for both parties. A new type of cyber attack, a false image injection attack (FIIA) is introduced in this paper. Existing image tampering detection measures are unable to guarantee tamper-proof medical data in real time. Inspired by the effectiveness of emerging blockchain technology, a security framework, image chain (iChain) is proposed in this paper to ensure the security and privacy of the sensitive healthcare images. The practical challenges associated with the proposed framework and further research that is required are also highlighted.

Published

2019

164. Identification scheme of false data injection attack based on deep learning algorithms for smart grids

Author

Marwah Ezzulddin Merza, Shamil H. Hussein, and Qutaiba I. Ali

Subjects

False data injection, Control and Optimization, AI techniques, Threats and attacks, Computer Networks and Communications, Hardware and Architecture, Signal Processing, Smart grid, Cyber security smart grid, Electrical and Electronic Engineering, Information Systems

Abstract

This paper presents the artificial intelligence (AI) techniques based on the deep learning algorithms to diagnose false data injection (FDI) attacks to smart grids with the measurement data in real-time. The power and data flow between end-user consumers and all components of the advanced metering infrastructure (AMI) and supervisory control and data acquisition (SCADA) system in the SG is bidirectional flow by advanced communication networks. For all the advantages of the SG come with, they remain at risk to a series of many potential threats and ongoing attacks. The conditional-deep-belief-network (CDBN) architecture is employed to un-observable FDI attacks which pass the state-vector-estimator (SVE) mechanisms. The IEEE 118 bus, and IEEE 300 bus power system have been used to evaluate our detection scheme. Finally, the suggested CDBN scheme is compared with other detection such as artificial neural network (ANN) and support vector machine (SVM). It is observed that the simulation result shows that suggested detection methods can attain a high accuracy of unobservable FDI attacks.

Published

2023

165. A Cyber-Security Methodology for a Cyber-Physical Industrial Control System Testbed

Author

Devrim Unal, Khashayar Khorasani, Mohammad Shakerpour, Mohammad Noorizadeh, and Nader Meskin

Subjects

General Computer Science, Computer science, Computer crime, attack detection algorithm, Reliability (computer networking), Attack detection, Computer security, computer.software_genre, Critical infrastructure, Personal computing, man-in-the-middle attack, Process control, Industrial control systems, General Materials Science, Water pollution, cyber attack, Control systems, False data injection, Man machine systems, Testbed, General Engineering, Cyber-physical system, Closed loop controllers, Industrial control system, Network security, Cyber Physical System, Public works, Tennessee Eastman process, Man in the middle, Critical infrastructures, Design and implementations, Software deployment, Sensor measurements, Cyber-attack, Testbeds, lcsh:Electrical engineering. Electronics. Nuclear engineering, computer, lcsh:TK1-9971, hybrid testbed, Signal detection

Abstract

Due to recent increase in deployment of Cyber-Physical Industrial Control Systems in different critical infrastructures, addressing cyber-security challenges of these systems is vital for assuring their reliability and secure operation in presence of malicious cyber attacks. Towards this end, developing a testbed to generate real-time data-sets for critical infrastructure that would be utilized for validation of real-time attack detection algorithms are indeed highly needed. This paper investigates and proposes the design and implementation of a cyber-physical industrial control system testbed where the Tennessee Eastman process is simulated in real-time on a PC and the closed-loop controllers are implemented on the Siemens PLCs. False data injection cyber attacks are injected to the developed testbed through the man-in-the-middle structure where the malicious hackers can in real-time modify the sensor measurements that are sent to the PLCs. Furthermore, various cyber attack detection algorithms are developed and implemented in real-time on the testbed and their performance and capabilities are compared and evaluated. North Atlantic Treaty Organization; Qatar Foundation; Qatar National Research Fund Scopus

Published

2021

166. Integration of Failure Detector in Bias Filter for Estimation of False Data Injection Cyberattacks

Author

Morad Abdelaziz and Adel Tabakhpour Langeroudi

Subjects

General Computer Science, Computer science, 020209 energy, false data injection, 0211 other engineering and technologies, 02 engineering and technology, computer.software_genre, Residual, Distribution system online monitoring, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, state estimation, Estimation, 021110 strategic, defence & security studies, Detector, General Engineering, Estimator, Kalman filter, Smart grid, Filter (video), State (computer science), Data mining, lcsh:Electrical engineering. Electronics. Nuclear engineering, computer, lcsh:TK1-9971

Abstract

In order to enable many of the required smart grid functionalities, distribution systems are becoming increasingly dependent on state estimators. Many cyber-attacks attempt false data injection (FDI) attacks on such state estimators. The majority of the existing literature deal with FDIs in distribution systems state estimation either by the analysis of the residual vector elements, or by the analysis of historical data. In this work, we adopt an alternative approach for the detection of FDIs in distribution system state estimation, wherein FDIs are modelled as measurement biases and a bias filter is employed for FDI detection. Additionally, in order to enable the detection of time-variable FDIs, a failure detector is integrated in the recursive formulation of the bias filter, which is based on the Kalman filter. The developed approach is accordingly capable of identifying time-varying FDIs, which can evade many of the existing FDI detection methods. Simulation case studies are performed on the IEEE 13-node and 123-node feeders with different FDIs and the performance of the proposed approach is analyzed.

Published

2021

167. A statistical unsupervised method against false data injection attacks: A visualization-based approach.

Author

Mohammadpourfard, Mostafa, Sami, Ashkan, and Seifi, Ali Reza

Subjects

*CYBERTERRORISM, *SMART power grids, *MACHINE learning, *STATE estimation in electric power systems, *DISTRIBUTED power generation

Abstract

To achieve intelligence in the future grid, a highly accurate state estimation is necessary as it is a prerequisite for many key functionalities in the successful operation of the power grid. Recent studies show that a new type of cyber-attack called False Data Injection (FDI) attack can bypass bad data detection mechanisms in the power system state estimation. Existing countermeasures might not be able to manage topology changes and integration of distributed generations because they are designed for a specific system configuration. To address this issue, an unsupervised method to distinguish between attack and normal patterns is proposed in this paper. This method can detect FDI attacks even after topology changes and integration of renewable energy sources. In this method, we assume that injecting false data into the power systems will lead to a deviation in the probability distribution of the state vector from the normal trend. The main phases of the proposed algorithm are: (1) Normalizing the dataset, (2) Adding several statistical measures as the new features to the dataset to quantify the probability distribution of the state vectors, (3) Employing principal component analysis to reduce the dimensionality of the dataset, (4) Visualizing the reduced data for humans and exploiting their creativity to detect attacks, and (5) Locating the attacks using Fuzzy C-means clustering algorithm. The proposed method is tested on both the IEEE 14-bus and IEEE 9-bus systems using real load data from the New York independent system operator with the following attack scenarios: (1) attacks without any topology change, (2) attacks after a contingency, and (3) attacks after integration of distributed generations. Experimental results show that our proposed method is superior to the state-of-the-art classification algorithms in dealing with changes. In addition, the reduced data which is helpful in distinguishing between attack and normal patterns can be fed into an expert system for further improvement of the security of the power grid. [ABSTRACT FROM AUTHOR]

Published

2017

168. Modeling and Mitigating Impact of False Data Injection Attacks on Automatic Generation Control.

Author

Tan, Rui, Nguyen, Hoang Hai, Foo, Eddy. Y. S., Yau, David K. Y., Kalbarczyk, Zbigniew, Iyer, Ravishankar K., and Gooi, Hoay Beng

Abstract

This paper studies the impact of false data injection (FDI) attacks on automatic generation control (AGC), a fundamental control system used in all power grids to maintain the grid frequency at a nominal value. Attacks on the sensor measurements for AGC can cause frequency excursion that triggers remedial actions, such as disconnecting customer loads or generators, leading to blackouts, and potentially costly equipment damage. We derive an attack impact model and analyze an optimal attack, consisting of a series of FDIs that minimizes the remaining time until the onset of disruptive remedial actions, leaving the shortest time for the grid to counteract. We show that, based on eavesdropped sensor data and a few feasible-to-obtain system constants, the attacker can learn the attack impact model and achieve the optimal attack in practice. This paper provides essential understanding on the limits of physical impact of the FDIs on power grids, and provides an analysis framework to guide the protection of sensor data links. For countermeasures, we develop efficient algorithms to detect the attack, estimate which sensor data links are under attack, and mitigate attack impact. Our analysis and algorithms are validated by experiments on a physical 16-bus power system test bed and extensive simulations based on a 37-bus power system model. [ABSTRACT FROM PUBLISHER]

Published

2017

169. Trilevel Modeling of Cyber Attacks on Transmission Lines.

Author

Liu, Xuan and Li, Zuyi

Abstract

Modern power system becomes more prone to cyber attacks due to the high integration of information technology and communication network. In this paper, we investigate the impact of multiple solutions to the security constrained economic dispatch, a tool used by power system operators to ensure the economics and security of the system operation, on the line attacking strategy, and model the line cyber-attack problem as a trilevel mixed integer linear programming problem. We convert the middle and lower levels into a single-level optimization problem using a weighting factor without introducing any additional variables and constraints. The simulation results on the modified IEEE 14-bus system verify the correctness of the proposed model. [ABSTRACT FROM PUBLISHER]

Published

2017

170. Modeling and performance evaluation of stealthy false data injection attacks on smart grid in the presence of corrupted measurements.

Author

Anwar, Adnan, Mahmood, Abdun Naser, and Pickering, Mark

Subjects

*SMART power grids, *ANOMALY detection (Computer security), *PERFORMANCE evaluation, *OBSERVABILITY (Control theory), *PRINCIPAL components analysis

Abstract

The false data injection (FDI) attack cannot be detected by the traditional anomaly detection techniques used in the energy system state estimators. In this paper, we demonstrate how FDI attacks can be constructed blindly, i.e., without system knowledge; including topological connectivity and line reactance information. Our analysis reveals that existing FDI attacks become detectable (consequently unsuccessful) by the state estimator if the data contains grossly corrupted measurements such as device malfunction and communication errors. The proposed sparse optimization based stealthy attacks construction strategy overcomes this limitation by separating the gross errors from the measurement matrix. Extensive theoretical modeling and experimental evaluation show that the proposed technique performs more stealthily (has less relative error) and efficiently (fast enough to maintain time requirement) compared to other methods on IEEE benchmark test systems. [ABSTRACT FROM AUTHOR]

Published

2017

171. Attack parameter dependent resilient [formula omitted] path-following control design for autonomous vehicles under cyber attacks.

Author

Hu, Songlin, Yu, Wenxi, Yang, Jinghui, Chen, Xiaoli, Xie, Xiangpeng, and Ma, Yong

Subjects

*CYBERTERRORISM, *AUTONOMOUS vehicles, *DENIAL of service attacks, *EXPONENTIAL stability, *CLOSED loop systems

Abstract

Autonomous vehicles typically transmit information over wireless communication network, which is vulnerable to malicious cyber attacks and poses huge security threats for autonomous vehicles. To address these challenges, this paper is concerned with resilient H ∞ path-following control problem for autonomous vehicles under false data injection (FDI) attacks and denial-of-service (DoS) attacks, simultaneously. Firstly, a novel observer is constructed to estimate both sensor FDI attack signal and system state. An attack parameter dependent time-varying piecewise Lyapunov function is constructed to ensure stability of the underlying system. Then, a resilient H ∞ path-following control scheme is developed to suppress the impact of FDI attacks and external interference despite the presence of intermittent DoS attacks. The design criterion of resilient controller is derived to assure the exponential stability of the closed-loop system and maintain the desired H ∞ performance. Finally, simulation studies are carried out to verify the efficiency and merits of the developed results. [ABSTRACT FROM AUTHOR]

Published

2023

172. Detection of false data injection attacks in cyber–physical systems using graph convolutional network.

Author

Vincent, Edeh, Korki, Mehdi, Seyedmahmoudian, Mehdi, Stojcevski, Alex, and Mekhilef, Saad

Subjects

*CYBER physical systems, *TELECOMMUNICATION, *TELECOMMUNICATION systems, *ELECTRIC power distribution grids, *POWER transmission, *FALSE discovery rate

Abstract

Smart grids comprise numerous related units based on intelligent communication and information-oriented technologies. The advanced network communication technologies are the building blocks of these intelligent grids, allowing the real-time transmission of power state information. However, these systems are highly prone to cyberattacks, especially false data injection (FDI) attacks that disturb the normal management of power grids by injecting false state estimation values. This paper proposes a graph convolutional network (GCN) framework to detect FDI attacks. This technique analyses the graphical aspect of FDI attacks by exploiting the graphical structures of the power network to analyse the fluctuating state estimation values based on the system topology and detect the location of FDI attacks. The standard IEEE 30, 118 and 2848-bus systems are employed to evaluate the efficiency of the proposed technique. Simulation results show that the proposed approach can efficiently detect FDI attacks in small and large cyber-physical systems with reasonable accuracies and detection times, considering different magnitudes of disturbances and attack sparsities. • Proposes a graph convolutional network (GCN) framework to detect FDI attacks. • The GCN framework learns abstracted information to detect FDI attacks efficiently. • The GCN framework can detect the optimal location of FDI attacks using its network topology. • Simulation was done using the IEEE 30,118, and 2848-bus test systems. [ABSTRACT FROM AUTHOR]

Published

2023

173. False data injection attack in smart grid cyber physical system: Issues, challenges, and future direction.

Author

Habib, AKM Ahasan, Hasan, Mohammad Kamrul, Alkhayyat, Ahmed, Islam, Shayla, Sharma, Rohit, and Alkwai, Lulwah M.

Subjects

*CYBER physical systems, *INFRASTRUCTURE (Economics), *SMART devices, *DIGITAL communications, *TELECOMMUNICATION systems, *DIGITAL technology

Abstract

Smart grid integrates the physical power system infrastructure with internet-of-things-based digital communication networks that work together for grid stability, sustainability, and reliability. A significant number of smart devices converge in cyber-physical systems to make the smart grid more competitive and efficient in addressing the energy challenges and vulnerabilities in power system confidentiality, integrity, and availability in smart grid cyber-physical security systems. False data injection attacks are the most malicious threats in the smart grid paradigm and have been widely applied recently. Last few years, several detection algorithms for identifying the false data injection attack have been developed. Addressing these issues, this paper reports a false data injection attack and threat mathematical model, impacting the on-grid system, economy, and society. The classification of false data injection attack detection algorithms and mathematical models are mainly presented. Finally, issues and challenges are identified from existing research and recommended for future research direction. [ABSTRACT FROM AUTHOR]

Published

2023

174. Secure impulsive synchronization control of multi-agent systems under deception attacks.

Author

He, Wangli, Gao, Xiaoyang, Zhong, Weimin, and Qian, Feng

Subjects

*MULTIAGENT systems, *SYNCHRONIZATION, *COMPUTER software security, *BINOMIAL distribution, *SIGNAL processing

Abstract

This paper is concerned with secure synchronization of multi-agent systems under deception attacks in the impulsive control framework. False data is injected into sensor-to-controller channels, which causes the transmittal signals being changed. Some stochastic variables obeying the Bernoulli distribution associated with communication channels between neighbouring agents are proposed to describe the case whether channels are suffered from the attack. A distributed impulsive controller is proposed and bounded synchronization, caused by false data injection is studied. Several mean-square bounded synchronization conditions are derived and the error bound is also given. Finally, two examples are provided to verify the theoretical results. [ABSTRACT FROM AUTHOR]

Published

2018

175. False data injection attack (FDIA): an overview and new metrics for fair evaluation of its countermeasure

Author

Mohiuddin Ahmed and Al-Sakib Khan Pathan

Subjects

Computer science, media_common.quotation_subject, 02 engineering and technology, lcsh:Analysis, Computer security, computer.software_genre, Domain (software engineering), Scarcity, Countermeasure, 0202 electrical engineering, electronic engineering, information engineering, Metric, Complex adaptive system, media_common, False data injection, Internet, business.industry, Applied Mathematics, lcsh:T57-57.97, lcsh:QA299.6-433, 020206 networking & telecommunications, Computer Science Applications, Anomaly, Smart grid, Modeling and Simulation, lcsh:Applied mathematics. Quantitative methods, Benchmark (computing), 020201 artificial intelligence & image processing, The Internet, business, Cyberspace, computer, Cyber attacks

Abstract

The concept of false data injection attack (FDIA) was introduced originally in the smart grid domain. While the term sounds common, it specifically means the case when an attacker compromises sensor readings in such tricky way that undetected errors are introduced into calculations of state variables and values. Due to the rapid growth of the Internet and associated complex adaptive systems, cyber attackers are interested in exploiting similar attacks in other application domains such as healthcare, finance, defense, governance, etc. In today’s increasingly perilous cyber world of complex adaptive systems, FDIA has become one of the top-priority issues to deal with. It is a necessity today for greater awareness and better mechanism to counter such attack in the cyberspace. Hence, this work presents an overview of the attack, identifies the impact of FDIA in critical domains, and talks about the countermeasures. A taxonomy of the existing countermeasures to defend against FDIA is provided. Unlike other works, we propose some evaluation metrics for FDIA detection and also highlight the scarcity of benchmark datasets to validate the performance of FDIA detection techniques.

Published

2020

176. Detection of Lying Electrical Vehicles in Charging Coordination Using Deep Learning

Author

Mostafa M. Fouda, Waleed Alasmary, Abdulah Jeza Aljohani, Ahmed Shafee, Mohamed E. Mahmoud, and Fathi Amsaad

Subjects

business.product_category, General Computer Science, Computer science, 020209 energy, Real-time computing, false data injection, 02 engineering and technology, 010501 environmental sciences, 01 natural sciences, Hardware_GENERAL, Electric vehicle, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, smart grid, 0105 earth and related environmental sciences, electric vehicles, business.industry, Deep learning, General Engineering, Training (meteorology), Grid, Security, charging coordination, Artificial intelligence, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, Lying, lcsh:TK1-9971

Abstract

Because charging coordination is a solution for avoiding grid instability by prioritizing charging requests, electric vehicles may lie and send false data to illegally receive higher charging priorities. In this article, we first study the impact of such attacks on both the lying and honest electric vehicles. Our evaluations indicate that lying electric vehicles have a higher chance of charging, whereas honest electric vehicles may not be able to charge or may charge late. Then, an anomaly-based detector based on a deep neural network is devised to identify lying electric vehicles. The idea is that since each electric vehicle driver has a particular driving pattern, the data reported by the corresponding electric vehicle should follow this pattern, and any deviation due to reporting false data can be detected. To train the detector, we first create an honest dataset for the charging coordination application using real driving traces and information provided by an electric vehicle manufacturer, and we then propose a number of attacks as a basis for creating malicious data. We train and evaluate a gated recurrent unit model using this dataset. Our evaluations indicate that our detector can detect lying electric vehicles with high accuracy and a low false alarm rate even when tested on attacks that are not represented in the training dataset.

Published

2020

177. A Novel Bilevel False Data Injection Attack Model Based on Pre-and Post-Dispatch

Author

Shibin Gao, Jieyu Lei, Xiaoguang Wei, Yigu Liu, and Tao Wang

Subjects

General Computer Science, false data injection, bilevel optimization model

Abstract

This letter develops a new bilevel optimization model to construct false data injection attack based on pre- and post- dispatch. In order to enhance the attack concealment, the proposed bilevel model can minimize the variation of uploaded measurements between pre- and post-attack before dispatching, after which the attack can lead the system to an uneconomic and insecure operating state after dispatching. Simulation results validate the effectiveness of the proposed bilevel model in term of operating cost and network overloads.

Published

2022

178. Impact of Cyber-attacks on EV Charging Coordination: The Case of Single Point of Failure

Author

Erdem Gumrukcu, Ali Arsalan, Grace Muriithi, Charukeshi Joglekar, Ahmed Aboulebdeh, Mustafa Alparslan Zehir, Behnaz Papari, Antonello Monti, and Gumrukcu E., Arsalan A., Muriithi G., Joglekar C., Aboulebdeh A., ZEHİR M. A. , Papari B., Monti A.

Subjects

electric vehicle charging, hijacking, cybersecurity, energy management, false data injection

Abstract

Expanding adoption of electric vehicles (EVs) and broad deployment of charging stations push the limits of distribution grid infrastructure and increase the importance of effective charging coordination. Smart EV chargers with several functionalities and charging coordination solutions that can manage the charging sessions of hundreds of EVs are becoming common, with the increasing risk of triggering significant operational problems in case of cyberattacks. The information exchange between the charging coordinator, distribution network operator, and users is essential in the scheduling of a large number of charging sessions, relying on customer preferences, without violating operational grid constraints. Both the user mobile apps used for charging session reservations and DSO-charging coordinator interfaces are vulnerable to cyberattacks which may cause considerable technical and economic consequences. An important concern is the potential impacts of attacks when a single node or communication link is compromised. This study investigates the impacts of false data injection (FDI) and hijacking attacks on EV charging coordination in case of a single point of failure. Hijacking of one user\"s mobile app and FDI attack on the DSO-charging coordinator interface are investigated by simulating a 24-hour scenario with 12 chargers, 34 realistic charging sessions, and an EV charging coordination approach based on each session\"s tolerance to delays. The study highlighted considerable negative impacts that could be encountered in case of a single point of failure in EV charging coordination.

Published

2022

179. Detection of False Data Injection Cyber-Attacks in DC Microgrids based on Recurrent Neural Networks

Author

Mohammad Reza Habibi, Hamid Reza Baghaee, Frede Blaabjerg, and Tomislav Dragicevic

Subjects

Nonlinear autoregressive exogenous model, real-time simulation, Artificial neural network, Test data generation, Computer science, business.industry, 020209 energy, 020208 electrical & electronic engineering, false data injection, Energy Engineering and Power Technology, DC Microgrid, Control engineering, 02 engineering and technology, nonlinear auto-regressive exogenous model neural networks, Power (physics), Recurrent neural network, Artificial Intelligence, Distributed generation, 0202 electrical engineering, electronic engineering, information engineering, Microgrid, Voltage regulation, Electrical and Electronic Engineering, business

Abstract

Cyber-physical systems (CPSs) are vulnerable to cyber-attacks. Nowadays, the detection of cyber-attacks in microgrids as examples of CPS has become an important topic due to their wide use in various practical applications from renewable energy plants to power distribution and electric transportation. In this article, we propose a new artificial intelligence (AI)-based method for the detection of cyber-attacks in direct current (dc) microgrids and also the identification of the attacked distributed energy resource (DER) unit. The proposed method works based on the time-series analysis and a nonlinear auto-regressive exogenous model (NARX) neural network, which is a special type of recurrent neural network for estimating dc voltages and currents. In the proposed method, we consider the effect of cyber-attacks named false data injection attacks (FDIAs), which try to affect the accurate voltage regulation and current sharing by affecting voltage and current sensors. In the presented strategy, first, a dc microgrid is operated and controlled without any FDIAs to gather enough data during the normal operation required for the training of NARX neural networks. It is worth mentioning that in the data generation process, load changing is also considered to have distinguishing data sets for load changing and cyber-attack scenarios. Trained and fine-tuned NARX neural networks are exploited in an online manner to estimate the output dc voltages and currents of DER units in dc microgrid. Then, based on the error of estimation, the cyber-attack is detected. To show the effectiveness of the proposed method, offline digital time-domain simulation studies are performed on a test dc microgrid system in the MATLAB/Simulink environment, and the results are verified using real-time simulations using the OPAL-RT real-time digital simulator (RTDS).

Published

2021

180. A quantum-based approach for offensive security against cyber attacks in electrical infrastructure.

Author

D., Lakshmi, Nagpal, Neelu, Chandrasekaran, S., and D., Jude Hemanth

Subjects

CYBERTERRORISM, INTERNET security, LAMBDA calculus, QUANTUM entanglement, MACHINE learning, CYBER physical systems

Abstract

Deciding the correct offensive security strategy for safeguarding the electrical physical infrastructures of smart grids is a challenging task. The offensive security training against various cyber-attacks focuses on a multitude of electrical subsystems and measurement systems like the Load Frequency Control(LFC) system. Primarily, the principal challenge is to categorize and parameterize the various possible cyber-attacks on electrical infrastructures. This is done by specifying and selecting cyber-attacks considering various main and subsystem blocks of the power structural system within each area of major installations. In this research investigation, formal modeling of security strategy is proposed using Lambda calculus with both classical and quantum perspectives. Furthermore, using a Quantum Machine Learning (QML) technique, the procedure for correct vulnerability prediction, exploitation, and execution strategy is presented with an approximated likelihood of attack and its mode. The local and non-local interactions are introduced as quantum threats and entanglement threats similar to False Data Injection (FDI) methods to induce the attack and counter-attack events through quantum causality connections. Finally, the Quirk simulator is used to validate the proposed quantum design of offensive and defensive attack models considering scenarios of exogenous and scaling attacks on the LFC systems that support the feasibility of the present research work to address the issue of cyber-attacks on the power system networks. • In this research investigation, a formal modeling of security strategy is proposed using Lambda calculus with both classical and quantum perspectives. • Furthermore, using a quantum machine learning technique, the procedure for correct vulnerability prediction, exploitation, and execution strategy is presented with an approximated likelihood of attack and its mode. The local and non-local interactions are introduced as quantum threats and entanglement threats similar to false data injection (FDI) methods to induce the attack and counter-attack events through quantum causality connections. • Finally, the Quirk simulator is used to validate the proposed quantum design of offensive and defensive attack models considering scenarios of exogenous and scaling attacks on LFC system that support the feasibility of the present research work to address the issue of cyber-attacks on the power system networks. [ABSTRACT FROM AUTHOR]

Published

2023

181. Robust fault recognition and correction scheme for induction motors using an effective IoT with deep learning approach.

Author

Tran, Minh‐Quang, Amer, Mohammed, Dababat, Alya', Abdelaziz, Almoataz Y., Dai, Hong-Jie, Liu, Meng-Kun, and Elsisi, Mahmoud

Subjects

*DEEP learning, *MACHINE learning, *INDUCTION motors, *INTERNET of things, *LIFE expectancy, *CYBERTERRORISM, *ALGORITHMS

Abstract

• The uncertainties due to the cyberattacks are tackled with a low computation burden deep learning algorithm. • A new IoT structure for monitoring the induction motor is developed. • A graphical visualization is performed to identify the faults of the induction motors. • Parameterizing the DNN of the fault recognition model is investigated. • The results confirm the robustness and resiliency of the designed model. Maintaining electrical machines in good working order and increasing their life expectancy is one of the main challenges. Precocious and accurate detection of faults is crucial to this process. Induction motors (IMs) are among these machines widely utilized in various fields including industrial and domestic applications that require effective detection of their status. This paper proposes a novel fault recognition and correction (FRC) scheme based on the internet of things (IoT) and deep learning for IMs. In the developed system, vibration signals during motor operation are used to generate bearing fault features, which are inputted to the designed deep learning model to successfully identify bearing faults. The robustness of the proposed approach is tested against a false data injection (FDI) attack. Further, the proposed deep learning approach has been assessed and compared with other state-of-the-art algorithms available in the literature. Experimental testing has been carried out on a real IM to perform the suitability of the developed fault detection and correction scheme. Compared to other fault recognition techniques, the proposed method proves to be more effective. In essence, the results verified the robustness of the novel proposed strategy against the FDI attack making it possible to recognize faults with confidence and improve decision-making to determine the motor's status. [ABSTRACT FROM AUTHOR]

Published

2023

182. Vulnerability Analysis and Consequences of False Data Injection Attack on Power System State Estimation.

Author

Liang, Jingwen, Sankar, Lalitha, and Kosut, Oliver

Subjects

*STATE estimation in electric power systems, *ENERGY management, *ELECTRICAL load, *ELECTRIC generators, *ELECTRIC lines

Published

2016

183. Stealthy False Data Injection Attacks in Feedback Systems Revisited

Author

Sandberg, Henrik and Sandberg, Henrik

Abstract

In this chapter, we consider false data injection (FDI) attacks targeting the actuator or sensor in feedback control systems. It is well known that such attacks may cause significant physical damage. We employ basic principles of linear feedback systems to characterize when the attacks have a physical impact and simultaneously are stealthy. A conclusion is that unstable plants are always sensitive to sensor attacks, and non-minimum phase plants are always sensitive to actuator attacks. Also benign stable and minimum-phase plants may be vulnerable if the control system bandwidth is high. We derive some general guidelines for determining system vulnerability and illustrate their use on a case study. Finally, we discuss some defense mechanism based on watermarking, coding, and loop shifts., QC 20220321

Published

2021

184. Step-gan : A one-class anomaly detection model with applications to power system security

Author

Adiban, M., Safari, A., Salvi, Giampiero, Adiban, M., Safari, A., and Salvi, Giampiero

Abstract

Smart grid systems (SGSs), and in particular power systems, play a vital role in today's urban life. The security of these grids is now threatened by adversaries that use false data injection (FDI) to produce a breach of availability, integrity, or confidential principles of the system. We propose a novel structure for the multigenerator generative adversarial network (GAN) to address the challenges of detecting adversarial attacks. We modify the GAN objective function and the training procedure for the malicious anomaly detection task. The model only requires normal operation data to be trained, making it cheaper to deploy and robust against unseen attacks. Moreover, the model operates on the raw input data, eliminating the need for feature extraction. We show that the model reduces the well-known mode collapse problem of GAN-based systems, it has low computational complexity and considerably outperforms the baseline system (OCAN) with about 55% in terms of accuracy on a freely available cyber attack dataset., Part of proceedings: ISBN 978-1-7281-7605-5QC 20220503

Published

2021

185. A Network Parameter Database False Data Injection Correction Physics-Based Model: A Machine Learning Synthetic Measurement-Based Approach

Author

Keerthiraj Nagaraj, Janise McNair, Arturo S. Bretas, Sheng Zou, Cody Ruben, Nader Aljohani, Tierui Zou, and Alina Zare

Subjects

Technology, QH301-705.5, QC1-999, false data injection, monitoring systems, Machine learning, computer.software_genre, System model, Overdetermined system, Electric power system, symbols.namesake, Approximation error, Robustness (computer science), Taylor series, parameter cyber-attack correction, General Materials Science, Biology (General), Instrumentation, QD1-999, Fluid Flow and Transfer Processes, database of the network parameters, Database, cyber–physical security, cyberphysical security, business.industry, Process Chemistry and Technology, Physics, General Engineering, Process (computing), Engineering (General). Civil engineering (General), Computer Science Applications, Chemistry, Jacobian matrix and determinant, symbols, Artificial intelligence, TA1-2040, business, computer

Abstract

Concerning power systems, real-time monitoring of cyber–physical security, false data injection attacks on wide-area measurements are of major concern. However, the database of the network parameters is just as crucial to the state estimation process. Maintaining the accuracy of the system model is the other part of the equation, since almost all applications in power systems heavily depend on the state estimator outputs. While much effort has been given to measurements of false data injection attacks, seldom reported work is found on the broad theme of false data injection on the database of network parameters. State-of-the-art physics-based model solutions correct false data injection on network parameter database considering only available wide-area measurements. In addition, deterministic models are used for correction. In this paper, an overdetermined physics-based parameter false data injection correction model is presented. The overdetermined model uses a parameter database correction Jacobian matrix and a Taylor series expansion approximation. The method further applies the concept of synthetic measurements, which refers to measurements that do not exist in the real-life system. A machine learning linear regression-based model for measurement prediction is integrated in the framework through deriving weights for synthetic measurements creation. Validation of the presented model is performed on the IEEE 118-bus system. Numerical results show that the approximation error is lower than the state-of-the-art, while providing robustness to the correction process. Easy-to-implement model on the classical weighted-least-squares solution, highlights real-life implementation potential aspects.

Published

2021

186. Generative Learning in Smart Grid

Author

El Kababji, Samer M

Subjects

machine learning, Non-intrusive load monitoring, load simulation, generative adversarial network, false data injection, Computational Engineering, Power and Energy, power state estimation

Abstract

If a smart grid is to be described in one word, that word would be ’connectivity’. While electricity production and consumption still depend on a limited number of physical connections, exchanging data is growing enormously. Customers, utilities, sensors, and markets are all different sources of data that are exchanged in a ubiquitous digital setup. To deal with data complexity, many researchers recently focused on machine learning (ML) applications in smart grids. Much of the success in ML is attributed to discriminative learning where models define boundaries to categorize data. Generative learning, however, reveals how data is generated by learning the underlying distribution functions. In the past few years, generative models brought new dimensions to various domains. Computers became painters and composers. This thesis identifies three applications in the smart grid where generative learning has great potential. On the demand side, residential loads such as dishwashers and clothes driers are simulated using generative models. In specific, the latest developments in generative adversarial networks and kernel density estimators are levered to learn the underlying distributions of individual loads for both power consumption patterns and usage habits. Being data-driven, the learning process eliminates any biases introduced by rule-based models where predetermined fixed formulas describing each load are considered. The study demonstrates the flexibility, viability, and remarkable accuracy of the proposed framework. The resulting synthetic power consumption patterns and usage habits for individual loads are valuable sources for researchers to build or improve their data-driven models for demand-side studies. Non-intrusive load monitoring (NILM) is the second topic researched on the demand side. The goal in NILM is to identify the status of individual loads in a household by merely relying on a smart meter’s measurements without any hardware installations. The research focuses on identifying the operational condition of individual loads by developing a novel hybrid algorithm that combines the widely used generative technique, namely, hidden Markov model, with k-means clustering. The hybrid model is demonstrated to accurately identify the operation conditions of individual loads based on the ingested aggregate signal. Finally, for power transmission, a combination of generative models is proposed to estimate power states from a set of redundant measurements. Power state estimation is a fundamental technique in shedding light on the operational condition of the grid. A traditional state estimator is typically executed online and, in its non-linear formulation, involves a high level of computational complexity. Generative models shift that burden to the offline learning process. On the other hand, bad data detection and identification is a central feature in traditional estimators. As such, the developed framework integrated that feature in the data-driven state estimator by incorporating forward and backward generative adversarial networks. Simple domain knowledge is further incorporated in the model to improve its accuracy against the benchmark data-driven model. The proposed framework remarkably detected tampered measurements including false data injection.

Published

2021

187. Dynamic State Estimation of Generators Under Cyber Attacks

Author

Liang Chen, Yang Li, and Zhi Li

Subjects

Signal Processing (eess.SP), General Computer Science, Computer science, 020209 energy, false data injection, Systems and Control (eess.SY), 02 engineering and technology, Electrical Engineering and Systems Science - Systems and Control, Generator (circuit theory), Electric power system, New england, denial of service, FOS: Electrical engineering, electronic engineering, information engineering, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, Dynamic state estimation, Electrical Engineering and Systems Science - Signal Processing, Estimation, generator, 020208 electrical & electronic engineering, General Engineering, Computer engineering, lcsh:Electrical engineering. Electronics. Nuclear engineering, State (computer science), lcsh:TK1-9971, cyber attacks, robust cubature Kalman filter

Abstract

Accurate and reliable estimation of generator's dynamic state vectors in real time are critical to the monitoring and control of power systems. A robust Cubature Kalman Filter (RCKF) based approach is proposed for dynamic state estimation (DSE) of generators under cyber attacks in this paper. First, two types of cyber attacks, namely false data injection and denial of service attacks, are modelled and thereby introduced into DSE of a generator by mixing the attack vectors with the measurement data; Second, under cyber attacks with different degrees of sophistication, the RCKF algorithm and the Cubature Kalman Filter (CKF) algorithm are adopted to the DSE, and then the two algorithms are compared and discussed. The novelty of this study lies primarily in our attempt to introduce cyber attacks into DSE of generators. The simulation results on the IEEE 9-bus system and the New England 16-machine 68-bus system verify the effectiveness and superiority of the RCKF., Comment: Accepted by IEEE Access

Published

2019

188. Modelling Cyber Attacks on Electricity Market Using Mathematical Programming With Equilibrium Constraints

Author

Xiao Tang, Heidar A. Malki, Saeed Ahmadian, and Zhu Han

Subjects

Mathematical optimization, Optimization problem, General Computer Science, Computer science, 020209 energy, false data injection, mathematical programming with equilibrium constraints, 02 engineering and technology, Cyber-security, Electric power system, 0502 economics and business, 0202 electrical engineering, electronic engineering, information engineering, Electricity market, General Materials Science, Mathematical programming with equilibrium constraints, business.industry, 05 social sciences, General Engineering, Bidding, Smart grid, electricity market, 050211 marketing, Electricity, lcsh:Electrical engineering. Electronics. Nuclear engineering, business, lcsh:TK1-9971, Optimal decision

Abstract

With the development of communication infrastructure in smart grids, cyber security reinforcement has become one of the most challenging issues for power system operators. In this paper, an attacker is considered a participant in the virtual bidding procedure in the day-ahead (DA) and real-time (RT) electricity markets to maximize its profit. The cyber attacker attempts to identify the optimal power system measurements to attack along with the false data injected into measurement devices. Towards the maximum profit, the attacker needs to specify the relation between manipulated meters, virtual power traded in the markets, and electricity prices. Meanwhile, to avoid being detected by the system operator, the attacker considers the physical power system constraints existing in the DA and RT markets. Then, a bi-level optimization model is presented which combines the real electricity market state variables with the attacker decision-variables. Using the mathematical problem with equilibrium constraints, the presented bi-level model is converted into a single level optimization problem and the optimal decision variables for the attacker are obtained. Finally, simulation results are provided to demonstrate the performance of the attacker, which also provides insights for security improvement.

Published

2019

189. Cognitive Dynamic System for Control and Cyber-Attack Detection in Smart Grid

Author

Simon Haykin and Mohammad Irshaad Oozeer

Subjects

General Computer Science, Computer science, Distributed computing, Control (management), false data injection, 02 engineering and technology, 01 natural sciences, 0202 electrical engineering, electronic engineering, information engineering, General Materials Science, cognitive control, Energy system, Bad data detection (BDD), cyber-physical attack, 010401 analytical chemistry, General Engineering, Process (computing), cumulative sum (CUSUM), Grid, 0104 chemical sciences, Smart grid, Metric (mathematics), Cyber-attack, 020201 artificial intelligence & image processing, State (computer science), cognitive dynamic systems, lcsh:Electrical engineering. Electronics. Nuclear engineering, lcsh:TK1-9971

Abstract

This paper introduces a new way of thinking that characterizes itself by uniting two entities, namely state estimation in the smart grid (SG) and cognitive dynamic system (CDS). False data injection (FDI) attacks are a family of new attacks that have been considered to be the most dangerous cyber-attack as it leads to cascaded bad decision making throughout the SG network, which can lead to severe repercussions. The conventional state estimation and bad data detection techniques, which have been applied to reduce observation errors and detect bad data in energy system state estimators, cannot detect FDI attacks. Here, we bring into play an objective-seeking system to act as the supervisor of the SG network. To this end, we propose to introduce a new metric for the SG: the entropic state. The entropic state has two purposes: 1) it provides an indication of the grid's health on a cycle-to-cycle basis and 2) it can be used to detect FDI attacks. Consequently, improving the entropic state is the goal of the supervisor. To achieve that objective, the supervisor dynamically optimizes the state estimation process by reconfiguring the weights of the sensors in the network. With optimality in mind, the CDS is the superior choice for the supervisory system. In this structure, the CDS interacts with the SG network, which is considered as the environment. Computer simulations are carried out on a 4-bus and the IEEE 14-bus systems to highlight the performance of the proposed approach in detecting both bad data and FDI attacks in the SG, respectively.

Published

2019

190. Distributed event-triggered secondary frequency control of islanded AC microgrids under cyber attacks with input time delay.

Author

Khalili, Javad, Dehkordi, Nima Mahdian, and Hamzeh, Mohsen

Subjects

*CYBERTERRORISM, *MICROGRIDS, *DISTRIBUTED power generation, *TELECOMMUNICATION systems, *DATA transmission systems

Abstract

This article proposes a distributed event-triggered secondary frequency control considering cyber attacks and disturbances subject to input delay for islanded AC microgrids (MGs). The reliance on communication networks exposes MGs to cyber attacks. Therefore, detection and prevention of cyber attacks is one of the most important issues for islanded MGs. The purpose of this article is the analysis of the impacts of cyber attacks, such as false data injection (FDI) and denial-of-service (DoS) on communication links and local controllers (LCs), in the presence of time delay in communication links. Our method conserves communication resources by reducing the number of transmissions of sampled data. Also, each distributed generation (DG) can quickly detect and isolate corrupted links and controllers. Moreover, we have analyzed the stability of our proposed strategy by the Lyapunov theory. The superior features of our proposed method, including cyber security, number of transmissions of sampled data, and communication time delay, have been investigated in MATLAB/SimPowersystems Toolbox. • A distributed event-triggered secondary control considering cyber attacks subject to input delays for islanded AC microgrids is proposed. • The purpose of this article is analysis the impacts of cyber attacks in microgrids. • Our method conserves communication resources by reducing the number of transmissions of sampled data. • We have analyzed the stability of our proposed strategy by the Lyapunov theory. [ABSTRACT FROM AUTHOR]

Published

2022

191. A review of cyber security risks of power systems: from static to dynamic false data attacks

Author

Xu, Yan

Published

2020

192. Cyber Security Analysis of Power Networks by Hypergraph Cut Algorithms.

Author

Yamaguchi, Yutaro, Ogawa, Anna, Takeda, Akiko, and Iwata, Satoru

Abstract

This paper presents exact solution methods for analyzing vulnerability of electric power networks to a certain kind of undetectable attacks known as false data injection attacks. We show that the problems of finding the minimum number of measurement points to be attacked undetectably reduce to minimum cut problems on hypergraphs, which admit efficient combinatorial algorithms. Experimental results indicate that our exact solution methods run as fast as the previous methods, most of which provide only approximate solutions. We also present an algorithm for enumerating all small cuts in a hypergraph, which can be used for finding vulnerable sets of measurement points. [ABSTRACT FROM PUBLISHER]

Published

2015

193. Detecting False Data Injection Attacks in AC State Estimation.

Author

Chaojun, Gu, Jirutitijaroen, Panida, and Motani, Mehul

Abstract

Estimating power system states accurately is crucial to the reliable operation of power grids. Traditional weighted least square (WLS) state estimation methods face the rising threat of cyber-attacks, such as false data injection attacks, which can pass the bad data detection process in WLS state estimation. In this paper, we propose a new detection method to detect false data injection attacks by tracking the dynamics of measurement variations. The Kullback–Leibler distance (KLD) is used to calculate the distance between two probability distributions derived from measurement variations. When false data are injected into the power systems, the probability distributions of the measurement variations will deviate from the historical data, thus leading to a larger KLD. The proposed method is tested on IEEE 14 bus system using load data from the New York independent system operator with different attack scenarios. We have also tested our method on false data injection attacks that replace current measurement data with historical measurement data. Test results show that the proposed approach can accurately detect most of the attacks. [ABSTRACT FROM PUBLISHER]

Published

2015

194. DNACK: False Data Detection Based on Negative Acknowledgment and Digital Signature on Mobile Ad-hoc Network.

Author

Abarghouei, Babak, Farokhtala, Ali, and Alizadeh, Mojtaba

Subjects

DIGITAL signatures, AD hoc computer networks, INTRUSION detection systems (Computer security), DATA packeting, CYBERTERRORISM, ROUTING (Computer network management)

Abstract

Mobile ad-hoc network is an interesting network, which is classified as an autonomous system. These types of networks are constructed based on low capacity wireless links, without having a centralized infrastructure system. Lack of central monitoring system makes it so vulnerable to an insider attack. These attacks consist of two main categories; false data and false route attack. An efficient intrusion detection system (IDS) should have a good understanding about the categories. It can be defined by comparison between (true positive network throughput/false throughput) and the packet delivery ratio. This paper, DNACK is proposed based on Digital Signature and standard method of Negative Acknowledgment, which is a new method of false data detection in case of en-route filtering IDS. DNACK members can detect both kinds of insider attacks, a false data (false data injected and false modified messages) and false route attacks (packet dropping and flooding attack), regards to DNACK characteristic. The false data will be detected based on source digital signature by upcoming member and the routing attacks, will be monitored by the last member. The network efficiency shall be guaranteed by using of DNACK because of the high percentage of Packet delivery and the minimum of false throughput. [ABSTRACT FROM AUTHOR]

Published

2015

195. Subspace Methods for Data Attack on State Estimation: A Data Driven Approach.

Author

Kim, Jinsub, Tong, Lang, and Thomas, Robert J.

Subjects

*SUBSPACES (Mathematics), *DATA security, *SECURITY management, *DATA protection, *INFORMATION assurance

Abstract

Data attacks on state estimation modify part of system measurements such that the tempered measurements cause incorrect system state estimates. Attack techniques proposed in the literature often require detailed knowledge of system parameters. Such information is difficult to acquire in practice. The subspace methods presented in this paper, on the other hand, learn the system operating subspace from measurements and launch attacks accordingly. Conditions for the existence of an unobservable subspace attack are obtained under the full and partial measurement models. Using the estimated system subspace, two attack strategies are presented. The first strategy aims to affect the system state directly by hiding the attack vector in the system subspace. The second strategy misleads the bad data detection mechanism so that data not under attack are removed. Performance of these attacks are evaluated using the IEEE 14-bus network and the IEEE 118-bus network. [ABSTRACT FROM PUBLISHER]

Published

2015

196. Effects of cyber attacks on ac and high-voltage DC interconnected power systems with emulated inertia

Author

Pan, K. (author), Dong, J. (author), Rakhshani, E. (author), Palensky, P. (author), Pan, K. (author), Dong, J. (author), Rakhshani, E. (author), and Palensky, P. (author)

Abstract

The high penetration of renewable energy resources and power electronic-based components has led to a low-inertia power grid which would bring challenges to system operations. The new model of load frequency control (LFC) must be able to handle the modern scenario where controlled areas are interconnected by parallel AC/HVDC links and storage devices are added to provide virtual inertia. Notably, vulnerabilities within the communication channels for wide-area data exchange in LFC loops may make them exposed to various cyber attacks, while it still remains largely unexplored how the new LFC in the AC/HVDC interconnected system with emulated inertia would be affected under malicious intrusions. Thus, in this article, we are motivated to explore possible effects of the major types of data availability and integrity attacks—Denial of Service (DoS) and false data injection (FDI) attacks—on such a new LFC system. By using a system-theoretic approach, we explore the optimal strategies that attackers can exploit to launch DoS or FDI attacks to corrupt the system stability. Besides, a comparison study is performed to learn the impact of these two types of attacks on LFC models of power systems with or without HVDC link and emulated inertia. The simulation results on the the exemplary two-area system illustrate that both DoS and FDI attacks can cause large frequency deviations or even make the system unstable; moreover, the LFC system with AC/HVDC interconnections and emulated inertia could be more vulnerable to these two types of attacks in many adversarial scenarios., Intelligent Electrical Power Grids, Team Tamas Keviczky

Published

2020

197. A novel methodology to validate cyberattacks and evaluate their impact on power systems using real time digital simulation

Author

Irfan Khan, Rashid Alammari, Stefano Zanero, Shahbaz Hussain, Sajid Hussain, Atif Iqbal, Enrico Ragaini, and Abdullatif Shikfa

Subjects

real time digital simulation, IEC 61850, Computer science, business.industry, cyberattacks, Testbed, Control (management), Real-time computing, false data injection, Monitoring and control, Automation, countermeasures, Electric power system, communication protocols, control authority, Communications protocol, business, Protocol (object-oriented programming)

Abstract

The traditional power systems are rapidly digitalized and automated for increased monitoring and control. This automation of power system communication has made it possible to monitor and control operations remotely in a plant. However, this also opens up an exploitation vector for attackers, after they gain access to the substation network. This scenario can only be investigated through an in-depth study of communication protocols and control authority concepts associated with power system. IEC 61850 has emerged as the most popular protocol for power system communication. In this paper, we investigate realtime simulation of power systems with IEC 61850 based communication, in order to devise a testbed that can be used to validate false data injection cyberattacks and evaluate their impact. Based on the results, we discuss possible countermeasures to such attacks and outline future research directions. Scopus

Published

2021

198. Enhancing Cybersecurity in Smart Grids: False Data Injection and Its Mitigation

Author

Sajid Hussain, Derya Betul Unsal, Taha Selim Ustun, Ahmet Onen, Fen Bilimleri Enstitüsü, AGÜ, Mühendislik Fakültesi, Elektrik - Elektronik Mühendisliği Bölümü, and Onen, Ahmet

Subjects

Technology, Control and Optimization, Standardization, Computer science, 020209 energy, false data injection, Energy Engineering and Power Technology, 02 engineering and technology, Computer security, computer.software_genre, cybersecurity for scada systems, Electric power system, power system protection, 0202 electrical engineering, electronic engineering, information engineering, cybersecurity attacks, smart grid cybersecurity, power system operation, intruder detection, Electrical and Electronic Engineering, Engineering (miscellaneous), Information exchange, Data collection, Renewable Energy, Sustainability and the Environment, business.industry, 020208 electrical & electronic engineering, Information technology, Smart grid, Key (cryptography), business, Power-system protection, computer, Energy (miscellaneous)

Abstract

Integration of information technologies with power systems has unlocked unprecedented opportunities in optimization and control fields. Increased data collection and monitoring enable control systems to have a better understanding of the pseudo-real-time condition of power systems. In this fashion, more accurate and effective decisions can be made. This is the key towards mitigating negative impacts of novel technologies such as renewables and electric vehicles and increasing their share in the overall generation portfolio. However, such extensive information exchange has created cybersecurity vulnerabilities in power systems that were not encountered before. It is imperative that these vulnerabilities are understood well, and proper mitigation techniques are implemented. This paper presents an extensive study of cybersecurity concerns in Smart grids in line with latest developments. Relevant standardization and mitigation efforts are discussed in detail and then the classification of different cyber-attacks in smart grid domain with special focus on false data injection (FDI) attack, due to its high impact on different operations. Different uses of this attack as well as developed detection models and methods are analysed. Finally, impacts on smart grid operation and current challenges are presented for future research directions.

Published

2021

199. Unidentifiable Attacks in Electric Power Systems.

Author

Qin, Zhengrui, Li, Qun, and Chuah, Mooi-Choo

Abstract

The electric power grid is a crucial infrastructure in our society and is always a target of malicious users and attackers. In this paper, we first introduce the concept of unidentifiable attack, in which the control center cannot identify the attack even though it detects its presence. Thus, the control center cannot obtain deterministic state estimates, since there may have several feasible cases and the control center cannot simply favor one over the others. Furthermore, we present algorithms to enumerate all feasible cases under an unidentifiable attack, and propose an optimization strategy from the perspective of the control center to deal with an unidentifiable attack. We briefly evaluate and validate our enumerating algorithms and optimization strategy. [ABSTRACT FROM PUBLISHER]

Published

2012

200. Comprehensive survey and taxonomies of false data injection attacks in smart grids: attack models, targets, and impacts.

Author

Reda, Haftu Tasew, Anwar, Adnan, and Mahmood, Abdun

Subjects

*CYBER physical systems, *CARRIER transmission on electric lines, *SMART meters, *INTERNET of things, *ELECTRONIC equipment, *TELECOMMUNICATION

Abstract

Smart Grid is organically growing over the centrally controlled power system and becoming a massively interconnected cyber–physical system with advanced technologies of fast communication and intelligence (such as Internet of Things, smart meters, and intelligent electronic devices). While the convergence of a significant number of cyber–physical elements has enabled the Smart Grid to be far more efficient and competitive in addressing the growing global energy challenges, it has also introduced a large number of vulnerabilities in the cyber–physical space culminating in violations of data availability, integrity, and confidentiality. Recently, false data injection (FDI) has become one of the most critical types of cyberattacks, and appears to be a focal point of interest for both research and industry. To this end, this paper presents a comprehensive review in the recent advances of the FDI attacks, with particular emphasis on adversarial models, attack targets, and impacts on the Smart Grid infrastructure. This review paper aims to provide a thorough understanding of the incumbent threats affecting the entire spectrum of the Smart Grid. Related literature are analyzed and compared in terms of their theoretical and practical implications to the Smart Grid cybersecurity. In conclusion, a vast range of technical limitations of existing false data attack research is identified, and a number of future research directions is recommended. • Identifies key security requirements for stealthy FDI attacks in Smart Grid. • Presents three main classes related to attack models, attack targets, and impact. • Suggests several evaluation criteria in relation to Smart Grid cybersecurity. • Provides technical recommendations for future research directions. [ABSTRACT FROM AUTHOR]

Published

2022