- NSF-PAR ID:
- 10381947
- Date Published:
- Journal Name:
- Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security
- Page Range / eLocation ID:
- 1338 to 1356
- Format(s):
- Medium: X
- Sponsoring Org:
- National Science Foundation
More Like this
-
We demonstrate that an Internet of Things (IoT) botnet of high wattage devices–such as air conditioners and heaters–gives a unique ability to adversaries to launch large-scale coordinated attacks on the power grid. In particular, we reveal a new class of potential attacks on power grids called the Manipulation of demand via IoT (MadIoT) attacks that can leverage such a botnet in order to manipulate the power demand in the grid. We study five variations of the MadIoT attacks and evaluate their effectiveness via state-of-the-art simulators on real-world power grid models. These simulation results demonstrate that the MadIoT attacks can result in local power outages and in the worst cases, large-scale blackouts. Moreover, we show that these attacks can rather be used to increase the operating cost of the grid to benefit a few utilities in the electricity market. This work sheds light upon the interdependency between the vulnerability of the IoT and that of the other networks such as the power grid whose security requires attention from both the systems security and power engineering communities.more » « less
-
The widespread availability of vulnerable IoT devices has resulted in IoT botnets. A particularly concerning IoT botnet can be built around high-wattage IoT devices such as EV chargers because, in large numbers, they can abruptly change the electricity consumption in the power grid. These attacks are called Manipulation of Demand via IoT (MaDIoT) attacks. Previous research has shown that the existing power grid protection mechanisms prevent any large-scale negative consequences to the grid from MaDIoT attacks. In this paper, we analyze this assumption and show that an intelligent attacker with extra knowledge about the power grid and its state, can launch more sophisticated attacks. Rather than attacking all locations at random times, our adversary uses an instability metric that lets the attacker know the specific time and geographical location to activate the high-wattage bots. We call these new attacks MaDIoT 2.0.more » « less
-
The widespread availability of vulnerable IoT devices has resulted in IoT botnets. A particularly concerning IoT botnet can be built around high-wattage IoT devices such as EV chargers because, in large numbers, they can abruptly change the electricity consumption in the power grid. These attacks are called Manipulation of Demand via IoT (MaDIoT) attacks. Previous research has shown that the existing power grid protection mechanisms prevent any large-scale negative consequences to the grid from MaDIoT attacks. In this paper, we analyze this assumption and show that an intelligent attacker with extra knowledge about the power grid and its state, can launch more sophisticated attacks. Rather than attacking all locations at random times, our adversary uses an instability metric that lets the attacker know the specific time and geographical location to activate the high-wattage bots. We call these new attacks MaDIoT 2.0.more » « less
-
Abstract Ambitious climate packages promote the integration of variable renewable energy (VRE) and electrification of the economy. For the power sector, such a transformation means the emergence of so-called prosumers, i.e., agents that both consume and produce electricity. Due to their inflexible VRE output and flexible demand, prosumers will potentially add endogenous net sales with seasonal patterns to the power system. With its vast hydro reservoirs and ample transmission capacity, the Nordic region is seemingly well positioned to cope with such intermittent VRE output. However, the increased requirement for flexibility may be leveraged by incumbent producers to manipulate prices. Via a Nash-Cournot model with a representation of the Nordic region’s spatio-temporal features and reservoir volumes, we examine how hydro producers’ ability to manipulate electricity prices through temporal arbitrage is affected by (i) VRE-enabled prosumers and (ii) the latter plus a high CO
price. We find that hydro reservoirs could exploit prosumers’ patterns of net sales to conduct temporal arbitrage more effectively, viz., by targeting periods in which prosumers are net buyers (net sellers) to withhold (to “dump”) water. Meanwhile, a higher CO$$_2$$ price would further enhance hydro reservoirs’ market power because flexible price-taking thermal plants would be unable to ramp up production in order to counter such producers’ strategy to target VRE’s intermittency. Hence, in spite of a flexible demand side to complement additional intermittent VRE output, strategic hydro producers may still exacerbate price manipulation in a future power sector via more tailored exercise of market power.$$_2$$ -
Abstract The United States (U.S.) West Coast power system is strongly influenced by variability and extremes in air temperatures (which drive electricity demand) and streamflows (which control hydropower availability). As hydroclimate changes across the West Coast, a combination of forces may work in tandem to make its bulk power system more vulnerable to physical reliability issues and market price shocks. In particular, a warmer climate is expected to increase summer cooling (electricity) demands and shift the average timing of peak streamflow (hydropower production) away from summer to the spring and winter, depriving power systems of hydropower when it is needed the most. Here, we investigate how climate change could alter interregional electricity market dynamics on the West Coast, including the potential for hydroclimatic changes in one region (e.g., Pacific Northwest (PNW)) to “spill over” and cause price and reliability risks in another (e.g., California). We find that the most salient hydroclimatic risks for the PNW power system are changes in streamflow, while risks for the California system are driven primarily by changes in summer air temperatures, especially extreme heat events that increase peak system demand. Altered timing and amounts of hydropower production in the PNW do alter summer power deliveries into California but show relatively modest potential to impact prices and reliability there. Instead, our results suggest future extreme heat in California could exert a stronger influence on prices and reliability in the PNW, especially if California continues to rely on its northern neighbor for imported power to meet higher summer demands.