Data‐driven detection and identification of IoT‐enabled load‐altering attacks in power grids

Subhash Lakshminarayana; Saurav Sthapit; Hamidreza Jahangir; Carsten Maple; H. Vincent  Poor

doi:10.1049/stg2.12066

Data‐driven detection and identification of IoT‐enabled load‐altering attacks in power grids

Subhash Lakshminarayana, Saurav Sthapit, Hamidreza Jahangir, Carsten Maple, H. Vincent Poor

Research output: Contribution to journal › Article › peer-review

20 Citations (Scopus)

41 Downloads (Pure)

Abstract

Advances in edge computing are powering the development and deployment of Internet of Things (IoT) systems to provide advanced services and resource efficiency. However, large‐scale IoT‐based load‐altering attacks (LAAs) can seriously impact power grid operations, such as destabilising the grid's control loops. Timely detection and identification of any compromised nodes are essential to minimise the adverse effects of these attacks on power grid operations. In this work, two data‐driven algorithms are proposed to detect and identify compromised nodes and the attack parameters of the LAAs. The first method, based on the Sparse Identification of Nonlinear Dynamics approach, adopts a sparse regression framework to identify attack parameters that best describe the observed dynamics. The second method, based on physics‐informed neural networks, employs neural networks to infer the attack parameters from the measurements. Both algorithms are presented utilising edge computing for deployment over decentralised architectures. Extensive simulations are performed on IEEE 6‐, 14‐, and 39‐bus systems to verify the effectiveness of the proposed methods. Numerical results confirm that the proposed algorithms outperform existing approaches, such as those based on unscented Kalman filter, support vector machines, and neural networks (NN), and effectively detect and identify locations of attack in a timely manner

Original language	English
Pages (from-to)	203-218
Number of pages	16
Journal	IET Smart Grid
Volume	5
Issue number	3
Early online date	15 Apr 2022
DOIs	https://doi.org/10.1049/stg2.12066
Publication status	Published - 1 Jun 2022
Externally published	Yes

Bibliographical note

This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited

Funder

This work has been supported in part by the PETRAS National Centre of Excellence for IoT Systems Cybersecurity, which has been funded by the UK EPSRC under grant number EP/S035362/1. The research of H. Vincent Poor was supported in part by grants from the C3.ai Digital Transformation Institute, the Princeton E-ffiliates Partnership, and the U.S. National Science Foundation (Grant ECCS-2039716).

Funding

This work has been supported in part by the PETRAS National Centre of Excellence for IoT Systems Cybersecurity, which has been funded by the UK EPSRC under grant number EP/S035362/1. The research of H. Vincent Poor was supported in part by grants from the C3.ai Digital Transformation Institute, the Princeton E-ffiliates Partnership, and the U.S. National Science Foundation (Grant ECCS-2039716).

Funders	Funder number
C3.ai Digital Transformation Institute
National Science Foundation	ECCS‐2039716
Engineering and Physical Sciences Research Council	EP/S035362/1

Keywords

QA76
TJ
TK

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1049/stg2.12066Licence: CC BY

Sthapit2022VoRFinal published version, 0.98 MBLicence: CC BY

Cite this

@article{70e4161fea9448039e912a92092d83ed,

title = "Data‐driven detection and identification of IoT‐enabled load‐altering attacks in power grids",

abstract = "Advances in edge computing are powering the development and deployment of Internet of Things (IoT) systems to provide advanced services and resource efficiency. However, large‐scale IoT‐based load‐altering attacks (LAAs) can seriously impact power grid operations, such as destabilising the grid's control loops. Timely detection and identification of any compromised nodes are essential to minimise the adverse effects of these attacks on power grid operations. In this work, two data‐driven algorithms are proposed to detect and identify compromised nodes and the attack parameters of the LAAs. The first method, based on the Sparse Identification of Nonlinear Dynamics approach, adopts a sparse regression framework to identify attack parameters that best describe the observed dynamics. The second method, based on physics‐informed neural networks, employs neural networks to infer the attack parameters from the measurements. Both algorithms are presented utilising edge computing for deployment over decentralised architectures. Extensive simulations are performed on IEEE 6‐, 14‐, and 39‐bus systems to verify the effectiveness of the proposed methods. Numerical results confirm that the proposed algorithms outperform existing approaches, such as those based on unscented Kalman filter, support vector machines, and neural networks (NN), and effectively detect and identify locations of attack in a timely manner",

keywords = "QA76, TJ, TK",

author = "Subhash Lakshminarayana and Saurav Sthapit and Hamidreza Jahangir and Carsten Maple and Poor, {H. Vincent}",

note = "This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited",

year = "2022",

month = jun,

day = "1",

doi = "10.1049/stg2.12066",

language = "English",

volume = "5",

pages = "203--218",

journal = "IET Smart Grid",

issn = "2515-2947",

publisher = "John Wiley & Sons Inc.",

number = "3",

}

TY - JOUR

T1 - Data‐driven detection and identification of IoT‐enabled load‐altering attacks in power grids

AU - Lakshminarayana, Subhash

AU - Sthapit, Saurav

AU - Jahangir, Hamidreza

AU - Maple, Carsten

AU - Poor, H. Vincent

N1 - This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited

PY - 2022/6/1

Y1 - 2022/6/1

N2 - Advances in edge computing are powering the development and deployment of Internet of Things (IoT) systems to provide advanced services and resource efficiency. However, large‐scale IoT‐based load‐altering attacks (LAAs) can seriously impact power grid operations, such as destabilising the grid's control loops. Timely detection and identification of any compromised nodes are essential to minimise the adverse effects of these attacks on power grid operations. In this work, two data‐driven algorithms are proposed to detect and identify compromised nodes and the attack parameters of the LAAs. The first method, based on the Sparse Identification of Nonlinear Dynamics approach, adopts a sparse regression framework to identify attack parameters that best describe the observed dynamics. The second method, based on physics‐informed neural networks, employs neural networks to infer the attack parameters from the measurements. Both algorithms are presented utilising edge computing for deployment over decentralised architectures. Extensive simulations are performed on IEEE 6‐, 14‐, and 39‐bus systems to verify the effectiveness of the proposed methods. Numerical results confirm that the proposed algorithms outperform existing approaches, such as those based on unscented Kalman filter, support vector machines, and neural networks (NN), and effectively detect and identify locations of attack in a timely manner

AB - Advances in edge computing are powering the development and deployment of Internet of Things (IoT) systems to provide advanced services and resource efficiency. However, large‐scale IoT‐based load‐altering attacks (LAAs) can seriously impact power grid operations, such as destabilising the grid's control loops. Timely detection and identification of any compromised nodes are essential to minimise the adverse effects of these attacks on power grid operations. In this work, two data‐driven algorithms are proposed to detect and identify compromised nodes and the attack parameters of the LAAs. The first method, based on the Sparse Identification of Nonlinear Dynamics approach, adopts a sparse regression framework to identify attack parameters that best describe the observed dynamics. The second method, based on physics‐informed neural networks, employs neural networks to infer the attack parameters from the measurements. Both algorithms are presented utilising edge computing for deployment over decentralised architectures. Extensive simulations are performed on IEEE 6‐, 14‐, and 39‐bus systems to verify the effectiveness of the proposed methods. Numerical results confirm that the proposed algorithms outperform existing approaches, such as those based on unscented Kalman filter, support vector machines, and neural networks (NN), and effectively detect and identify locations of attack in a timely manner

KW - QA76

KW - TJ

KW - TK

UR - http://www.scopus.com/inward/record.url?scp=85128026678&partnerID=8YFLogxK

U2 - 10.1049/stg2.12066

DO - 10.1049/stg2.12066

M3 - Article

SN - 2515-2947

VL - 5

SP - 203

EP - 218

JO - IET Smart Grid

JF - IET Smart Grid

IS - 3

ER -

Data‐driven detection and identification of IoT‐enabled load‐altering attacks in power grids

Abstract

Bibliographical note

Funder

Funding

Keywords

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this