Cybersecurity for Critical Infrastructures: Attack and Defense Modeling | IEEE Journals & Magazine | IEEE Xplore
Subscribe
ADVANCED SEARCH
Journals & Magazines >IEEE Transactions on Systems,... >Volume: 40 Issue: 4

Cybersecurity for Critical Infrastructures: Attack and Defense Modeling

PDF
Chee-Wooi Ten; Govindarasu Manimaran; Chen-Ching Liu
All Authors

Abstract:

Disruption of electric power operations can be catastrophic on national security and the economy. Due to the complexity of widely dispersed assets and the interdependence...Show More

Metadata

Abstract:

Disruption of electric power operations can be catastrophic on national security and the economy. Due to the complexity of widely dispersed assets and the interdependences among computer, communication, and power infrastructures, the requirement to meet security and quality compliance on operations is a challenging issue. In recent years, the North American Electric Reliability Corporation (NERC) established a cybersecurity standard that requires utilities' compliance on cybersecurity of control systems. This standard identifies several cyber-related vulnerabilities that exist in control systems and recommends several remedial actions (e.g., best practices). In this paper, a comprehensive survey on cybersecurity of critical infrastructures is reported. A supervisory control and data acquisition security framework with the following four major components is proposed: (1) real-time monitoring; (2) anomaly detection; (3) impact analysis; and (4) mitigation strategies. In addition, an attack-tree-based methodology for impact analysis is developed. The attack-tree formulation based on power system control networks is used to evaluate system-, scenario -, and leaf-level vulnerabilities by identifying the system's adversary objectives. The leaf vulnerability is fundamental to the methodology that involves port auditing or password strength evaluation. The measure of vulnerabilities in the power system control framework is determined based on existing cybersecurity conditions, and then, the vulnerability indices are evaluated.
Published in: IEEE Transactions on Systems, Man, and Cybernetics - Part A: Systems and Humans ( Volume: 40, Issue: 4, July 2010)
Page(s): 853 - 865
Date of Publication: 03 June 2010

ISSN Information:

DOI: 10.1109/TSMCA.2010.2048028
Author image of Chee-Wooi Ten
School of Electrical, Electronic and Mechanical Engineering, National University of Ireland, Dublin, Ireland
Chee-Wooi Ten (S'00) received the B.S. and M.S. degrees in electrical engineering from Iowa State University, Ames, in 1999 and 2001, respectively. He is currently working toward the Ph.D. degree in the School of Electrical, Electronic, and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland.
He was a Summer Intern with the MidAmerican Energy Control Center in 2000. He was als...Show More
Chee-Wooi Ten (S'00) received the B.S. and M.S. degrees in electrical engineering from Iowa State University, Ames, in 1999 and 2001, respectively. He is currently working toward the Ph.D. degree in the School of Electrical, Electronic, and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland.
He was a Summer Intern with the MidAmerican Energy Control Center in 2000. He was als...View more
Author image of Govindarasu Manimaran
Department of Electrical and Computer Engineering, Iowa State University, Ames, IA, USA
Govindarasu Manimaran (M'99–SM'10) received the Ph.D. degree in computer science and engineering from the Indian Institute of Technology, Madras, India, in 1998.
He is currently an Associate Professor with the Department of Electrical and Computer Engineering, Iowa State University (ISU). His research expertise is in the areas of resource management in real-time systems and networks, overlay networks, network security, and...Show More
Govindarasu Manimaran (M'99–SM'10) received the Ph.D. degree in computer science and engineering from the Indian Institute of Technology, Madras, India, in 1998.
He is currently an Associate Professor with the Department of Electrical and Computer Engineering, Iowa State University (ISU). His research expertise is in the areas of resource management in real-time systems and networks, overlay networks, network security, and...View more
Author image of Chen-Ching Liu
School of Electrical, Electronic and Mechanical Engineering, National University of Ireland, Dublin, Ireland
Chen-Ching Liu (F'94) received the Ph.D. degree from the University of California, Berkeley.
He is currently a Professor of power systems with the School of Electrical, Electrionic and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland. He was the Palmer Chair Professor of Electrical and Computer Engineering with Iowa State University. During 1983–2005, he was a Professor of ...Show More
Chen-Ching Liu (F'94) received the Ph.D. degree from the University of California, Berkeley.
He is currently a Professor of power systems with the School of Electrical, Electrionic and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland. He was the Palmer Chair Professor of Electrical and Computer Engineering with Iowa State University. During 1983–2005, he was a Professor of ...View more
Contents

I. Introduction

Critical infrastructures are complex physical and cyber-based systems that form the lifeline of a modern society, and their reliable and secure operation is of paramount importance to national security and economic vitality. In most sense, the cyber system forms the backbone of a nation's critical infrastructures, which means that a major security incident on cyber systems could have significant impacts on the reliable and safe operations of the physical systems that rely on it. The recent findings, as documented in government reports [1]–[7], indicate the growing threat of physical and cyber-based attacks in numbers and sophistication on electric grids and other critical infrastructure systems. The focus of this paper is the cybersecurity of an electric power infrastructure. The three modes of malicious attacks on power infrastructure are as follows: 1) attack upon the system; 2) attack by the system; and 3) attack through the system [8].

Author image of Chee-Wooi Ten
School of Electrical, Electronic and Mechanical Engineering, National University of Ireland, Dublin, Ireland
Chee-Wooi Ten (S'00) received the B.S. and M.S. degrees in electrical engineering from Iowa State University, Ames, in 1999 and 2001, respectively. He is currently working toward the Ph.D. degree in the School of Electrical, Electronic, and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland.
He was a Summer Intern with the MidAmerican Energy Control Center in 2000. He was also an Application Engineer with Siemens Energy Management and Information System, Singapore, from 2002 to 2005. His research interests include interdependence modeling for power infrastructure.
Chee-Wooi Ten (S'00) received the B.S. and M.S. degrees in electrical engineering from Iowa State University, Ames, in 1999 and 2001, respectively. He is currently working toward the Ph.D. degree in the School of Electrical, Electronic, and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland.
He was a Summer Intern with the MidAmerican Energy Control Center in 2000. He was also an Application Engineer with Siemens Energy Management and Information System, Singapore, from 2002 to 2005. His research interests include interdependence modeling for power infrastructure.View more
Author image of Govindarasu Manimaran
Department of Electrical and Computer Engineering, Iowa State University, Ames, IA, USA
Govindarasu Manimaran (M'99–SM'10) received the Ph.D. degree in computer science and engineering from the Indian Institute of Technology, Madras, India, in 1998.
He is currently an Associate Professor with the Department of Electrical and Computer Engineering, Iowa State University (ISU). His research expertise is in the areas of resource management in real-time systems and networks, overlay networks, network security, and their applications to critical infrastructures such as the electric grid. He has published over 100 peer-reviewed research publications. He is the coauthor of the book entitled Resource Management in Real-Time Systems and Networks (MIT Press, 2001).
Dr. Manimaran received the Young Engineering Research Faculty Award at ISU in 2003. He has given tutorials on Internet infrastructure security in conferences, such as the IEEE Infocom 2004 and IEEE ComSoc Tutorials Now (2004), and served as Workshop Cochair, Symposium Cochair, and Session Chair on many occasions.
Govindarasu Manimaran (M'99–SM'10) received the Ph.D. degree in computer science and engineering from the Indian Institute of Technology, Madras, India, in 1998.
He is currently an Associate Professor with the Department of Electrical and Computer Engineering, Iowa State University (ISU). His research expertise is in the areas of resource management in real-time systems and networks, overlay networks, network security, and their applications to critical infrastructures such as the electric grid. He has published over 100 peer-reviewed research publications. He is the coauthor of the book entitled Resource Management in Real-Time Systems and Networks (MIT Press, 2001).
Dr. Manimaran received the Young Engineering Research Faculty Award at ISU in 2003. He has given tutorials on Internet infrastructure security in conferences, such as the IEEE Infocom 2004 and IEEE ComSoc Tutorials Now (2004), and served as Workshop Cochair, Symposium Cochair, and Session Chair on many occasions.View more
Author image of Chen-Ching Liu
School of Electrical, Electronic and Mechanical Engineering, National University of Ireland, Dublin, Ireland
Chen-Ching Liu (F'94) received the Ph.D. degree from the University of California, Berkeley.
He is currently a Professor of power systems with the School of Electrical, Electrionic and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland. He was the Palmer Chair Professor of Electrical and Computer Engineering with Iowa State University. During 1983–2005, he was a Professor of electrical engineering with the University of Washington, Seattle, where he also served as the Associate Dean of Engineering from 2000 to 2005.
Dr. Liu received the IEEE Third Millennium Medal in 2000 and the IEEE Power Engineering Society Outstanding Power Engineering Educator Award in 2004. He was the Chair of the Technical Committee on Power System Analysis, Computing, and Economics of the IEEE Power Engineering Society.
Chen-Ching Liu (F'94) received the Ph.D. degree from the University of California, Berkeley.
He is currently a Professor of power systems with the School of Electrical, Electrionic and Mechanical Engineering, University College Dublin, National University of Ireland, Dublin, Ireland. He was the Palmer Chair Professor of Electrical and Computer Engineering with Iowa State University. During 1983–2005, he was a Professor of electrical engineering with the University of Washington, Seattle, where he also served as the Associate Dean of Engineering from 2000 to 2005.
Dr. Liu received the IEEE Third Millennium Medal in 2000 and the IEEE Power Engineering Society Outstanding Power Engineering Educator Award in 2004. He was the Chair of the Technical Committee on Power System Analysis, Computing, and Economics of the IEEE Power Engineering Society.View more
Contact IEEE to Subscribe
More Like This
Load Response Fundamentally Matches Power System Reliability Requirements

2007 IEEE Power Engineering Society General Meeting

Published: 2007

Anomaly detection in power system control center critical infrastructures using rough classification algorithm

2009 3rd IEEE International Conference on Digital Ecosystems and Technologies

Published: 2009

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.