Ontology-based Approach for Malicious Behaviour Detection in Synchrophasor Networks

    Research output: Chapter in Book/Report/Conference proceedingConference contribution


    View graph of relations

    Synchrophasor systems are becoming a vital requirement for real-time monitoring, control and protection of emerging Smart Grids that need cyber security issues be carefully analysed and mitigated. This paper proposes a behaviour based ontology on the Syncrophasor communications for the detection of malicious system behaviours. Syncrophasor activities are represented with their causal relationships using a flexible semantic model. The developed model bridges the gap between system behaviours and the exchanged data and commands in the network. A set of semantic rules are created to assist in identifying malicious activities that are deviating from the
    expected behaviour in the model. The proposed approach is prototyped and tested for its applicability in detecting cyber-attacks. Furthermore, a use case for valuable information extraction is described using query-based engine over the ontology knowledge. The presented results demonstrate the usefulness and flexibility of the proposed approach in detecting malicious activities that could improve Syncrophasor network security.



    Original languageEnglish
    Title of host publicationProceedings of Power and Energy Society General Meeting (PESGM), 2017
    Publisher IEEE
    Publication statusPublished - 01 Feb 2018
    EventIEEE Power and Energy Society General Meeting - Chicago, United States
    Duration: 16 Jul 201720 Jul 2017


    ConferenceIEEE Power and Energy Society General Meeting
    Abbreviated titleIEEE PES-GM 2017
    CountryUnited States
    Internet address

    ID: 124684768