Multi-Layer Cyber-Physical Security and Resilience for Smart Grid

The smart grid is a large-scale complex system that integrates communication technologies with the physical layer operation of the energy systems. Security and resilience mechanisms by design are important to provide guarantee operations for the system. This chapter provides a layered perspective of the smart grid security and discusses game and decision theory as a tool to model the interactions among system components and the interaction between attackers and the system. We discuss game-theoretic applications and challenges in the design of cross-layer robust and resilient controller, secure network routing protocol at the data communication and networking layers, and the challenges of the information security at the management layer of the grid. The chapter will discuss the future directions of using game-theoretic tools in addressing multi-layer security issues in the smart grid.Comment: 16 page

Energy efficient multi channel packet forwarding mechanism for wireless sensor networks in smart grid applications

Multichannel Wireless Sensor Networks (MWSNs) paradigm provides an opportunity for the Power Grid (PG) to be upgraded into an intelligent power grid known as the Smart Grid (SG) for efficiently managing the continuously growing energy demand of the 21st century. However, the nature of the intelligent grid environments is affected by the equipment noise, electromagnetic interference, and multipath effects, which pose significant challenges in existing schemes to find optimal vacant channels for MWSNs-based SG applications. This research proposed three schemes to address these issues. The first scheme was an Energy Efficient Routing (ERM) scheme to select the best-optimized route to increase the network performance between the source and the sink in the MWSNs. Secondly, an Efficient Channel Detection (ECD) scheme to detect vacant channels for the Primary Users (PUs) with improved channel detection probability and low probability of missed detection and false alarms in the MWSNs. Finally, a Dynamic Channel Assignment (DCA) scheme that dealt with channel scarcities by dynamically switching between different channels that provided higher data rate channels with longer idle probability to Secondary Users (SUs) at extremely low interference in the MWSNs. These three schemes were integrated as the Energy Efficient Multichannel Packet Forwarding Mechanism (CARP) for Wireless Sensor Networks in Smart Grid Applications. The extensive simulation studies were carried through an EstiNet software version 9.0. The obtained experimental simulation facts exhibited that the proposed schemes in the CARP mechanism achieved improved network performance in terms of packets delivery ratio (26%), congestion management (15%), throughput (23%), probability of channel detection (21%), reduces packet error rate (22%), end-to-end delay (25%), probability of channel missed-detection (25%), probability of false alarms (23.3%), and energy consumption (17%); as compared to the relevant schemes in both EQSHC and G-RPL mechanisms. To conclude, the proposed mechanism significantly improves the Quality of Service (QoS) data delivery performance for MWSNs in SG

On The Security of Wide Area Measurement System and Phasor Data Collection

Smart grid is a typical cyber-physical system that presents the dependence of power system operations on cyber infrastructure for control, monitoring, and protection purposes. The rapid deployment of phasor measurements in smart grid transmission system has opened opportunities to utilize new applications and enhance the grid operations. Thus, the smart grid has become more dependent on communication and information technologies such as Wide Area Measurement Systems (WAMS). WAMS are used to collect real-time measurements from different sensors such as Phasor Measurement Units (PMUs) installed across widely dispersed areas. Such system will improve real-time monitoring and control; however, recent studies have pointed out that the use of WAMS introduces significant vulnerabilities to cyber-attacks that can be leveraged by attackers. Therefore, preventing or reducing the damage of cyber attacks onWAMS is critical to the security of the smart grid. In this thesis, we focus our attention on the relation between WAMS security and the IP routing protocol, which is an essential aspect to the collection of sensors measurements. Synchrophasor measurements from different PMUs are transferred through a data network and collected at one or multiple data concentrators. The timely collection of phasors from PMU dispersed across the grid allows to maintain system observability and take corrective actions when needed. This collection is made possible through Phasor Data Concentrators (PDCs) that time-align and aggregate phasor measurements, and forward the resulting stream to be used by monitoring and control applications. WAMS applications relying on these measurements have strict and stringent delay requirements, e.g., end-to-end delay as well as delay variation between measurements from different PMUs. Measurements arriving past a predetermined time period at a data concentrator will be dropped, causing incompleteness of data and affecting WAMS applications and hence the system’s operations. It has been shown that non-functional properties, such as data delay and packet drops, have a negative impact on the system functionality. We show that simply forwarding measurements from PMUs through shortest routes to phasor data collectors may result in data being dropped at their destinations. We believe therefore that there is a strong interplay between the routing paths (delays along the paths) for gathering the measurements and the value of timeout period. This is particularly troubling when a malicious attacker deliberately causes delays on some communication links along the shortest routes. Therefore, we present a mathematical model for constructing forwarding trees for PMUs’ measurements which satisfy the end to end delay as well as the delay variation requirements of WAMS applications at data concentrators. We show that a simple shortest path routing will result in larger fraction of data drop and that our method will find a suitable solution. Then, we study the relation between cyber-attack propagation and IP multicast routing. To this extent, we formulate the problem as the construction of a multicast tree that minimizes the propagation of cyber-attacks while satisfying real-time and capacity requirements. The proposed attack propagation multicast tree is evaluated using different IEEE test systems. Finally, cyber-attacks resulting in the disconnection of PDC(s) from WAMS initiate a loss of its phasor stream and incompleteness in the observability of the power system. Recovery strategies based on the re-routing of lost phasors to other connected and available PDCs need to be designed while considering the functional requirements of WAMS. We formulate a recovery strategy from loss of compromised or failed PDC(s) in the WAMS network based on the rerouting of disconnected PMUs to functional PDCs. The proposed approach is mathematically formulated as a linear program and tested on standard IEEE test systems. These problems will be extensively studied throughout this thesis