Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies

  title={Cyber-Physical Energy Systems Security: Threat Modeling, Risk Assessment, Resources, Metrics, and Case Studies},
  author={Ioannis Zografopoulos and Juan Ospina and Xiaorui Liu and Charalambos Konstantinou},
  journal={IEEE Access},
Cyber-physical systems (CPS) are interconnected architectures that employ analog and digital components as well as communication and computational resources for their operation and interaction with the physical environment. CPS constitute the backbone of enterprise (e.g., smart cities), industrial (e.g., smart manufacturing), and critical infrastructure (e.g., energy systems). Thus, their vital importance, interoperability, and plurality of computing devices make them prominent targets for… 

Smart Grid Cyber-Physical Situational Awareness of Complex Operational Technology Attacks: A Review

This paper proposes a threat modeling framework and review the nature of cyber-physical attacks to understand their characteristics and impacts on the smart grid’s control and physical systems, and examines the existing threats detection and defense capabilities.

Distributed Energy Resources Cybersecurity Outlook: Vulnerabilities, Attacks, Impacts, and Mitigations

This work focuses on security oversights that reside in the cyber and physical layers of DERs and can jeopardize grid operations, and presents how protocol and device -level vulnerabil- ities can materialize into cyberattacks impacting power system operations.

Stealthy Rootkit Attacks on Cyber-Physical Microgrids: Poster

The cyber kill chain of a rootkit which can simultaneously deploy itself at multiple locations in a microgrid in a coordinated and stealthy way in order to maximize the impact on power system operations is discussed.

Stealthy Rootkit Attacks on Cyber-Physical Microgrids

Cyber-physical microgrids hold the key to a carbon-neutral power sector since they enable renewable and distributed energy resource integration, can alleviate overloaded distribution systems, and

Detection of Malicious Attacks in Autonomous Cyber-Physical Inverter-Based Microgrids

The distributed generation capabilities of microgrids (MGs) arise as essential assets in enhancing grid resilience. The integration of distributed energy sources, controllable loads, and prosumers

A Real-Time Hardware-in-the-Loop (HIL) Cybersecurity Testbed for Power Electronics Devices and Systems in Cyber-Physical Environments

Several real cyber-attacks are created and their impacts in a PE system are provided to validate the feasibility of the proposed real-time hardware-in-the-loop cybersecurity tested for PE systems in cyber-physical environments.

Behind Closed Doors: Process-Level Rootkit Attacks in Cyber-Physical Microgrid Systems

This work investigates the steps followed by stealthy rootkits at the process level of control systems pre- and post-compromise, and demonstrates how the VDDM measurement predictions are paramount to orchestrate crippling attacks from multiple system standpoints, maximizing the impact, and impede detection blinding system operator situational awareness.

Security assessment and impact analysis of cyberattacks in integrated T&D power systems

The impact of cyberattacks in an integrated transmission and distribution (T&D) power grid model with distributed energy resource (DER) integration with OCTAVE Allegro methodology is examined.



Cyber-security on smart grid: Threats and potential solutions

STRIDE-based threat modeling for cyber-physical systems

The paper identifies that STRIDE is a light-weight and effective threat modeling methodology for CPS that simplifies the task for security analysts to identify vulnerabilities and plan appropriate component level security measures at the system design stage.

A testbed environment for buildings-to-grid cyber resilience research and development

The smart grid is characterized by the proliferation of advanced digital controllers at all levels of its operational hierarchy from generation to end consumption. Such controllers within modern

CP-SAM: Cyber-Physical Security Assessment Metric for Monitoring Microgrid Resiliency

A cyber-physical security assessment metric (CP-SAM) based on quantitative factors affecting resiliency and utilizing concepts from graph theoretic analysis, probabilistic model of availability, attack graph metrics, and vulnerabilities across different layers of the microgrid system is proposed.

CPIndex: Cyber-Physical Vulnerability Assessment for Power-Grid Infrastructures

CPINDEX, a security-oriented stochastic risk management technique that calculates cyber-physical security indices to measure the security level of the underlying cyber- physical setting, is presented.

Safety and security risk assessment in cyber-physical systems

This paper reviews the existing approaches of risk assessment and management from the perspective of safety, security, and their integration before the technical gaps between the demand and the current situation of safety and security issues in CPS are identified.

Cyber-Security of Smart Microgrids: A Survey

Since a false data injection (FDI) attack that compromises the data integrity in the cyber/communication network is one of the most challenging threats for smart microgrids, it is investigated in detail in this paper.

Cyber Physical Security Analytics for Transactive Energy Systems

A deep learning approach called deep stacked autoencoder (SAE) is utilized to detect possible anomalies in the market and physical system measurements and trigger a further investigation for root cause analysis using end-to-end TES testbed and use case.

Assessing the Physical Impact of Cyberattacks on Industrial Cyber-Physical Systems

A new risk assessment method is presented in this paper to quantify the impact of cyberattacks on the physical system of ICPSs and helps carry out appropriate attack mitigation measures.