A Cyber-Physical Anomaly Detection for Wide-Area Protection Using Machine Learning
- Idaho National Laboratory (INL), Idaho Falls, ID (United States)
- Iowa State University, Ames, IA (United States)
Wide-area protection scheme (WAPS) provides system-wide protection by detecting and mitigating small and large-scale disturbances that are difficult to resolve using local protection schemes. As this protection scheme is evolving from a substation-based distributed remedial action scheme (DRAS) to the control center-based centralized RAS (CRAS), it presents severe challenges to their cybersecurity because of its heavy reliance on an insecure grid communication, and its compromise would lead to system failure. This article presents an architecture and methodology for developing a cyber-physical anomaly detection system (CPADS) that utilizes synchrophasor measurements and properties of network packets to detect data integrity and communication failure attacks on measurement and control signals in CRAS. The proposed machine leaning-based methodology applies a rules-based approach to select relevant input features, utilizes variational mode decomposition (VMD) and decision tree (DT) algorithms to develop multiple classification models, and performs final event identification using a rules-based decision logic. Here, we have evaluated the proposed methodology of CPADS using the IEEE 39 bus system for several performance measures (accuracy, recall, precision, and F-measure) in a cyber-physical testbed environment. Furthermore, our experimental results reveal that the proposed algorithm (VMD-DT) of CPADS outperforms the existing machine learning classifiers during noisy and noise-free measurements while incurring an acceptable processing overhead.
- Research Organization:
- Iowa State Univ., Ames, IA (United States)
- Sponsoring Organization:
- USDOE
- Grant/Contract Number:
- OE0000830
- OSTI ID:
- 1985651
- Report Number(s):
- DOE-ISU-0000830-7
- Journal Information:
- IEEE Transactions on Smart Grid, Vol. 12, Issue 4; ISSN 1949-3053
- Publisher:
- IEEECopyright Statement
- Country of Publication:
- United States
- Language:
- English
Similar Records
A Novel Architecture for Attack-Resilient Wide-Area Protection and Control System in Smart Grid
Cyber risk assessment and investment optimization using game theory and ML-based anomaly detection and mitigation for wide-area control in smart grids