Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

A Randomization-Based, Zero-Trust Cyberattack Detection Method for Hierarchical Systems

Conference ·
; ; ;

This paper demonstrates a novel randomization-based approach for verifying power system control signals with application to detecting cyberattacks. We consider fully connected hierarchical systems containing multiple local agents and a global "trust" agent. The global agent uses a time-varying randomized assignment scheme to identify corrupt network links based on principles of zero trust and majority rule. To evaluate the performance of this detection approach, we implement our algorithm in MATLAB and run it against nearly 43 million unique attack scenarios spanning a range of system sizes. For each scenario, the algorithm determines whether the identified corruptions satisfy a set of validity constraints reflecting network topology and uses that result to say whether the recovered state value for one or more local agents is malicious. We compare the algorithm's determination to the true state of the system to assess performance and find that classification accuracy converges to 100% as system size increases, suggesting that the validity constraints become more difficult to satisfy for larger systems. We further explore the scenarios that evade detection to understand practical implications for employing this detection approach.

Research Organization:
National Renewable Energy Laboratory (NREL), Golden, CO (United States)
Sponsoring Organization:
USDOE National Renewable Energy Laboratory (NREL), Laboratory Directed Research and Development (LDRD) Program
DOE Contract Number:
AC36-08GO28308
OSTI ID:
2221826
Report Number(s):
NREL/CP-5R00-86335; MainId:87108; UUID:9676e663-0582-4ab3-ab22-faa6067e7167; MainAdminID:70124
Resource Relation:
Conference: Presented at the 2023 IEEE Secure Development Conference (SecDev), 18-20 October 2023, Atlanta, Georgia
Country of Publication:
United States
Language:
English

References (23)

Intrusion detection system for network security in synchrophasor systems conference January 2013
Multidimensional Intrusion Detection System for IEC 61850-Based SCADA Networks journal April 2017
Model-Based Attack Detection and Mitigation for Automatic Generation Control journal March 2014
Security Evaluation of Two Intrusion Detection Systems in Smart Grid SCADA Environment conference September 2018
Saddle-Flow Dynamics for Distributed Feedback-Based Optimization journal October 2019
Cyber Security Assessment of Distributed Energy Resources
  • Carter, Cedric; Onunkwo, Ifeoma; Cordeiro, Patricia
  • 2017 IEEE 44th Photovoltaic Specialists Conference (PVSC), 2017 IEEE 44th Photovoltaic Specialist Conference (PVSC) https://doi.org/10.1109/PVSC.2017.8366503
conference June 2017
Malicious Corruption Resilience in PMU Data and Wide-Area Damping Control journal March 2020
Testbed-based Performance Evaluation of Attack Resilient Control for Wind Farm SCADA System conference August 2020
Super-Resolution Perception Assisted Spatiotemporal Graph Deep Learning Against False Data Injection Attacks in Smart Grid journal September 2023
A Cyber-Physical Anomaly Detection for Wide-Area Protection using Machine Learning journal January 2021
Decentralized Multi-Agent System-Based Cooperative Frequency Control for Autonomous Microgrids With Communication Constraints journal April 2014
Using a Distributed Agent-Based Communication Enabled Special Protection System to Enhance Smart Grid Security journal June 2013
Distributed host-based collaborative detection for false data injection attacks in smart grid cyber-physical system journal May 2017
Distributed Framework for Detecting PMU Data Manipulation Attacks With Deep Autoencoders journal July 2019
Distributed detection and isolation of false data injection attacks in smart grids via nonlinear unknown input observers journal September 2019
Multi-Agent Systems for Power Engineering Applications—Part I: Concepts, Approaches, and Technical Challenges journal November 2007
Assessing the impact of cybersecurity attacks on energy systems journal September 2023
Survey of false data injection in smart power grid: Attacks, countermeasures and challenges journal October 2020
Peer-to-Peer Communication Trade-Offs for Smart Grid Applications conference July 2022
Peer-to-Peer Local Energy Trading With Voltage Management Under Asynchronous Communication journal November 2022
Autonomous Energy Grids: Controlling the Future Grid With Large Amounts of Distributed Energy Resources journal November 2020
A Communications Model for Decentralized Autonomous Control of the Power Grid conference May 2018
Decentralized Controls and Communications for Autonomous Distribution Networks in Smart Grid journal March 2013

Similar Records

Related Subjects

POWER TRANSMISSION AND DISTRIBUTION
cybersecurity
hierarchical system
power grid
randomization-based methods
zero trust