Developing Cyber-Secure and Resilient Protection Schemes for Power Networks

为电力网络开发网络安全和弹性保护方案

• 批准号: RGPIN-2021-04042
• 负责人: Ameli, Amir
• 金额: $ 2.04万
• 依托单位: Lakehead University
• 依托单位国家: 加拿大
• 项目类别: Discovery Grants Program - Individual
• 财政年份: 2021
• 资助国家: 加拿大
• 起止时间: 2021-01-01 至 2022-12-31
• 项目状态: 已结题
• 来源: https://www.nserc-crsng.gc.ca/ase-oro/Details-Detailles_eng.asp?id=742801
• 关键词: Developing; Cyber; Secure; Resilient; Protection

The recent trend to expand the use of Information Technology (IT) in power networks has made power systems potentially vulnerable to cyber-attacks. Protection systems are among the most critical cyber-vulnerable components, as they directly affect the integrity and stability of power systems. Thus, the main objective of this research program is to facilitate a smooth transition to more-secure power grids by tackling the cyber-security challenges of protection systems. The short-term objectives of this program will focus on developing cyber-resilient substations, Communication-Assisted Protection (CAP) schemes, and Wide-Area Protection (WAP) schemes. 1- Substations: Protective relays are mainly utilized in substations to protect power system components. The increasing level of instrumentation and interconnectedness in substations exposes these relays to cyber-attacks, e.g., when substations are compromised. Thus, securing substations is the first step toward the cyber-resiliency of protection systems. This program will develop a Central Cyber-Security and Resiliency (CCSR) system within substations. The developed CCSR will have situational awareness about the IT and operational technology systems of a substation, and will be able to detect and mitigate cyber-intrusions. 2- CAP schemes: Although securing substations is necessary to prevent cyberattacks against protective relays, it is not adequate, since some relays operate based on external data communicated from the outside of substations. Hence, CAP schemes require additional defense to secure the external data. This research aims to develop cyber-resilient distributed CAP schemes by which relays can reliably detect faults and confirm the authenticity of the data received from neighbouring relays. 3- WAP schemes: WAP schemes, which complement conventional protective relays and avoid their malfunctions, operate using time-synchronized data from various locations in the network. The reliance of WAP schemes on communicated data, however, makes them vulnerable to cyber-attacks. This research aims to develop techniques for each WAP scheme to detect, identify, and mitigate cyber-attacks. These techniques will check the legitimacy of received data before being used for control and protection purposes. The objectives of this program include the development of tools that will reinforce the cyber-resiliency of CAP and WAP schemes and substations. This program will benefit its industrial beneficiaries by (i) developing tools and guidelines to secure their systems and products against cyber-attacks, and (ii) training high-quality personnel who can address their future security needs. This program will have positive implications on Canadian society and its economy, by decreasing the number of cyber-attack-related blackouts and brownouts and their associated costs, and will enhance the national security of the country. Thus, the indirect beneficiaries in Canada are the government and general public.

近年来，信息技术在电力网络中的广泛应用使得电力系统很容易受到网络攻击。保护系统是最关键的网络脆弱组件之一，因为它们直接影响电力系统的完整性和稳定性。因此，该研究计划的主要目标是通过解决保护系统的网络安全挑战，促进向更安全电网的平稳过渡。该计划的短期目标将侧重于开发网络弹性变电站，通信辅助保护（CAP）计划和广域保护（WAP）计划。1-变电站：保护继电器主要用于变电站，以保护电力系统组件。变电站中日益增加的仪表和互连水平使这些继电器暴露于网络攻击，例如，会有什么反应因此，保护变电站是实现保护系统网络弹性的第一步。该计划将在变电站内开发中央网络安全和弹性（CCSR）系统。开发的CCSR将具有对变电站IT和操作技术系统的态势感知，并能够检测和减轻网络入侵。2-CAP方案：虽然保护变电站对于防止针对保护继电器的网络攻击是必要的，但这是不够的，因为一些继电器基于从变电站外部通信的外部数据运行。因此，CAP方案需要额外的防御，以确保外部data.This研究的目的是开发网络弹性分布式CAP方案，中继可以可靠地检测故障，并确认从相邻的中继接收到的数据的真实性。3-WAP方案：WAP方案补充了传统的保护继电器并避免其故障，使用来自网络中各个位置的时间同步数据进行操作。然而，WAP方案对通信数据的依赖使其容易受到网络攻击。本研究旨在为每个WAP方案开发技术，以检测，识别和减轻网络攻击。这些技术将在用于控制和保护目的之前检查接收数据的合法性。该计划的目标包括开发工具，以加强CAP和WAP计划和变电站的网络弹性。该计划将通过以下方式使其行业受益：（i）开发工具和指导方针，以保护其系统和产品免受网络攻击，以及（ii）培训能够满足其未来安全需求的高素质人员。该计划将对加拿大社会和经济产生积极影响，减少与网络攻击有关的停电和灯火管制的数量及其相关成本，并将加强该国的国家安全。因此，加拿大的间接受益者是政府和公众。