Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting

Yue, Meng; Hong, Tao; Wang, Jianhui

doi:10.1109/TSG.2019.2894334

Title: Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting

Full Record
Other Related Research

Abstract

As power delivery systems evolve and become increasingly reliant on accurate forecasts, they will be more and more vulnerable to cybersecurity issues. A coordinated data attack by sophisticated adversaries can render existing data corrupt or outlier detection methods ineffective. This would have a very negative impact on operational decisions. The focus of this paper is to develop descriptive analytics-based methods for anomaly detection to protect the load forecasting process against cyberattacks to essential data. We propose an integrated solution (IS) and a hybrid implementation of IS (HIIS) that can detect and mitigate cyberattack induced long sequence anomalies. HIIS is also capable of improving true positive rates and reducing false positive rates significantly comparing with IS. The proposed HIIS can serve as an online cybersecure load forecasting scheme.

Authors:

^[1]; Hong, Tao ^[2];

^[3]

Brookhaven National Lab. (BNL), Upton, NY (United States)
Univ. of North Carolina, Charlotte, NC (United States)
Southern Methodist Univ., Dallas, TX (United States)

Publication Date:: Fri Nov 01 00:00:00 EDT 2019

Research Org.:: Brookhaven National Lab. (BNL), Upton, NY (United States)

Sponsoring Org.:: USDOE Office of Electricity Delivery and Energy Reliability (OE), Power Systems Engineering Research and Development (OE-10)

OSTI Identifier:: 1601349

Report Number(s):: BNL-213641-2020-JAAM
Journal ID: ISSN 1949-3053

Grant/Contract Number:: SC0012704

Resource Type:: Accepted Manuscript

Journal Name:: IEEE Transactions on Smart Grid

Additional Journal Information:: Journal Volume: 10; Journal Issue: 6; Journal ID: ISSN 1949-3053

Publisher:: IEEE

Country of Publication:: United States

Language:: English

Subject:: 24 POWER TRANSMISSION AND DISTRIBUTION; Load forecasting; Predictive models; Forecasting; Computer crime; Load modeling; Weather forecasting

Citation Formats


                    Yue, Meng, Hong, Tao, and Wang, Jianhui. Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting.  United States: N. p., 2019. 
Web.  doi:10.1109/TSG.2019.2894334.

Copy to clipboard


                    Yue, Meng, Hong, Tao, & Wang, Jianhui. Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting.  United States.  https://doi.org/10.1109/TSG.2019.2894334

Copy to clipboard


                    Yue, Meng, Hong, Tao, and Wang, Jianhui. Fri .  
"Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting".  United States.  https://doi.org/10.1109/TSG.2019.2894334.  https://www.osti.gov/servlets/purl/1601349.

Copy to clipboard


                    
@article{osti_1601349,

  title        = {Descriptive Analytics-Based Anomaly Detection for Cybersecure Load Forecasting},

  author       = {Yue, Meng and Hong, Tao and Wang, Jianhui},

  abstractNote = {As power delivery systems evolve and become increasingly reliant on accurate forecasts, they will be more and more vulnerable to cybersecurity issues. A coordinated data attack by sophisticated adversaries can render existing data corrupt or outlier detection methods ineffective. This would have a very negative impact on operational decisions. The focus of this paper is to develop descriptive analytics-based methods for anomaly detection to protect the load forecasting process against cyberattacks to essential data. We propose an integrated solution (IS) and a hybrid implementation of IS (HIIS) that can detect and mitigate cyberattack induced long sequence anomalies. HIIS is also capable of improving true positive rates and reducing false positive rates significantly comparing with IS. The proposed HIIS can serve as an online cybersecure load forecasting scheme.},

  doi          = {10.1109/TSG.2019.2894334},

  journal      = {IEEE Transactions on Smart Grid},

  number       = 6,

  volume       = 10,

  place        = {United States},

  year         = {Fri Nov 01 00:00:00 EDT 2019},

  month        = {Fri Nov 01 00:00:00 EDT 2019}

}

Copy to clipboard

Journal Article:

Free Publicly Available Full Text

Accepted Manuscript (DOE)

Publisher's Version of Record

https://doi.org/10.1109/TSG.2019.2894334

Other availability

Search WorldCat to find libraries that may hold this journal

Citation Metrics:

Cited by: 13 works

Citation information provided by
Web of Science

Save / Share:

Export Metadata

Save to My Library

Similar Records in DOE PAGES and OSTI.GOV collections:

Cybersecurity Anomaly Detection in SCADA-Assisted OT Networks Using Ensemble-Based State Prediction Model

Technical Report Motakatla, Venkateswara Reddy ; Zhang, Jiazi ; Liu, Chen-Ching ; ...

The cybersecurity threats of power system gradually grow due to the increased sophisticated interactions between Information Technology (IT) and Operational Technology (OT) networks. False data injection attack (FDIA) that aims to compromise the Supervisory Control and Data Acquisition (SCADA) measurement and disturb the system operation is one of such cyber threats. Such attacks can potentially lead to significant operational issues at the control centers and substations, and hence, result in severe physical consequences. To avoid catastrophic failure across the power grid resulting from these attacks, it is essential to arm the OT network with real-time vulnerability assessment tools. To thismore »« less
https://doi.org/10.2172/1996392

Full Text Available
Cybersecurity for Distance Relay Protection

Technical Report McDermott, Thomas E. ; Doty, Jeffrey D. ; O'Brien, James G. ; ...

This project is a DOE follow-up effort on the CREDC workshop held on September 13, 2018 in Cambridge, MA to discuss cybersecurity of distance relays, which considered the benefits, vulnerabilities and risk mitigations for the use of communication systems in power system protection. The objectives of this project are to define the taxonomy of relay protection and associated communications; define use cases describing approaches to reduce the cyber-attack surface on those protective relays; and evaluate the loss of operational functional capability from changes to communication coverage. Mitigating controls will also be evaluated to understand if there are other approaches tomore »« less
https://doi.org/10.2172/1602545

Full Text Available
Machine Learning-based Cyber-Physical Anomaly Detection in Wide Area Voltage Control Systems

Conference Hyder, Burhan ; Singh, Vivek Kumar ; Govindarasu, Manimaran ; ... - 2022 IEEE Power & Energy Society Innovative Smart Grid Technologies Conference (ISGT)

Wide-area voltage control systems (WAVCS) are widely deployed in power grid to improve the voltage stability in transmission system using Flexible AC Transmission System (FACTS) devices. The WAVCS relies on wide-area measurement and control signals for closed-loop control of FACTS devices to improve the transient voltage stability in power grid in real-time. Since the WAVCS utilizes a cyber-layer communication during its normal operation, they are susceptible to cyber attacks from adversaries which can lead to a voltage collapse if the attacks go undetected and unmitigated. This paper proposes a supervised machine learning (ML)-based anomaly detection algorithm for detecting various stealthymore »« less
https://doi.org/10.1109/isgt50606.2022.9817484

Full Text Available
EVSE Cybersecurity and Resilience

Conference Sanghvi, Anuj

Consequence-driven Cybersecurity Analysis for Extreme Fast Charging Electric Vehicle Infrastructure Electric vehicle (EV) development and associated charging infrastructure are expected to advance rapidly. Thirty percent of all global vehicle sales may be EVs and hybrid EVs by 2025, and they will rely on increasingly sophisticated strategies for grid integration. Next-generation EV charging infrastructure is expected to include interconnected renewable resources, such as photovoltaic (PV) arrays and battery storage systems, along with grid-edge devices. Although distributed energy resources (DERs) are useful in several ways, such as peak shaving at high demand times and backup supply for added resilience, the integration ofmore »« less
Full Text Available
Cybersecurity Resiliency of Marine Renewable Energy Systems Part 2: Cybersecurity Best Practices and Risk Management

Journal Article de Peralta, Fleurdeliza A. ; Watson, Mark D. ; Bays, Ryan M. ; ... - Marine Technology Society Journal

Marine renewable energy (MRE) is an emerging source of power for marine applications, marine devices, and coastal communities. This energy source relies on industrial control systems and IT to support operations and maintenance activities, which create a pathway for an adversary to gain unauthorized access to systems and data and disrupt operations. Incorporating cybersecurity risk prevention measures and mitigation capabilities from inception, development, operation, to decommissioning of the MRE system and components is paramount to the protection of energy generation and the security of network architecture and infrastructure. To improve the resilience of MRE systems as a predictable, affordable, andmore »« less
https://doi.org/10.4031/mtsj.55.2.4

Full Text Available

Similar Records