Abstract
In this paper, we present a comprehensive study of smart grid security against cyber-physical attacks on its distinct functional components. We discuss: (1) a function-based methodology to evaluate smart grid resilience against cyber-physical attacks; (2) a Bayesian Attack Graph for Smart Grid (BAGS) tool to compute the likelihood of the compromise of cyber components of the smart grid system; (3) risk analysis methodology, which combines the results of the function-based methodology and BAGS to quantify risk for each cyber component of the smart grid; and (4) efficient resource allocation in the smart grid cyber domain using reinforcement learning (extension of BAGS tool) to compute optimal policies about whether to perform vulnerability assessment or patch a cyber system of the smart grid whose vulnerability has already been discovered. The results and analysis of these approaches help power engineers to identify failures in advance from one system component to another, develop robust and more resilient power systems and improve situational awareness and the response of the system to cyber-physical attacks. This work sheds light on the interdependency between the cyber domain and power grid and demonstrates that the security of both worlds requires the utmost attention. We hope this work assists power engineers to protect the grid against future cyber-physical attacks.
Highlights
Cyber-Physical Systems (CPS) refer to a generation of systems where physical processes are monitored and controlled from the cyber domain through advanced computation and communication technologies with humans in the loop [1]
The probabilities will change if any vulnerability is patched or discovered, and that will change the probability of compromise of other system components since they are connected in the Bayesian network using
The probabilities will change if any vulnerability is patched or discovered, and that will change the probability of compromise of other system components since they are connected in the Bayesian network using Bayes’ rule
Summary
Cyber-Physical Systems (CPS) refer to a generation of systems where physical processes are monitored and controlled from the cyber domain through advanced computation and communication technologies with humans in the loop [1]. The prosperity of any nation is highly dependent on its energy sector: CPS for electricity, petroleum and natural gas. They serve hospitals, military, transportation, the production of goods and many more. If a system in the cyber domain controls and monitors the pressure of the natural gas in a pipeline and sends commands to change the pressure (increase the pressure via compressor station: physical domain) beyond maximum allowable operating pressure, this may allow gas to leak or destroy the walls of the pipeline, causing an explosion [3]
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
