INTRUSION DETECTION SYSTEM FOR NETWORK SECURITY IN SYNCHROPHASOR SYSTEMS
Synchrophasor systems will play a significant role in next generation Smart Grid monitoring,protection and control.However,these systems also introduce a multitude of potential vulnerabilities and cyber threats from malicious attackers or disgruntled employees,which may cause erroneous situational awareness or severe damage.This paper proposes a Synchrophasor Specific Intrusion Detection System (SSIDS) for malicious cyber attacks and unintended misuse.The SSIDS involves a heterogeneous whitelist and behaviour-based approach to detect known and unknown attacks.The paper investigates and simulates reconnaissance,Man-in-the-Middle (MITM) and Denial-of-Service (DoS) attacks against a practical synchrophasor system that is used to validate the effectiveness of the proposed SSIDS detection tool.In contrast to previous research in this area that generally has investigated known attacks,this research actively considers the operational features of the IEEE C37.118 protocol and presents a more comprehensive and general solution to deal with not only known attacks but also unknown attacks.
Synchrophasor System Network Security Intrusion Detection
Y.Yang K.McLaughlin S.Sezer T.Littler B.Pranggono P.Brogan H.F.Wang
The Queen’s University of Belfast,UK Brunel University,UK
国际会议
北京
英文
187-193
2013-04-27(万方平台首次上网日期,不代表论文的发表时间)