Повышение информационной безопасности автоматизированных систем диспетчерского управления в электроэнергетических системах

Abstract

The main trends in the development of automated dispatch control systems (also known as SCADA — supervisory control and data acquisition systems) in the electric power industry are considered, and the shift to the concept of remotely controlled unattended substations is analyzed. It is shown that the introduction of smart computerized control systems in the electric power industry results in that the matters concerned with ensuring cybersecurity of power facilities are coming at the forefront. Possible information-related impacts and cyber- attacks on electric power system facilities can upset the operation of not only automated systems and secondary intelligent equipment, but also the main power equipment of power plants and substations. Unauthorized control of digital substation equipment, failures and malfunctions of primary and secondary substation equipment caused by cyber attacks are the main challenges and threats arising from the fitting of the electric power industry with information technologies. These new challenges determine the relevance of assessing the risks of upsetting the operation of automated dispatch control systems in the electric power industry. It is proposed to assess the risks of upsetting the automated dispatch control system operation in addition to evaluating the reliability of electric power systems and their components. The relevance of developing the above-mentioned risk assessment methodology is shown, and one of possible versions of its practical implementation is proposed. The proposed version implies application of the real-time power system simulation method with connecting the secondary equipment (relay protection and automatic control terminals, controllers and intelligent devices) into the simulation loop. The rest part of the system (primary substation equipment) can be represented by a numerical model implemented on an RTDS simulator (this approach is called hardware-in-the-loop simulation). Simulation of an electric power system area with the relay protection, automatic, and process control system devices connected in the simulation loop will make it possible to estimate the consequences for various scenarios of disturbing the operation of a complex electric power system, also as a result of possible unauthorized information attacks. The developed methodology for assessing the risks of disturbing the operation of an automated dispatch control system makes it possible to obtain the integral risk values for the considered plant or system. The analysis results can be used for taking management decisions, and a correct and timely choice of measures for managing the identified makes it possible to ensure the reliability and safety of both individual electric power industry facilities and the electric power system as a whole.