Cyber-related risk assessment and critical asset identification in power grids

F. Farzan; M. A. Jafari; D. Wei; Y. Lu

doi:10.1109/ISGT.2014.6816371

Cyber-related risk assessment and critical asset identification in power grids

F. Farzan, M. A. Jafari, D. Wei, Y. Lu

School of Engineering, Industrial Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

8 Scopus citations

Abstract

This paper proposes a methodology to assess cyber-related risks and to identify critical assets both at power grid and substation levels. The methodology is based on a two-pass engine model. The first pass engine is developed to identify the most critical substation(s) in a power grid. A mixture of Analytical hierarchy process (AHP) and (N-1) contingent analysis is used to calculate risks. The second pass engine is developed to identify risky assets within a substation and improve the vulnerability of a substation against the intrusion and malicious acts of cyber hackers. The risk methodology uniquely combines asset reliability, vulnerability and costs of attack into a risk index. A methodology is also presented to improve the overall security of a substation by optimally placing security agent(s) on the automation system.

Original language	English (US)
Title of host publication	2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014
Publisher	IEEE Computer Society
ISBN (Print)	9781479936526
DOIs	https://doi.org/10.1109/ISGT.2014.6816371
State	Published - 2014
Event	2014 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference, ISGT 2014 - Washington, DC, United States Duration: Feb 19 2014 → Feb 22 2014

Publication series

Name	2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014

Other

Other	2014 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference, ISGT 2014
Country/Territory	United States
City	Washington, DC
Period	2/19/14 → 2/22/14

All Science Journal Classification (ASJC) codes

Artificial Intelligence
Computer Networks and Communications

Keywords

cyber security
cyber vulnerability
electrical power grids
risk assessment
substation

Access to Document

10.1109/ISGT.2014.6816371

Cite this

@inproceedings{1b86b7d500464b7bb988d5f642d5d293,

title = "Cyber-related risk assessment and critical asset identification in power grids",

abstract = "This paper proposes a methodology to assess cyber-related risks and to identify critical assets both at power grid and substation levels. The methodology is based on a two-pass engine model. The first pass engine is developed to identify the most critical substation(s) in a power grid. A mixture of Analytical hierarchy process (AHP) and (N-1) contingent analysis is used to calculate risks. The second pass engine is developed to identify risky assets within a substation and improve the vulnerability of a substation against the intrusion and malicious acts of cyber hackers. The risk methodology uniquely combines asset reliability, vulnerability and costs of attack into a risk index. A methodology is also presented to improve the overall security of a substation by optimally placing security agent(s) on the automation system.",

keywords = "cyber security, cyber vulnerability, electrical power grids, risk assessment, substation",

author = "F. Farzan and Jafari, {M. A.} and D. Wei and Y. Lu",

year = "2014",

doi = "10.1109/ISGT.2014.6816371",

language = "English (US)",

isbn = "9781479936526",

series = "2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014",

publisher = "IEEE Computer Society",

booktitle = "2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014",

address = "United States",

note = "2014 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference, ISGT 2014 ; Conference date: 19-02-2014 Through 22-02-2014",

}

Farzan, F, Jafari, MA, Wei, D & Lu, Y 2014, Cyber-related risk assessment and critical asset identification in power grids. in 2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014., 6816371, 2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014, IEEE Computer Society, 2014 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference, ISGT 2014, Washington, DC, United States, 2/19/14. https://doi.org/10.1109/ISGT.2014.6816371

Cyber-related risk assessment and critical asset identification in power grids. / Farzan, F.; Jafari, M. A.; Wei, D. et al.
2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014. IEEE Computer Society, 2014. 6816371 (2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Cyber-related risk assessment and critical asset identification in power grids

AU - Farzan, F.

AU - Jafari, M. A.

AU - Wei, D.

AU - Lu, Y.

PY - 2014

Y1 - 2014

N2 - This paper proposes a methodology to assess cyber-related risks and to identify critical assets both at power grid and substation levels. The methodology is based on a two-pass engine model. The first pass engine is developed to identify the most critical substation(s) in a power grid. A mixture of Analytical hierarchy process (AHP) and (N-1) contingent analysis is used to calculate risks. The second pass engine is developed to identify risky assets within a substation and improve the vulnerability of a substation against the intrusion and malicious acts of cyber hackers. The risk methodology uniquely combines asset reliability, vulnerability and costs of attack into a risk index. A methodology is also presented to improve the overall security of a substation by optimally placing security agent(s) on the automation system.

AB - This paper proposes a methodology to assess cyber-related risks and to identify critical assets both at power grid and substation levels. The methodology is based on a two-pass engine model. The first pass engine is developed to identify the most critical substation(s) in a power grid. A mixture of Analytical hierarchy process (AHP) and (N-1) contingent analysis is used to calculate risks. The second pass engine is developed to identify risky assets within a substation and improve the vulnerability of a substation against the intrusion and malicious acts of cyber hackers. The risk methodology uniquely combines asset reliability, vulnerability and costs of attack into a risk index. A methodology is also presented to improve the overall security of a substation by optimally placing security agent(s) on the automation system.

KW - cyber security

KW - cyber vulnerability

KW - electrical power grids

KW - risk assessment

KW - substation

UR - http://www.scopus.com/inward/record.url?scp=84901933571&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84901933571&partnerID=8YFLogxK

U2 - 10.1109/ISGT.2014.6816371

DO - 10.1109/ISGT.2014.6816371

M3 - Conference contribution

AN - SCOPUS:84901933571

SN - 9781479936526

T3 - 2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014

BT - 2014 IEEE PES Innovative Smart Grid Technologies Conference, ISGT 2014

PB - IEEE Computer Society

T2 - 2014 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference, ISGT 2014

Y2 - 19 February 2014 through 22 February 2014

ER -

Cyber-related risk assessment and critical asset identification in power grids

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this