cyber security in smart grids
play

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. - PowerPoint PPT Presentation

Sep 20, 2022 •353 likes •893 views

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators

  1. Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay

  2. Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators Network (SANET) - Each physical device is given one IP address - Internet of Things (IoT) - Concurrent cyber and physical links - hardwired link between sensor and meter, communication link between sensor, meter and data center - Requires analysing both the physical layer dynamics (power system - faults, small signal stability) as well as communication layer dynamics (latencies, packet drops) - Tested by HIL simulations - Use of RTDS(simulating the physical system), real communication links, servers and control centers

  3. Cyber-Physical Interaction

  4. Power and Information Flow in CPS Environment

  5. Cyber Physical Testbed - Integrates both cyber and physical components - physical network and devices, communication layer and real time control algorithms - Co-simulation of cyber and physical components to capture the influence of one’s dynamics on the other - Useful tool to study - system vulnerabilities, intrusion points, reliability, impact analysis and performance of mitigation algorithms - Associated with visualization tools for impact analysis and operator training

  6. Cyber-Physical Testbed Components in a CPS Testbed: 1. Software - Various SCADA and EMS applications that monitor and control the physical system 2. Hardware - IEDs and PMUs that bridge the cyber and physical domains 3. Real-time Simulator - FPGA model of power system to compute updated grid state in real time 4. Algorithms - To perform automated control functions 5. Communication Links/ HW Interface - To interface the IEDs with power system simulator and control center 6. Architectures and Protocols - Real word SCADA protocols

  7. Cyber-Physical Testbeds : Applications

  8. Cyber-Physical Testbed : Applications

  9. Cyber Physical Testbed 1. Physical System: - RTDS simulation platform with capability to perform real-time power system simulation, allows integration of IEDs and associated hardwares through standard protocols IEC 61850 and DNP3, closely mimics the physical response of the power system when subjected to fault type scenarios - DIgSILENT Power factory for non real time power system simulation. Unlike RTDS does not allow physical connection of devices, however allows simulation of larger systems with limited RT constraints, has capability for advanced system analysis - tools for SE and Contingency Analysis

  10. Cyber Physical Testbed 2. Control Center - A computer capable of collecting measurements and status from field devices, managing historic data, advanced computing and decision making, human-in-loop interfaces and sending control actions to virtual substations. 3. Substation - Can be a computer (RTU) connected to hardware IEDs and communicating with control center, or could be virtual substations with virtual IEDs communicating with control center. Capable of computing and actuating capabilities related to protection.

  11. Cyber Physical Testbed 4. Communications - Wide area network - communication between CC and substation RTU using real life SCADA protocols (DNP3 over IP) - Internet scale cyber attack generation environment to orchestrate DoS and malicious data injection - Within the substations, the IEC 61850 protocol is used to communicate status and commands between both other IEDs and the RTU - Manufacturing Message Specification (MMS) protocols are used to communicate analog and binary values between the IEDs and RTUs

  12. Cyber-Physical Testbed Logical Block Diagram of a CPS Environment

  13. Cyber-Physical Testbed at Iowa State University

  14. Major Cyber Attacks in Recent Past

  15. Types of Attacks 1. Denial of Service Attacks - Attacker floods the targeted controller (RTU/CC computer) with superfluous requests - system unavailable to legitimate users - packets drop - link fails - loss of necessary information Eg : SYN flood DoS attack can be stopped by identifying and blocking the IP which causes the traffic

  16. Types of Attacks 2. Distributed DoS Attack - Severe form of Denial of Service attacks where the traffic flooding the victim originates from multiple sources.

  17. Type of Attacks 3. Time Delay Attacks - Attackers can introduce deliberate delays into the sensing and feedback loops by jamming the network or by attacking the routing tables. Time delays can severely degrade the performance of control systems, can even lead to small signal instability. In protection paradigm, information is time critical. Latencies can lead to malfunctioning of relays. 4. GPS Spoofing Attacks - A GPS spoofing attack attempts to deceive a GPS receiver by broadcasting incorrect GPS signals, structured to resemble a set of normal GPS signals, or by rebroadcasting genuine signals captured elsewhere or at a different time. PMUs are susceptible to these attacks.

  18. Type of Attacks 5. False Data Injection Attacks - Attacker hacks into the system and corrupts the sensor readings in a way that it gets undetected by the bad data detection system in control center. Due to high degree of correlation between the sensor readings in power system (thanks to KCL and KVL), the attacker has to have access to a large set of meter readings, geographically spread across locations. This form of a coordinated attack is difficult to realize. Even if the control center identifies the source of bad data and purges those set of meter readings, the attacker may aim to spoil many meters so as to render the system unobservable. State Estimators are prone to these attacks.

  19. Type of Attacks 6. Eavesdropping and Replay Attacks - A kind of Man-in-the-Middle attack in which the attacker hacks into the communication system and gains access to the data packets being transferred. It may not be able to decode the message due to encryption, but can make a copy of these packets and store them. Simultaneously, observes the response of the controller to these messages. This helps the attacker to correlate an action with a packet. (Eg. Opening of a breaker with packet A, closing with B, so on..) When it needs that action to be reperformed (malicious breaker tripping) it simply obstructs the actual packets, and replays the previously stored packets.

  20. Cyber Attack on Power System Operations

  22. Power injection & flow measurement Data from remote sensors Control Centre System States Operation Decisions

  23. Attacker modifies either the False Data Injection Attacks MEASUREMENT DATA received by the control centre or the NETWORK TOPOLOGY as perceived by the control centre PERFECT ATTACKS – Attacker has knowledge of topology Corruption is intelligent to IMPERFECT ATTACKS – AVOID Attacks constructed from DETECTION measurement data alone. Knowledge of Topology is NOT EXACT ! WRONG ESTIMATES lead to WRONG DECISIONS in merit Attacker’s Intention: Economic Merit in Market, Large Scale Terrorism of the attacker

  24. To avoid detection the Attack Vector has to be in the column span of the H matrix a = H c

  25. False Data Injection on AC State Estimation Residues : For Generalized False Data Injection

  26. Perfect Attack: To Ensure

  28. Adjust GENERATOR OUTPUTS to Automatic Generation Control maintain FREQUENCY and TIE LINE FLOWS to scheduled values AREA CONTROL ERROR Very fast acting : ACE signals every 5 secs No elaborate algorithm to validate data If ACE is positive, it is a signal to the generators to Ramp Down But… perceived change in FREQUENCY and perceived change in LOAD should be consistent If ACE is negative, it is a signal to the generators to Ramp Up An attacker modifies the sensor outputs of TIE LINE flows and FREQUENCY to orchestrate an attack

  29. Types of Attacks on Automatic Generation Control Scaling attacks act faster than Ramp Attacks, but AGCs are equipped with rate limiters… High rate of change of ACE as in Scaling attacks can get detected by rate limiters

  30. Attacks in a Two Area Power System Any change in TIE LINE flow is perceived as a change in LOAD and hence change in frequency has to corroborate with it

  31. Attacks in a Two Area Power System Interpreted by AGC as excess generation in area 1, send signal to ramp down Load Generation Mismatch …. Shortage in generation…. Fall in frequency Under- frequency relays trip… Large regions are isolated

  33. Generator Bids and Forecasted Loads Day State Real Time Ahead Ex- Estimation Market Post Market LMP Attacker has the Ex-Ante LMP at information about Ex- each Node Manipulated Ante LMPs and Line Sensor Data Flows Optimal Generation Schedule Expected Line Attack Variations Flows

  34. Dispatch Day Ahead Schedule & Ex- Real Time Market Ante LMP Market Calculation Need to recalculate LMP based on run time data to charge the difference in consumption/generation Stochastic Nature of Loads…. Variation in Dispatch… LMP calculated Real time generation Dispatch and flows are different from Lagrange Instruction sent to Multipliers Generators

  35. Real Time Market Difference in Incremental OPF LMP between on the estimated two nodes flows

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cyber Security and Privacy Issues in Smart Grids Acknowledgement: Slides by Hongwei Li from

Cyber Security and Privacy Issues in Smart Grids Acknowledgement: Slides by Hongwei Li from

2015/10/30 Cyber Security and Privacy Issues in Smart Grids Acknowledgement: Slides by Hongwei Li from Univ. of Waterloo References Main Reference Liu, J. and Xiao, Y. and Li, S. and Liang, W. and Chen, C. Cyber Security and

397 views • 13 slides
NIST and the Smart Grid Annabelle Lee Senior Cyber Security Strategist National Institute of

NIST and the Smart Grid Annabelle Lee Senior Cyber Security Strategist National Institute of

NIST and the Smart Grid Annabelle Lee Senior Cyber Security Strategist National Institute of Standards and Technology U.S. Department of Commerce 11 January 2010 Why Do We Need Smart Grids? Fundamental Drivers Smart Grid goals Reduce

711 views • 34 slides
UPM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH SMART GRIDS DEVELOPMENT

UPM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH SMART GRIDS DEVELOPMENT

Guillermo del Campo UPM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH SMART GRIDS DEVELOPMENT INTERNATIONAL SUMMER SCHOOL SMART GRIDS AND SMART CITIES Barcelona, 6-8 June 2017 Context Dramatic growth of energy

618 views • 16 slides
Communication Technologies and Standards for Smart Grids EE 772 : Smart Grids Prof. S. A.

Communication Technologies and Standards for Smart Grids EE 772 : Smart Grids Prof. S. A.

Communication Technologies and Standards for Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Smart Grid Communications 1. Bi-directional flow of information (along with electricity) for effective

647 views • 32 slides
Smart Grid Cyber Security Deakin University, La Trobe University, RMIT and The University of

Smart Grid Cyber Security Deakin University, La Trobe University, RMIT and The University of

Smart Grid Cyber Security Deakin University, La Trobe University, RMIT and The University of Melbourne Smart Grid Cyber Security The smart power grid is transforming towards a large cyber- physical system. The increased reliance of

397 views • 22 slides
Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security

Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security

Cyber Security and Smart Infrastructure: Research Dr. Stacy Prowell Chief Cyber Security Research Scientist Oak Ridge National Laboratory Main Points Information Sharing Enable discovering and sharing information about real threats to

216 views • 6 slides
IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY

IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY

IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY AGENCY 1 of 14 The Great Digital Convergence Smart Mobility Smart Payment Smart Health 3 of 17 Office Smart Mobility MRT Station Bus Stop

577 views • 14 slides
Jos Manuel Martn INYCOM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH

Jos Manuel Martn INYCOM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH

Jos Manuel Martn INYCOM DAY 1: SMART GRIDS TABLE 1: TECHNOLOGICAL CHALLENGES RELATED WITH SMART GRIDS DEVELOPMENT INTERNATIONAL SUMMER SCHOOL SMART GRIDS AND SMART CITIES Barcelona, 6-8 June 2017 1. INTRODUCTION 2. P2P-SMARTEST

387 views • 20 slides
Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar

Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar

Validating Security and Resiliency in Software Defined Networks for Smart Grids Rakesh Kumar DEPARTMENT OF ELECTRICAL AND COMPUTER ENGINEERING UNIVERSITY OF ILLINOIS, URBANA-CHAMPAIGN Motivation 2 Security: Access Control In United

349 views • 23 slides
converters for Smart Energy Grids Phuong H. Nguyen p.nguyen.hong@tue.nl Smart Energy Grids

converters for Smart Energy Grids Phuong H. Nguyen p.nguyen.hong@tue.nl Smart Energy Grids

Applications of AC/DC converters for Smart Energy Grids Phuong H. Nguyen p.nguyen.hong@tue.nl Smart Energy Grids (SEG) Processing burden information Controlling properly at the right moment (real-time control) Balancing supply-demand at all

574 views • 28 slides
Challenges of energy forecasting for smart grids Modelling Smart Grids, Prague 11th of September

Challenges of energy forecasting for smart grids Modelling Smart Grids, Prague 11th of September

Challenges of energy forecasting for smart grids Modelling Smart Grids, Prague 11th of September 2015 Tangent Works is a machine learning company applying information geometry in predictive modelling Automation combined with speed and volume

243 views • 10 slides
GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The

GRID PHD GRID, PHD The Smart Grid Cyber Security and the Future of Keeping the Lights On The Smart Grid, Cyber Security, and the Future of Keeping the Lights On Kelly Ziegler Chi f O Chief Operating Officer ti Offi National Board of

1.01k views • 48 slides
a Security ECONomics service platform for smart security investments and cyber insurance pricing

a Security ECONomics service platform for smart security investments and cyber insurance pricing

a Security ECONomics service platform for smart security investments and cyber insurance pricing in the beyonD 2020 era SECONDO: A Platform for Cybersecurity Investments and Cyber Insurance Decisions The 17th International Conference on Trust,

273 views • 13 slides
Smart Grids: The Electricity supply of the future Brussels , September 16 th , 2011 1. The need

Smart Grids: The Electricity supply of the future Brussels , September 16 th , 2011 1. The need

ICT Infrastructure for energy-efficient buildings and neighbourhoods for carbon-neutral cities Smart Grids: The Electricity supply of the future Brussels , September 16 th , 2011 1. The need for Smart Grids Smart Grids on line with energy

451 views • 9 slides
Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework

Cyber Security Risk Using the Cyber Security Measurement Framework Cyber Security Framework Reporting Objectives Executive Summary Information Assess Current Cyber Security Posture Measure Progress Toward Improvement Assess

634 views • 5 slides
Security for smart Electricity GRIDs Project type: Collaborative project small or medium

Security for smart Electricity GRIDs Project type: Collaborative project small or medium

Security for smart Electricity GRIDs Project type: Collaborative project small or medium scale focused research project Grant agreement no: 607109 Thematic Priority: FP7-SEC-2013-1 October 1 st , 2014 Start date of project: Duration: 36

303 views • 11 slides
Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation

Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation

Large Scale Simulation of Tor: Stream Correlation Attacks Gavin O Gorman Anonymous Networks Large Scale Simulation of Tor: Stream Mix Networks Low latency Networks Network Correlation Attacks Simulation Results Attacks Gavin O

328 views • 20 slides
Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink Attack At Paper written by

Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink Attack At Paper written by

Chair of Connected Mobility TUM Department of Informatics Re Resilience of of Dep Deployed ed TC TCP to to Bl Blink Attack At Paper written by Matthew Luckie Robert Beverly Tiange Wu Naval Postgraduate School University of Waikato

367 views • 11 slides
Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim

Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim

Sliding right into disaster - Left-to-right sliding windows leak Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon Groot Bruinderink , Nadia Heninger, Tanja Lange, Christine van Vredendaal and Yuval Yarom September 28th, 2017 Sliding

581 views • 44 slides
Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free

Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free

Sliding window - Sender side Cumulative Acknowledgments Not sent Sent, no ACK ACK:ed Free Sending buffer at the sender: Sliding Window New data sent to transport layer by application, but not yet sent Free buffer space where application

564 views • 3 slides
Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and

Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and

Hacking Excel Online How to exploit Calc Nicolas Joly - @n_joly MSRC Vulnerabilities and Mitigations Team SSTIC June 5 th , 2020 This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS

558 views • 23 slides
Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University

Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University

Advanced Scientific Computing with R 4. Plots Michael Hahsler Southern Methodist University February 16, 2014 These slides are largely based on An Introduction to R http://CRAN.R-Project.org/ Michael Hahsler (SMU) Adv. Sci. Comp. with

464 views • 23 slides
UI, Graphics & EFL Carsten Haitzler Principal Engineer Samsung Electronics Korea

UI, Graphics & EFL Carsten Haitzler Principal Engineer Samsung Electronics Korea

UI, Graphics & EFL Carsten Haitzler Principal Engineer Samsung Electronics Korea c.haitzler@samsung.com Founder/Leader Enlightenment / EFL Display System Overview Graphics 4 Graphics Old-School FB In the old days we used the

1.36k views • 47 slides
Blaise NG Key issues in current system Language enhancements Layout Unicode

Blaise NG Key issues in current system Language enhancements Layout Unicode

First glimpse Blaise NG Key issues in current system Language enhancements Layout Unicode Consequences New parser and IDE New meta files New runtime system (DEP) IDE / Parser Research Platforms Development

441 views • 21 slides

More recommend