Stealthy Rootkit Attacks on Cyber-Physical Microgrids: Poster

Suman Rath, Ioannis Zografopoulos, Charalambos Konstantinou

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

5 Scopus citations

Abstract

Cyber-physical microgrids hold the key to a carbon-neutral power sector since they enable renewable and distributed energy resource integration, can alleviate overloaded distribution systems, and provide economic energy by generating and consuming power locally. The utilization of cyber-physical assets such as controllers, IoT sensors and actuators, and communication devices can enhance the stability and improve the control of microgrids. However, such assets, if maliciously operated, can become attack entry points and jeopardize the grid operation. Blind and uncoordinated cyber-attacks can be identified by existing security measures overcoming potential operational disruptions. However, rootkit attacks can stay hidden within cyber-physical systems and leverage system information to mask their presence. Rootkit detection is a strenuous process and requires advanced security methods due to their sophisticated operation. A careful analysis of possible rootkit target locations and their exploitation techniques is necessary to design effective threat detection and mitigation mechanisms. This paper discusses the cyber kill chain of a rootkit which can simultaneously deploy itself at multiple locations in a microgrid in a coordinated and stealthy way in order to maximize the impact on power system operations. The rootkit leverages system measurements to hide its presence and its attack impact from the detection mechanisms.

Original languageEnglish (US)
Title of host publicatione-Energy 2021 - Proceedings of the 2021 12th ACM International Conference on Future Energy Systems
PublisherAssociation for Computing Machinery, Inc
Pages294-295
Number of pages2
ISBN (Electronic)9781450383332
DOIs
StatePublished - Jun 22 2021
Event12th ACM International Conference on Future Energy Systems, e-Energy 2021 - Virtual, Online, Italy
Duration: Jun 28 2021Jul 2 2021

Publication series

Namee-Energy 2021 - Proceedings of the 2021 12th ACM International Conference on Future Energy Systems

Conference

Conference12th ACM International Conference on Future Energy Systems, e-Energy 2021
Country/TerritoryItaly
CityVirtual, Online
Period06/28/2107/2/21

Keywords

  • coordinated cyber manipulation
  • cyber-physical microgrid
  • data-driven prediction
  • intelligent malware
  • Rootkit
  • virtual twin

ASJC Scopus subject areas

  • Energy Engineering and Power Technology
  • Fuel Technology

Fingerprint

Dive into the research topics of 'Stealthy Rootkit Attacks on Cyber-Physical Microgrids: Poster'. Together they form a unique fingerprint.

Cite this