基于多阶段博弈的电力CPS虚假数据注入攻击防御方法
|
摘要
信息通信技术的快速发展使电力系统成为典型的信息物理系统(cyber physical system, CPS)。在电网侧控制日趋智能化的同时,电力CPS也面临潜在的网络攻击风险。文章首先分析了针对电力CPS的虚假数据注入攻击(false data injection attack,FDIA)的可行性,然后针对攻击方和防御方的多阶段动态交互过程,提出了一种基于博弈论的关键测量设备的分阶段动态防御方法,通过IEEE标准系统算例验证了所提方法的可行性和有效性。
With the great development of the information communication technology, power systems have been typical cyber physical system(CPS). Although the control function of the grid side is becoming more intelligent, cyber physical power system(CPPS)brings the risk of potential cyber attacks. In this paper, the feasibility of false data injection attack(FDIA) for CPPS is analyzed firstly, then a defense method for key measurement devices is proposed on the basis of game theory for the multi-stage dynamic interaction process between attacker and defender. The feasibility and effectiveness of the proposed method are verified on the IEEE standard system.
With the great development of the information communication technology, power systems have been typical cyber physical system(CPS). Although the control function of the grid side is becoming more intelligent, cyber physical power system(CPPS)brings the risk of potential cyber attacks. In this paper, the feasibility of false data injection attack(FDIA) for CPPS is analyzed firstly, then a defense method for key measurement devices is proposed on the basis of game theory for the multi-stage dynamic interaction process between attacker and defender. The feasibility and effectiveness of the proposed method are verified on the IEEE standard system.
引文
[1] 李霞,李勇,曹一家,等.基于信息物理系统融合的广域互联电网阻尼控制策略[J].电力系统保护与控制,2017,45(21):35-42.LI Xia,LI Yong,CAO Yijia,et al.Wide-area damping control strategy of interconnected power grid based on cyber physical system[J].Power System Protection and Control,2017,45(21):35-42.
[2] 汤奕,王琦,倪明,等.电力信息物理融合系统中的网络攻击分析[J].电力系统自动化,2016,40(6):148-151.TANG Yi,WANG Qi,NI Ming,et al.Analysis of cyber attacks in cyber physical power system [J].Automation of Electric Power Systems,2016,40(6):148-151.
[3] CHEN T M,ABUNIMEH S.Lessons from Stuxnet[J].Computer,2011,44(4):91-93.
[4] 赵俊华,梁高琪,文福拴,等.乌克兰事件的启示:防范针对电网的虚假数据注入攻击[J].电力系统自动化,2016,40(7):149-151.ZHAO Junhua,LIANG Gaoqi,WEN Fushuan,et al.Lessons learnt from ukrainian blackout:Protecting power grids against false data injection attacks[J].Automation of Electric Power Systems,2016,40(7):149-151.
[5] YAN Y ,QIAN Y ,SHARIF H ,et al.A survey on cyber security for smart grid communications[J].IEEE Communications Surveys & Tutorials,2012,14(4):998-1010.
[6] 刘文霞,单晓东,江伟民,等.北美大电力系统可靠性风险评估体系及启示[J].电网技术,2016,40(12):3811-3817.LIU Wenxia,SHAN Xiaodong,JIANG Weimin,et al.North American large power system reliability risk assessment system and its enlightenment[J].Power System Technology,2016,40(12):3811-3817.
[7] 王琦,李梦雅,汤奕,等.电力信息物理系统网络攻击与防御研究综述(一):建模与评估[J/OL].电力系统自动化:1-13[2019-03-28].http://kns.cnki.net/kcms/detail/32.1180.TP.20190107.0721.004.html.WANG Qi,LI Mengya,TANG Yi,et al.A survey of network attack and defense research in cyber physics power system (I):Modeling and evaluation[J/OL].Automation of Electric Power Systems:1-13[2019-03-28].http://kns.cnki.net/kcms/detail/32.1180.TP.20190107.0721.004.html.
[8] 李中伟,佟为明,金显吉.智能电网信息安全防御体系与信息安全测试系统构建:乌克兰和以色列国家电网遭受网络攻击事件的思考与启示[J].电力系统自动化,2016,40(8):147-151.LI Zhongwei,TONG Weimin,JIN Xianji.Construction of cyber security defense hierarchy and cyber security testing system of smart grid:Thinking and enlightenment for network attack events to national power grid of Ukraine and Israel[J].Automation of Electric Power Systems,2016,40(8):147-151.
[9] YANG Q ,YANG J ,YU W ,et al.On false data-injection attacks against power system state estimation:Modeling and countermeasures[J].IEEE Transactions on Parallel and Distributed Systems,2014,25(3):717-729.
[10] WANG Q,TAI W,TANG Y,et al.A twoVlayer game theoretical attack-defense model for a false data injection attack against power systems[J].International Journal of Electrical Power & Energy Systems,2019,104:169-177.
[11] KIM T T,POOR H V.Strategic protection against data injection attacks on power grids[J].IEEE Transactions on Smart Grid,2011,2(2):326- 333.
[12] YAO Y,EDMUNDS T,PAPAGEORGIO D,et al.Trilevel optimization in power network defense[J].IEEE Transactions on Systems Man & Cybernetics Part C,2007,37(4):712-718.
[13] MA C Y T,YAU D K Y,LOU X,et al.Markovgame analysis for attack-defense of power networks under possible misinformation[J].IEEE Transactions on Power Systems,2013,28(2):1676-1686.
[14] LI Y,SHI L,CHENG P,et al.Jamming attacks on remote state estimation in cyber-physical systems:A game-theoretic approach[J].IEEE Transactions on Automatic Control,2015,60(10):2831-2836.
[15] WEI L,SARWAT A,SAAD W,et al.Stochastic games for power grid protection against coordinated cyber-physical attacks[J].IEEE Transactions on Smart Grid,2018,9(2):684-694.
[16] DENG R,XIAO G,LU R.Defending against false data injection attacks on power system state estimation[J].IEEE Transactions on Industrial Informatics,2017,13(1):198-207.
[17] LIU Y,NING P,REITER M K.False data injection attacks against state estimation in electric power grids[J].ACM Transactions on Information & System Security,2011,14(1):1-33.
[18] ZHANG T,WANG Y,LIANG X,et al.Cyber attacks in cyber-physical power systems:A case study with GPRS-based SCADA systems[C]// 2017 29th Chinese Control and Decision Conference.IEEE,2017:6847-6852.
[19] 刘莉.电力系统不良数据检测与辨识方法的现状与发展[J].电力系统保护与控制,2010,38(5):143-147.LIU Li.Current situation and development of the methods on bad-data detection and identification of power system[J].Power System Protection and Control,2010,38(5):143-147.
[20] 李强.基于PMU量测的电力系统状态估计研究[D].北京:中国电力科学研究院,2006.LI Qiang.Power system state estimation based on pmu measurement[D].Beijing:China Electric Power Research Institute,2006.
[2] 汤奕,王琦,倪明,等.电力信息物理融合系统中的网络攻击分析[J].电力系统自动化,2016,40(6):148-151.TANG Yi,WANG Qi,NI Ming,et al.Analysis of cyber attacks in cyber physical power system [J].Automation of Electric Power Systems,2016,40(6):148-151.
[3] CHEN T M,ABUNIMEH S.Lessons from Stuxnet[J].Computer,2011,44(4):91-93.
[4] 赵俊华,梁高琪,文福拴,等.乌克兰事件的启示:防范针对电网的虚假数据注入攻击[J].电力系统自动化,2016,40(7):149-151.ZHAO Junhua,LIANG Gaoqi,WEN Fushuan,et al.Lessons learnt from ukrainian blackout:Protecting power grids against false data injection attacks[J].Automation of Electric Power Systems,2016,40(7):149-151.
[5] YAN Y ,QIAN Y ,SHARIF H ,et al.A survey on cyber security for smart grid communications[J].IEEE Communications Surveys & Tutorials,2012,14(4):998-1010.
[6] 刘文霞,单晓东,江伟民,等.北美大电力系统可靠性风险评估体系及启示[J].电网技术,2016,40(12):3811-3817.LIU Wenxia,SHAN Xiaodong,JIANG Weimin,et al.North American large power system reliability risk assessment system and its enlightenment[J].Power System Technology,2016,40(12):3811-3817.
[7] 王琦,李梦雅,汤奕,等.电力信息物理系统网络攻击与防御研究综述(一):建模与评估[J/OL].电力系统自动化:1-13[2019-03-28].http://kns.cnki.net/kcms/detail/32.1180.TP.20190107.0721.004.html.WANG Qi,LI Mengya,TANG Yi,et al.A survey of network attack and defense research in cyber physics power system (I):Modeling and evaluation[J/OL].Automation of Electric Power Systems:1-13[2019-03-28].http://kns.cnki.net/kcms/detail/32.1180.TP.20190107.0721.004.html.
[8] 李中伟,佟为明,金显吉.智能电网信息安全防御体系与信息安全测试系统构建:乌克兰和以色列国家电网遭受网络攻击事件的思考与启示[J].电力系统自动化,2016,40(8):147-151.LI Zhongwei,TONG Weimin,JIN Xianji.Construction of cyber security defense hierarchy and cyber security testing system of smart grid:Thinking and enlightenment for network attack events to national power grid of Ukraine and Israel[J].Automation of Electric Power Systems,2016,40(8):147-151.
[9] YANG Q ,YANG J ,YU W ,et al.On false data-injection attacks against power system state estimation:Modeling and countermeasures[J].IEEE Transactions on Parallel and Distributed Systems,2014,25(3):717-729.
[10] WANG Q,TAI W,TANG Y,et al.A twoVlayer game theoretical attack-defense model for a false data injection attack against power systems[J].International Journal of Electrical Power & Energy Systems,2019,104:169-177.
[11] KIM T T,POOR H V.Strategic protection against data injection attacks on power grids[J].IEEE Transactions on Smart Grid,2011,2(2):326- 333.
[12] YAO Y,EDMUNDS T,PAPAGEORGIO D,et al.Trilevel optimization in power network defense[J].IEEE Transactions on Systems Man & Cybernetics Part C,2007,37(4):712-718.
[13] MA C Y T,YAU D K Y,LOU X,et al.Markovgame analysis for attack-defense of power networks under possible misinformation[J].IEEE Transactions on Power Systems,2013,28(2):1676-1686.
[14] LI Y,SHI L,CHENG P,et al.Jamming attacks on remote state estimation in cyber-physical systems:A game-theoretic approach[J].IEEE Transactions on Automatic Control,2015,60(10):2831-2836.
[15] WEI L,SARWAT A,SAAD W,et al.Stochastic games for power grid protection against coordinated cyber-physical attacks[J].IEEE Transactions on Smart Grid,2018,9(2):684-694.
[16] DENG R,XIAO G,LU R.Defending against false data injection attacks on power system state estimation[J].IEEE Transactions on Industrial Informatics,2017,13(1):198-207.
[17] LIU Y,NING P,REITER M K.False data injection attacks against state estimation in electric power grids[J].ACM Transactions on Information & System Security,2011,14(1):1-33.
[18] ZHANG T,WANG Y,LIANG X,et al.Cyber attacks in cyber-physical power systems:A case study with GPRS-based SCADA systems[C]// 2017 29th Chinese Control and Decision Conference.IEEE,2017:6847-6852.
[19] 刘莉.电力系统不良数据检测与辨识方法的现状与发展[J].电力系统保护与控制,2010,38(5):143-147.LIU Li.Current situation and development of the methods on bad-data detection and identification of power system[J].Power System Protection and Control,2010,38(5):143-147.
[20] 李强.基于PMU量测的电力系统状态估计研究[D].北京:中国电力科学研究院,2006.LI Qiang.Power system state estimation based on pmu measurement[D].Beijing:China Electric Power Research Institute,2006.