面向变电站网络的虚假数据注入攻击定位与溯源技术研究Research on FDIAs localization and traceability techniques for substation networks
叶卫,王文,董科,王臻,孙望舒,朱好
YE Wei,WANG Wen,DONG Ke,WANG Zhen,SUN Wangshu,ZHU Hao
摘要(Abstract):
随着电网中泛在传感、实时通信和精准控制技术的广泛应用,智能变电站在增强状态感知与业务决策能力的同时,其数据也可能遭到网络攻击入侵而变得不可信,从而对电力系统的安全运行构成严重威胁。从攻击者的角度构建了变电站虚假数据注入攻击的目标与方法,从防御者的角度分析攻击定位、博弈与溯源策略。针对实际变电站的信息网络安全攻防案例表明,所提攻击溯源算法能够有效检测出隐藏的攻击行为,实现变电站网络攻击有效定位溯源。
With the wide application of ubiquitous sensing,real-time communication and precise control technologies in power grids,intelligent substations are enhancing their state sensing and business decision-making capabilities. Meanwhile,the data may be invaded by cyber-attacks and become untrustworthy,thus imperiling the safe operation of power system. This paper constructs the target and method of substation fake data injection attacks(FDIAs)from the attacker's perspective. It analyzes the attack positioning,game and traceability strategy from the defender's perspective. The cyber attack and defense cases for the substation information network show that the proposed attack tracing algorithm can effectively detect the hidden attack behavior and localize and trace cyber attacks on substations.
关键词(KeyWords):
变电站网络;虚假数据注入攻击;攻击溯源;攻击图
substation network;FDIAs;attack traceability;attack graph
基金项目(Foundation): 国网浙江省电力有限公司科技项目(2021ZK55)
作者(Author):
叶卫,王文,董科,王臻,孙望舒,朱好
YE Wei,WANG Wen,DONG Ke,WANG Zhen,SUN Wangshu,ZHU Hao
DOI: 10.19585/j.zjdl.202207014
参考文献(References):
- [1]何西.含D-PMU量测的配电网状态估计系统安全与稳定性研究[D].长沙:湖南大学,2019.
- [2]郝唯杰,杨强,李炜.基于FARIMA模型的智能变电站通信流量异常分析[J].电力系统自动化,2019,43(1):10.
- [3]何金栋,王宇,赵志超,等.智能变电站嵌入式终端的网络攻击类型研究及验证[J].中国电力,2020,53(1):81-91.
- [4]周元刚,刘绚,张波.基于多阶段传输的智能变电站安全通信策略[J].电力系统自动化,2021,45(22):105-114.
- [5]陈德成,付蓉,宋少群,等.基于攻击图的电网信息物理融合系统风险定量评估[J].电测与仪表,2020,57(2):67-73.
- [6]王琦,邰伟,汤奕,等.面向电力信息物理系统的虚假数据注入攻击研究综述[J].自动化学报,2019,45(1):72-83.
- [7]陈新源.基于微电网的虚假数据注入攻击及其检测方法研究[D].昆明:昆明理工大学,2021.
- [8]武津园,王勇,刘丽丽,等.电力假数据注入攻击的残差检测方法效率分析[J].上海电力大学学报,2020,36(6):591-597.
- [9]舒隽,郭志锋,韩冰.电网虚假数据注入攻击的双层优化模型[J].电力系统自动化,2019,43(10):148-154.
- [10]王冠森.基于机器学习的电网虚假数据注入攻击检测方法研究[D].吉林:东北电力大学,2019.
- [11]王勇,武津园,陈雪鸿,等.基于卡尔曼滤波的电力虚假数据注入攻击检测方法[J].上海电力大学学报,2021,37(2):205-210.
- [12]武津园,王勇.智能电网虚假数据注入攻击检测算法研究[J].信息周刊,2020(1):131-132.
- [13]樊磊.网络攻击威胁下电力系统脆弱性分析模型与方法[D].保定:华北电力大学,2015.
- [14]郭志锋.电网量测系统恶意攻击分析[D].北京:华北电力大学,2018.