Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures

Zhenqi Huang; Sriharsha Etigowni; Luis Garcia; Sayan Mitra; Saman Zonouz

doi:10.1109/DSN.2018.00027

Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures

Zhenqi Huang, Sriharsha Etigowni, Luis Garcia, Sayan Mitra, Saman Zonouz

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Automated vulnerability assessment and exploit generation for computing systems have been explored for decades. However, these approaches are incomplete in assessing industrial control systems, where networks of computing devices and physical processes interact for safety-critical missions. We present an attack synthesis algorithm against such cyber-physical electricity grids. The algorithm explores both discrete network configurations and continuous dynamics of the plant's embedded control system to search for attack strategies that evade detection with conventional monitors. The algorithm enabling this exploration is rooted in recent developments in the hybrid system verification research: It effectively approximates the behavior of the system for a set of possible attacks by computing sensitivity of the system's response to variations in the attack parameters. For parts of the attack space, the proposed algorithm can infer whether or not there exists a feasible attack that avoids triggering protection measures such as relays and steady-state monitors. The algorithm can take into account constraints on the attack space such as the power system topology and the set of controllers across the plant that can be compromised without detection. With a proof-of-concept prototype, we demonstrate the synthesis of transient attacks in several typical electricity grids and analyze the robustness of the synthesized attacks to perturbations in the network parameters.

Original language	English (US)
Title of host publication	Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	151-162
Number of pages	12
ISBN (Electronic)	9781538655955
DOIs	https://doi.org/10.1109/DSN.2018.00027
State	Published - Jul 19 2018
Externally published	Yes
Event	48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018 - Luxembourg City, Luxembourg Duration: Jun 25 2018 → Jun 28 2018

Publication series

Name	Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018

Other

Other	48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018
Country/Territory	Luxembourg
City	Luxembourg City
Period	6/25/18 → 6/28/18

Keywords

attack synthesis
hybrid system verification
transient attack

ASJC Scopus subject areas

Safety, Risk, Reliability and Quality
Computer Networks and Communications
Hardware and Architecture
Energy Engineering and Power Technology

Online availability

10.1109/DSN.2018.00027

Library availability

Discover UIUC Full Text

Cite this

Huang, Z., Etigowni, S., Garcia, L., Mitra, S., & Zonouz, S. (2018). Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures. In Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018 (pp. 151-162). Article 8416479 (Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DSN.2018.00027

Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures. / Huang, Zhenqi; Etigowni, Sriharsha; Garcia, Luis et al.
Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 151-162 8416479 (Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Huang, Z, Etigowni, S, Garcia, L, Mitra, S & Zonouz, S 2018, Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures. in Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018., 8416479, Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018, Institute of Electrical and Electronics Engineers Inc., pp. 151-162, 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018, Luxembourg City, Luxembourg, 6/25/18. https://doi.org/10.1109/DSN.2018.00027

Huang Z, Etigowni S, Garcia L, Mitra S, Zonouz S. Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures. In Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 151-162. 8416479. (Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018). doi: 10.1109/DSN.2018.00027

Huang, Zhenqi ; Etigowni, Sriharsha ; Garcia, Luis et al. / Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures. Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 151-162 (Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018).

@inproceedings{b959775f270e459ebf86d60bdc1f7599,

title = "Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures",

abstract = "Automated vulnerability assessment and exploit generation for computing systems have been explored for decades. However, these approaches are incomplete in assessing industrial control systems, where networks of computing devices and physical processes interact for safety-critical missions. We present an attack synthesis algorithm against such cyber-physical electricity grids. The algorithm explores both discrete network configurations and continuous dynamics of the plant's embedded control system to search for attack strategies that evade detection with conventional monitors. The algorithm enabling this exploration is rooted in recent developments in the hybrid system verification research: It effectively approximates the behavior of the system for a set of possible attacks by computing sensitivity of the system's response to variations in the attack parameters. For parts of the attack space, the proposed algorithm can infer whether or not there exists a feasible attack that avoids triggering protection measures such as relays and steady-state monitors. The algorithm can take into account constraints on the attack space such as the power system topology and the set of controllers across the plant that can be compromised without detection. With a proof-of-concept prototype, we demonstrate the synthesis of transient attacks in several typical electricity grids and analyze the robustness of the synthesized attacks to perturbations in the network parameters.",

keywords = "attack synthesis, hybrid system verification, transient attack",

author = "Zhenqi Huang and Sriharsha Etigowni and Luis Garcia and Sayan Mitra and Saman Zonouz",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018 ; Conference date: 25-06-2018 Through 28-06-2018",

year = "2018",

month = jul,

day = "19",

doi = "10.1109/DSN.2018.00027",

language = "English (US)",

series = "Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "151--162",

booktitle = "Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018",

address = "United States",

}

TY - GEN

T1 - Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures

AU - Huang, Zhenqi

AU - Etigowni, Sriharsha

AU - Garcia, Luis

AU - Mitra, Sayan

AU - Zonouz, Saman

PY - 2018/7/19

Y1 - 2018/7/19

N2 - Automated vulnerability assessment and exploit generation for computing systems have been explored for decades. However, these approaches are incomplete in assessing industrial control systems, where networks of computing devices and physical processes interact for safety-critical missions. We present an attack synthesis algorithm against such cyber-physical electricity grids. The algorithm explores both discrete network configurations and continuous dynamics of the plant's embedded control system to search for attack strategies that evade detection with conventional monitors. The algorithm enabling this exploration is rooted in recent developments in the hybrid system verification research: It effectively approximates the behavior of the system for a set of possible attacks by computing sensitivity of the system's response to variations in the attack parameters. For parts of the attack space, the proposed algorithm can infer whether or not there exists a feasible attack that avoids triggering protection measures such as relays and steady-state monitors. The algorithm can take into account constraints on the attack space such as the power system topology and the set of controllers across the plant that can be compromised without detection. With a proof-of-concept prototype, we demonstrate the synthesis of transient attacks in several typical electricity grids and analyze the robustness of the synthesized attacks to perturbations in the network parameters.

AB - Automated vulnerability assessment and exploit generation for computing systems have been explored for decades. However, these approaches are incomplete in assessing industrial control systems, where networks of computing devices and physical processes interact for safety-critical missions. We present an attack synthesis algorithm against such cyber-physical electricity grids. The algorithm explores both discrete network configurations and continuous dynamics of the plant's embedded control system to search for attack strategies that evade detection with conventional monitors. The algorithm enabling this exploration is rooted in recent developments in the hybrid system verification research: It effectively approximates the behavior of the system for a set of possible attacks by computing sensitivity of the system's response to variations in the attack parameters. For parts of the attack space, the proposed algorithm can infer whether or not there exists a feasible attack that avoids triggering protection measures such as relays and steady-state monitors. The algorithm can take into account constraints on the attack space such as the power system topology and the set of controllers across the plant that can be compromised without detection. With a proof-of-concept prototype, we demonstrate the synthesis of transient attacks in several typical electricity grids and analyze the robustness of the synthesized attacks to perturbations in the network parameters.

KW - attack synthesis

KW - hybrid system verification

KW - transient attack

UR - http://www.scopus.com/inward/record.url?scp=85051089624&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85051089624&partnerID=8YFLogxK

U2 - 10.1109/DSN.2018.00027

DO - 10.1109/DSN.2018.00027

M3 - Conference contribution

AN - SCOPUS:85051089624

T3 - Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018

SP - 151

EP - 162

BT - Proceedings - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks, DSN 2018

Y2 - 25 June 2018 through 28 June 2018

ER -

Algorithmic attack synthesis using hybrid dynamics of power grid critical infrastructures

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this