skip to main content


Title: MaMIoT: Manipulation of Energy Market Leveraging High Wattage IoT Botnets
If a trader could predict price changes in the stock market better than other traders, she would make a fortune. Similarly in the electricity market, a trader that could predict changes in the electricity load, and thus electricity prices, would be able to make large profits. Predicting price changes in the electricity market better than other market participants is hard, but in this paper, we show that attackers can manipulate the electricity prices in small but predictable ways, giving them a competitive advantage in the market. Our attack is possible when the adversary controls a botnet of high wattage devices such as air conditioning units, which are able to abruptly change the total demand of the power grid. Such attacks are called Manipulation of Demand via IoT (MaDIoT) attacks. In this paper, we present a new variant of MaDIoT and name it Manipulation of Market via IoT (MaMIoT). MaMIoT is the first energy market manipulation cyberattack that leverages high wattage IoT botnets to slightly change the total demand of the power grid with the aim of affecting the electricity prices in the favor of specific market players. Using real-world data obtained from two major energy markets, we show that MaMIoT can significantly increase the profit of particular market players or financially damage a group of players depending on the motivation of the attacker.  more » « less
Award ID(s):
1929410 1931573 1929406
NSF-PAR ID:
10381947
Author(s) / Creator(s):
; ; ;
Date Published:
Journal Name:
Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security
Page Range / eLocation ID:
1338 to 1356
Format(s):
Medium: X
Sponsoring Org:
National Science Foundation
More Like this
  1. We demonstrate that an Internet of Things (IoT) botnet of high wattage devices–such as air conditioners and heaters–gives a unique ability to adversaries to launch large-scale coordinated attacks on the power grid. In particular, we reveal a new class of potential attacks on power grids called the Manipulation of demand via IoT (MadIoT) attacks that can leverage such a botnet in order to manipulate the power demand in the grid. We study five variations of the MadIoT attacks and evaluate their effectiveness via state-of-the-art simulators on real-world power grid models. These simulation results demonstrate that the MadIoT attacks can result in local power outages and in the worst cases, large-scale blackouts. Moreover, we show that these attacks can rather be used to increase the operating cost of the grid to benefit a few utilities in the electricity market. This work sheds light upon the interdependency between the vulnerability of the IoT and that of the other networks such as the power grid whose security requires attention from both the systems security and power engineering communities. 
    more » « less
  2. The widespread availability of vulnerable IoT devices has resulted in IoT botnets. A particularly concerning IoT botnet can be built around high-wattage IoT devices such as EV chargers because, in large numbers, they can abruptly change the electricity consumption in the power grid. These attacks are called Manipulation of Demand via IoT (MaDIoT) attacks. Previous research has shown that the existing power grid protection mechanisms prevent any large-scale negative consequences to the grid from MaDIoT attacks. In this paper, we analyze this assumption and show that an intelligent attacker with extra knowledge about the power grid and its state, can launch more sophisticated attacks. Rather than attacking all locations at random times, our adversary uses an instability metric that lets the attacker know the specific time and geographical location to activate the high-wattage bots. We call these new attacks MaDIoT 2.0. 
    more » « less
  3. The widespread availability of vulnerable IoT devices has resulted in IoT botnets. A particularly concerning IoT botnet can be built around high-wattage IoT devices such as EV chargers because, in large numbers, they can abruptly change the electricity consumption in the power grid. These attacks are called Manipulation of Demand via IoT (MaDIoT) attacks. Previous research has shown that the existing power grid protection mechanisms prevent any large-scale negative consequences to the grid from MaDIoT attacks. In this paper, we analyze this assumption and show that an intelligent attacker with extra knowledge about the power grid and its state, can launch more sophisticated attacks. Rather than attacking all locations at random times, our adversary uses an instability metric that lets the attacker know the specific time and geographical location to activate the high-wattage bots. We call these new attacks MaDIoT 2.0. 
    more » « less
  4. Abstract

    Ambitious climate packages promote the integration of variable renewable energy (VRE) and electrification of the economy. For the power sector, such a transformation means the emergence of so-called prosumers, i.e., agents that both consume and produce electricity. Due to their inflexible VRE output and flexible demand, prosumers will potentially add endogenous net sales with seasonal patterns to the power system. With its vast hydro reservoirs and ample transmission capacity, the Nordic region is seemingly well positioned to cope with such intermittent VRE output. However, the increased requirement for flexibility may be leveraged by incumbent producers to manipulate prices. Via a Nash-Cournot model with a representation of the Nordic region’s spatio-temporal features and reservoir volumes, we examine how hydro producers’ ability to manipulate electricity prices through temporal arbitrage is affected by (i) VRE-enabled prosumers and (ii) the latter plus a high CO$$_2$$2price. We find that hydro reservoirs could exploit prosumers’ patterns of net sales to conduct temporal arbitrage more effectively, viz., by targeting periods in which prosumers are net buyers (net sellers) to withhold (to “dump”) water. Meanwhile, a higher CO$$_2$$2price would further enhance hydro reservoirs’ market power because flexible price-taking thermal plants would be unable to ramp up production in order to counter such producers’ strategy to target VRE’s intermittency. Hence, in spite of a flexible demand side to complement additional intermittent VRE output, strategic hydro producers may still exacerbate price manipulation in a future power sector via more tailored exercise of market power.

     
    more » « less
  5. Abstract

    The United States (U.S.) West Coast power system is strongly influenced by variability and extremes in air temperatures (which drive electricity demand) and streamflows (which control hydropower availability). As hydroclimate changes across the West Coast, a combination of forces may work in tandem to make its bulk power system more vulnerable to physical reliability issues and market price shocks. In particular, a warmer climate is expected to increase summer cooling (electricity) demands and shift the average timing of peak streamflow (hydropower production) away from summer to the spring and winter, depriving power systems of hydropower when it is needed the most. Here, we investigate how climate change could alter interregional electricity market dynamics on the West Coast, including the potential for hydroclimatic changes in one region (e.g., Pacific Northwest (PNW)) to “spill over” and cause price and reliability risks in another (e.g., California). We find that the most salient hydroclimatic risks for the PNW power system are changes in streamflow, while risks for the California system are driven primarily by changes in summer air temperatures, especially extreme heat events that increase peak system demand. Altered timing and amounts of hydropower production in the PNW do alter summer power deliveries into California but show relatively modest potential to impact prices and reliability there. Instead, our results suggest future extreme heat in California could exert a stronger influence on prices and reliability in the PNW, especially if California continues to rely on its northern neighbor for imported power to meet higher summer demands.

     
    more » « less