Cyber Attacks on Power System Automation and Protection and Impact Analysis

Vetrivel Subramaniam Rajkumar; Marko Tealane; Alexandru Stefanov; Alfan Presekal; Peter Palensky

doi:10.1109/ISGT-Europe47291.2020.9248840

Cyber Attacks on Power System Automation and Protection and Impact Analysis

Vetrivel Subramaniam Rajkumar, Marko Tealane, Alexandru Stefanov, Alfan Presekal, Peter Palensky

Intelligent Electrical Power Grids

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

26 Citations (Scopus)

357 Downloads (Pure)

Abstract

Power system automation and communication standards are spearheading the power system transition towards a smart grid. IEC 61850 is one such standard, which is widely used for substation automation and protection. It enables real-time communication and data exchange between critical substation automation and protection devices within digital substations. However, IEC 61850 is not cyber secure. In this paper, we demonstrate the dangerous implications of not securing IEC 61850 standard. Cyber attacks may exploit the vulnerabilities of the Sampled Values (SV) and Generic Object-Oriented Substation Event (GOOSE) protocols of IEC 61850. The cyber attacks may be realised by injecting spoofed SV and GOOSE data frames into the substation communication network at the bay level. We demonstrate that such cyber attacks may lead to obstruction or tripping of multiple protective relays. Coordinated cyber attacks against the protection system in digital substations may cause generation and line disconnections, triggering cascading failures in the power grid. This may eventually result in a partial or complete blackout. The attack model, impact on system dynamics and cascading failures are veri ed experimentally through a proposed cyber-physical experimental framework that closely resembles real-world conditions within a digital substation, including Intelligent Electronic Devices (IEDs) and protection schemes. It is implemented through Hardware-in-the-Loop (HIL) simulations of commercial relays with a Real-Time Digital Simulator (RTDS).

Original language	English
Title of host publication	Proceedings of 2020 IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020
Subtitle of host publication	Proceedings
Publisher	IEEE
Pages	247-254
Number of pages	8
ISBN (Electronic)	978-1-7281-7100-5
ISBN (Print)	978-1-7281-7101-2
DOIs	https://doi.org/10.1109/ISGT-Europe47291.2020.9248840
Publication status	Published - 2020
Event	10th IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020 - Virtual/online event due to COVID-19, Delft, Netherlands Duration: 26 Oct 2020 → 28 Oct 2020 Conference number: 10 https://ieee-isgt-europe.org/

Conference

Conference	10th IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020
Abbreviated title	ISGT-Europe 2020
Country/Territory	Netherlands
City	Delft
Period	26/10/20 → 28/10/20
Other	Virtual/online event due to COVID-19
Internet address	https://ieee-isgt-europe.org/

Bibliographical note

Green Open Access added to TU Delft Institutional Repository ‘You share, we take care!’ – Taverne project https://www.openaccess.nl/en/you-share-we-take-care

Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

Keywords

Blackout
Cascading Failures
Cyber Attacks
Cyber Security
IEC 61850
Power System Protection

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1109/ISGT-Europe47291.2020.9248840

09248840Final published version, 462 KB

Cite this

@inproceedings{660b7aa535264396a6cad40451f4743f,

title = "Cyber Attacks on Power System Automation and Protection and Impact Analysis",

abstract = "Power system automation and communication standards are spearheading the power system transition towards a smart grid. IEC 61850 is one such standard, which is widely used for substation automation and protection. It enables real-time communication and data exchange between critical substation automation and protection devices within digital substations. However, IEC 61850 is not cyber secure. In this paper, we demonstrate the dangerous implications of not securing IEC 61850 standard. Cyber attacks may exploit the vulnerabilities of the Sampled Values (SV) and Generic Object-Oriented Substation Event (GOOSE) protocols of IEC 61850. The cyber attacks may be realised by injecting spoofed SV and GOOSE data frames into the substation communication network at the bay level. We demonstrate that such cyber attacks may lead to obstruction or tripping of multiple protective relays. Coordinated cyber attacks against the protection system in digital substations may cause generation and line disconnections, triggering cascading failures in the power grid. This may eventually result in a partial or complete blackout. The attack model, impact on system dynamics and cascading failures are veri ed experimentally through a proposed cyber-physical experimental framework that closely resembles real-world conditions within a digital substation, including Intelligent Electronic Devices (IEDs) and protection schemes. It is implemented through Hardware-in-the-Loop (HIL) simulations of commercial relays with a Real-Time Digital Simulator (RTDS).",

keywords = "Blackout, Cascading Failures, Cyber Attacks, Cyber Security, IEC 61850, Power System Protection",

author = "{Subramaniam Rajkumar}, Vetrivel and Marko Tealane and Alexandru Stefanov and Alfan Presekal and Peter Palensky",

note = "Green Open Access added to TU Delft Institutional Repository {\textquoteleft}You share, we take care!{\textquoteright} – Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public. ; 10th IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020, ISGT-Europe 2020 ; Conference date: 26-10-2020 Through 28-10-2020",

year = "2020",

doi = "10.1109/ISGT-Europe47291.2020.9248840",

language = "English",

isbn = "978-1-7281-7101-2",

pages = "247--254",

booktitle = "Proceedings of 2020 IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020",

publisher = "IEEE",

address = "United States",

url = "https://ieee-isgt-europe.org/",

}

Subramaniam Rajkumar, V, Tealane, M, Stefanov, A , Presekal, A & Palensky, P 2020, Cyber Attacks on Power System Automation and Protection and Impact Analysis. in Proceedings of 2020 IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020: Proceedings., 9248840, IEEE, pp. 247-254, 10th IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020, Delft, Netherlands, 26/10/20. https://doi.org/10.1109/ISGT-Europe47291.2020.9248840

Cyber Attacks on Power System Automation and Protection and Impact Analysis. / Subramaniam Rajkumar, Vetrivel; Tealane, Marko; Stefanov, Alexandru et al.
Proceedings of 2020 IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020: Proceedings. IEEE, 2020. p. 247-254 9248840.

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

TY - GEN

T1 - Cyber Attacks on Power System Automation and Protection and Impact Analysis

AU - Subramaniam Rajkumar, Vetrivel

AU - Tealane, Marko

AU - Stefanov, Alexandru

AU - Presekal, Alfan

AU - Palensky, Peter

N1 - Conference code: 10

PY - 2020

Y1 - 2020

N2 - Power system automation and communication standards are spearheading the power system transition towards a smart grid. IEC 61850 is one such standard, which is widely used for substation automation and protection. It enables real-time communication and data exchange between critical substation automation and protection devices within digital substations. However, IEC 61850 is not cyber secure. In this paper, we demonstrate the dangerous implications of not securing IEC 61850 standard. Cyber attacks may exploit the vulnerabilities of the Sampled Values (SV) and Generic Object-Oriented Substation Event (GOOSE) protocols of IEC 61850. The cyber attacks may be realised by injecting spoofed SV and GOOSE data frames into the substation communication network at the bay level. We demonstrate that such cyber attacks may lead to obstruction or tripping of multiple protective relays. Coordinated cyber attacks against the protection system in digital substations may cause generation and line disconnections, triggering cascading failures in the power grid. This may eventually result in a partial or complete blackout. The attack model, impact on system dynamics and cascading failures are veri ed experimentally through a proposed cyber-physical experimental framework that closely resembles real-world conditions within a digital substation, including Intelligent Electronic Devices (IEDs) and protection schemes. It is implemented through Hardware-in-the-Loop (HIL) simulations of commercial relays with a Real-Time Digital Simulator (RTDS).

AB - Power system automation and communication standards are spearheading the power system transition towards a smart grid. IEC 61850 is one such standard, which is widely used for substation automation and protection. It enables real-time communication and data exchange between critical substation automation and protection devices within digital substations. However, IEC 61850 is not cyber secure. In this paper, we demonstrate the dangerous implications of not securing IEC 61850 standard. Cyber attacks may exploit the vulnerabilities of the Sampled Values (SV) and Generic Object-Oriented Substation Event (GOOSE) protocols of IEC 61850. The cyber attacks may be realised by injecting spoofed SV and GOOSE data frames into the substation communication network at the bay level. We demonstrate that such cyber attacks may lead to obstruction or tripping of multiple protective relays. Coordinated cyber attacks against the protection system in digital substations may cause generation and line disconnections, triggering cascading failures in the power grid. This may eventually result in a partial or complete blackout. The attack model, impact on system dynamics and cascading failures are veri ed experimentally through a proposed cyber-physical experimental framework that closely resembles real-world conditions within a digital substation, including Intelligent Electronic Devices (IEDs) and protection schemes. It is implemented through Hardware-in-the-Loop (HIL) simulations of commercial relays with a Real-Time Digital Simulator (RTDS).

KW - Blackout

KW - Cascading Failures

KW - Cyber Attacks

KW - Cyber Security

KW - IEC 61850

KW - Power System Protection

UR - http://www.scopus.com/inward/record.url?scp=85097336676&partnerID=8YFLogxK

U2 - 10.1109/ISGT-Europe47291.2020.9248840

DO - 10.1109/ISGT-Europe47291.2020.9248840

M3 - Conference contribution

SN - 978-1-7281-7101-2

SP - 247

EP - 254

BT - Proceedings of 2020 IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020

PB - IEEE

T2 - 10th IEEE PES Innovative Smart Grid Technologies Europe, ISGT-Europe 2020

Y2 - 26 October 2020 through 28 October 2020

ER -

Cyber Attacks on Power System Automation and Protection and Impact Analysis

Abstract

Conference

Bibliographical note

Keywords

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this