Model-Based Attack Detection and Mitigation for Automatic Generation Control

Sridhar, Siddharth; Manimaran, G.

doi:10.1109/tsg.2014.2298195

Cited by 427 publications

(208 citation statements)

References 20 publications

Supporting

Mentioning

205

Contrasting

Unclassified

Order By: Relevance

“…Some research in security of CPS has focused on assessing the effects of cyber threats against both the physical and the cyber dimension of networked critical infrastructures [34], [35] by using existing cyber-physical test-beds. These approaches focused on modelling dynamical systems such as sensors or actuators signals, for which timing concerns are fundamental.…”

Section: Secure Cyber-physical Systemsmentioning

confidence: 99%

On the Interplay Between Cyber and Physical Spaces for Adaptive Security

Tsigkanos

Pasquale

Ghezzi

et al. 2018

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Abstract-Ubiquitous computing is resulting in a proliferation of cyber-physical systems that host or manage valuable physical and digital assets. These assets can be harmed by malicious agents through both cyber-enabled or physically-enabled attacks, particularly ones that exploit the often ignored interplay between the cyber and physical world. The explicit representation of spatial topology is key to supporting adaptive security policies. In this paper we explore the use of Bigraphical Reactive Systems to model the topology of cyber and physical spaces and their dynamics. We utilise such models to perform speculative threat analysis through model checking to reason about the consequences of the evolution of topological configurations on the satisfaction of security requirements. We further propose an automatic planning technique to identify an adaptation strategy enacting security policies at runtime to prevent, circumvent, or mitigate possible security requirements violations. We evaluate our approach using a case study concerned with countering insider threats in a building automation system.

show abstract

Section: Secure Cyber-physical Systemsmentioning

confidence: 99%

On the Interplay Between Cyber and Physical Spaces for Adaptive Security

Tsigkanos

Pasquale

Ghezzi

et al. 2018

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

show abstract

“…Protection Range Type [36] Substation Network-based [37] Substation Host-based [38][39][40] SCADA Network-based [41] Automatic generator control (AGC) Network-and host-based [42] Communication protocols Network-based [43] WAMS Host-based [44] Distribution system Host-based …”

Section: Idsmentioning

confidence: 99%

Cyber-Physical System Security of a Power Grid: State-of-the-Art

2016

View full text Add to dashboard Cite

Abstract:As part of the smart grid development, more and more technologies are developed and deployed on the power grid to enhance the system reliability. A primary purpose of the smart grid is to significantly increase the capability of computer-based remote control and automation. As a result, the level of connectivity has become much higher, and cyber security also becomes a potential threat to the cyber-physical systems (CPSs). In this paper, a survey of the state-of-the-art is conducted on the cyber security of the power grid concerning issues of: (1) the structure of CPSs in a smart grid; (2) cyber vulnerability assessment; (3) cyber protection systems; and (4) testbeds of a CPS. At Washington State University (WSU), the Smart City Testbed (SCT) has been developed to provide a platform to test, analyze and validate defense mechanisms against potential cyber intrusions. A test case is provided in this paper to demonstrate how a testbed helps the study of cyber security and the anomaly detection system (ADS) for substations.

show abstract

“…Sridhar et al [8] discussed the impact of DI attacks on power system and presented four attack modes: the scaling attack, the ramp attack, the pulse attack, and the random attack. Although there was no clear indication of the maximum or minimum limits in these attacks, the selection of the attack parameters had to satisfy the requirement that the attacks could not trigger any data quality alarms in the control center.…”

Section: Introductionmentioning

confidence: 99%