Towards modelling the impact of cyber attacKs on a smart grid

International Journal of Security and Networks

Volumn 6, Issue 1, 2011, Pages 2-13

  Kundur, D ^a   Feng, X ^a   MashayeKh, S ^a   Liu, S ^a   Zourntos, T ^a   Butler Purry, K L ^a  

^a Texas AandM University   (United States)

Author keywords

Cyber attack impact analysis; Graph based dynamical systems; Smart grid cyber security; Smart grid model synthesis

Indexed keywords

COMPUTER CRIME; CRIME; DIRECTED GRAPHS; DYNAMICAL SYSTEMS; GRAPHIC METHODS; NETWORK SECURITY; SMART POWER GRIDS;

CAUSE-EFFECT RELATIONSHIPS; ELECTRICAL GRIDS; GRAPH-BASED; IMPACT ANALYSIS; SMART GRID; SMART GRID CYBER SECURITIES; SMART GRID SYSTEMS; STATE INFORMATION;

ELECTRIC POWER TRANSMISSION NETWORKS;

EID: 79954619874     PISSN: 17478405     EISSN: 17478413     Source Type: Journal    
DOI: 10.1504/IJSN.2011.039629     Document Type: Article

References (44)

1. Amin, S.M. (2005) 'Energy infrastructure defense systems', Proceedings of the IEEE, Vol. 93, No. 5, pp.861-875.
2. Amin, S.M. (2008) 'For the good of the grid', IEEE Power and Energy Magazine, Vol. 6, No. 6, pp.48-59.
3. Boyer, W.F. and McBride, S.A. (2009) Study of Security Attributes of Smart Grid Systems - Current Cyber Security Issues, Report No. INL/EXT-09-15500, Iadaho National Laboratory, Idaho Falls, Idaho, USA.
4. Cárdenas, A.A., Amin, S. and Sastry, S. (2008a) 'Research challenges for the security of control systems', Proc. 3rd USENIX Conference on Hot Topics in Security, Berkeley, California, USA, p.6.
5. Cárdenas, A.A., Amin, S. and Sastry, S. (2008b) 'Secure control: towards survivable cyber-physical systems', Proc. 28th International Conference on Distributed Computing Systems Workshops, Beijing, China, pp.495-500.
6. Cárdenas, A.A., Roosta, T., Taban, G. and Sastry, S. (2008c) 'Cyber security basic defenses and attack trends', in Franceschetti, G. and Grossi, M. (Eds.): Homeland Security Technology Challenges, Artech House, Chapter 4, pp.73-101.
7. Committee, S. (2007) IEEE Standard for Substation Intelligent Electronic Devices (IEDs), Standard IEEE Std 1686-2007, IEEE Power Enginering Society.
8. Conte de Leon, D., Alves-Foss, J., Krings, A. and Oman, P. (2002) 'Modeling complex control systems to identify remotely accessible devices vulnerable to cyber attack', Proc. First Workshop on Scientific Aspects of Cyber Terrorism, Washington DC.
9. Dagle, J. (2001) 'Vulnerability assessment activities', Proc. Power Engineering Society Winter Meeting, Vol. 1, Columbus, Ohio, pp.108-113.
10. Davis, C.M., Tate, J.E., Okhravi, H., Grier, C., Overbye, T.J. and Nicol, D. (2006) 'SCADA cyber security testbed development', Proc. 38th North American Power Symposium, Carbondale, IL, USA, pp.483-488.
11. Dawson, R., Boyd, C., Dawson, E. and Manuel Gonzàlez Nieto, J. (2006) 'SKMA - a key management architecture for SCADA systems', Proc. Fourth Australasian Workshops on Grid Computing and E-Research, Vol. 54, pp.183-192.
12. Depoy, J., Phelan, J., Sholander, P., Smith, B., Varnado, G.B. and Wyss, G. (2005) 'Risk assessment for physical and cyber attacks on critical infrastructures', Proc. IEEE Military Communications Conference, Vol. 3, Atlantic City, NJ , pp.1961-1969.
13. Dondossola, G., Garrone, F. and Szanto, J. (2009) 'Supporting cyber risk assessment of power control systems with experimental data', Proc. IEEE Power Systems Conference and Exposition, Seattle, Washington, USA, pp.1-3.
14. Dudenhoeffer, D.D., Permann, M.R. and Manic, M. (2006) 'CIMS: a framework for infrastructure interdependency modeling and analysis', Proc. 38th Winter Simulation Conference, Monterey, California, pp.478-485.
15. Dudenhoeffer, D.D., Permann, M.R., Woolsey, S., Timpany, R., Miller, C., McDermott, A. and Manic, M. (2007) 'Interdependency modeling and emergency response', Proc. 2007 Summer Computer Simulation Conference, San Diego, California, pp.1230-1237.
16. Eberle, W. and Holder, L. (2009) 'Insider threat detection using graph-based approaches', Proc. Cybersecurity Applications and Technology Conference for Homeland Security, Washington DC, pp.237-241.
17. Edwards, D., Srivastava, S.K., Cartes, D.A., Simmons, S. and Wilde, N. (2007) 'Implementation and validation of a mult-level security model architecture', Proc. International Conference on Intelligent Systems Applications to Power Systems, Toki Messe, Niigata, Japan, pp.1-4.
18. Ekstedt, M. and Sommestad, T. (2009) 'Enterprise architecture models for cyber security analysis', Proc. IEEE Power Systems Conference and Exposition, Seattle, Washington, USA, pp.1-6.
19. Endoh, H. (2008) 'Analyzing aspects of cyber security standards for M&CS', Proc. SICE Annual Conference, Tokyo, Japan, pp.1478-1481.
20. Ericsoon, G.N. (2009) 'Information security for electric power utilities (EPUs) - CIGRÉ developments on frameworks, risk assessment, and technology', IEEE Transactions on Power Delivery, Vol. 24, No. 3, pp.1174-1181.
21. Falk, H. (2008) 'Securing IEC 61850', Proc. IEEE Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, Pittsburgh, Pennsylvania, USA, pp.1-3.
22. Feng, X., Zourntos, T. and Butler-Purry, K.L. (2010) 'Dynamic load management for NG IPS ships', Proc. IEEE Power Engineering Society General Meeting, Minneapolis, Minnesota.
23. Giani, A., Karsai, G., Roosta, T., Shah, A., Sinopoli, B. and Wiley, J. (2008) 'A testbed for secure and robust SCADA systems', SIGBED Review, Vol. 5, No. 2, Article No. 4.
24. Hadeli, H., Schierholz, R., Braendle, M. and Tuduce, C. (2009) 'Generating configuration for missing traffic detector and security measures in industrial control systems based on the system description files', Proc. IEEE Conference on Technologies for Homeland Security, Waltham, Massachusetts, USA, pp.503-510.
25. HadjSaid, N., Tranchita, C., Rozel, B., Viziteu, M. and Caire, R. (2009) 'Modeling cyber and physical interdependencies - application in ICT and power grids', Proc. IEEE Power Systems Conference and Exposition, Seattle, Washington, USA, pp.1-6.
26. Jadbabaie, A., Lin, J. and Morse, A. S. (2003) 'Coordination of groups of mobile autonomous agents using nearest neighbor rules', Automatic Control, IEEE Transactions on, Vol. 48, No. 6, pp.988-1001.
27. Jiaxi, Y., Anjia, M. and Zhizhong, G. (2006) 'Vulnerability assessment of cyber security in power industry', Proc. IEEE Power Systems Conference and Exposition, Atlanta, Georgia, pp.2200-2205.
28. Liu, C-C., Ten, C-W. and Govindarasu, M. (2009) 'Cybersecurity of SCADA systems: Vulnerability assessment and mitigation', Proc. IEEE Power Systems Conference and Exposition, Seattle, Washington, USA, pp.1-3.
29. Madani, V. and Witham, T. (2008) 'Strategies for protection and control standardization and integrated data management applications', Proc. IEEE/PES Transmission and Distribution Conference and Exposition, Chicago, Illinois, USA, pp.1-6.
30. Mander, T., Nabhani, F., Wang, L. and Cheung, R. (2007) 'Integrated network security protocol layer for open-access power distribution systems', Proc. IEEE Power Engineering Society General Meeting, Tampa, Florida, USA, pp.1-8.
31. McDaniel, P. and Smith, S.W. (2009) 'Security and privacy challenges in the smart grid', IEEE Security and Privacy, Vol. 7, No. 3, pp.75-77.
32. McDonald, R. (2008) 'New considerations for security compliance, reliability and business continuity', Proc. IEEE Rural Electric Power Conference, Charleston, South Carolina, pp.B1-B1-7.
33. McMillin, B. (2009) 'Complexities of information security in cyber-physical power systems', Proc. IEEE Power Systems Conference and Exposition, Phoenix, Arizona, pp.1-2.
34. McQueen, M.A., Boyer, W.F., Flynn, M.A. and Beitel, G.A. (2006) 'Quantitative cyber risk reduction estimation methodology for small SCADA control system', Proc. 39th Annual Hawaii International Conference on Systems Sciences, Kauai, Hawaii, USA, Vol. 9, pp.226-236.
35. Mertz, M. (2008) 'NERC CIP compliance: We've identified our critical assets, how what?', Proc. IEEE Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, Pittsburgh, Pennsylvania, USA, pp.1-2.
36. Pietre-Cambacedes, L., Chalhoub, C. and Cleveland, F. (2007) IEC TC57 WG15 - Cyber Security Standards for the Power Systems, Report No. D2-02-C02, CIGRÉ Study Committee D2: Information Systems and Telecommunications.
37. Piétre-Cambacédès, L., Kropp, T., Weiss, J. and Pellizzonni, R. (2008) 'Cybersecurity standards for the electric power industry - a "survival kit"', Proc. CIGRÉ Paris Session, Paper D2-213.
38. Rozel, B., Viziteu, M., Caire, R., Hadjsaid, N. and Rognon, J-P. (2008) 'Towards a common model for studying critical infrastructure interdependencies', Proc. IEEE Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, Pittsburgh, Pennsylvania, pp.1-6.
39. Sheng, S., Chan, W.L., Li, K.K., Xianzhong, D. and Xiangjun, Z. (2007) 'Context information-based cyber security defense of protection system', IEEE Transactions on Power Delivery, Vol. 22, No. 3, pp.1477-1481.
40. Stamp, J., McIntyre, A. and Ricardson, B. (2009) 'Reliability impacts from cyber attack on electric power systems', Proc. IEEE Power Systems Conference and Exposition, Seattle, Washington, USA, pp.1-8.
41. Tang, H. and McMillin, B. (2008) 'Security property violation in CPS through timing', Proc. 28th International Conference on Distributed Computing Systems Workshops, Beijing, China, pp.519-524.
42. Tan, H. (2007) Security Analysis of a Cyber-Physical System, Master's Thesis, University of Missouri-Rolla, Rolla, Missouri, USA.
43. Watts, D. (2003) 'Security and vulnerability in electric power systems', Proc. 35th North American Power Symposium, Rolla, Missouri, pp.559-566.
44. Xiao, K., Chen, N., Ren, S., Shen, L., Sun, X., Kwiat, K. and Macalik, M. (2007) 'A workflow-based non-intrusive approach for enhancing the survivability of critical infrastructures in cyber environment', Proc. Third International Workshop on Software Engineering for Secure Systems, Minneapolis, Minnesota, USA.