考虑结构脆弱性的智能电网系统网络攻击检测与防御方法研究

Smart grid, as the next generation of power network, has improved the efficient and flexible operation of the power grid by the cyber-physical fusion, but also brings more information security risks. Especially, to face of the security threat of the cyber physical attack, current network security protection mechanism cannot completely ensure the safe operation of the smart grid. Considering the fusion characteristics of power information and physical system, this project develops cyber security research of smart grid from three aspects of structural detectability, cyberphysical attack detection and location, and defense. Based on the coupling structure characteristics of cyber physical smart grid system, the structural vulnerability of power grid is studied. Based on the analysis of the structural vulnerability, detectability of cyber attack is proposed. It can lay a theoretical foundation for the attack detection and location. Then, taking into account internal physical dynamic characteristics of smart grid, we use the control theory to propose fast detection algorithm against cyber attack by designing adaptive robust residual observer. Furthermore, we propose isolation decision strategy against cyber attack via logic matrix method. Finally, based on the coupling relationship between the cyber system and physical system, we propose cyber physics fusion-based cyber attack defense method, by using active self-healing control, to improve survivability under the threat of cyber physical attack. The expected results of this project will provide a theoretical basis and key technical support for the construction of the security mechanism of smart grid.

智能电网作为下一代电力网络，在通过信息物理融合提升电网高效和灵活运转的同时带来了信息安全隐患。特别是针对结构脆弱性下的网络攻击安全威胁，现有的电网安全防护机制已无法完全确保智能电网的安全运行。本项目考虑智能电网系统的信息-物理融合特性，从网络攻击的结构可检测性、检测与定位及防御方法三方面开展一体化信息安全研究。首先，基于智能电网的信息-物理网耦合结构特性，利用图论分析电网的结构脆弱性，并提出基于结构脆弱性分析的攻击可检测性的条件和依据，为下一步攻击的检测与定位奠定理论。进一步考虑电网内部物理动态特性，利用控制论方法，设计基于自适应鲁棒残差观测器的快速检测算法，并建立逻辑判断矩阵提出定位决策算法。最后，以系统信息-物理耦合关系为纽带，提出基于信息物理融合的主动自愈控制的攻击防御方法，提高智能电网网络攻击防御能力。本课题的预期成果为构建智能电网的信息安全机制提供理论基础和关键技术支持。

本项目针对新型信息物理协同攻击下广域智能电网的安全运行问题，结合控制论与图论的知识，构建新的集攻击防御、检测与定位三位于一体的安全体系。首先，基于电网系统中信息物理协同攻击的特性，给出了基于结构脆弱性的攻击可检测的理论依据，为下一步攻击的检测与定位奠定理论基础。然后，考虑大电网系统的复杂性，提出了基于结构稀疏性的区域划分算法，可减少攻击检测的复杂度，进一步融合信息层与物理层入侵检测方法及系统状态估计方法，设计基于检测残差的自适应鲁棒观测器进行攻击检测，并提出基于攻击特征的攻击逻辑矩阵定位策略。同时，融合图论和故障容错思想，提出了基于弹性控制器的电网攻击防御机制。最后，搭建了基于RT-LAB的微电网半实物仿真平台，用于对上述研究成果的实验验证和应用拓展。研究成果发表在IEEE Internet of Thing、Applied Energy、Information Sciences、International Journal of Electrical Power and Energy Systems、IET Generation, Transmission & Distribution、自动化学报等国内外著名期刊及会议上，发表和录用论文15篇，其中SCI检索8篇, EI检索15篇。申请公开发明专利2项。培养毕业博士研究生1名，毕业硕士研究生8名，获河北省优秀硕士学位论文1篇以及燕山大学优秀博士学位论文1篇。