IDEAS home Printed from https://ideas.repec.org/a/sae/risrel/v238y2024i6p1302-1329.html

Optimal defense resource allocation against cyber-attacks in distributed generation systems

Author

Listed:
  • Huadong Mo
  • Xun Xiao
  • Giovanni Sansavini
  • Daoyi Dong

Abstract

The deployment of advanced information and communication technologies necessitates considering new security threats, such as distributed denial of service attacks and malware, which can fault power generators and feeders and exacerbate power outages in distributed generation systems (DGS). Existing cyber-security studies fail to validate the attacker–defender game model between operators and hackers or provide a DGS model that accounts for realistic characteristics and operations. Furthermore, current game models may be infeasible for large-scale systems and are not robust against uncertainties owing to the use of metaheuristic algorithms. To overcome these gaps, this study quantified the result of a game using the contest success function and estimated the parameters of this function based on real-world evidence: the dataset of cyber crime incidents from Advisen, US. The DGS management was optimized using the power flow model considering the scenario-based uncertainty stemming from cyber-attacks. A three-stage attack+defend–defend–attack framework is proposed to optimize attack–defense resource allocation using the cooperative game and ϵ -subgradient method. The results for IEEE 4, 13, 34, 123 and 342 test node feeders show that the proposed framework is applicable to large-scale systems and robust to various types of cyber-attacks. The proposed model and algorithms further enhance the DGS performance under uncertainties by protecting the entire grid or only critical nodes according to the defenders’ objectives.

Suggested Citation

  • Huadong Mo & Xun Xiao & Giovanni Sansavini & Daoyi Dong, 2024. "Optimal defense resource allocation against cyber-attacks in distributed generation systems," Journal of Risk and Reliability, , vol. 238(6), pages 1302-1329, December.
  • Handle: RePEc:sae:risrel:v:238:y:2024:i:6:p:1302-1329
    DOI: 10.1177/1748006X231196259
    as

    Download full text from publisher

    File URL: https://journals.sagepub.com/doi/10.1177/1748006X231196259
    Download Restriction: no

    File URL: https://libkey.io/10.1177/1748006X231196259?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    References listed on IDEAS

    as
    1. Wan, Long & Ding, Zhihao & Li, Yunpeng & Chen, Qianqian & Tan, Zhiyi, 2015. "Scheduling to minimize the maximum total completion time per machine," European Journal of Operational Research, Elsevier, vol. 242(1), pages 45-50.
    2. Yang, Xiaohui & Leng, Zhengyang & Xu, Shaoping & Yang, Chunsheng & Yang, Li & Liu, Kang & Song, Yaoren & Zhang, Liufang, 2021. "Multi-objective optimal scheduling for CCHP microgrids considering peak-load reduction by augmented ε-constraint method," Renewable Energy, Elsevier, vol. 172(C), pages 408-423.
    3. Yuan, Wei & Zhao, Long & Zeng, Bo, 2014. "Optimal power grid protection through a defender–attacker–defender model," Reliability Engineering and System Safety, Elsevier, vol. 121(C), pages 83-89.
    4. Azaiez, M.N. & Bier, Vicki M., 2007. "Optimal resource allocation for security in reliability systems," European Journal of Operational Research, Elsevier, vol. 181(2), pages 773-786, September.
    5. Chi Zhang & Jose Ramirez-Marquez, 2013. "Protecting critical infrastructures against intentional attacks: a two-stage game with incomplete information," IISE Transactions, Taylor & Francis Journals, vol. 45(3), pages 244-258.
    6. Luis Corchón & Matthias Dahm, 2010. "Foundations for contest success functions," Economic Theory, Springer;Society for the Advancement of Economic Theory (SAET), vol. 43(1), pages 81-98, April.
    7. Chenyang Liu & Yazeed Alrowaili & Neetesh Saxena & Charalambos Konstantinou, 2021. "Cyber Risks to Critical Smart Grid Assets of Industrial Control Systems," Energies, MDPI, vol. 14(17), pages 1-19, September.
    8. Emma S. Johnson & Santanu Subhas Dey, 2022. "A Scalable Lower Bound for the Worst-Case Relay Attack Problem on the Transmission Grid," INFORMS Journal on Computing, INFORMS, vol. 34(4), pages 2296-2312, July.
    9. Ekin, Tahir & Naveiro, Roi & Ríos Insua, David & Torres-Barrán, Alberto, 2023. "Augmented probability simulation methods for sequential games," European Journal of Operational Research, Elsevier, vol. 306(1), pages 418-430.
    10. Gregory Levitin, 2011. "Reliability of multi-state systems with common bus performance sharing," IISE Transactions, Taylor & Francis Journals, vol. 43(7), pages 518-524.
    11. Ye, Zhi-Sheng & Peng, Rui & Wang, Wenbin, 2017. "Defense and attack of performance-sharing common bus systemsAuthor-Name: Zhai, Qingqing," European Journal of Operational Research, Elsevier, vol. 256(3), pages 962-975.
    12. Miller, Thomas & Staves, Alexander & Maesschalck, Sam & Sturdee, Miriam & Green, Benjamin, 2021. "Looking back to look forward: Lessons learnt from cyber-attacks on Industrial Control Systems," International Journal of Critical Infrastructure Protection, Elsevier, vol. 35(C).
    13. Burak Kocuk & Santanu S. Dey & X. Andy Sun, 2016. "Strong SOCP Relaxations for the Optimal Power Flow Problem," Operations Research, INFORMS, vol. 64(6), pages 1177-1196, December.
    14. Hu, Xiaoxiao & Xu, Maochao & Xu, Shouhuai & Zhao, Peng, 2017. "Multiple cyber attacks against a target with observation errors and dependent outcomes: Characterization and optimization," Reliability Engineering and System Safety, Elsevier, vol. 159(C), pages 119-133.
    15. Mo, Huadong & Xie, Min & Levitin, Gregory, 2015. "Optimal resource distribution between protection and redundancy considering the time and uncertainties of attacks," European Journal of Operational Research, Elsevier, vol. 243(1), pages 200-210.
    16. Kevin-Martin Aigner & Robert Burlacu & Frauke Liers & Alexander Martin, 2023. "Solving AC Optimal Power Flow with Discrete Decisions to Global Optimality," INFORMS Journal on Computing, INFORMS, vol. 35(2), pages 458-474, March.
    17. Mo, Hua-Dong & Li, Yan-Fu & Zio, Enrico, 2016. "A system-of-systems framework for the reliability analysis of distributed generation systems accounting for the impact of degraded communication networks," Applied Energy, Elsevier, vol. 183(C), pages 805-822.
    18. K Hausken & J Zhuang, 2012. "The timing and deterrence of terrorist attacks due to exogenous dynamics," Journal of the Operational Research Society, Palgrave Macmillan;The OR Society, vol. 63(6), pages 726-735, June.
    19. Levitin, Gregory & Hausken, Kjell & Dai, Yuanshun, 2014. "Optimal defense with variable number of overarching and individual protections," Reliability Engineering and System Safety, Elsevier, vol. 123(C), pages 81-90.
    20. Deck, Cary & Foster, Joshua & Song, Hongwei, 2015. "Defense against an opportunistic challenger: Theory and experiments," European Journal of Operational Research, Elsevier, vol. 242(2), pages 501-513.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Ye, Zhi-Sheng & Peng, Rui & Wang, Wenbin, 2017. "Defense and attack of performance-sharing common bus systemsAuthor-Name: Zhai, Qingqing," European Journal of Operational Research, Elsevier, vol. 256(3), pages 962-975.
    2. Qingqing Zhai & Rui Peng & Jun Zhuang, 2020. "Defender–Attacker Games with Asymmetric Player Utilities," Risk Analysis, John Wiley & Sons, vol. 40(2), pages 408-420, February.
    3. Lin, Chen & Xiao, Hui & Kou, Gang & Peng, Rui, 2020. "Defending a series system with individual protection, overarching protection, and disinformation," Reliability Engineering and System Safety, Elsevier, vol. 204(C).
    4. Hausken, Kjell, 2024. "Fifty Years of Operations Research in Defense," European Journal of Operational Research, Elsevier, vol. 318(2), pages 355-368.
    5. Rui Peng & Di Wu & Mengyao Sun & Shaomin Wu, 2021. "An attack-defense game on interdependent networks," Journal of the Operational Research Society, Taylor & Francis Journals, vol. 72(10), pages 2331-2341, October.
    6. Cao, Minhao & Guo, Jianjun & Xiao, Hui & Wu, Liang, 2022. "Reliability analysis and optimal generator allocation and protection strategy of a non-repairable power grid system," Reliability Engineering and System Safety, Elsevier, vol. 222(C).
    7. Wang, Bin & Kou, Gang & Xiao, Hui, 2025. "Defending a series signaling system against uncertain attack time with individual protection, false nodes, and overarching protection," Reliability Engineering and System Safety, Elsevier, vol. 264(PA).
    8. Yan, Xihong & Ren, Xiaorong & Nie, Xiaofeng, 2022. "A budget allocation model for domestic airport network protection," Socio-Economic Planning Sciences, Elsevier, vol. 82(PB).
    9. Chen, Yefang & Wang, Yilai & Xiao, Hui & Peng, Rui, 2024. "Reliability modeling and optimization of a two-dimensional system considering performance sharing mechanism," Reliability Engineering and System Safety, Elsevier, vol. 252(C).
    10. Kjell Hausken, 2019. "Special versus general protection and attack of two assets," Operations Research and Decisions, Wroclaw University of Science and Technology, Faculty of Management, vol. 29(4), pages 53-93.
    11. Hausken, Kjell, 2017. "Special versus general protection and attack of parallel and series components," Reliability Engineering and System Safety, Elsevier, vol. 165(C), pages 239-256.
    12. Mo, Huadong & Xie, Min & Levitin, Gregory, 2015. "Optimal resource distribution between protection and redundancy considering the time and uncertainties of attacks," European Journal of Operational Research, Elsevier, vol. 243(1), pages 200-210.
    13. Zhang, Chi & Ramirez-Marquez, José Emmanuel & Wang, Jianhui, 2015. "Critical infrastructure protection using secrecy – A discrete simultaneous game," European Journal of Operational Research, Elsevier, vol. 242(1), pages 212-221.
    14. Bose, Gautam & Konrad, Kai A., 2020. "Devil take the hindmost: Deflecting attacks to other defenders," Reliability Engineering and System Safety, Elsevier, vol. 204(C).
    15. Szidarovszky, Ferenc & Luo, Yi, 2014. "Incorporating risk seeking attitude into defense strategy," Reliability Engineering and System Safety, Elsevier, vol. 123(C), pages 104-109.
    16. Wang, Wei & Cammi, Antonio & Di Maio, Francesco & Lorenzi, Stefano & Zio, Enrico, 2018. "A Monte Carlo-based exploration framework for identifying components vulnerable to cyber threats in nuclear power plants," Reliability Engineering and System Safety, Elsevier, vol. 175(C), pages 24-37.
    17. Gallice, Andrea, 2017. "An approximate solution to rent-seeking contests with private information," European Journal of Operational Research, Elsevier, vol. 256(2), pages 673-684.
    18. Zhang, Jing & Wang, Yan & Zhuang, Jun, 2021. "Modeling multi-target defender-attacker games with quantal response attack strategies," Reliability Engineering and System Safety, Elsevier, vol. 205(C).
    19. Zio, E., 2018. "The future of risk assessment," Reliability Engineering and System Safety, Elsevier, vol. 177(C), pages 176-190.
    20. Wang, Guanjun & Duan, Fengjun & Zhou, Yifan, 2018. "Reliability evaluation of multi-state series systems with performance sharing," Reliability Engineering and System Safety, Elsevier, vol. 173(C), pages 58-63.

    More about this item

    Keywords

    ;
    ;
    ;
    ;
    ;
    ;

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:sae:risrel:v:238:y:2024:i:6:p:1302-1329. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: SAGE Publications (email available below). General contact details of provider: .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.