Projects per year
Abstract
Synchrophasor technology is used for real-time control and monitoring in smart grid. Previous works in literature identified critical vulnerabilities in IEEE C37.118.2 synchrophasor communication standard. To protect synchrophasor-based systems, stealthy cyber-attacks and effective defense mechanisms still need to be investigated.
This paper investigates how an attacker can develop a custom tool to execute stealthy man-in-the-middle attacks against synchrophasor devices. In particular, four different types of attack capabilities have been demonstrated in a real synchrophasor-based synchronous islanding testbed in laboratory: (i) command injection attack, (ii) packet drop attack, (iii) replay attack and (iv) stealthy data manipulation attack. With deep technical understanding of the attack capabilities and potential physical impacts, this paper also develops and tests a distributed Intrusion Detection System (IDS) following NIST recommendations. The functionalities of the proposed IDS have been validated in the testbed for detecting aforementioned cyber-attacks. The paper identified that a distributed IDS with decentralized decision making capability and the ability to learn system behavior could effectively detect stealthy malicious activities and improve synchrophasor network security.
This paper investigates how an attacker can develop a custom tool to execute stealthy man-in-the-middle attacks against synchrophasor devices. In particular, four different types of attack capabilities have been demonstrated in a real synchrophasor-based synchronous islanding testbed in laboratory: (i) command injection attack, (ii) packet drop attack, (iii) replay attack and (iv) stealthy data manipulation attack. With deep technical understanding of the attack capabilities and potential physical impacts, this paper also develops and tests a distributed Intrusion Detection System (IDS) following NIST recommendations. The functionalities of the proposed IDS have been validated in the testbed for detecting aforementioned cyber-attacks. The paper identified that a distributed IDS with decentralized decision making capability and the ability to learn system behavior could effectively detect stealthy malicious activities and improve synchrophasor network security.
Original language | English |
---|---|
Title of host publication | 16th Annual Conference on Privacy, Security and Trust |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Number of pages | 10 |
ISBN (Electronic) | 978-1-5386-7493-2 |
Publication status | Published - 01 Nov 2018 |
Event | Privacy, Security and Trust 2018 - Belfast, United Kingdom Duration: 28 Aug 2018 → 30 Aug 2018 |
Conference
Conference | Privacy, Security and Trust 2018 |
---|---|
Abbreviated title | PST 2018 |
Country/Territory | United Kingdom |
City | Belfast |
Period | 28/08/2018 → 30/08/2018 |
Fingerprint
Dive into the research topics of 'Demonstrating Cyber-Physical Attacks and Defense for Synchrophasor Technology in Smart Grid'. Together they form a unique fingerprint.Projects
- 1 Finished
-
R1452ECI: Converged Approach towards Resilient Industrial control systems and Cyber Assurance
Sezer, S. (PI), Laverty, D. (CoI), McLaughlin, K. (CoI), McLoone, S. (CoI) & Morrow, D. J. (CoI)
01/08/2014 → 31/12/2017
Project: Research
Activities
- 1 Membership of external research organisation
-
Research Institute in Trustworthy Industrial Control Systems (External organisation)
McLaughlin, K. (Member)
2014 → …Activity: Membership types › Membership of external research organisation