Intrusion Detection System for Network Security in Synchrophasor Systems

Yi Yang; Kieran McLaughlin; Sakir Sezer; Timothy Littler; Bernardi Pranggono; Paul Brogan; Haifeng Wang

doi:10.1049/cp.2013.0059

Intrusion Detection System for Network Security in Synchrophasor Systems

Yi Yang, Kieran McLaughlin, Sakir Sezer, Timothy Littler, Bernardi Pranggono, Paul Brogan, Haifeng Wang

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

45 Citations (Scopus)

Abstract

Synchrophasor systems will play a crucial role in next generation Smart Grid monitoring, protection and control. However these systems also introduce a multitude of potential vulnerabilities from malicious and inadvertent attacks, which may render erroneous operation or severe damage. This paper proposes a Synchrophasor Specific Intrusion Detection System (SSIDS) for malicious cyber attack and unintended misuse. The SSIDS comprises a heterogeneous whitelist and behavior-based approach to detect known attack types and unknown and so-called ‘zero-day’ vulnerabilities and attacks. The paper describes reconnaissance, Man-in-the-Middle (MITM) and Denial-of-Service (DoS) attack types executed against a practical synchrophasor system which are used to validate the real-time effectiveness of the proposed SSIDS cyber detection method.

Original language	English
Title of host publication	IET International Conference on Information and Communications Technologies (IETICT 2013)
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	978-1-84919-653-6
DOIs	https://doi.org/10.1049/cp.2013.0059
Publication status	Published - Apr 2013

Keywords

Smart Grid; Synchrophasor System; Cyber Security; Intrusion Detection

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1049/cp.2013.0059Licence: Unspecified

Cite this

@inproceedings{c4d58fa7dcd241e3bd5a42e547f337e7,

title = "Intrusion Detection System for Network Security in Synchrophasor Systems",

abstract = "Synchrophasor systems will play a crucial role in next generation Smart Grid monitoring, protection and control. However these systems also introduce a multitude of potential vulnerabilities from malicious and inadvertent attacks, which may render erroneous operation or severe damage. This paper proposes a Synchrophasor Specific Intrusion Detection System (SSIDS) for malicious cyber attack and unintended misuse. The SSIDS comprises a heterogeneous whitelist and behavior-based approach to detect known attack types and unknown and so-called {\textquoteleft}zero-day{\textquoteright} vulnerabilities and attacks. The paper describes reconnaissance, Man-in-the-Middle (MITM) and Denial-of-Service (DoS) attack types executed against a practical synchrophasor system which are used to validate the real-time effectiveness of the proposed SSIDS cyber detection method.",

keywords = "Smart Grid; Synchrophasor System; Cyber Security; Intrusion Detection",

author = "Yi Yang and Kieran McLaughlin and Sakir Sezer and Timothy Littler and Bernardi Pranggono and Paul Brogan and Haifeng Wang",

year = "2013",

month = apr,

doi = "10.1049/cp.2013.0059",

language = "English",

booktitle = "IET International Conference on Information and Communications Technologies (IETICT 2013)",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

}

TY - GEN

T1 - Intrusion Detection System for Network Security in Synchrophasor Systems

AU - Yang, Yi

AU - McLaughlin, Kieran

AU - Sezer, Sakir

AU - Littler, Timothy

AU - Pranggono, Bernardi

AU - Brogan, Paul

AU - Wang, Haifeng

PY - 2013/4

Y1 - 2013/4

N2 - Synchrophasor systems will play a crucial role in next generation Smart Grid monitoring, protection and control. However these systems also introduce a multitude of potential vulnerabilities from malicious and inadvertent attacks, which may render erroneous operation or severe damage. This paper proposes a Synchrophasor Specific Intrusion Detection System (SSIDS) for malicious cyber attack and unintended misuse. The SSIDS comprises a heterogeneous whitelist and behavior-based approach to detect known attack types and unknown and so-called ‘zero-day’ vulnerabilities and attacks. The paper describes reconnaissance, Man-in-the-Middle (MITM) and Denial-of-Service (DoS) attack types executed against a practical synchrophasor system which are used to validate the real-time effectiveness of the proposed SSIDS cyber detection method.

AB - Synchrophasor systems will play a crucial role in next generation Smart Grid monitoring, protection and control. However these systems also introduce a multitude of potential vulnerabilities from malicious and inadvertent attacks, which may render erroneous operation or severe damage. This paper proposes a Synchrophasor Specific Intrusion Detection System (SSIDS) for malicious cyber attack and unintended misuse. The SSIDS comprises a heterogeneous whitelist and behavior-based approach to detect known attack types and unknown and so-called ‘zero-day’ vulnerabilities and attacks. The paper describes reconnaissance, Man-in-the-Middle (MITM) and Denial-of-Service (DoS) attack types executed against a practical synchrophasor system which are used to validate the real-time effectiveness of the proposed SSIDS cyber detection method.

KW - Smart Grid; Synchrophasor System; Cyber Security; Intrusion Detection

U2 - 10.1049/cp.2013.0059

DO - 10.1049/cp.2013.0059

M3 - Conference contribution

BT - IET International Conference on Information and Communications Technologies (IETICT 2013)

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

Intrusion Detection System for Network Security in Synchrophasor Systems

Abstract

Keywords

UN SDGs

Access to Document

Fingerprint

Cite this