Fig 3 - uploaded by Vivek Kumar Singh
Content may be subject to copyright.

Experimental setup for using SHARP-Net Fig. 3 shows the experimental setup for testing the SHARPNet's architecture. To enable synchrophasor communications, virtual PMUs are modeled in the real time digital simulator (RTDS), which generates synthetic phasors at a sampling rate of 60 samples per second. The Linux-based PDC software, iPDC, is operating as a local PDC for the substation that receives the PMU data from the simulator using the IEEE C37.118 protocol, and forwards it to the software-based PDC, openPDC, operating in the control center environment. As a case study, we implemented an ARP spoofing attack on the local active PDC to disable the communication between the local active PDC and the super PDC. The IDS, IMS, and AMS are operated over the wide-area network to coordinate the reorchestration process in the event of an attack. Initially, the local standby PDC is offline and unreachable via the network. Once the IDS detects the man-in-the-middle (MITM) attack, based on the rule defined in table 1, the IMS removes the compromised PDC, assigns internet protocol (IP) credentials to the new active PDC, and orchestrates a new standby PDC. The AMS generates the alert message and network address
Similar publications
Citations
... I Cai et al. [11] I Degeler et al. [13] I Samir et al. [14] I Wyers et al. [15] I Gill et al. [12] I Mehmet [16] 2. Self-Healing Approaches and Techniques I Chen and Bahsoon [17] I Singh et al. [18] I Stojanovic and Stojanovic [19] I Berry and Chollot [20] I Schneider et al. [10] I Khalil et al. [21] I Hsieh [14] I El Fallah Seghrouchni et al. [2] 3. Intrusion Detection and Security I Degeler et al. [13] I Joseph and Mukesh [9] I Ahmad et al. [22] I Berry and Chollot [20] I Zhang et al. [6] I Subashini and Kavitha [4] I Colabianchi et al. [23] I Mohammadi et al. [24] ...
... PMUs measure electrical quantities' magnitude and phase angle, such as voltage and current, at high speed and accuracy. PMUs can be used to implement self-healing mechanisms in several ways, such as: PMU for a self-healing feature on the power grid was implemented by [18] and created real-time monitoring and load balancing using three components that facilitate the selfadaptation and self-healing functionality of the network. The following list describes the three components of the PMU: ...
... The subscriber2 sends the received alert messages to the namespace orchestrator, which triggers the orchestration process on a given substation namespace. The alert manager subscriber3 sends the received alert messages to the application programming interface (API) of the central management application [18]. ...
The rapid advancement of networking, computing, sensing, and control systems has introduced a wide range of cyber threats, including those from new devices deployed during the development of scenarios. With recent advancements in automobiles, medical devices, smart industrial systems, and other technologies, system failures resulting from external attacks or internal process malfunctions are increasingly common. Restoring the system’s stable state requires autonomous intervention through the self-healing process to maintain service quality. This paper, therefore, aims to analyse state of the art and identify where self-healing using machine learning can be applied to cyber–physical systems to enhance security and prevent failures within the system. The paper describes three key components of self-healing functionality in computer systems: anomaly detection, fault alert, and fault auto-remediation. The significance of these components is that self-healing functionality cannot be practical without considering all three. Understanding the self-healing theories that form the guiding principles for implementing these functionalities with real-life implications is crucial. There are strong indications that self-healing functionality in the cyber–physical system is an emerging area of research that holds great promise for the future of computing technology. It has the potential to provide seamless self-organising and self-restoration functionality to cyber–physical systems, leading to increased security of systems and improved user experience. For instance, a functional self-healing system implemented on a power grid will react autonomously when a threat or fault occurs, without requiring human intervention to restore power to communities and preserve critical services after power outages or defects. This paper presents the existing vulnerabilities, threats, and challenges and critically analyses the current self-healing theories and methods that use machine learning for cyber–physical systems.
... A deep-learning based model is proposed by Khediri et al.in [32] to enhance resiliency of the SG. Singh et al. in [33] proposed a resiliency framework for a PMU network capable of detecting an intrusion in order to develop a potential mitigation strategy. ...
The advent of synchrophasor technology has completely revolutionized the modern smart grid, enabling futuristic wide-area monitoring protection and control. The Synchrophasor Communication Network (SCN) is a backbone that supports communication of synchrophasor data among Phasor Measurement Units (PMUs) and Phasor Data Concentrators (PDCs). The operator at the control center can visualize the health of the smart grid using synchrophasor data aggregated at PDCs from several PMUs. Since the core of the SCN is the existing IP network as an underlying communication infrastructure, the synchrophasor data is subjected to attacks that can compromise its security. The attacks, such as denial-of-service (DoS), can result in degradation of performance and even can disrupt the entire operation of the smart grid, if not controlled. Thus, a resilient SCN is a pertinent requirement in which the system continues to operate with accepted levels of performance even in response to the DoS. This article endeavors to propose a comprehensive resiliency framework for the SCN with enhanced resiliency metrics based on hardware reliability and data reliability. The proposed framework is deployed for a SCN pertaining to a practical power grid in India for its resiliency analysis. The proposed work can be regarded as a significant contribution to smart grid technology, as it provides a framework for resiliency analysis covering different aspects such as hardware reliability, data reliability, and parameters validation using the QualNet network simulator. Nevertheless, an analytical design of the hybrid SCN proposed in this work can even be extended to other topological designs of SCN.
... Traditional health assessment, which is based on voltage security and/or frequency stability, provides a deeper insight into the operational health of a system and provides indications of anomalous activity [10]. Voltage security is defined as the system's capability to maintain system's voltage within acceptable limits during system stress, physical disturbances, and cyber-attacks [11]- [15]. Similarly, frequency stability is defined as a system's ability to maintain a stable and synchronous frequency environment between generators amid environmental and external disturbances [16], [17]. ...
... Traditional health assessment, which is based on voltage security and/or frequency stability, provides a deeper insight into the operational health of a system and provides indications of anomalous activity [10]. Voltage security is defined as the system's capability to maintain system's voltage within acceptable limits during system stress, physical disturbances, and cyber-attacks [11]- [15]. Similarly, frequency stability is defined as a system's ability to maintain a stable and synchronous frequency environment between generators amid environmental and external disturbances [16], [17]. ...
... II. RELATED WORK Over the recent decade, several researchers with different backgrounds have proposed several attack-resilient solutions to support WAPAC applications in the smart grid. The authors of [8] and [9] presented the attack-resilient synchrophasor architecture using software-defined networking (SDN) and dynamic network configuration. In [10], the authors proposed an eventtriggered attack-resilient design for proportional integral-based load frequency control against denial of service (DoS) attacks by computing system stability criterion using Lyapunov theory and adjusting system parameters dynamically. ...
Wide-area protection and control (WAPAC) systems are widely applied in the energy management system (EMS) that rely on a wide-area communication network to maintain system stability, security, and reliability. As technology and grid infrastructure evolve to develop more advanced WAPAC applications, however, so do the attack surfaces in the grid infrastructure. This paper presents an attack-resilient system (ARS) for the WAPAC cybersecurity by seamlessly integrating the network intrusion detection system (NIDS) with intrusion mitigation and prevention system (IMPS). In particular, the proposed NIDS utilizes signature and behavior-based rules to detect attack reconnaissance, communication failure, and data integrity attacks. Further, the proposed IMPS applies state transition-based mitigation and prevention strategies to quickly restore the normal grid operation after cyberattacks. As a proof of concept, we validate the proposed generic architecture of ARS by performing experimental case study for wide-area protection scheme (WAPS), one of the critical WAPAC applications, and evaluate the proposed NIDS and IMPS components of ARS in a cyber-physical testbed environment. Our experimental results reveal a promising performance in detecting and mitigating different classes of cyberattacks while supporting an alert visualization dashboard to provide an accurate situational awareness in real-time.
Reliability, resilience and Quality of Service are essential features of modern electric power-system operations that reflect the transition of electric energy infrastructure towards the smart grid deployment. Leveraging the Software Defined Networking technology and other cybersecurity cutting-edge technologies and algorithms, this work aims to bring a innovation in the modern Electrical Power and Energy System environment. To this end, we propose a cyber-resilience enhancement framework with the aim to modernize the traditional electrical grid and provide solutions in the domains of voltage and frequency restoration, cybersecurity and network Quality of Service. Based on the results, the framework is able to detect accurately cyberattacks and perform network path re-allocation by maximizing the Quality of Service in a more accurate way than other state of art algorithms.
The smart grid cyber–physical system (SGCPS) is the latest evolution of the traditional power system. Synchrophasor application in the SGCPS is responsible for wide area monitoring and control of the grid. Its communication network referred to as the synchrophasor communication network (SCN) has to be resilient. The resiliency measures the system’s ability to bounce back to the operational state from the failed state. Despite the maturity of the research on resiliency, it is still sparsely explored for the SCNs in a SGCPS. There is no comprehensive resiliency metric for the resiliency analysis of the SCN. Thus, a comprehensive resiliency metric in the context of the SCNs is presented in this paper. Further, a methodology is also presented for evaluating the resiliency of the SCN. The SCNs are designed for the practical power grid of West Bengal State, India, which have been analyzed for their resiliency using the proposed methodology.