SDN-Based Smart Cyber Switching (SCS) for Cyber Restoration of a Digital Substation

• URL: http://arxiv.org/abs/2411.07433v1
• Date: Mon, 11 Nov 2024 23:22:02 GMT
• Title: SDN-Based Smart Cyber Switching (SCS) for Cyber Restoration of a Digital Substation
• Authors: Mansi Girdhar, Kuchan Park, Wencong Su, Junho Hong, Akila Herath, Chen-Ching Liu,
• Abstract summary: This paper proposes a cybersecurity framework to bolster the resilience of substations based on the IEC-61850 standard. The framework's effectiveness is validated through comprehensive simulations and a hardware-in-the-loop (HIL) testbed.
• Score: 0.4749981032986242
• License: http://creativecommons.org/licenses/by/4.0/
• Abstract: In recent years, critical infrastructure and power grids have increasingly been targets of cyber-attacks, causing widespread and extended blackouts. Digital substations are particularly vulnerable to such cyber incursions, jeopardizing grid stability. This paper addresses these risks by proposing a cybersecurity framework that leverages software-defined networking (SDN) to bolster the resilience of substations based on the IEC-61850 standard. The research introduces a strategy involving smart cyber switching (SCS) for mitigation and concurrent intelligent electronic device (CIED) for restoration, ensuring ongoing operational integrity and cybersecurity within a substation. The SCS framework improves the physical network's behavior (i.e., leveraging commercial SDN capabilities) by incorporating an adaptive port controller (APC) module for dynamic port management and an intrusion detection system (IDS) to detect and counteract malicious IEC-61850-based sampled value (SV) and generic object-oriented system event (GOOSE) messages within the substation's communication network. The framework's effectiveness is validated through comprehensive simulations and a hardware-in-the-loop (HIL) testbed, demonstrating its ability to sustain substation operations during cyber-attacks and significantly improve the overall resilience of the power grid.

Related papers

• A Virtual Cybersecurity Department for Securing Digital Twins in Water Distribution Systems [39.58317527488534]
  Digital twins (DTs) help improve real-time monitoring and decision-making in water distribution systems. Their connectivity makes them easy targets for cyberattacks such as scanning, denial-of-service (DoS), and unauthorized access. We present a Virtual Cybersecurity Department (VCD), an affordable and automated framework designed for SMEs.
  arXiv  Detail & Related papers  (2025-04-28T21:14:48Z)
• Substation Bill of Materials: A Novel Approach to Managing Supply Chain Cyber-risks on IEC 61850 Digital Substations [44.99833362998488]
  Substation Bill of Materials (Subs-BOM) is capable of modeling all the IEDs in a DS and their relationships from a cybersecurity perspective. Subs-BOM provides energy utilities with an accurate and complete inventory of the devices, the firmware they are running, and the services that are deployed into the DS.
  arXiv  Detail & Related papers  (2025-03-25T13:28:36Z)
• Towards Zero Touch Networks: Cross-Layer Automated Security Solutions for 6G Wireless Networks [39.08784216413478]
  This paper proposes an automated security framework targeting Physical Layer Authentication and Cross-Layer Intrusion Detection Systems. The proposed framework employs drift-adaptive online learning techniques and a novel enhanced Successive Halving (SH)-based Automated ML (AutoML) method to automatically generate optimized ML models for dynamic networking environments.
  arXiv  Detail & Related papers  (2025-02-28T01:16:11Z)
• Digital Twin for Evaluating Detective Countermeasures in Smart Grid Cybersecurity [0.0]
  This study delves into the potential of digital twins, replicating a smart grid's cyber-physical laboratory environment. We introduce a flexible, comprehensive digital twin model equipped for hardware-in-the-loop evaluations.
  arXiv  Detail & Related papers  (2024-12-05T08:41:08Z)
• Securing Legacy Communication Networks via Authenticated Cyclic Redundancy Integrity Check [98.34702864029796]
  We propose Authenticated Cyclic Redundancy Integrity Check (ACRIC) ACRIC preserves backward compatibility without requiring additional hardware and is protocol agnostic. We show that ACRIC offers robust security with minimal transmission overhead ( 1 ms)
  arXiv  Detail & Related papers  (2024-11-21T18:26:05Z)
• Countering Autonomous Cyber Threats [40.00865970939829]
  Foundation Models present dual-use concerns broadly and within the cyber domain specifically. Recent research has shown the potential for these advanced models to inform or independently execute offensive cyberspace operations. This work evaluates several state-of-the-art FMs on their ability to compromise machines in an isolated network and investigates defensive mechanisms to defeat such AI-powered attacks.
  arXiv  Detail & Related papers  (2024-10-23T22:46:44Z)
• Smart Grid Security: A Verified Deep Reinforcement Learning Framework to Counter Cyber-Physical Attacks [2.159496955301211]
  Smart grids are vulnerable to strategically crafted cyber-physical attacks. Malicious attacks can manipulate power demands using high-wattage Internet of Things (IoT) botnet devices. Grid operators overlook potential scenarios of cyber-physical attacks during their design phase. We propose a safe Deep Reinforcement Learning (DRL)-based framework for mitigating attacks on smart grids.
  arXiv  Detail & Related papers  (2024-09-24T05:26:20Z)
• GAN-GRID: A Novel Generative Attack on Smart Grid Stability Prediction [53.2306792009435]
  We propose GAN-GRID a novel adversarial attack targeting the stability prediction system of a smart grid tailored to real-world constraints. Our findings reveal that an adversary armed solely with the stability model's output, devoid of data or model knowledge, can craft data classified as stable with an Attack Success Rate (ASR) of 0.99.
  arXiv  Detail & Related papers  (2024-05-20T14:43:46Z)
• Performance Analysis of Decentralized Physical Infrastructure Networks and Centralized Clouds [42.37170902465878]
  Decentralized Physical Infrastructure Networks (DePINs) aim to enhance data sovereignty and confidentiality and increase resilience against a single point of failure. This work focuses on the potential of DePINs to disrupt traditional centralized architectures by taking advantage of the Internet of Things (IoT) devices and crypto-economic design in combination with blockchains.
  arXiv  Detail & Related papers  (2024-04-12T08:00:38Z)
• SISSA: Real-time Monitoring of Hardware Functional Safety and Cybersecurity with In-vehicle SOME/IP Ethernet Traffic [49.549771439609046]
  We propose SISSA, a SOME/IP communication traffic-based approach for modeling and analyzing in-vehicle functional safety and cyber security. Specifically, SISSA models hardware failures with the Weibull distribution and addresses five potential attacks on SOME/IP communication. Extensive experimental results show the effectiveness and efficiency of SISSA.
  arXiv  Detail & Related papers  (2024-02-21T03:31:40Z)
• Adaptive Artificial Immune Networks for Mitigating DoS flooding Attacks [13.580747080271825]
  This paper proposes the use of artificial immune systems to mitigate denial of service attacks. The approach is based on building networks of distributed sensors suited to the requirements of the monitored environment.
  arXiv  Detail & Related papers  (2024-02-12T15:26:37Z)
• DynamiQS: Quantum Secure Authentication for Dynamic Charging of Electric Vehicles [61.394095512765304]
  Dynamic Wireless Power Transfer (DWPT) is a novel technology that allows charging an electric vehicle while driving. Recent advancements in quantum computing jeopardize classical public key cryptography. We propose DynamiQS, the first post-quantum secure authentication protocol for dynamic wireless charging.
  arXiv  Detail & Related papers  (2023-12-20T09:40:45Z)
• SDN-Based Dynamic Cybersecurity Framework of IEC-61850 Communications in Smart Grid [0.5399800035598186]
  Cyber breaches into power grid substations present a risk. Nowadays, software-defined network (SDN) is being widely used in the substation automation system. We propose a hybrid intrusion detection system (IDS)-integrated SDN architecture for detecting and preventing the injection of malicious IEC 61850-based generic object-oriented substation event (GOOSE) messages.
  arXiv  Detail & Related papers  (2023-11-20T21:49:41Z)
• Enhancing Cyber-Resiliency of DER-based SmartGrid: A Survey [15.633226785669203]
  This survey aims to provide a systematical and comprehensive review regarding the cyber-resiliency enhancement (CRE) of DER-based smart grid. An integrated threat modeling method is tailored for the hierarchical DER-based smart grid with special emphasis on vulnerability identification and impact analysis. A CRE framework is subsequently proposed to incorporate the five key resiliency enablers.
  arXiv  Detail & Related papers  (2023-05-09T10:59:56Z)
• FedDiSC: A Computation-efficient Federated Learning Framework for Power Systems Disturbance and Cyber Attack Discrimination [1.0621485365427565]
  This paper proposes a novel Federated Learning-based privacy-preserving and communication-efficient attack detection framework, known as FedDiSC. We put forward a representation learning-based Deep Auto-Encoder network to accurately detect power system and cybersecurity anomalies. To adapt our proposed framework to the timeliness of real-world cyberattack detection in SGs, we leverage the use of a gradient privacy-preserving quantization scheme known as DP-SIGNSGD.
  arXiv  Detail & Related papers  (2023-04-07T13:43:57Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.