Ying Zhang scite author profile

Prefix hijacking, a misbehavior in which a misconfigured or malicious BGP router originates an IP prefix that the router does not own, is becoming an increasingly serious security problem on the Internet. In this paper, we conduct a first comprehensive study on incrementally deployable mitigation solutions against prefix hijacking. We first propose a novel reactive detection-assisted solution based on the idea of bogus route purging and valid route promotion. Our simulations based on realistic settings show that purging bogus routes at 20 highest-degree ASes reduces the polluted portion of the Internet by a random prefix hijack from 50% down to 24%, and adding promotion further reduces the remaining pollution by 33% ∼ 57%, We prove that our proposed route purging and promotion scheme preserve the convergence properties of BGP regardless of the number of promoters. We are the first to demonstrate that detection systems based on a limited number of BGP feeds are subject to detection evasion by hijackers. Motivated the need for proactive defenses to complement reactive mitigation response, we evaluate customer route filtering, a best common practice among large ISPs today, and show its limited effectiveness. We also show the added benefits of combining route purging-promotion with customer route filtering.

show abstract

Attack Identification and Correction for PMU GPS Spoofing in Unbalanced Distribution Systems

Zhang

Wang

Liu

2020

IEEE Trans. Smart Grid

View full text Add to dashboard Cite

Due to the vulnerability of civilian global positioning system (GPS) signals, the accuracy of phasor measurement units (PMUs) can be greatly compromised by GPS spoofing attacks (GSAs), which introduce phase shifts into true phase angle measurements. Focusing on simultaneous GSAs for multiple PMU locations, this paper proposes a novel identification and correction algorithm in distribution systems. A sensitivity analysis of state estimation residuals on a single GSA phase angle is firstly implemented. An identification algorithm using a probing technique is proposed to determine the locations of spoofed PMUs and the ranges of GSA phase shifts. Based on the identification results, these GSA phase shifts are determined via an estimation algorithm that minimizes the mismatch between measurements and system states. Further, with the attacked PMU data corrected, the system states are recovered. Simulations in unbalanced IEEE 34-bus and 123-bus distribution systems demonstrates the efficiency and accuracy of the proposed method.Index Terms-State estimation, phasor measurement units, multiple GPS spoofing attacks, unbalanced distribution systems, attack identification and correction.

show abstract

Interval State Estimation With Uncertainty of Distributed Generation and Line Parameters in Unbalanced Distribution Systems

Zhang¹,

Wang²,

Li³

2020

IEEE Trans. Power Syst.

View full text Add to dashboard Cite

SENSS Against Volumetric DDoS Attacks

Ramanathan

Mirković

et al. 2018

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Ying Zhang

Detecting False Data Injection Attacks in Smart Grids: A Semi-Supervised Deep Learning Approach

Practical defenses against BGP prefix hijacking

Attack Identification and Correction for PMU GPS Spoofing in Unbalanced Distribution Systems

Interval State Estimation With Uncertainty of Distributed Generation and Line Parameters in Unbalanced Distribution Systems

SENSS Against Volumetric DDoS Attacks

Contact Info

Product

Resources

About