A hybrid network IDS for protective digital relays in the power transmission grid

Georgia Koutsandria, Vishak Muthukumar, Masood Parvania, Sean Peisert, Chuck McParland, Anna Scaglione

Research output: Chapter in Book/Report/Conference proceedingConference contribution

25 Scopus citations

Abstract

In this paper, we propose a novel use of network intrusion detection systems (NIDSs) tailored to detect attacks against networks that support hybrid controllers that implement power grid protection schemes. In our approach, we implement specification-based intrusion detection signatures based on the execution of the hybrid automata that specify the communication rules and physical limits that the system should obey. To validate our idea, we developed an experimental framework consisting of a simulation of the physical system and an emulation of the master controller, which serves as the digital relay that implements the protection mechanism. Our Hybrid Control NIDS (HC-NIDS) continuously monitors and analyzes the network traffic exchanged within the physical system. It identifies traffic that deviates from the expected communication pattern or physical limitations, which could place the system in an unsafe mode of operation. Our experimental analysis demonstrates that our approach is able to detect a diverse range of attack scenarios aimed at compromising the physical process by leveraging information about the physical part of the power system.

Original languageEnglish (US)
Title of host publication2014 IEEE International Conference on Smart Grid Communications, SmartGridComm 2014
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages908-913
Number of pages6
ISBN (Electronic)9781479949342
DOIs
StatePublished - Jan 12 2015
Event2014 IEEE International Conference on Smart Grid Communications, SmartGridComm 2014 - Venice, Italy
Duration: Nov 3 2014Nov 6 2014

Publication series

Name2014 IEEE International Conference on Smart Grid Communications, SmartGridComm 2014

Other

Other2014 IEEE International Conference on Smart Grid Communications, SmartGridComm 2014
Country/TerritoryItaly
CityVenice
Period11/3/1411/6/14

ASJC Scopus subject areas

  • Communication
  • Computer Networks and Communications
  • Computer Science Applications

Fingerprint

Dive into the research topics of 'A hybrid network IDS for protective digital relays in the power transmission grid'. Together they form a unique fingerprint.

Cite this