Protection and Control of Modern Power Systems (Aug 2023)

A novel hybrid cybersecurity scheme against false data injection attacks in automated power systems

  • Shahbaz Hussain,
  • S. M. Suhail Hussain,
  • Marziyeh Hemmati,
  • Atif Iqbal,
  • Rashid Alammari,
  • Stefano Zanero,
  • Enrico Ragaini,
  • Giambattista Gruosso

DOI
https://doi.org/10.1186/s41601-023-00312-y
Journal volume & issue
Vol. 8, no. 1
pp. 1 – 15

Abstract

Read online

Abstract The conventional power systems are evolving as smart grids. In recent times cyberattacks on smart grids have been increasing. Among different attacks, False Data Injection (FDI) is considered as an emerging threat that has significant impact. By exploiting the vulnerabilities of IEC 61850 Generic Object-Oriented Substation Events (GOOSE) and Sampled Values (SV) attackers can launch different FDI attacks. In this paper, a real-time set up capable of simulating FDI on GOOSE and SV protocols is developed to evaluate the impact of such attacks on power grid. IEC 62351 stipulates cybersecurity guidelines for GOOSE and SV, but only at communication or Information Technology (IT) level. Hence there is a need to develop a holistic security both at IT and Operation Technology (OT) level. In this regard, a novel sequence content resolver-based hybrid security scheme suitable to tackle FDI attacks on GOOSE and SV is proposed. Furthermore, the computational performance of the proposed hybrid security scheme is presented to demonstrate its applicability to the time critical GOOSE and SV protocols.

Keywords