Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
A Framework for Attack-Resilient Industrial Control Systems: Attack Detection and Controller Reconfiguration
KTH, School of Electrical Engineering (EES), Automatic Control. KTH, School of Electrical Engineering (EES), Centres, ACCESS Linnaeus Centre.
Show others and affiliations
2017 (English)In: Proceedings of the IEEE, ISSN 0018-9219, E-ISSN 1558-2256, Vol. 106, no 1, p. 113-128Article in journal (Refereed) Published
Abstract [en]

Most existing industrial control systems (ICSs), such as building energy management systems (EMSs), were installed when potential security threats were only physical. With advances in connectivity, ICSs are now, typically, connected to communications networks and, as a result, can be accessed remotely. This extends the attack surface to include the potential for sophisticated cyber attacks, which can adversely impact ICS operation, resulting in service interruption, equipment damage, safety concerns, and associated financial implications. In this work, a novel cyber-physical security framework for ICSs is proposed, which incorporates an analytics tool for attack detection and executes a reliable estimation-based attack-resilient control policy, whenever an attack is detected. The proposed framework is adaptable to already implemented ICS and the stability and optimal performance of the controlled system under attack has been proved. The performance of the proposed framework is evaluated using a reduced order model of a real EMS site and simulated attacks.

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers (IEEE), 2017. Vol. 106, no 1, p. 113-128
Keywords [en]
Artifical intelligence, building management systems, cyber-physical security, energy management, industrial control, knowledge-based systems, resilient control, SCADA systems, security analytics, stability, virtual sensor
National Category
Control Engineering
Identifiers
URN: urn:nbn:se:kth:diva-213737DOI: 10.1109/JPROC.2017.2725482ISI: 000418768700009OAI: oai:DiVA.org:kth-213737DiVA, id: diva2:1138642
Projects
CERCES
Funder
EU, FP7, Seventh Framework Programme, 608224Swedish Research Council, 2013-5523; 2016-0861Swedish Civil Contingencies Agency
Note

QC 20170906

Available from: 2017-09-06 Created: 2017-09-06 Last updated: 2019-08-20Bibliographically approved
In thesis
1. Hierarchical energy management in smart grids: Flexibility prediction, scheduling and resilient control
Open this publication in new window or tab >>Hierarchical energy management in smart grids: Flexibility prediction, scheduling and resilient control
2019 (English)Doctoral thesis, comprehensive summary (Other academic)
Abstract [en]

The electric power industry and society are facing challenges and opportunitiesof transforming the present power grid into a smart grid. Energymanagement systems (EMSs) play an important role in smart grids. A generalhierarchical structure for EMSs is considered here, which is composed ofa lower layer and an upper layer.

The first research objective of the thesis is detailed modeling, schedulingand control of flexible loads at the lower layer of EMSs. To do this, a wellstudiedframework has been extended, which focuses on scheduling of staticloads and dynamic loads for home energy management systems (HEMSs).Then, a robust formulation of the framework is proposed, which takes theuser behavior uncertainty into account so that the cost of optimal schedulingof appliances is less sensitive to unpredictable changes in user preferences.Considering that the optimization algorithms in the proposed framework canbe computationally intensive, an efficient plug-and-play policy is proposedand validated through several simulation studies.

The second research objective is to predict, plan, and control the aggregatedflexible load at the upper layer. Here, an iterative distributed approachamong aggregator and HEMSs is designed, to maximize the aggregated profitmade out of the shared energy storage system, while technical and operationalconstraints are satisfied. In addition, a strategy is proposed for flexibilityprediction of aggregated heterogeneous thermostatically controlled loads ina single micro-community of households. Then, algorithms are designed forplanning and control of aggregated flexibility in several micro-communities,to be used for bidding in energy and reserve markets.

To meet these research objectives, the control systems in the hierarchicalEMSs are connected over IT infrastructures and are in interaction with endusers.While this is done to achieve economical and environmental goals,it also introduces new sources of uncertainty in the control loops. Thus,the third research objective is to design policies to make the EMSs resilientagainst uncertainties and cyber attacks. Here, the user behavior uncertaintyhas been modeled, and a robust formulation is designed so that the optimalsolution for scheduling of appliances is more resilient to the uncertainties. Inaddition, fault-tolerant control techniques have been applied to a hierarchicalEMS to mitigate cyber-physical attacks, with no need for major re-designof the local control loops in already existing EMSs. Moreover, stability andoptimal performance of the proposed attack-resilient control policy have been proven.

Abstract [sv]

I samband med den pågående omvandlingen av nuvarande elsystem tillsmarta elnät finns både utmaningar och möjligheter för elkraftindustrin. Såkallade energihanteringssystem (EMS) spelar en viktig roll i smarta elnät. Härbehandlas en generell hierarkisk struktur för EMS, bestående av två lager, ettlägre och ett övre lager.

Det främsta målet i avhandlingen är detaljerad modellering, schemaläggningoch styrning av flexibla laster i det lägre lagret av EMS. Ett tidigarestuderat ramverk som fokuserar på schemaläggning av statiska och dynamiskalaster för hushållens energihanteringssystem (HEMS) har därför vidareutvecklats.Vidare föreslås en robust formulering av ramverket som tarhänsyn till användarens beteendeosäkerhet så att kostnaden för optimal schemaläggningav apparater blir mindre känslig för oförutsägbara förändringar ianvändarpreferenser. Eftersom att optimeringsalgoritmerna kan vara beräkningsintensivaföreslås och valideras en effektiv plug-and-play-metod genomflera simuleringsstudier.

Ett annat syfte har varit att förutsäga, planera och styra den aggregeradeflexibla lasten i det övre lagret i EMS. Därför har ett iterativt distribuerattillvägagångssätt för aggregat och HEMS utformats för att maximera vinstenfrån det delade energilagringssystemet, samtidigt som tekniska och operativabegränsningar uppfylls. Dessutom föreslås en strategi för att förutsägaflexibiliteten hos aggregerade heterogena termostatstyrda belastningar i ettmikrosamhälle bestående av flera hushåll. Vidare utformas algoritmer för planeringoch kontroll av aggregerad flexibilitet i flera mikrosamhällen, som kananvändas för att delta på energi- och reservmarknader.

För att möta dessa forskningsmål kopplas styrsystemen i de hierarkiskaEMS-systemen ihop över IT-infrastruktur och samverkar med slutanvändare. Detta görs för att uppnå ekonomiska och miljömässiga mål, men kan ocksåskapa nya källor till osäkerhet i kontrollslingorna. Det tredje forskningsmåletär således att utforma metoder för att göra EMS motståndskraftiga motosäkerheter och cyberattacker. Här har osäkerheter i användarbeteenden modelleratsoch en robust formulering utformats för att göra schemaläggningav apparater mer motståndskraftig mot osäkerhet. Dessutom har feltolerantakontrolltekniker applicerats på en hierarkisk EMS för att mildra cyber-fysiskaattacker, utan att det behövs någon större förändring av de lokala kontrollslingornai redan befintliga EMS. Vidare har stabilitet och optimal prestandaför den föreslagna attackmotståndskraftiga kontrolltekniken bevisats.

Place, publisher, year, edition, pages
Stockholm: KTH Royal Institute of Technology, 2019. p. 55
Series
TRITA-EECS-AVL ; 2019:20
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Energy Technology
Identifiers
urn:nbn:se:kth:diva-244843 (URN)978-91-7873-123-7 (ISBN)
Public defence
2019-03-22, K1, Teknikringen 56, Stockholm, 10:00 (English)
Opponent
Supervisors
Note

QC 20190301

Available from: 2019-03-01 Created: 2019-02-28 Last updated: 2019-03-01Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Search in DiVA

By author/editor
Paridari, KavehSandberg, Henrik
By organisation
Automatic ControlACCESS Linnaeus Centre
In the same journal
Proceedings of the IEEE
Control Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 1877 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf