Monday 31 March 2025
The electric power grid is a complex and vulnerable system that has become increasingly dependent on digital technologies. As a result, it’s faced with new threats from cyber-physical attackers who can use the grid’s own infrastructure against it. To mitigate these risks, researchers have developed an innovative approach to managing power grid security by integrating physical and cyber-security measures.
The problem is that traditional approaches to power grid security focus on one or the other, often neglecting the interplay between physical and cyber components. Cyber-physical attackers can exploit this weakness by targeting both sides of the system simultaneously, causing widespread disruptions and even blackouts.
To address this challenge, researchers have developed a tri-level optimization framework that co-optimizes preventive physical security measures with cyber-security measures under uncertainty about the effectiveness of the latter. In other words, they’re trying to find the best balance between physical defenses like reserve capacity and cyber-defenses like updated firewall rules.
The framework is based on a three-tiered approach, where each tier represents a different level of decision-making. The top tier corresponds to the power grid operator’s planning decisions, which involve choosing how much reserve capacity to procure and when to update firewall rules. The middle tier represents the cyber-physical attacker’s strategy, which involves selecting the best attack vector based on the operator’s plans.
The bottom tier is where things get interesting – it’s where the researcher’s algorithm determines the optimal physical security measures to deploy in response to the attacker’s strategy. This includes decisions about how much reserve capacity to allocate and when to dispatch power generators.
To test this framework, researchers used a range of benchmark systems, including the IEEE Reliability Test System and the NESTA Energy System Test Case Archive. They found that integrating physical and cyber-security measures can significantly improve overall system security, even in the face of sophisticated attackers who can overcome traditional cyber-defenses.
One key insight from their research is that physical and cyber-security measures are non-exchangeable complements – in other words, they work best together rather than separately. By choosing the right combination of physical and cyber-defenses, operators can create a robust security posture that’s more effective than any single approach alone.
The researchers also found that increasing the attacker’s resources – such as their ability to launch multiple attacks or exploit different vulnerabilities – can increase the computational cost of solving the optimization problem but doesn’t necessarily improve the attacker’s chances of success.
Cite this article: “Co-Optimizing Physical and Cyber-Security Measures for Power Grid Resilience”, The Science Archive, 2025.
Power Grid Security, Cyber-Physical Attacks, Tri-Level Optimization, Preventive Measures, Physical Defenses, Cyber-Defenses, Reserve Capacity, Firewall Rules, Attacker Strategy, Decision-Making Framework
