SCPSE: Security-oriented cyber-physical state estimation for power grid critical infrastructures

IEEE Transactions on Smart Grid

Volumn 3, Issue 4, 2012, Pages 1790-1799

  Zonouz, Saman ^a   Rogers, Katherine M ^b   Berthier, Robin ^c   Bobba, Rakesh B ^c   Sanders, William H ^c   Overbye, Thomas J ^c  

^a UNIVERSITY OF MIAMI   (United States)

^b PowerWorld Corporation   (United States)

^c UNIVERSITY OF ILLINOIS AT URBANA CHAMPAIGN   (United States)

Author keywords

Cyber physical systems; intrusion detection; maliciously corrupted data detection; security state estimation

Indexed keywords

BENCHMARK SYSTEM; CONTROL NETWORK; CORRUPTED DATA; CYBER PHYSICAL SYSTEMS (CPSS); DETECTION TECHNIQUE; DISTRIBUTED SENSOR; INTRUSION DETECTORS; MALICIOUS ACTIVITIES; POWER GRIDS; POWER SENSOR; UNCERTAIN INFORMATIONS;

CRITICAL INFRASTRUCTURES; ELECTRIC POWER DISTRIBUTION; EMBEDDED SYSTEMS; INTRUSION DETECTION; PUBLIC WORKS; SENSORS;

STATE ESTIMATION;

EID: 84872095646     PISSN: 19493053     EISSN: None     Source Type: Journal    
DOI: 10.1109/TSG.2012.2217762     Document Type: Article

References (48)

1. S. Sridhar, A. Hahn, and M. Govindarasu, "Cyber-physical system se curity for the electric power grid," Proc. IEEE, vol. 100, no. 1, pp. 210-224, 2012.
2. Y. Liu, P. Ning, and M. K. Reiter, "False data injection attacks against state estimation in electric power grids," ACM Trans. Inf. Syst. Security, vol. 14, pp. 13:1-13:33, 2011.
3. L. Xie, Y. Mo, and B. Sinopoli, "Integrity data attacks in power market operations," IEEE Trans. Smart Grid, vol. 2, no. 4, pp. 659-666, 2011.
4. L. Jia, R. J. Thomas, and L. Tong, "Impacts of malicious data on realtime price of electricity market operations," in Proc. HICSS, 2012, pp. 1907-1914.
5. A. Teixeira, H. Sandberg, G. Dan, and K.-H. Johansson, "Optimal power flow: Closing the loop over corrupted data," in Proc. Amer. Control Conf., 2012.
6. B. Schneier, "Attack trees," Dr. Dobb's J., 1999.
7. L. Rabiner, "A tutorial on hidden Markov models and selected applications in speech recognition," Proc. IEEE, vol. 77, no. 2, pp. 257-286, 1989.
8. S. Terry and B. J. Chow, An Assessment of the DARPA IDS Evaluation Dataset Using Snort Tech. Rep., 2005.
9. A. Monticelli, State Estimation in Electric Power Systems: A Generalized Approach. Norwell, MA: Kluwer Academic, 1999.
10. A. Wood and B. Wollenberg, Power Generation, Operation, and Control, 2nd ed. New York: Wiley, 1996.
11. Y. Liu, P. Ning, and M. K. Reiter, "False data injection attacks against state estimation in electric power grids," in Proc. Conf. Comput. Commun. Security, 2009, pp. 21-32.
12. L. Xie, Y. Mo, and B. Sinopoli, "False data injection attacks in electricity markets," in Proc. IEEE Int. Conf. Smart Grid Commun., 2010, pp. 226-231.
13. A. Teixeira, S. Amin, H. Sandberg, K. Johansson, and S. Sastry, "Cyber security analysis of state estimators in electric power systems," in Proc. IEEE Conf. Decision Control, 2010, pp. 5991-5998.
14. A. Monticelli, F. F. Wu, and M. Yen, "Multiple bad data identification for state estimation by combinatorial optimization," IEEE Power Eng. Rev., vol. PER-6, no. 7, pp. 73-74, 1986.
15. W. Tinney and J. Walker, "Direct solutions of sparse network equations by optimally ordered triangular factorization," Proc. IEEE, vol. 55, no. 11, pp. 1801-1809, 1967.
16. W. Tinney, V. Brandwajn, and S. Chan, "Sparse vector methods," IEEE Trans. Power App. Syst., vol. PAS-104, no. 2, pp. 295-301, Feb. 1985.
17. T. Dean, L. Kaelbling, J. Kirman, and A. Nicholson, "Planning under time constraints in stochastic domains," Artif. Intell., vol. 76, pp. 35-74, 1995.
18. A. Cassandra, "Exact and approximate algorithms for partially observable Markov decision processes," Ph.D. dissertation, Brown Univ., Providence, RI, 1998.
19. D. M. Nicol, W. H. Sanders, S. Singh, and M. Seri, "Usable global network access policy for process control systems," IEEE Security Privacy, vol. 6, pp. 30-36, 2008.
20. UMDHMM Tool [Online]. Available: http://www.kanungo.com/soft-ware/ software.html
21. J. Glover, M. Sarma, and T. Overbye, Power System Analysis and Design. Toronto, ON, Canada: Thomson, 2008.
22. R. Zimmerman, C. Murillo-Sanchez, and R. Thomas, "MATPOWER: Steady-state operations, planning, and analysis tools for power systems research and education," IEEE Trans. Power Syst., vol. 26, no. 1, pp. 12-19, 2011.
23. SimAuto Overview PowerWorld Corporation [Online]. Available: http://www.powerworld.com
24. "IEEE reliability test system," IEEE Trans. Power App. Syst., vol. PAS-98, no. 6, pp. 2047-2054, 1979.
25. F. C. Schweppe and J. Wildes, "Power system static-state estimation, part i: Exact model," IEEE Trans. Power App. Syst., vol. PAS-89, no. 1, pp. 120-125, 1970.
26. S. A. Zonouz, H. Khurana, W. H. Sanders, and T. M. Yardley, "RRE: A game-theoretic intrusion response and recovery engine," in Proc. IEEE/IFIP Int. Conf. Dependable Syst. Netw., 2009, pp. 439-448.
27. S. Zonouz and W. Sanders, "A Kalman-based coordination for hierarchical state estimation: Algorithm and analysis," in Proc. Hawaii Int. Conf. Syst. Sci., 2008, pp. 187-187.
28. O. Kosut, L. Jia, R. J. Thomas, and L. Tong, "Malicious data attacks on smart grid state estimation: Attack strategies and countermeasures," in Proc. IEEE Int. Conf. Smart Grid Commun., 2010, pp. 220-225.
29. A. Volkanovski, M. Cepin, and B. Mavko, "Application of the fault tree analysis for assessment of power system reliability," Rel. Eng. Syst. Safety, vol. 94, no. 6, pp. 1116-1127, 2009.
30. M. Zhou, V. Centeno, J. Thorp, and A. Phadke, "An alternative for including phasor measurements in state estimators," IEEE Trans. Power Syst., vol. 21, no. 4, pp. 1930-1937, 2006. (Pubitemid 46357795)
31. K. Lo, P. Zeng, E. Marchand, and A. Pinkerton, "New bad-data detection and identification technique based on rotation of measurement order for sequential state estimation," IEE Proc. C Gener., Transm., Distrib., vol. 139, no. 5, pp. 387-401, 1992. (Pubitemid 23558280)
32. A. Monticelli, F. F. Wu, and M. Yen, "Multiple bad data identification for state estimation by combinatorial optimization," IEEE Power Eng. Rev., vol. PER-6, no. 7, pp. 73-74, 1986.
33. W. Peterson and A. Girgis, "Multiple bad data detection in power system state estimation using linear programming," in Proc. Southeastern Symp. Syst. Theory, 1988, pp. 405-409. (Pubitemid 18629939)
34. R. B. Bobba, K. M. Rogers, Q. Wang, H. Khurana, K. Nahrstedt, and T. J. Overbye, "Detecting false data injection attacks on DC state estimation," in Proc. Workshop Secure Control Syst., Apr. 2010.
35. G. Dan and H. Sandberg, "Stealth attacks and protection schemes for state estimators in power systems," in Proc. IEEE SmartGridComm, 2010.
36. A. Giani, E. Bitar, M. Garcia, M. McQueen, P. Khargonekar, and K. Poolla, "Smart grid data integrity attacks: Characterizations and coun-termeasures," in Proc. IEEE Int. Conf. Smart Grid Commun., 2011, pp. 232-237.
37. S. A. Zonouz, K. R. Joshi, and W. H. Sanders, "Cost-aware systemwide intrusion defense via online forensics and on-demand detector deployment," in Proc. ACM Workshop Assurable Usable Security Configuration, 2010, pp. 71-74.
38. G. Gu, P. Porras, V. Yegneswaran, M. Fong, and W. Lee, "Bothunter: Detecting malware infection through IDS-driven dialog correlation," in Proc. USENIX Security Symp., 2007.
39. A. Valdes and K. Skinner, "Probabilistic alert correlation," in Proc. Int. Symp. Recent Adv. Intrusion Detection, 2001, pp. 54-68. (Pubitemid 33352000)
40. C.-W. Ten, C.-C. Liu, and G. Manimaran, "Vulnerability assessment of cybersecurity for SCADA systems," IEEE Trans. Power Syst., vol. 23, no. 4, pp. 1836-1846, 2008.
41. Z. Mohajerani, F. Farzan, M. Jafary, Y. Lu, D. Wei, N. Kalenchits, B. Boyer, M. Muller, and P. Skare, "Cyber-related risk assessment and critical asset identification within the power grid," in Proc. IEEE PES Transm. Distrib. Conf. Expo., 2010, pp. 1-4.
42. K. D. Wilken and T. Kong, "Concurrent detection of software and hardware data-access faults," IEEE Trans. Comput., vol. 46, pp. 412-424, 1997. (Pubitemid 127760469)
43. A. Avizienis, J.-C. Laprie, and B. Randell, "Dependability and its threats: A taxonomy," in Proc. IFIP Congr. Topical Sessions, 2004, pp. 91-120.
44. A. Patcha and J.-M. Park, "An overview of anomaly detection techniques: Existing solutions and latest technological trends," Comput. Netw., vol. 51, pp. 3448-3470, 2007. (Pubitemid 46921030)
45. H.-K. Pao, C.-H. Mao, H.-M. Lee, C.-D. Chen, and C. Faloutsos, "An intrinsic graphical signature based on alert correlation analysis for intrusion detection," in Proc. Int. Conf. Technol. Appl. Artif. Intell., 2010, pp. 102-109.
46. S. Niksefat, M. M. Ahaniha, B. Sadeghiyan, and M. Shajari, "Toward specification-based intrusion detection for web applications," in Proc. Int. Conf. Recent Adv. Intrusion Detection, 2010, pp. 510-511.
47. C. V. Zhou, C. Leckie, and S. Karunasekera, "A survey of coordinated attacks and collaborative intrusion detection," Comput. Security, vol. 29, no. 1, pp. 124-140, 2010.
48. A. A. Cárdenas, S. Amin, Z.-S. Lin, Y.-L. Huang, C.-Y. Huang, and S. Sastry, "Attacks against process control systems: Risk assessment, detection, and response," in Proc. ACM Symp. Inf., Comput. Commun. Security, 2011, pp. 355-366.