Cyber-physical risk assessment for false data injection attacks considering moving target defences Best practice application of respective cyber and physical reinforcement assets to defend against FDI attacks

Higgins, Martin; Xu, Wangkun; Teng, Fei; Parisini, Thomas

doi:https://www.dx.doi.org/10.1007/s10207-022-00621-7

File(s)

Higgins_Xu_Teng_Parisini_Int_J_Information_Security_2022.pdf (1.09 MB)

Published version

Author(s)

Higgins, Martin

Xu, Wangkun

Teng, Fei

Parisini, Thomas

Type

Journal Article

Abstract

In this paper, we examine the factors that influence the success of false data injection (FDI) attacks in the context of both cyber and physical styles of reinforcement. Existing research considers the FDI attack in the context of the ability to change a measurement in a static system only. However, successful attacks will require first intrusion into a system followed by construction of an attack vector that can bypass bad data detection to cause a consequence (such as overloading). Furthermore, the recent development of moving target defences (MTD) introduces dynamically changing system topology, which is beyond the capability of existing research to assess. In this way, we develop a full service framework for FDI risk assessment. The framework considers both the costs of system intrusion via a weighted graph assessment in combination with a physical, line overload-based vulnerability assessment under the existence of MTD. We present our simulations on a IEEE 14-bus system with an overlain RTU network to model the true risk of intrusion. The cyber model considers multiple methods of entry for the FDI attack including meter intrusion, RTU intrusion and combined style attacks. Post-intrusion, our physical reinforcement model analyses the required level of topology divergence to protect against a branch overload from an optimised attack vector. The combined cyber and physical index is used to represent the system vulnerability against FDIA.

Date Issued

2022-11-02

Date Acceptance

2022-11-01

Citation

International Journal of Information Security, 2022, 22, pp.579-589

URI

http://hdl.handle.net/10044/1/105184

URL

https://link.springer.com/article/10.1007/s10207-022-00621-7

DOI

https://www.dx.doi.org/10.1007/s10207-022-00621-7

ISSN

1615-5262

Publisher

Springer

Start Page

579

End Page

589

Journal / Book Title

International Journal of Information Security

Volume

22

Copyright Statement

© The Author(s) 2022. Open Access This article is licensed under a Creative Commons Attribution 4.0 International License, which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons licence, and indicate if changes were made. The images or other third party material in this article are included in the article’s Creative Commons licence, unless indicated otherwise in a credit line to the material. If material is not included in the article’s Creative Commons licence and your intended use is not permitted by statutory regulation or exceeds the permitted use, you will need to obtain permission directly from the copyright holder. To view a copy of this licence, visit http://creativecommons.org/licenses/by/4.0/.

License URL

http://creativecommons.org/licenses/by/4.0/

Identifier

https://www.webofscience.com/api/gateway?GWVersion=2&SrcApp=PARTNER_APP&SrcAuth=LinksAMR&KeyUT=WOS:000878043600001&DestLinkType=FullRecord&DestApp=ALL_WOS&UsrCustomerID=a2bf6146997ec60c407a63945d4e92bb

Subjects

Computer Science

Computer Science, Information Systems

Computer Science, Software Engineering

Computer Science, Theory & Methods

Cyber-physical

False data injection attacks

Moving target defence

Science & Technology

Security assessment

STATE ESTIMATION

SYSTEMS

Technology

VULNERABILITY ASSESSMENT

Publication Status

Published

Date Publish Online

2022-11-02