Security and Resiliency Analytics for Smart Grids: Static and Dynamic Approaches (Advances in Information Security)
Ehab Al-Shaer, Mohammad Ashiqur Rahman
相關主題
商品描述
This book targets the key concern of protecting critical infrastructures such as smart grids. It explains various static and dynamic security analysis techniques that can automatically verify smart grid security and resiliency and identify potential attacks in a proactive manner.
This book includes three main sections. The first presents the idea of formally verifying the compliance of smart grid configurations with the security and resiliency guidelines. It provides a formal framework that verifies the compliance of the advanced metering infrastructure (AMI) configurations with the security and resiliency requirements, and generates remediation plans for potential security violations. The second section covers the formal verification of the security and resiliency of smart grid control systems by using a formal model to analyze attack evasions on state estimation, a core control module of the supervisory control system in smart grids. The model identifies attack vectors that can compromise state estimation. This section also covers risk mitigation techniques that synthesize proactive security plans that make such attacks infeasible. The last part of the book discusses the dynamic security analysis for smart grids. It shows that AMI behavior can be modeled using event logs collected at smart collectors, which in turn can be verified using the specification invariants generated from the configurations of the AMI devices.
Although the focus of this book is smart grid security and resiliency, the included formal analytics are generic enough to be extended to other cyber-physical systems, especially those related to industrial control systems (ICS). Therefore, industry professionals and academic researchers will find this book an exceptional resource to learn theoretical and practical aspects of applying formal methods for the protection of critical infrastructures.
商品描述(中文翻譯)
這本書的目標是關注保護關鍵基礎設施,如智慧電網。它解釋了各種靜態和動態安全分析技術,可以自動驗證智慧電網的安全性和彈性,並主動識別潛在攻擊。
這本書包含三個主要部分。第一部分介紹了使用正式方法驗證智慧電網配置與安全性和彈性指南的符合性的概念。它提供了一個正式框架,驗證先進計量基礎設施(AMI)配置與安全性和彈性要求的符合性,並生成潛在安全違規的修復計劃。第二部分涵蓋了使用正式模型分析智慧電網監控系統的安全性和彈性,通過分析對智慧電網監控系統的核心控制模塊狀態估計的攻擊逃避。該模型識別可能危及狀態估計的攻擊向量。本節還涵蓋了綜合主動安全計劃的風險緩解技術,使此類攻擊變得不可行。本書的最後一部分討論了智慧電網的動態安全分析。它展示了可以使用在智慧收集器收集的事件日誌來建模AMI行為,這些事件日誌可以使用從AMI設備配置生成的規範不變量進行驗證。
儘管本書的重點是智慧電網的安全性和彈性,但所包含的正式分析方法足夠通用,可以擴展到其他的電腦物理系統,尤其是與工業控制系統(ICS)相關的系統。因此,業界專業人士和學術研究人員將會發現這本書是一個學習應用正式方法保護關鍵基礎設施的理論和實踐方面的卓越資源。