{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,20]],"date-time":"2026-06-20T21:40:59Z","timestamp":1781991659576,"version":"3.54.5"},"reference-count":130,"publisher":"Association for Computing Machinery (ACM)","issue":"10","license":[{"start":{"date-parts":[[2023,2,2]],"date-time":"2023-02-02T00:00:00Z","timestamp":1675296000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Comput. Surv."],"published-print":{"date-parts":[[2023,10,31]]},"abstract":"<jats:p>The smart grid (SG), regarded as the complex cyber-physical ecosystem of infrastructures, orchestrates advanced communication, computation, and control technologies to interact with the physical environment. Due to the high rewards that threats to the grid can realize, adversaries can mount complex cyber-attacks such as advanced persistent threats-based and coordinated attacks to cause operational malfunctions and power outages in the worst scenarios: The latter of which was reflected in the Ukrainian power grid attack. Despite widespread research on smart grid security, the impact of targeted attacks on control and power systems is anecdotal. This article reviews the smart grid security from collaborative factors, emphasizing the situational awareness (SA). Specifically, we propose a threat modeling framework and review the nature of cyber-physical attacks to understand their characteristics and impacts on the smart grid\u2019s control and physical systems. We examine the existing threats detection and defense capabilities, such as intrusion detection systems (IDSs), moving target defense (MTD), and co-simulation techniques, along with discussing the impact of attacks through situational awareness and power system metrics. We discuss the human factor aspects for power system operators in analyzing the impacts of cyber-attacks. Finally, we investigate the research challenges with key research gaps to shed light on future research directions.<\/jats:p>","DOI":"10.1145\/3565570","type":"journal-article","created":{"date-parts":[[2022,10,8]],"date-time":"2022-10-08T13:05:14Z","timestamp":1665234314000},"page":"1-36","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":150,"title":["Smart Grid Cyber-Physical Situational Awareness of Complex Operational Technology Attacks: A Review"],"prefix":"10.1145","volume":"55","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-8138-2140","authenticated-orcid":false,"given":"Muhammad Nouman","family":"Nafees","sequence":"first","affiliation":[{"name":"Cardiff University, Cathays, Cardiff, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6437-0807","authenticated-orcid":false,"given":"Neetesh","family":"Saxena","sequence":"additional","affiliation":[{"name":"Cardiff University, Cathays, Cardiff, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5142-9750","authenticated-orcid":false,"given":"Alvaro","family":"Cardenas","sequence":"additional","affiliation":[{"name":"University of California, Santa Cruz, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8601-4662","authenticated-orcid":false,"given":"Santiago","family":"Grijalva","sequence":"additional","affiliation":[{"name":"Georgia Institute of Technology, Atlanta, GA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0396-633X","authenticated-orcid":false,"given":"Pete","family":"Burnap","sequence":"additional","affiliation":[{"name":"Cardiff University, Cathays, Cardiff, UK"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2023,2,2]]},"reference":[{"key":"e_1_3_1_2_2","first-page":"37","volume-title":"Proceedings of the Computer Security","author":"Adepu Sridhar","year":"2018","unstructured":"Sridhar Adepu, Nandha Kumar Kandasamy, and Aditya Mathur. 2018. Epic: An electric power testbed for research and training in cyber physical systems security. In Proceedings of the Computer Security. Springer, 37\u201352."},{"key":"e_1_3_1_3_2","doi-asserted-by":"publisher","DOI":"10.1080\/23742917.2019.1698178"},{"key":"e_1_3_1_4_2","first-page":"1","volume-title":"Proceedings of the 2020 International Conference on Cyber Security and Protection of Digital Services","author":"Agyepong Enoch","year":"2020","unstructured":"Enoch Agyepong, Yulia Cherdantseva, Philipp Reinecke, and Pete Burnap. 2020. Towards a framework for measuring the performance of a security operations center analyst. In Proceedings of the 2020 International Conference on Cyber Security and Protection of Digital Services. IEEE, 1\u20138."},{"key":"e_1_3_1_5_2","doi-asserted-by":"publisher","DOI":"10.1109\/tifs.2019.2902822"},{"key":"e_1_3_1_6_2","doi-asserted-by":"publisher","DOI":"10.1145\/3530809"},{"key":"e_1_3_1_7_2","article-title":"MITRE ATT&CK\u00ae for industrial control systems: Design and philosophy","author":"Alexander Otis","year":"2020","unstructured":"Otis Alexander, Misha Belisle, and Jacob Steele. 2020. MITRE ATT&CK\u00ae for industrial control systems: Design and philosophy. The MITRE Corporation: Bedford, MA, USA (2020).","journal-title":"The MITRE Corporation: Bedford, MA, USA"},{"key":"e_1_3_1_8_2","article-title":"The industrial control system cyber kill chain","volume":"1","author":"Assante Michael J.","year":"2015","unstructured":"Michael J. Assante and Robert M. Lee. 2015. The industrial control system cyber kill chain. SANS Institute InfoSec Reading Room 1 (2015).","journal-title":"SANS Institute InfoSec Reading Room"},{"key":"e_1_3_1_9_2","doi-asserted-by":"publisher","DOI":"10.1109\/JSYST.2021.3128698"},{"key":"e_1_3_1_10_2","unstructured":"MITRE ATT&CK. 2022. ICS Techniques. (2022). Retrieved June 8 2022 from https:\/\/attack.mitre.org\/techniques\/ics\/."},{"key":"e_1_3_1_11_2","article-title":"Lost in translation: When industrial protocol translation goes wrong","author":"Balduzzi Marco","year":"2020","unstructured":"Marco Balduzzi, Luca Bongiorni, Ryan Flores, P. Lin, Charles Perine, and Rainer Vosseler. 2020. Lost in translation: When industrial protocol translation goes wrong. Trend Micro (2020).","journal-title":"Trend Micro"},{"key":"e_1_3_1_12_2","doi-asserted-by":"publisher","DOI":"10.1007\/s40565-016-0231-6"},{"key":"e_1_3_1_13_2","doi-asserted-by":"publisher","DOI":"10.1109\/TPWRD.2015.2452967"},{"key":"e_1_3_1_14_2","doi-asserted-by":"publisher","DOI":"10.1109\/"},{"key":"e_1_3_1_15_2","volume-title":"Proceedings of the 10th USENIX Workshop on Offensive Technologies","author":"Bolshev Alexander","year":"2016","unstructured":"Alexander Bolshev, Jason Larsen, Marina Krotofil, and Reid Wightman. 2016. A rising tide: Design exploits in industrial control systems. In Proceedings of the 10th USENIX Workshop on Offensive Technologies."},{"key":"e_1_3_1_16_2","doi-asserted-by":"crossref","first-page":"98","DOI":"10.1109\/RWS47064.2019.8971825","volume-title":"Proceedings of the 2019 Resilience Week.","author":"Brugman Jonathon","year":"2019","unstructured":"Jonathon Brugman, Mohammed Khan, Sneha Kasera, and Masood Parvania. 2019. Cloud based intrusion detection and prevention system for industrial control systems using software defined networking. In Proceedings of the 2019 Resilience Week. IEEE, 98\u2013104."},{"key":"e_1_3_1_17_2","article-title":"Analysis of the cyber attack on the Ukrainian power grid","author":"Case Defense Use","year":"2016","unstructured":"Defense Use Case. 2016. Analysis of the cyber attack on the Ukrainian power grid. Electricity Information Sharing and Analysis Center (E-ISAC) 388 (2016), 1\u201329.","journal-title":"Electricity Information Sharing and Analysis Center (E-ISAC)"},{"key":"e_1_3_1_18_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2021.3113287"},{"key":"e_1_3_1_19_2","volume-title":"Proceedings of the 13th USENIX Workshop on Cyber Security Experimentation and Test.","author":"Choi Seungoh","year":"2020","unstructured":"Seungoh Choi, Jongwon Choi, Jeong-Han Yun, Byung-Gil Min, and HyoungChun Kim. 2020. Expansion of \\(\\lbrace\\) ICS \\(\\rbrace\\) testbed for security validation based on \\(\\lbrace\\) MITRE \\(\\rbrace\\) \\(\\lbrace\\) ATT&CK \\(\\rbrace\\) techniques. In Proceedings of the 13th USENIX Workshop on Cyber Security Experimentation and Test."},{"key":"e_1_3_1_20_2","first-page":"1","volume-title":"Proceedings of the Symposium on Theory of Modeling and Simulation-DEVS Integrative","author":"Ciraci Selim","year":"2014","unstructured":"Selim Ciraci, Jeff Daily, Jason Fuller, Andrew Fisher, Laurentiu Marinovici, and Khushbu Agarwal. 2014. FNCS: A framework for power system and communication networks co-simulation. In Proceedings of the Symposium on Theory of Modeling and Simulation-DEVS Integrative. 1\u20138."},{"issue":"2","key":"e_1_3_1_21_2","doi-asserted-by":"crossref","first-page":"1805","DOI":"10.1109\/TSG.2020.2965797","article-title":"Flexible machine learning-based cyberattack detection using spatiotemporal patterns for distribution systems","volume":"11","author":"Cui Mingjian","year":"2020","unstructured":"Mingjian Cui, Jianhui Wang, and Bo Chen. 2020. Flexible machine learning-based cyberattack detection using spatiotemporal patterns for distribution systems. IEEE Transactions on Smart Grid 11, 2 (2020), 1805\u20131808.","journal-title":"IEEE Transactions on Smart Grid"},{"key":"e_1_3_1_22_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2018.2890809"},{"key":"e_1_3_1_23_2","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2012.2185911"},{"key":"e_1_3_1_24_2","first-page":"1","volume-title":"Proceedings of the 2017 IEEE Conference on Energy Internet and Energy System Integration.","author":"Dong Zhiquan","year":"2017","unstructured":"Zhiquan Dong, Tianqi Xu, Yan Li, Peilei Feng, Xin Gao, and Xueying Zhang. 2017. Review and application of situation awareness key technologies for smart grid. In Proceedings of the 2017 IEEE Conference on Energy Internet and Energy System Integration. IEEE, 1\u20136."},{"key":"e_1_3_1_25_2","volume-title":"Proceedings of the 2020 IEEE International Conference on Information Technology, Big Data and Artificial Intelligence.","author":"Duan Junhong","year":"2020","unstructured":"Junhong Duan, Bo Zhao, and Sensen Guo. 2020. The design and implementation of smart grid SOC platform. In Proceedings of the 2020 IEEE International Conference on Information Technology, Big Data and Artificial Intelligence."},{"key":"e_1_3_1_26_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2018.01.015"},{"key":"e_1_3_1_27_2","doi-asserted-by":"publisher","DOI":"10.1518\/001872095779049543"},{"key":"e_1_3_1_28_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cosrev.2018.08.001"},{"key":"e_1_3_1_29_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2017.2664043"},{"key":"e_1_3_1_30_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2021.3058682"},{"key":"e_1_3_1_31_2","volume-title":"Proceedings of the NDSS","author":"Garcia Luis","year":"2017","unstructured":"Luis Garcia, Ferdinand Brasser, Mehmet Hazar Cintuglu, Ahmad-Reza Sadeghi, Osama A. Mohammed, and Saman A. Zonouz. 2017. Hey, My malware knows physics! Attacking PLCs with physical model aware rootkit. In Proceedings of the NDSS."},{"key":"e_1_3_1_32_2","doi-asserted-by":"crossref","first-page":"391","DOI":"10.23919\/ACC.2019.8815274","volume-title":"Proceedings of the 2019 American Control Conference","author":"Giraldo Jairo","year":"2019","unstructured":"Jairo Giraldo, Alvaro Cardenas, and Ricardo G. Sanfelice. 2019. A moving target defense to detect stealthy attacks in cyber-physical systems. In Proceedings of the 2019 American Control Conference. IEEE, 391\u2013396."},{"key":"e_1_3_1_33_2","doi-asserted-by":"publisher","DOI":"10.1145\/3203245"},{"key":"e_1_3_1_34_2","doi-asserted-by":"crossref","first-page":"175","DOI":"10.1007\/978-3-030-21568-2_9","volume-title":"Proceedings of the International Conference on Applied Cryptography and Network Security","author":"Giraldo Jairo","year":"2019","unstructured":"Jairo Giraldo, David Urbina, Alvaro A. Cardenas, and Nils Ole Tippenhauer. 2019. Hide and seek: An architecture for improving attack-visibility in industrial control systems. In Proceedings of the International Conference on Applied Cryptography and Network Security. Springer, 175\u2013195."},{"key":"e_1_3_1_35_2","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2021.3089163"},{"key":"e_1_3_1_36_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2019.107094"},{"key":"e_1_3_1_37_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.3033566"},{"key":"e_1_3_1_38_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2017.2703842"},{"key":"e_1_3_1_39_2","doi-asserted-by":"publisher","DOI":"10.3390\/electronics11060850"},{"issue":"7","key":"e_1_3_1_40_2","doi-asserted-by":"crossref","first-page":"4332","DOI":"10.1109\/TII.2018.2884728","article-title":"Cyber attack resilient distance protection and circuit breaker control for digital substations","volume":"15","author":"Hong Junho","year":"2018","unstructured":"Junho Hong, Reynaldo F. Nuqui, Anil Kondabathini, Dmitry Ishchenko, and Aaron Martin. 2018. Cyber attack resilient distance protection and circuit breaker control for digital substations. IEEE Transactions on Industrial Informatics 15, 7 (2018), 4332\u20134341.","journal-title":"IEEE Transactions on Industrial Informatics"},{"key":"e_1_3_1_41_2","doi-asserted-by":"publisher","DOI":"10.1109\/TPWRS.2006.873129"},{"key":"e_1_3_1_42_2","article-title":"Cyber-attack against ukrainian critical infrastructure","year":"2016","unstructured":"ICS-CERT. 2016. Cyber-attack against ukrainian critical infrastructure. Cybersecurity Infrastructure Security Agency. Technical Report ICS Alert (IR-ALERT-H-16-056-01).","journal-title":"Cybersecurity Infrastructure Security Agency. Technical Report ICS Alert (IR-ALERT-H-16-056-01)."},{"key":"e_1_3_1_43_2","doi-asserted-by":"crossref","DOI":"10.6028\/NIST.IR.7564","volume-title":"Directions in Security Metrics Research","author":"Jansen Wayne A.","year":"2009","unstructured":"Wayne A. Jansen. 2009. Directions in Security Metrics Research. Diane Publishing."},{"key":"e_1_3_1_44_2","first-page":"124","volume-title":"Proceedings of the 4th International Symposium for ICS and SCADA Cyber Security Research 2016 4","author":"Kang BooJoong","year":"2016","unstructured":"BooJoong Kang, Kieran McLaughlin, and Sakir Sezer. 2016. Towards a stateful analysis framework for smart grid network intrusion detection. In Proceedings of the 4th International Symposium for ICS and SCADA Cyber Security Research 2016 4. 124\u2013131."},{"key":"e_1_3_1_45_2","doi-asserted-by":"crossref","first-page":"261","DOI":"10.1007\/978-3-030-00024-0_14","volume-title":"Proceedings of the Critical Infrastructure Security and Resilience","author":"Keliris Anastasis","year":"2019","unstructured":"Anastasis Keliris, Charalambos Konstantinou, Marios Sazos, and Michail Maniatakos. 2019. Open source intelligence for energy sector cyberattacks. In Proceedings of the Critical Infrastructure Security and Resilience. Springer, 261\u2013281."},{"key":"e_1_3_1_46_2","volume-title":"Proceedings of the 2017 IEEE PES Innovative Smart Grid Technologies Conference Europe","author":"Khan Rafiullah","year":"2017","unstructured":"Rafiullah Khan, Kieran McLaughlin, David Laverty, and Sakir Sezer. 2017. STRIDE-based threat modeling for cyber-physical systems. In Proceedings of the 2017 IEEE PES Innovative Smart Grid Technologies Conference Europe."},{"issue":"3","key":"e_1_3_1_47_2","doi-asserted-by":"crossref","first-page":"2554","DOI":"10.1109\/TSG.2020.3040361","article-title":"A deep learning-based cyberattack detection system for transmission protective relays","volume":"12","author":"Khaw Yew Meng","year":"2020","unstructured":"Yew Meng Khaw, Amir Abiri Jahromi, Mohammadreza F. M. Arani, Scott Sanner, Deepa Kundur, and Marthe Kassouf. 2020. A deep learning-based cyberattack detection system for transmission protective relays. IEEE Transactions on Smart Grid 12, 3 (2020), 2554\u20132565.","journal-title":"IEEE Transactions on Smart Grid"},{"key":"e_1_3_1_48_2","first-page":"1","volume-title":"Proceedings of the 2016 Joint Workshop on Cyber-physical Security and Resilience in Smart Grids.","author":"Kosek Anna Magdalena","year":"2016","unstructured":"Anna Magdalena Kosek. 2016. Contextual anomaly detection for cyber-physical security in smart grids based on an artificial neural network model. In Proceedings of the 2016 Joint Workshop on Cyber-physical Security and Resilience in Smart Grids. IEEE, 1\u20136."},{"key":"e_1_3_1_49_2","first-page":"A4\u20131","volume-title":"Proceedings of the 2000 Rural Electric Power Conference. Papers Presented at the 44th Annual Conference.","author":"Krajnak David J.","year":"2000","unstructured":"David J. Krajnak. 2000. Faulted circuit indicators and system reliability. In Proceedings of the 2000 Rural Electric Power Conference. Papers Presented at the 44th Annual Conference. IEEE, A4\u20131."},{"issue":"2","key":"e_1_3_1_50_2","doi-asserted-by":"crossref","first-page":"498","DOI":"10.1109\/TIFS.2018.2854745","article-title":"Real-time detection of hybrid and stealthy cyber-attacks in smart grid","volume":"14","author":"Kurt Mehmet Necip","year":"2018","unstructured":"Mehmet Necip Kurt, Yasin Y\u0131lmaz, and Xiaodong Wang. 2018. Real-time detection of hybrid and stealthy cyber-attacks in smart grid. IEEE Transactions on Information Forensics and Security 14, 2 (2018), 498\u2013513.","journal-title":"IEEE Transactions on Information Forensics and Security"},{"key":"e_1_3_1_51_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2989770"},{"key":"e_1_3_1_52_2","first-page":"1","volume-title":"Proceedings of the 2015 IEEE Eindhoven PowerTech","author":"Kwon YooJin","year":"2015","unstructured":"YooJin Kwon, Huy Kang Kim, Yong Hun Lim, and Jong In Lim. 2015. A behavior-based intrusion detection technique for smart grid infrastructure. In Proceedings of the 2015 IEEE Eindhoven PowerTech. IEEE, 1\u20136."},{"key":"e_1_3_1_53_2","first-page":"1","volume-title":"Proceedings of the 2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids","author":"Lakshminarayana Subhash","year":"2019","unstructured":"Subhash Lakshminarayana, E. Veronica Belmega, and H. Vincent Poor. 2019. Moving-target defense for detecting coordinated cyber-physical attacks in power grids. In Proceedings of the 2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids. IEEE, 1\u20137."},{"key":"e_1_3_1_54_2","first-page":"39","volume-title":"Proceedings of the 2019 7th International Conference on Smart Grid","author":"Le Tan Duy","year":"2019","unstructured":"Tan Duy Le, Adnan Anwar, Razvan Beuran, and Seng W. Loke. 2019. Smart grid co-simulation tools: Review and cybersecurity case study. In Proceedings of the 2019 7th International Conference on Smart Grid. IEEE, 39\u201345."},{"key":"e_1_3_1_55_2","first-page":"343","volume-title":"Proceedings of the 2015 International Conference on Control, Automation, and Information Sciences","author":"Li Hao","year":"2015","unstructured":"Hao Li, Guangjie Liu, Weiwei Jiang, and Yuewei Dai. 2015. Designing snort rules to detect abnormal DNP3 network data. In Proceedings of the 2015 International Conference on Control, Automation, and Information Sciences. IEEE, 343\u2013348."},{"key":"e_1_3_1_56_2","doi-asserted-by":"crossref","first-page":"143","DOI":"10.1109\/ESTS.2011.5770857","volume-title":"Proceedings of the 2011 IEEE Electric Ship Technologies Symposium","author":"Li W.","year":"2011","unstructured":"W. Li, A. Monti, Mt Luo, and Roger A. Dougal. 2011. VPNET: A co-simulation framework for analyzing communication channel effects on power systems. In Proceedings of the 2011 IEEE Electric Ship Technologies Symposium. IEEE, 143\u2013149."},{"key":"e_1_3_1_57_2","doi-asserted-by":"publisher","DOI":"10.1109\/TPWRS.2016.2631891"},{"issue":"4","key":"e_1_3_1_58_2","doi-asserted-by":"crossref","first-page":"1630","DOI":"10.1109\/TSG.2015.2495133","article-title":"A review of false data injection attacks against modern power systems","volume":"8","author":"Liang Gaoqi","year":"2016","unstructured":"Gaoqi Liang, Junhua Zhao, Fengji Luo, Steven R. Weller, and Zhao Yang Dong. 2016. A review of false data injection attacks against modern power systems. IEEE Transactions on Smart Grid 8, 4 (2016), 1630\u20131638.","journal-title":"IEEE Transactions on Smart Grid"},{"key":"e_1_3_1_59_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2020.2977207"},{"key":"e_1_3_1_60_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2021.3076824"},{"key":"e_1_3_1_61_2","doi-asserted-by":"publisher","DOI":"10.3390\/app9204396"},{"key":"e_1_3_1_62_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3071263"},{"key":"e_1_3_1_63_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2995743"},{"key":"e_1_3_1_64_2","doi-asserted-by":"publisher","DOI":"10.1145\/3453155"},{"key":"e_1_3_1_65_2","doi-asserted-by":"publisher","DOI":"10.1109\/JSYST.2019.2963546"},{"key":"e_1_3_1_66_2","first-page":"1","volume-title":"Proceedings of the 2021 18th International Conference on Privacy, Security, and Trust","author":"Madabhushi Srinidhi","year":"2021","unstructured":"Srinidhi Madabhushi and Rinku Dewri. 2021. Detection of demand manipulation attacks on a power grid. In Proceedings of the 2021 18th International Conference on Privacy, Security, and Trust. IEEE, 1\u20137."},{"key":"e_1_3_1_67_2","first-page":"1","volume-title":"Proceedings of the ISGT 2011","author":"Mallouhi Malaz","year":"2011","unstructured":"Malaz Mallouhi, Youssif Al-Nashif, Don Cox, Tejaswini Chadaga, and Salim Hariri. 2011. A testbed for analyzing security of SCADA control systems (TASSCS). In Proceedings of the ISGT 2011. IEEE, 1\u20137."},{"key":"e_1_3_1_68_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3071269"},{"key":"e_1_3_1_69_2","volume-title":"Situational Awareness for Electric Utilities","author":"McCarthy James","year":"2019","unstructured":"James McCarthy, Otis Alexander, Sallie Edwards, Don Faatz, Chris Peloquin, Susan Symington, Andre Thibault, John Wiltberger, and Karen Viani. 2019. Situational Awareness for Electric Utilities. Technical Report. National Institute of Standards and Technology."},{"key":"e_1_3_1_70_2","doi-asserted-by":"crossref","first-page":"1137","DOI":"10.1109\/SP.2019.00026","volume-title":"Proceedings of the 2019 IEEE Symposium on Security and Privacy","author":"Milajerdi Sadegh M.","year":"2019","unstructured":"Sadegh M. Milajerdi, Rigel Gjomemo, Birhanu Eshete, Ramachandran Sekar, and V. N. Venkatakrishnan. 2019. Holmes: Real-time apt detection through correlation of suspicious information flows. In Proceedings of the 2019 IEEE Symposium on Security and Privacy. IEEE, 1137\u20131152."},{"key":"e_1_3_1_71_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3174259"},{"key":"e_1_3_1_72_2","unstructured":"Mitre. 2022. Common Weakness Enumeration: CWE Most Important Hardware Weaknesses. (2022). Retrieved June 1 2022 from https:\/\/cwe.mitre.org\/index.html."},{"key":"e_1_3_1_73_2","volume-title":"Distributed Intrusion Detection\/Prevention System Design and Implementation for Secure SCADA Communication in Smart Grid","author":"Mohan Sathya Narayana","year":"2019","unstructured":"Sathya Narayana Mohan. 2019. Distributed Intrusion Detection\/Prevention System Design and Implementation for Secure SCADA Communication in Smart Grid. Ph.D. Dissertation. Iowa State University."},{"issue":"3","key":"e_1_3_1_74_2","doi-asserted-by":"crossref","first-page":"2218","DOI":"10.1109\/TSG.2019.2949998","article-title":"A survey on the detection algorithms for false data injection attacks in smart grids","volume":"11","author":"Musleh Ahmed S.","year":"2019","unstructured":"Ahmed S. Musleh, Guo Chen, and Zhao Yang Dong. 2019. A survey on the detection algorithms for false data injection attacks in smart grids. IEEE Transactions on Smart Grid 11, 3 (2019), 2218\u20132234.","journal-title":"IEEE Transactions on Smart Grid"},{"key":"e_1_3_1_75_2","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3485358"},{"key":"e_1_3_1_76_2","volume-title":"Nominal and Adversarial Synthetic PMU Data for Standard IEEE Test Systems","author":"Nandanoori Sai Pushpak","year":"2021","unstructured":"Sai Pushpak Nandanoori. 2021. Nominal and Adversarial Synthetic PMU Data for Standard IEEE Test Systems. Technical Report. Pacific Northwest National Lab.(PNNL), Richland, WA."},{"key":"e_1_3_1_77_2","volume-title":"Implementing National Electrical Reliability Corporation\/Critical Infrustructure Protection Standards (NERC\/CIP) in the Real World Utility Industry","author":"Newburn Barry C.","year":"2015","unstructured":"Barry C. Newburn. 2015. Implementing National Electrical Reliability Corporation\/Critical Infrustructure Protection Standards (NERC\/CIP) in the Real World Utility Industry. Ph.D. Dissertation. Utica College."},{"key":"e_1_3_1_78_2","doi-asserted-by":"publisher","DOI":"10.1109\/TPWRD.2021.3061358"},{"key":"e_1_3_1_79_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2993233"},{"key":"e_1_3_1_80_2","first-page":"1","volume-title":"Proceedings of the 2019 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference","author":"Niu Xiangyu","year":"2019","unstructured":"Xiangyu Niu, Jiangnan Li, Jinyuan Sun, and Kevin Tomsovic. 2019. Dynamic detection of false data injection attack in smart grid using deep learning. In Proceedings of the 2019 IEEE Power and Energy Society Innovative Smart Grid Technologies Conference. IEEE, 1\u20136."},{"issue":"19","key":"e_1_3_1_81_2","doi-asserted-by":"crossref","first-page":"2355","DOI":"10.3390\/electronics10192355","article-title":"Securing publisher\u2013subscriber smart grid infrastructure","volume":"10","author":"Orr Fraser","year":"2021","unstructured":"Fraser Orr, Muhammad Nouman Nafees, Neetesh Saxena, and Bong Jun Choi. 2021. Securing publisher\u2013subscriber smart grid infrastructure. Electronics 10, 19 (2021), 2355.","journal-title":"Electronics"},{"key":"e_1_3_1_82_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2015.2409775"},{"issue":"2","key":"e_1_3_1_83_2","first-page":"174","article-title":"A specification-based intrusion detection framework for cyber-physical environment in electric power system.","volume":"17","author":"Pan Shengyi","year":"2015","unstructured":"Shengyi Pan, Thomas H. Morris, and Uttam Adhikari. 2015. A specification-based intrusion detection framework for cyber-physical environment in electric power system. International Journal of Network Security 17, 2 (2015), 174\u2013188.","journal-title":"International Journal of Network Security"},{"key":"e_1_3_1_84_2","doi-asserted-by":"publisher","DOI":"10.1109\/MPE.2015.2397334"},{"issue":"6","key":"e_1_3_1_85_2","doi-asserted-by":"crossref","first-page":"4732","DOI":"10.1109\/TPWRS.2017.2664141","article-title":"Metrics and quantification of operational and infrastructure resilience in power systems","volume":"32","author":"Panteli Mathaios","year":"2017","unstructured":"Mathaios Panteli, Pierluigi Mancarella, Dimitris N. Trakas, Elias Kyriakides, and Nikos D. Hatziargyriou. 2017. Metrics and quantification of operational and infrastructure resilience in power systems. IEEE Transactions on Power Systems 32, 6 (2017), 4732\u20134742.","journal-title":"IEEE Transactions on Power Systems"},{"key":"e_1_3_1_86_2","doi-asserted-by":"publisher","DOI":"10.1145\/3005714"},{"key":"e_1_3_1_87_2","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2022.3181860"},{"key":"e_1_3_1_88_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.290980"},{"issue":"22","key":"e_1_3_1_89_2","doi-asserted-by":"crossref","first-page":"9698","DOI":"10.3390\/su12229698","article-title":"Power systems resilience metrics: A comprehensive review of challenges and outlook","volume":"12","author":"Raoufi Habibollah","year":"2020","unstructured":"Habibollah Raoufi, Vahid Vahidinasab, and Kamyar Mehran. 2020. Power systems resilience metrics: A comprehensive review of challenges and outlook. Sustainability 12, 22 (2020), 9698.","journal-title":"Sustainability"},{"key":"e_1_3_1_90_2","doi-asserted-by":"crossref","DOI":"10.2172\/1436849","volume-title":"Secure ICCP Final Report","author":"Rice Mark J.","year":"2017","unstructured":"Mark J. Rice, Christopher A. Bonebrake, Greg K. Dayley, and Larry J. Becker. 2017. Secure ICCP Final Report. Technical Report. Pacific Northwest National Lab.(PNNL), Richland, WA."},{"key":"e_1_3_1_91_2","first-page":"229","volume-title":"Proceedings of LISA\u201999: 13th Systems Administration Conference","volume":"99","author":"Roesch Martin","year":"1999","unstructured":"Martin Roesch. 1999. Snort: Lightweight intrusion detection for networks. In Proceedings of LISA\u201999: 13th Systems Administration Conference. Vol. 99, 229\u2013238."},{"key":"e_1_3_1_92_2","doi-asserted-by":"publisher","DOI":"10.1145\/3427228.3427233"},{"key":"e_1_3_1_93_2","doi-asserted-by":"publisher","DOI":"10.1145\/3538704"},{"key":"e_1_3_1_94_2","doi-asserted-by":"publisher","DOI":"10.21236\/ADA596848"},{"key":"e_1_3_1_95_2","doi-asserted-by":"publisher","DOI":"10.1145\/2746266.2746283"},{"key":"e_1_3_1_96_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijepes.2014.09.031"},{"key":"e_1_3_1_97_2","doi-asserted-by":"publisher","DOI":"10.3390\/en81011883"},{"key":"e_1_3_1_98_2","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1145\/3140241.3140246","volume-title":"Proceedings of the 2017 Workshop on Cyber-physical Systems Security and PrivaCy","author":"Saxena Neetesh","year":"2017","unstructured":"Neetesh Saxena, Victor Chukwuka, Leilei Xiong, and Santiago Grijalva. 2017. CPSA: A cyber-physical security assessment tool for situational awareness in smart grid. In Proceedings of the 2017 Workshop on Cyber-physical Systems Security and PrivaCy. 69\u201379."},{"key":"e_1_3_1_99_2","doi-asserted-by":"publisher","DOI":"10.3390\/electronics9091460"},{"key":"e_1_3_1_100_2","unstructured":"Neetesh Saxena Vasilis Katos and Neeraj Kumar. 2017. Cyber-Physical smart grid security tool for education and training purposes. In International Workshops: Realigning Cyber Security Education 27 November 2017 Canberra Australia 1\u20136."},{"issue":"2","key":"e_1_3_1_101_2","doi-asserted-by":"crossref","first-page":"208","DOI":"10.1109\/TSUSC.2018.2879670","article-title":"Impact evaluation of malicious control commands in cyber-physical smart grids","volume":"6","author":"Saxena Neetesh","year":"2018","unstructured":"Neetesh Saxena, Leilei Xiong, Victor Chukwuka, and Santiago Grijalva. 2018. Impact evaluation of malicious control commands in cyber-physical smart grids. IEEE Transactions on Sustainable Computing 6, 2 (2018), 208\u2013220.","journal-title":"IEEE Transactions on Sustainable Computing"},{"issue":"4","key":"e_1_3_1_102_2","doi-asserted-by":"crossref","first-page":"2801","DOI":"10.1109\/TIA.2016.2551696","article-title":"Why existing utility metrics do not work for industrial reliability analysis","volume":"52","author":"Schuerger Robert","year":"2016","unstructured":"Robert Schuerger, Robert Arno, and Neal Dowling. 2016. Why existing utility metrics do not work for industrial reliability analysis. IEEE Transactions on Industry Applications 52, 4 (2016), 2801\u20132806.","journal-title":"IEEE Transactions on Industry Applications"},{"key":"e_1_3_1_103_2","unstructured":"Cyber Security and Infrastructure Security Agency. 2020. ICS Advisory. (2020). Retrieved May 22 2022 from https:\/\/www.cisa.gov\/uscert\/ics\/advisories\/icsa-20-343-07."},{"key":"e_1_3_1_104_2","unstructured":"Cyber Security and Infrastructure Security Agency. 2022. ICS Advisory: Schneider Electric Easergy P5 and P3. (2022). Retrieved May 20 2022 from https:\/\/www.cisa.gov\/uscert\/ics\/advisories\/icsa-22-055-03."},{"key":"e_1_3_1_105_2","first-page":"1","volume-title":"Proceedings of the 2018 IEEE 8th Power India International Conference","author":"Seth Neeraj","year":"2018","unstructured":"Neeraj Seth and Faruk S. Kazi. 2018. Vulnerability of intelligent electronic devices (IED) to time synchronization spoofing in power grid and jamming of GNSS receiver. In Proceedings of the 2018 IEEE 8th Power India International Conference. IEEE, 1\u20136."},{"key":"e_1_3_1_106_2","first-page":"622757","article-title":"Enisa threat landscape report 2018: 15 top cyberthreats and trends","volume":"10","author":"Sfakianakis Andreas","year":"2019","unstructured":"Andreas Sfakianakis, Christos Douligeris, Louis Marinos, Marco Louren\u00e7o, and Omid Raghimi. 2019. Enisa threat landscape report 2018: 15 top cyberthreats and trends. DOI 10 (2019), 622757.","journal-title":"DOI"},{"key":"e_1_3_1_107_2","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484581"},{"key":"e_1_3_1_108_2","first-page":"79","article-title":"Stuxnet and its hidden lessons on the ethics of cyberweapons","volume":"47","author":"Singer P. W.","year":"2015","unstructured":"P. W. Singer. 2015. Stuxnet and its hidden lessons on the ethics of cyberweapons. Case Western Reserve Journal of International Law 47 (2015), 79.","journal-title":"Case Western Reserve Journal of International Law"},{"key":"e_1_3_1_109_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2021.3066316"},{"key":"e_1_3_1_110_2","first-page":"407","article-title":"Cyber physical defense framework for distributed smart grid applications","author":"Sinha Ayush","year":"2021","unstructured":"Ayush Sinha, Manasi Mohandas, Pankaj Pandey, and O. P. Vyas. 2021. Cyber physical defense framework for distributed smart grid applications. Frontiers in Energy Research 8 (2021), 407.","journal-title":"Frontiers in Energy Research"},{"key":"e_1_3_1_111_2","doi-asserted-by":"publisher","DOI":"10.1109\/TNSM.2021.3078381"},{"key":"e_1_3_1_112_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101734"},{"key":"e_1_3_1_113_2","first-page":"152","volume-title":"Proceedings of the 2020 6th International Conference on Web Research","author":"Taghavinejad Seyedeh Mahsan","year":"2020","unstructured":"Seyedeh Mahsan Taghavinejad, Mehran Taghavinejad, Lida Shahmiri, Mohammad Zavvar, and Mohammad Hossein Zavvar. 2020. Intrusion detection in IoT-based smart grid using hybrid decision tree. In Proceedings of the 2020 6th International Conference on Web Research. IEEE, 152\u2013156."},{"key":"e_1_3_1_114_2","volume-title":"Proceedings of the 13th USENIX Workshop on Cyber Security Experimentation and Test","author":"Takahashi Yusuke","year":"2020","unstructured":"Yusuke Takahashi, Shigeyoshi Shima, Rui Tanabe, and Katsunari Yoshioka. 2020. \\(\\lbrace\\) APTGen \\(\\rbrace\\) : An approach towards generating practical dataset labelled with targeted attack sequences. In Proceedings of the 13th USENIX Workshop on Cyber Security Experimentation and Test."},{"key":"e_1_3_1_115_2","first-page":"1","volume-title":"Proceedings of the 2016 ACM\/IEEE 7th International Conference on Cyber-physical Systems","author":"Tan Rui","year":"2016","unstructured":"Rui Tan, Hoang Hai Nguyen, Eddy Y. S. Foo, Xinshu Dong, David K. Y. Yau, Zbigniew Kalbarczyk, Ravishankar K. Iyer, and Hoay Beng Gooi. 2016. Optimal false data injection attack against automatic generation control in power grids. In Proceedings of the 2016 ACM\/IEEE 7th International Conference on Cyber-physical Systems. IEEE, 1\u201310."},{"key":"e_1_3_1_116_2","first-page":"1","volume-title":"Proceedings of the 2019 4th Technology Innovation Management and Engineering Science International Conference","author":"Tantawi Khalid Hasan","year":"2019","unstructured":"Khalid Hasan Tantawi, Alexandr Sokolov, and Omar Tantawi. 2019. Advances in industrial robotics: From industry 3.0 automation to industry 4.0 collaboration. In Proceedings of the 2019 4th Technology Innovation Management and Engineering Science International Conference. IEEE, 1\u20134."},{"issue":"1","key":"e_1_3_1_117_2","doi-asserted-by":"crossref","first-page":"291","DOI":"10.1109\/TSG.2019.2921245","article-title":"Moving target defense approach to detecting stuxnet-like attacks","volume":"11","author":"Tian Jue","year":"2019","unstructured":"Jue Tian, Rui Tan, Xiaohong Guan, Zhanbo Xu, and Ting Liu. 2019. Moving target defense approach to detecting stuxnet-like attacks. IEEE Transactions on Smart Grid 11, 1 (2019), 291\u2013300.","journal-title":"IEEE Transactions on Smart Grid"},{"key":"e_1_3_1_118_2","first-page":"126","volume-title":"Proceedings of the 2015 IEEE International Workshop on Applied Measurements for Power Systems","author":"Toma Ana Ruxandra","year":"2015","unstructured":"Ana Ruxandra Toma, Ana-Maria Dumitrescu, and Mihaela Albu. 2015. Assessment of rapid voltage changes using PMU data. In Proceedings of the 2015 IEEE International Workshop on Applied Measurements for Power Systems. IEEE, 126\u2013131."},{"key":"e_1_3_1_119_2","doi-asserted-by":"crossref","DOI":"10.2172\/1367499","volume-title":"Resilience Metrics for the Electric Power System: A Performance-based Approach.","author":"Vugrin Eric D.","year":"2017","unstructured":"Eric D. Vugrin, Andrea R. Castillo, and Cesar Augusto Silva-Monroy. 2017. Resilience Metrics for the Electric Power System: A Performance-based Approach.Technical Report. Sandia National Lab."},{"issue":"4","key":"e_1_3_1_120_2","first-page":"3404","article-title":"On characterizing information dissemination during city-wide cascading failures in smart grid","volume":"12","author":"Wei Mingkui","year":"2017","unstructured":"Mingkui Wei, Zhuo Lu, and Wenye Wang. 2017. On characterizing information dissemination during city-wide cascading failures in smart grid. IEEE Systems Journal 12, 4 (2017), 3404\u20133413.","journal-title":"IEEE Systems Journal"},{"key":"e_1_3_1_121_2","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2021.3110784"},{"key":"e_1_3_1_122_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.epsr.2017.04.023"},{"key":"e_1_3_1_123_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3101896"},{"key":"e_1_3_1_124_2","doi-asserted-by":"publisher","DOI":"10.1145\/3298981"},{"key":"e_1_3_1_125_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3058628"},{"issue":"1","key":"e_1_3_1_126_2","doi-asserted-by":"crossref","first-page":"623","DOI":"10.1109\/TSG.2020.3010510","article-title":"Detecting false data injection attacks in smart grids: A semi-supervised deep learning approach","volume":"12","author":"Zhang Ying","year":"2020","unstructured":"Ying Zhang, Jianhui Wang, and Bo Chen. 2020. Detecting false data injection attacks in smart grids: A semi-supervised deep learning approach. IEEE Transactions on Smart Grid 12, 1 (2020), 623\u2013634.","journal-title":"IEEE Transactions on Smart Grid"},{"issue":"1","key":"e_1_3_1_127_2","doi-asserted-by":"crossref","first-page":"762","DOI":"10.1109\/TSG.2019.2937554","article-title":"Attack identification and correction for PMU GPS spoofing in unbalanced distribution systems","volume":"11","author":"Zhang Ying","year":"2019","unstructured":"Ying Zhang, Jianhui Wang, and Jianzhe Liu. 2019. Attack identification and correction for PMU GPS spoofing in unbalanced distribution systems. IEEE Transactions on Smart Grid 11, 1 (2019), 762\u2013773.","journal-title":"IEEE Transactions on Smart Grid"},{"issue":"3","key":"e_1_3_1_128_2","doi-asserted-by":"crossref","first-page":"2496","DOI":"10.1109\/TPEL.2021.3114671","article-title":"A federated learning framework for detecting false data injection attacks in solar farms","volume":"37","author":"Zhao Liang","year":"2021","unstructured":"Liang Zhao, Jiaming Li, Qi Li, and Fangyu Li. 2021. A federated learning framework for detecting false data injection attacks in solar farms. IEEE Transactions on Power Electronics 37, 3 (2021), 2496\u20132501.","journal-title":"IEEE Transactions on Power Electronics"},{"key":"e_1_3_1_129_2","doi-asserted-by":"publisher","DOI":"10.3390\/s21030991"},{"key":"e_1_3_1_130_2","unstructured":"C. Zimmerman. 2014. Ten Strategies of a World-Class Cybersecurity Operations Centre. The Mitre Corporation . MITRE Corporation. https:\/\/books.google.co.uk\/books?id=yieHoAEACAAJ"},{"key":"e_1_3_1_131_2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2021.3058403"}],"container-title":["ACM Computing Surveys"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3565570","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3565570","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:48:51Z","timestamp":1750182531000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3565570"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,2,2]]},"references-count":130,"journal-issue":{"issue":"10","published-print":{"date-parts":[[2023,10,31]]}},"alternative-id":["10.1145\/3565570"],"URL":"https:\/\/doi.org\/10.1145\/3565570","relation":{},"ISSN":["0360-0300","1557-7341"],"issn-type":[{"value":"0360-0300","type":"print"},{"value":"1557-7341","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,2,2]]},"assertion":[{"value":"2021-04-20","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2022-09-21","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-02-02","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}