Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Threat analysis and adversarial model for Smart Grids

Javier Sande Ríos, Jesús Canal Sánchez, Carmen Manzano Hernandez, Sergio Pastrana

TL;DR

This paper addresses the gap between academic threat models and real-world adversaries in Smart Grids by proposing a formal adversarial model built around attack surface, knowledge, motivations/goals, and capabilities. It formalizes how these factors shape attacker behavior, and validates the model through a cross-domain vulnerability analysis and mapping of real-world incidents such as the Ukrainian BlackEnergy/Industroyer campaigns. The work contributes a principled attacker-role taxonomy, a domain-focused attack-surface framework, and OSINT-based vulnerability evidence linking CVEs to attacker capabilities. The findings support more realistic simulations and informed defense strategies across generation, transmission, operation, market, service, and customer domains, with practical implications for risk mitigation and resilience.

Abstract

The power grid is a critical infrastructure that allows for the efficient and robust generation, transmission, delivery and consumption of electricity. In the recent years, the physical components have been equipped with computing and network devices, which optimizes the operation and maintenance of the grid. The cyber domain of this smart power grid opens a new plethora of threats, which adds to classical threats on the physical domain. Accordingly, different stakeholders including regulation bodies, industry and academy, are making increasing efforts to provide security mechanisms to mitigate and reduce cyber-risks. Despite these efforts, there have been various cyberattacks that have affected the smart grid, leading in some cases to catastrophic consequences, showcasing that the industry might not be prepared for attacks from high profile adversaries. At the same time, recent work shows a lack of agreement among grid practitioners and academic experts on the feasibility and consequences of academic-proposed threats. This is in part due to inadequate simulation models which do not evaluate threats based on attackers full capabilities and goals. To address this gap, in this work we first analyze the main attack surfaces of the smart grid, and then conduct a threat analysis from the adversarial model perspective, including different levels of knowledge, goals, motivations and capabilities. To validate the model, we provide real-world examples of the potential capabilities by studying known vulnerabilities in critical components, and then analyzing existing cyber-attacks that have affected the smart grid, either directly or indirectly.

Threat analysis and adversarial model for Smart Grids

TL;DR

This paper addresses the gap between academic threat models and real-world adversaries in Smart Grids by proposing a formal adversarial model built around attack surface, knowledge, motivations/goals, and capabilities. It formalizes how these factors shape attacker behavior, and validates the model through a cross-domain vulnerability analysis and mapping of real-world incidents such as the Ukrainian BlackEnergy/Industroyer campaigns. The work contributes a principled attacker-role taxonomy, a domain-focused attack-surface framework, and OSINT-based vulnerability evidence linking CVEs to attacker capabilities. The findings support more realistic simulations and informed defense strategies across generation, transmission, operation, market, service, and customer domains, with practical implications for risk mitigation and resilience.

Abstract

The power grid is a critical infrastructure that allows for the efficient and robust generation, transmission, delivery and consumption of electricity. In the recent years, the physical components have been equipped with computing and network devices, which optimizes the operation and maintenance of the grid. The cyber domain of this smart power grid opens a new plethora of threats, which adds to classical threats on the physical domain. Accordingly, different stakeholders including regulation bodies, industry and academy, are making increasing efforts to provide security mechanisms to mitigate and reduce cyber-risks. Despite these efforts, there have been various cyberattacks that have affected the smart grid, leading in some cases to catastrophic consequences, showcasing that the industry might not be prepared for attacks from high profile adversaries. At the same time, recent work shows a lack of agreement among grid practitioners and academic experts on the feasibility and consequences of academic-proposed threats. This is in part due to inadequate simulation models which do not evaluate threats based on attackers full capabilities and goals. To address this gap, in this work we first analyze the main attack surfaces of the smart grid, and then conduct a threat analysis from the adversarial model perspective, including different levels of knowledge, goals, motivations and capabilities. To validate the model, we provide real-world examples of the potential capabilities by studying known vulnerabilities in critical components, and then analyzing existing cyber-attacks that have affected the smart grid, either directly or indirectly.
Paper Structure (35 sections, 5 figures, 8 tables)

This paper contains 35 sections, 5 figures, 8 tables.

Table of Contents

  1. Introduction
  2. Background and Related Work
  3. The power grid
  4. The smart power grid
  5. Related work
  6. Adversarial model
  7. Attack surface
  8. Power generation
  9. Transmission
  10. Operation
  11. Market
  12. Service
  13. Customer
  14. Knowledge
  15. Motivations and Goals
  16. ...and 20 more sections

Figures (5)

  • Figure 1: Capabilities enabled by exploiting known vulnerabilities in Smart-Grid systems
  • Figure 2: Flowchart of the methodology to collect CPEs
  • Figure 3: Flowchart of the methodology to gather CVEs
  • Figure 4: Access vector count of CVE collection
  • Figure 5: Severity count of CVE collection