Presentation is loading. Please wait.

Presentation is loading. Please wait.

Securing Substations through Command Authentication Using On-the-fly Simulation of Power System Dynamics Daisuke Mashima, Binbin Chen, Toby Zhou (ADSC)

Published byἉλκυόνη Μαγγίνας Modified over 5 years ago

Similar presentations

Presentation on theme: "Securing Substations through Command Authentication Using On-the-fly Simulation of Power System Dynamics Daisuke Mashima, Binbin Chen, Toby Zhou (ADSC)"— Presentation transcript:

1 Securing Substations through Command Authentication Using On-the-fly Simulation of Power System Dynamics Daisuke Mashima, Binbin Chen, Toby Zhou (ADSC) Ramkumar Rajendran and Biplab Sikdar (National University of Singapore) This research is supported in part by the National Research Foundation, Prime Minister's Office, Singapore under the Energy Programme and administrated by the Energy Market Authority (EP Award No. NRF2014EWT-EIRP ) and is also partly supported by the National Research Foundation, Prime Minister’s Office, Singapore under its Campus for Research Excellence and Technological Enterprise (CREATE) programme.

2 Recent Cybersecurity Incidents
Ukraine attack in 2015 Control center was hacked and became malicious CrashOverride (Industroyer) Reported that it was used in Ukraine attack in 2016 Abuses widely-used ICS protocols, including IEC 104 and IEC 61850 (

3 Command Authentication
Validate legitimacy of incoming control commands based on power grid status and context Complementary to existing security solutions: Industrial firewall, data diode Intrusion / anomaly detection TLS (IEC 62351) Security measures at control center (user authentication, access control, anti-virus, etc.)

4 State-of-the-arts Centralized approach Decentralized approach
Hui Lin, Adam Slagell, Zbigniew Kalbarczyk, Peter W. Sauer, and Ravishankar K. Iyer, Runtime Semantic Security Analysis to Detect and Mitigate Control-related Attacks in Power Grids, in IEEE Transactions on Smart Grid D. Mashima, P. Gunathilaka, and B. Chen, “Artificial command delaying for secure substation remote control: Design and implementation,” to appear in IEEE Transactions on Smart Grid. Decentralized approach S. Meliopoulos, G. Cokkinides, R. Fan, L. Sun, and B. Cui, “Command authentication via faster than real time simulation,” in Power and Energy Society General Meeting (PESGM), IEEE, 2016, pp. 1–5.

5 Steady-state Power Flow Simulation
Fast to calculate, good for real-time operation But has potential limitation Frequency violation in term of WECC Category C limit (59Hz over 7 second)

6 Power System Dynamics Simulation
Can simulate behavior in transient state as well as cascading failure Transmission line overload Out-of-sync generators As expected, takes time longer time to run simulation and evaluation

7 Command Authentication Based on Power System Dynamics Simulation
For each command of interest, run 2 simulations: One without command execution (Res0) The other with command execution(Rescmd) Compare Res0 and Rescmd to make a decision Any (additional) stability violation? Dynamics simulation was aborted? (i.e., islanding?) Duration till islanding Magnitude of frequency/voltage/power flow violation

8 Execution Example with 3 Commnds
Power grid mode for simulation is updated. 2 simulations with and without C1 execution are run in parallel 4 simulations ({no cmd, C2 only}, {C1 only, C1+C2}) are started in parallel Decision on C2 also depends on the decision on C1

9 Architecture Consideration
A*CMD (Active Command Mediation Defense) with artificial command-delaying [*] Can delay command probabilistically or in a selective way Run command authentication system in a centralized manner [*] Daisuke Mashima, Prageeth Gunathilaka, and Binbin Chen, "Artificial Command Delaying for Secure Substation Remote Control: Design and Implementation." In press for IEEE Transactions on Smart Grid.

10 False Positives / Negatives
For N-1 generator-loss contingencies, define legitimate recovery commands Execute command authentication to evaluate false positive No false positive was observed False negative may occur when malicious commands does not make the situation worse

11 Comparison with Steady-state based Approach
Assume the load shedding controls listed in the table are the legitimate Randomly injected other control commands (e.g., commands to open irrelevant circuit breakers and transformers) Considered as malicious / anomalous control commands Evaluated whether they are flagged by each scheme

12 Preliminary Measurements with Larger Power Grid Model

13 Conclusions Use of power system dynamics simulation can be a good addition for securing remote control infrastructure of smart grid. Longer latency should be taken care of for practical operation (Integration to A*CMD was discussed). Latency required can be too long depending on model size and complexity. Exploring tradeoff between simulation fidelity and performance is an interesting future work.

14 Thank you very much! Questions?
We are hiring full-time researchers for the government-funded smart grid security & resilience research projects in Singapore. For details, please feel free to contact me or refer to

Download ppt "Securing Substations through Command Authentication Using On-the-fly Simulation of Power System Dynamics Daisuke Mashima, Binbin Chen, Toby Zhou (ADSC)"

Similar presentations

1. AGENDA History. WHAT’S AN IDS? Security and Roles Types of Violations. Types of Detection Types of IDS. IDS issues. Application.

1. AGENDA History. WHAT’S AN IDS? Security and Roles Types of Violations. Types of Detection Types of IDS. IDS issues. Application.
Fundamentals of Computer Security Geetika Sharma Fall 2008.

Fundamentals of Computer Security Geetika Sharma Fall 2008.
Copyright (c) 2008, All Rights Reserved. Iowa State University G. Manimaran & Chen-Ching LiuCPS-Energy Workshop-2009Page  1 SCADA control network.

Copyright (c) 2008, All Rights Reserved. Iowa State University G. Manimaran & Chen-Ching LiuCPS-Energy Workshop-2009Page  1 SCADA control network.
Greenbench: A Benchmark for Observing Power Grid Vulnerability Under Data-Centric Threats Mingkui Wei, Wenye Wang Department of Electrical and Computer.

Greenbench: A Benchmark for Observing Power Grid Vulnerability Under Data-Centric Threats Mingkui Wei, Wenye Wang Department of Electrical and Computer.
A project under the 7th Framework Programme CPS Workshop Stockholm 12/04/2010 Gunnar Björkman Project Coordinator A Security Project for the Protection.

A project under the 7th Framework Programme CPS Workshop Stockholm 12/04/2010 Gunnar Björkman Project Coordinator A Security Project for the Protection.
Cyber Security of Smart Grid Systems

Cyber Security of Smart Grid Systems
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.
1 Smart Grid Cyber Security Annabelle Lee Senior Cyber Security Strategist Computer Security Division National Institute of Standards and Technology June.

1 Smart Grid Cyber Security Annabelle Lee Senior Cyber Security Strategist Computer Security Division National Institute of Standards and Technology June.
Clemson University Electric Power Research Association CHANDANA BOMMAREDDY CLEMSON UNIVERSITY DG VOLTAGE CONTROL IN AN ISLANDING MODE OF OPERATION.

Clemson University Electric Power Research Association CHANDANA BOMMAREDDY CLEMSON UNIVERSITY DG VOLTAGE CONTROL IN AN ISLANDING MODE OF OPERATION.
Organizational Risk and the Costs and Benefits of Biometrics Presentation to the European Union Biometrics Group May 14, 2004 Virginia Franke Kleist, Ph.D.

Organizational Risk and the Costs and Benefits of Biometrics Presentation to the European Union Biometrics Group May 14, 2004 Virginia Franke Kleist, Ph.D.
Frankfurt (Germany), 6-9 June 2011 M. Khederzadeh Power & Water University of Technology (PWUT) Tehran, IRAN. M.Khederzadeh – IRAN – RIF S3 – Paper 0066.

Frankfurt (Germany), 6-9 June 2011 M. Khederzadeh Power & Water University of Technology (PWUT) Tehran, IRAN. M.Khederzadeh – IRAN – RIF S3 – Paper 0066.
Information Technology Needs and Trends in the Electric Power Business Mladen Kezunovic Texas A&M University PS ERC Industrial Advisory Board Meeting December.

Information Technology Needs and Trends in the Electric Power Business Mladen Kezunovic Texas A&M University PS ERC Industrial Advisory Board Meeting December.
©2009 Mladen Kezunovic. Improving Relay Performance By Off-line and On-line Evaluation Mladen Kezunovic Jinfeng Ren, Chengzong Pang Texas A&M University,

©2009 Mladen Kezunovic. Improving Relay Performance By Off-line and On-line Evaluation Mladen Kezunovic Jinfeng Ren, Chengzong Pang Texas A&M University,
CIP 2015 Smart Grid Vulnerability Assessment Using National Testbed Networks IHAB DARWISHOBINNA IGBETAREQ SAADAWI.

CIP 2015 Smart Grid Vulnerability Assessment Using National Testbed Networks IHAB DARWISHOBINNA IGBETAREQ SAADAWI.
LOBSTER: Large Scale Monitoring of Broadband Internet Infrastructure Evangelos Markatos The LOBSTER Consortium Institute.

LOBSTER: Large Scale Monitoring of Broadband Internet Infrastructure Evangelos Markatos The LOBSTER Consortium Institute.
B O N N E V I L L E P O W E R A D M I N I S T R A T I O N Page 1 Pacific Northwest Smart Grid Demonstration Project  Largest Smart Grid Demonstration.

B O N N E V I L L E P O W E R A D M I N I S T R A T I O N Page 1 Pacific Northwest Smart Grid Demonstration Project  Largest Smart Grid Demonstration.
Grid Defense Against Malicious Cascading Failure Paulo Shakarian, Hansheng Lei Dept. Electrical Engineering and Computer Science, Network Science Center,

Grid Defense Against Malicious Cascading Failure Paulo Shakarian, Hansheng Lei Dept. Electrical Engineering and Computer Science, Network Science Center,
1 © A. Kwasinski, 2015 Cyber Physical Power Systems Fall 2015 Security.

1 © A. Kwasinski, 2015 Cyber Physical Power Systems Fall 2015 Security.
Virtualized Execution Realizing Network Infrastructures Enhancing Reliability Application Communities PI Meeting Arlington, VA July 10, 2007.

Virtualized Execution Realizing Network Infrastructures Enhancing Reliability Application Communities PI Meeting Arlington, VA July 10, 2007.

Similar presentations

Ads by Google