Cyber-Physical Emulation and Optimization of Worst-Case Cyber Attacks on the Power Grid
| Title | Cyber-Physical Emulation and Optimization of Worst-Case Cyber Attacks on the Power Grid |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Castillo, Anya, Arguello, Bryan, Cruz, Gerardo, Swiler, Laura |
| Conference Name | 2019 Resilience Week (RWS) |
| Keywords | bulk electric system, compositionality, control engineering computing, CPS Resilience, CrashOverride, CrashOverride malware, CrashOverride malware attack, Cyber Dependencies, cyber experiments, cyber interdiction optimization, cyber physical systems, cyber-physical emulation, Cyber-physical systems, DC optimal power flow, DC power transmission, design of experiments, human factors, interdiction optimization, load control, Load flow, Metrics, notional electric system, optimisation, power control, power control area, power engineering computing, power grid operations, power grids, power system control, power system security, power system simulation, pubcrawl, Remote Terminal Units, Resiliency, SCADA systems, SCADA/ICS controls, Scalability, security of data, substation controlling, Substations, worst-case cyber attacks, worst-case loss |
| Abstract | In this paper we report preliminary results from the novel coupling of cyber-physical emulation and interdiction optimization to better understand the impact of a CrashOverride malware attack on a notional electric system. We conduct cyber experiments where CrashOverride issues commands to remote terminal units (RTUs) that are controlling substations within a power control area. We identify worst-case loss of load outcomes with cyber interdiction optimization; the proposed approach is a bilevel formulation that incorporates RTU mappings to controllable loads, transmission lines, and generators in the upper-level (attacker model), and a DC optimal power flow (DCOPF) in the lower-level (defender model). Overall, our preliminary results indicate that the interdiction optimization can guide the design of experiments instead of performing a "full factorial" approach. Likewise, for systems where there are important dependencies between SCADA/ICS controls and power grid operations, the cyber-physical emulations should drive improved parameterization and surrogate models that are applied in scalable optimization techniques. |
| DOI | 10.1109/RWS47064.2019.8971996 |
| Citation Key | castillo_cyber-physical_2019 |
- Remote Terminal Units
- optimisation
- power control
- power control area
- power engineering computing
- power grid operations
- power grids
- power system control
- power system security
- power system simulation
- pubcrawl
- notional electric system
- Resiliency
- SCADA systems
- SCADA/ICS controls
- Scalability
- security of data
- substation controlling
- Substations
- worst-case cyber attacks
- worst-case loss
- cyber-physical emulation
- cyber physical systems
- bulk electric system
- Compositionality
- control engineering computing
- CrashOverride
- CrashOverride malware
- CrashOverride malware attack
- Cyber Dependencies
- cyber experiments
- cyber interdiction optimization
- CPS resilience
- cyber-physical systems
- DC optimal power flow
- DC power transmission
- design of experiments
- Human Factors
- interdiction optimization
- load control
- Load flow
- Metrics