基于电力CPS系统关键节点脆弱性的信息-物理协同攻击路径分析

刘苇; 李科; 魏兴慎; 王琦

PDF(799 KB)

电力建设 ›› 2025

基于电力CPS系统关键节点脆弱性的信息-物理协同攻击路径分析

刘苇^1,2,3, 李科^2,3, 魏兴慎^2,3, 王琦⁴

作者信息 +

Analysis of Information-Physical Coordinated Attack Paths Based on Vulnerability of Critical Nodes in Cyber-Physical Power System

LIU Wei^1,2,3, LI Ke^2,3, WEI Xingshen^2,3, WANG Qi⁴

Author information +

文章历史 +

摘要

【目的】随着先进数字化信息技术与电力物理系统融合,使得传统电力系统转变为更具高效性和可控性的电力信息物理系统(cyber physical system,CPS),但也加剧了系统遭受信息物理协同攻击的风险。【方法】针对上述挑战,通过分析信息系统安全威胁造成的物理系统安全事件来源,归纳电力信息物理协同攻击类型并建立2种典型攻击场景,建立基于复杂网络理论和能量信息流刻画的电力CPS单侧网络结构,简化基于关联矩阵理论的三层电力信息物理网络节点一对一相依框架,提出电力信息物理系统节点连锁故障演化模型,设计权重综合中心性指标以评估系统关键节点脆弱性,【结果】通过模拟不同信息物理协同攻击策略,分析系统在遭受连续攻击或故障时的节点存活率性能指标,验证该方法在辨识信息物理协同攻击路径的准确性,【结论】为实际电力系统关键节点的安全风险分析和系统稳定运行控制提供技术参考。

Abstract

[Objective] With the integration of advanced digital information technology and power physical systems, traditional power system has evolved into more efficient and controllable Cyber-Physical System (CPS). However, this also increases the risk of cyber-physical collaborative attacks. [Methods] In response to these challenges, this paper analyzes the sources of physical system security incidents caused by information system security threats, categorizes the types of cyber-physical collaborative attacks, and establishes two typical attack scenarios. A simplified single-sided network structure of the power CPS is modeled based on complex network theory and energy-information flows. A three-layer cyber-physical power system network node one-to-one dependency framework is built using the correlation matrix theory. The evolution model of cascading failures in cyber-physical power system nodes is proposed, and a weighted comprehensive centrality index is designed to assess the vulnerability of key nodes. [Results] By simulating different cyber-physical collaborative attack strategies, the node survival rate performance under continuous attacks or failures is analyzed. The accuracy of this method in identifying cyber-physical attack paths is validated, [Conclusions] providing a technical reference for security risk analysis of critical nodes and stable operation control in practical power system.

导出引用

刘苇, 李科, 魏兴慎, 王琦. 基于电力CPS系统关键节点脆弱性的信息-物理协同攻击路径分析[J]. 电力建设. 2025

LIU Wei, LI Ke, WEI Xingshen, WANG Qi. Analysis of Information-Physical Coordinated Attack Paths Based on Vulnerability of Critical Nodes in Cyber-Physical Power System[J]. Electric Power Construction. 2025

参考文献

[1] 龚立, 王先培, 田猛, 等. 电力信息物理系统韧性的概念与提升策略研究进展[J]. 电力系统保护与制, 2023, 51(14): 169-187.
GONG Li, WANG Xiaopei, TIAN Meng, et al.Concepts and research progress on enhancement strategies for cyber physical power system resilience[J]. Power System Protection and Control, 2023, 51(14): 169-187.
[2] 王琦, 李梦雅, 汤奕, 等. 电力信息物理系统网络攻击与防御研究综述(一)建模与评估[J]. 电力系统自动化, 2019, 43(9): 9-21.
WANG Qi, LI Mengya, TANG Yi, et al.A review on research of cyber-attacks and defense in cyber physical power systems part one modelling and evaluation[J]. Automation of Electric Power Systems, 2019, 43(9): 9-21.
[3] 张晶晶, 吴佳瑜, 齐先军, 等. 基于网络依存关系的CPPS连锁故障分析及风险评估[J]. 电力系统保护与控制, 2023, 51(05): 164-171.
ZHANG Jingjing, WU Jiayu, QI Xianjun, et al.Cascading failure analysis and risk assessment of CPPS based on network dependency[J]. Power System Protection and Control, 2023, 51(05): 164-171.
[4] 李妍莎, 蔡晔, 曹一家, 等. 面向联合检修的电力信息物理系统输电线路脆弱相关性辨识[J]. 电力系统保护与控制, 2022, 50(24): 120-128.
LI Yansha, CAO Yijia, LIU Long, et al.Vulnerable correlation identification of a transmission line in the power cyber physical system for federated maintenance[J]. Power System Protection and Control, 2022, 50(24): 120-128.
[5] 胡怡霜, 丁一, 朱忆宁, 等. 基于状态依存矩阵的电力信息物理系统风险传播分析[J]. 电力系统自动化, 2021, 45(15): 1-10.
HU Yishuang, DING Yi, ZHU Yining, et al.Risk propagation analysis of cyber-physical power system based on state dependence matrix[J]. Automation of Electric Power Systems, 2021, 45(15): 1-10.
[6] 王宇飞, 邱健, 李俊娥. 考虑攻击损益的电网CPS场站级跨空间连锁故障早期预警方法[J]. 中国电力, 2020, 53(1): 92-99.
WANG Yufei, QIU Jian, LI Jun'e.A station level early warning method of cascading failures across space based on attack gain and cost principle in GCPS[J]. Electric Power, 2020, 53(1): 92-99.
[7] LIANG G Q, WELLER S R, ZHAO J H, et al.The 2015 Ukraine blackout: implications for false data injection attacks[J]. IEEE Transactions on Power Systems, 2016, 32(4): 3317-3318.
[8] 张玥, 谢光龙, 张全, 等. 美国得州2·15大停电事故分析及对中国电力发展的启示[J]. 中国电力, 2021, 54(4): 192-198, 206.
ZHANG Yue, XIE Guanglong, ZHANG Quan, et al.Analysis of 2·15 power outage in Texas and its implications for the power sector of China[J]. Electric Power, 2021, 54(4): 192-198, 206.
[9] 杨挺, 许哲铭, 赵英杰, 等. 数字化新型电力系统攻击与防御方法研究综述[J]. 电力系统自动化, 2024, 48(06): 112-126.
YANG Ting, XU Zheming, ZHAO Yingjie, et al.Review on Research of Attack and Defense Methods for Digitalized New Power System[J]. Automation of Electric Power Systems, 2024, 48(06): 112-126.
[10] BO X Y, QU Z Y, WANG L, et al.Active defense research against false data injection attacks of power CPS based on data driven algorithms[J]. Energies, 2022, 15(19): 7432.
[11] HU S L, GE X H, CHEN X L, et al.Resilient load frequency control of islanded AC microgrids under concurrent false data injection and denial-of-service attacks[J]. IEEE Transactions on Smart Grid, 2023, 14(1): 690-700.
[12] 陈武晖, 陈文淦, 薛安成. 面向协同信息攻击的物理电力系统安全风险评估与防御资源分配[J].电网技术, 2019, 43(07): 2353-2360.
CHEN Wuhui, CHEN Wengan, XUE Ancheng.Security Risk Assessment and Defense Resource Allocation of Power System Under Synergetic Cyber Attacks[J]. Power System Technology, 2019, 43(07): 2353-2360.
[13] 张殷, 肖先勇, 李长松. 基于攻击者视角的电力信息物理融合系统脆弱性分析[J]. 电力自动化设备, 2018, 38(10): 81-88.
ZHANG Yin, XIAO Xianyong, LI Changsong.Vulnerability analysis of cyber physical power system from attacker's perspective[J]. Electric Power Automation Equipment, 2018, 38(10): 81-88.
[14] 王涛, 孙聪, 顾雪平, 等. 电力通信耦合网络建模及其脆弱性分析[J]. 中国电机工程学报, 2018, 38(12): 3556-3567.
WANG Tao, SUN Cong, GU Xueping, et al.Modeling and vulnerability analysis of electric power communication coupled network[J]. Proceedings of the CSEE, 2018, 38(12): 3556-356.
[15] 遆宝中, 李庚银, 王剑晓, 等. 计及监测与控制功能的电力信息物理系统关键输电线路辨识方法[J]. 中国电机工程学报, 2022, 42(7): 2556-2565.
TI Baozhong, LI Gengyin, WANG Jianxiao, et al.Identification of critical transmission lines in cyber-physical power system considering monitoring function and control function[J]. Proceedings of the CSEE, 2022, 42(7): 2556-2565.
[16] 张赟宁, 涂迅, 张磊, 等. 基于攻击者视角的综合能源系统网络攻击策略[J/OL]. 电网技术, 1-12[2024-09-23].
ZHANG Yunning, TU Xun, ZHANG Lei, et al.Adversarial Perspectives on Network Attack Strategies in Integrated Energy Systems[J/OL]. Power System Technology, 1-12[2024-09-23].
[17] 席磊, 彭典名, 曹伟, 等. 数据驱动算法的电力信息物理系统FDIA定位检测[J/OL]. 中国电机工程学报, 1-12[2024-09-23].
XI Lei, PENG Dianming, CAO Wei, et al.FDIA Location Detection for Data Driven Algorithms in Cyber Physical Power Systems[J/OL]. Proceedings of the CSEE, 1-12[2024-09-23].
[18] 汤奕, 陈倩, 李梦雅, 等. 电力信息物理融合系统环境中的网络攻击研究综述[J]. 电力系统自动化, 2016, 40(17): 59-69.
TANG Yi, CHEN Qian, Ll Mengya,et al.Overview on cyber-attacks against cyber physical power system[J]. Automation of Electric Power Systems, 2016, 40(17): 59-69.
[19] LI B B, XIAO G X, LU R X, et al.On feasibility and limitations of detecting false data injection attacks on power grid state estimation using D-FACTS devices[J]. IEEE Transactions on Industrial Informatics, 2020, 16(2): 854-864.
[20] 庞清乐, 韩松易, 周泰, 等. 基于ASRUKF和IMC算法的电力信息物理系统虚假数据注入攻击检测[J]. 智慧电力, 2024, 52(07): 111-118.
PANG Qingle, HAN Songyi, ZHOU Tai, et al.False Data Injection Attack Detection of Cyber-physical Power SystemBased on ASRUKF and IMC Algorithms[J]. Grid Analysis & Study, 2024, 52(07): 117-118.
[21] 巨云涛, 于燕玲, 张紫枫, 等. 计及坏数据辨识的微网群三相分布式状态估计方法[J]. 高电压技术, 2022, 48(04): 1251-1263.
JU Yuntao, YU Yanling, ZHANG Zifeng, et al.Three-phase distributed state estimation method of microgrid group considering bad data identification[J]. High Voltage Engineering, 2022, 48(04): 1251-1263.
[22] QIAO S W, LIU X H, LIANG Y R, et al.Event-triggered sliding mode load frequency control of multiarea power systems under periodic denial-of-service attacks[J]. IEEE Systems Journal, 2023, 17(2): 2803-2814.
[23] 刘治开, 张原, 刘享秀. 电力系统防御DoS网络攻击的机制研究[J]. 信息与电脑, 2024, 36(02): 209-211.
LIU Zhikai, ZHANG Yuan, LIU Xiangxiu.Research on Defense Mechanism of Power System Against DoS Network Attack[J]. Information & Computer, 2024, 36(02): 209-211.
[24] 林峰, 梅勇, 朱益华, 等. 网络攻击对电力系统典型场景全过程影响综述[J]. 南方电网技术, 2023, 17(11): 61-75.
LIN Feng, MEI Yong, ZHU Yihua, et al.Overview of the Entire Process Influence of Cyber Attack on Typical Scenarios of Power Systems[J]. SOUTHERN POWER SYSTEM TECHNOLOGY, 2023, 17(11): 61-75.
[25] 张汪洋, 樊艳芳, 侯俊杰, 等. 基于集成深度神经网络的配电网分布式状态估计方法[J]. 电力系统保护与控制, 2024, 52(03): 128-140.
ZHANG Wangyang, FAN Yanfang, HOU Junjie, et al.Distribution network distributed state estimation method based on an integrated deep neural network[J]. Power System Protection and Control, 2024, 52(03): 128-140.
[26] 乐健, 郎红科, 谭甜源, 等. 新型配电系统分布式经济调度信息安全问题研究综述[J]. 电力系统自动化, 2024, 48(12): 177-191.
LE Jian, LANG Hongke, TAN Tianyuan, et al.Review of Research on Information Security Problems in Distributed Eeonomic Dispatch for New Distribution System[J]. Automation of Electric Power Systems, 2024, 48(12): 177-191.
[27] 李希喆, 辛培哲, 江璟. 计及能量流与信息流的电力信息物理系统关键节点辨识[J/OL]. 高压电器, 1-13[2024-07-25].
LI Xizhe, XIN Peizhe, JIANG Jing.Key Node Identification of Power Cyber-physical System Considering Energy Flow and Information Flow[J/OL]. High Voltage Engineering, 1-13[2024-07-25].
[28] 王超超, 董晓明, 孙华, 等. 考虑多层耦合特性的电力信息物理系统建模方法[J]. 电力系统自动化, 2021, 45(03): 83-91.
WANG Chaochao, DONG Xiaoming, SHU Hua, et al.Modeling Method of Power Cyber-Physical System Considering Multi-layer Coupling Characteristics[J]. Automation of Electric Power Systems, 2021, 45(03): 83-91.
[29] 薛禹胜, 李满礼, 罗剑波, 等. 基于关联特性矩阵的电网信息物理系统耦合建模方法[J]. 电力系统自动化, 2018, 42(02): 11-19.
XUE Yusheng, LI Manli, LUO Jianbo, et al.Modeling Method for Coupling Relations in Cyber Physical Power Systems Based on Correlation Characteristic Matrix[J]. Automation of Electric Power Systems, 2018, 42(02): 11-19.
[30] 叶夏明, 文福拴, 尚金成, 等. 电力系统中信息物理安全风险传播机制[J]. 电网技术, 2015, 39(11): 3072-3079.
YE Xiaoming, WEN Fushuan, SHANG Jincheng, et al.Propagation Mechanism of Cyber Physical Security Risks in Power Systems[J], Power System Technology, 2015, 39(11): 3072-3079.
[31] 杨挺, 李浩, 赵宇明, 等. 电力信息物理系统故障通信恢复策略[J/OL]. 电网技术, 1-11[2024-09-23].
YANG Ting, LI Hao, ZHAO Yuming, et al.Fault Communication Recovery Strategy of Power Cyber-physical System[J/OL]. Power System Technology, 1-11[2024-09-23].
[32] 吴润泽, 张保健, 唐良瑞. 双网耦合模型中基于级联失效的节点重要度评估[J]. 电网技术, 2015, 39(04): 1053-1058.
WU Runze, ZHANG Baojian, TANG Liangrui.A Cascading Failure Based Nodal Importance Evaluation Method Applied in Dual Network Coupling Model[J]. Power System Technology, 2015, 39(04): 1053-1058.
[33] 连祥龙, 张文浩, 等. 考虑信息节点失效的电力信息物理系统脆弱性评估方法[J]. 全球能源互联网, 2019, 02(06): 523-529.
LIAN Xianglong, ZHANG Wenhao, QIAN Tong, et al.Vulnerability Assessment of Cyber Physical Power System Considering Cyber Nodes Failure[J]. Journal of Global Energy Interconnection, 2019, 2(06): 523-529.
[34] 张殷, 肖先勇, 李长松. 考虑信息物理交互的电力-信息耦合网络脆弱性分析与改善策略研究[J]. 电网技术, 2018, 42(10): 3136-3147.
ZHANG Yin, XIAO Xianyong, LI Changsong.Vulnerability Analysis and Improvement Strategy of Power-Information Coupled Networks Considering Cyber Physical Interaction[J]. Power System Technology, 2018, 42(10): 3136-3147.
[35] 谭阳红, 罗研彬, 谭鑫, 等. 电力信息物理融合系统结构脆弱性分析[J]. 湖南大学学报(自然科学版), 2018, 45(08): 91-98.
TAN Yanghong, LUO Yanbin, TAN Xin, et al.Analysis on Structural Vulnerabilities of Cyber Physical Power Systems[J]. Journal of Hunan University(Natural Sciences), 2018, 45(08): 91-98.