{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T16:39:42Z","timestamp":1780331982483,"version":"3.54.1"},"reference-count":47,"publisher":"MDPI AG","issue":"13","license":[{"start":{"date-parts":[[2022,6,24]],"date-time":"2022-06-24T00:00:00Z","timestamp":1656028800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Department of Foreign Affairs and Trade"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>The smart grid is one of the core technologies that enable sustainable economic and social developments. In recent years, various cyber attacks have targeted smart grid systems, which have led to severe, harmful consequences. It would be challenging to build a real smart grid system for cybersecurity experimentation and validation purposes. Hence, analytical techniques, with simulations, can be considered as a practical solution to make smart grid cybersecurity experimentation possible. This paper first provides a literature review on the current state-of-the-art in smart grid attack analysis. We then apply graphical security modeling techniques to design and implement a Cyber Attack Analysis Framework for Smart Grids, named GridAttackAnalyzer. A case study with various attack scenarios involving Internet of Things (IoT) devices is conducted to validate the proposed framework and demonstrate its use. The functionality and user evaluations of GridAttackAnalyzer are also carried out, and the evaluation results show that users have a satisfying experience with the usability of GridAttackAnalyzer. Our modular and extensible framework can serve multiple purposes for research, cybersecurity training, and security evaluation in smart grids.<\/jats:p>","DOI":"10.3390\/s22134795","type":"journal-article","created":{"date-parts":[[2022,6,26]],"date-time":"2022-06-26T22:50:23Z","timestamp":1656283823000},"page":"4795","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["GridAttackAnalyzer: A Cyber Attack Analysis Framework for Smart Grids"],"prefix":"10.3390","volume":"22","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6597-0209","authenticated-orcid":false,"given":"Tan Duy","family":"Le","sequence":"first","affiliation":[{"name":"School of Computer Science and Engineering, International University, Ho Chi Minh City 700000, Vietnam"},{"name":"Vietnam National University\u2014Ho Chi Minh City, Ho Chi Minh City 700000, Vietnam"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mengmeng","family":"Ge","sequence":"additional","affiliation":[{"name":"School of Computing Technologies, RMIT University, Melbourne, VIC 3000, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3916-1381","authenticated-orcid":false,"given":"Adnan","family":"Anwar","sequence":"additional","affiliation":[{"name":"Center for Cyber Security Research and Innovation (CSRI), School of Information Technology, Deakin University, Geelong, VIC 3216, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5339-9305","authenticated-orcid":false,"given":"Seng W.","family":"Loke","sequence":"additional","affiliation":[{"name":"Center for Cyber Security Research and Innovation (CSRI), School of Information Technology, Deakin University, Geelong, VIC 3216, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Razvan","family":"Beuran","sequence":"additional","affiliation":[{"name":"School of Information Science, Japan Advanced Institute of Science and Technology, Nomi 923-1211, Ishikawa, Japan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Robin","family":"Doss","sequence":"additional","affiliation":[{"name":"Center for Cyber Security Research and Innovation (CSRI), School of Information Technology, Deakin University, Geelong, VIC 3216, Australia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yasuo","family":"Tan","sequence":"additional","affiliation":[{"name":"School of Information Science, Japan Advanced Institute of Science and Technology, Nomi 923-1211, Ishikawa, Japan"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2022,6,24]]},"reference":[{"key":"ref_1","first-page":"47","article-title":"Society 5.0: Aiming for a new human-centered society","volume":"27","author":"Fukuyama","year":"2018","journal-title":"Jpn. Spotlight"},{"key":"ref_2","unstructured":"Ghansah, I. (2012). Smart Grid Cyber Security Potential Threats, Vulnerabilities and Risks: Interim Project Report, California Energy Commission."},{"key":"ref_3","unstructured":"ICS-CERT (2022, May 08). Incident Response\/Vulnerability Coordination in 2014, Available online: https:\/\/www.cisa.gov\/uscert\/sites\/default\/files\/Monitors\/ICS-CERT_Monitor_Sep2014-Feb2015.pdf."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Le, T.D., Anwar, A., Loke, S.W., Beuran, R., and Tan, Y. (2020). GridAttackSim: A Cyber Attack Simulation Framework for Smart Grids. Electronics, 9.","DOI":"10.3390\/electronics9081218"},{"key":"ref_5","unstructured":"Le, T.D., Anwar, A., Beuran, R., and Loke, S.W. (2019, January 9\u201311). Smart Grid Co-Simulation Tools: Review and Cybersecurity Case Study. Proceedings of the 2019 7th International Conference on Smart Grid (icSmartGrid), Newcastle, NSW, Australia."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"446","DOI":"10.1109\/COMST.2016.2627399","article-title":"A survey on smart grid cyber-physical system testbeds","volume":"19","author":"Cintuglu","year":"2016","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_7","unstructured":"Eliasson Lilja, C. (2018). Smart Manufacturing Systems\u2014A Testbed for Decision Support Tool Requirements. [Master\u2019s Thesis, Chalmers University of Technology]."},{"key":"ref_8","unstructured":"Le, T.D., Mengmeng, G., Phan, T.D., Hien, D.H., Adnan, A., Beuran, R., Seng, W.L., and Yasuo, T. (2020, January 5\u20136). CVSS Based Attack Analysis using a Graphical Security Model: Review and Smart Grid Case Study. Proceedings of the International Conference on Smart Grid and Internet of Things, TaiChung, Taiwan."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"6522","DOI":"10.1109\/TII.2019.2931436","article-title":"Physical layer security for the smart grid: Vulnerabilities, threats, and countermeasures","volume":"15","author":"Islam","year":"2019","journal-title":"IEEE Trans. Ind. Inform."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Gunduz, M.Z., and Das, R. (2018, January 28\u201330). Analysis of cyber-attacks on smart grid applications. Proceedings of the 2018 International Conference on Artificial Intelligence and Data Processing (IDAP), Malatya, Turkey.","DOI":"10.1109\/IDAP.2018.8620728"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Liu, L., Yu, E., and Mylopoulos, J. (2003, January 12). Security and privacy requirements analysis within a social setting. Proceedings of the 11th IEEE International Requirements Engineering Conference, Monterey Bay, CA, USA.","DOI":"10.1109\/ICRE.2003.1232746"},{"key":"ref_12","unstructured":"Yu, E.S. (1997, January 6\u201310). Towards modelling and reasoning support for early-phase requirements engineering. Proceedings of the ISRE\u201997: 3rd IEEE International Symposium on Requirements Engineering, Annapolis, MD, USA."},{"key":"ref_13","unstructured":"Mouratidis, H., Giorgini, P., and Manson, G. (2004, January 14\u201317). Using security attack scenarios to analyse security during information systems design. Proceedings of the International Conference on Enterprise Information Systems, Porto, Portugal."},{"key":"ref_14","unstructured":"Van Lamsweerde, A. (2004, January 28). Elaborating security requirements by construction of intentional anti-models. Proceedings of the 26th International Conference on Software Engineering, Edinburgh, UK."},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Asnar, Y., and Massacci, F. (2011). A method for security governance, risk, and compliance (GRC): A goal-process approach. International School on Foundations of Security Analysis and Design, Springer.","DOI":"10.1007\/978-3-642-23082-0_6"},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Beckers, K., Heisel, M., Krautsevich, L., Martinelli, F., Meis, R., and Yautsiukhin, A. (2014, January 26). Determining the probability of smart grid attacks by combining attack tree and attack graph analysis. Proceedings of the International Workshop on Smart Grid Security, Munich, Germany.","DOI":"10.1007\/978-3-319-10329-7_3"},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"12","DOI":"10.1016\/j.jnca.2017.01.033","article-title":"A framework for automating security analysis of the internet of things","volume":"83","author":"Ge","year":"2017","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_18","unstructured":"Hong, J., and Kim, D.S. (2012). Harms: Hierarchical Attack Representation Models for Network Security Analysis, SRI Security Research Institute, Edith Cowan University."},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"85","DOI":"10.1109\/MSP.2006.145","article-title":"Common vulnerability scoring system","volume":"4","author":"Mell","year":"2006","journal-title":"IEEE Secur. Priv."},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"3604","DOI":"10.1016\/j.comnet.2011.07.010","article-title":"A survey on the communication architectures in smart grid","volume":"55","author":"Wang","year":"2011","journal-title":"Comput. Netw."},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Postigo Marcos, F.E., Mateo Domingo, C., Gomez San Roman, T., Palmintier, B., Hodge, B.M., Krishnan, V., de Cuadra Garc\u00eda, F., and Mather, B. (2017). A review of power distribution test feeders in the United States and the need for synthetic representative networks. Energies, 10.","DOI":"10.3390\/en10111896"},{"key":"ref_22","unstructured":"(2022, May 30). National Vulnerability Database (NVD), Available online: https:\/\/nvd.nist.gov\/."},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Scarfone, K., and Mell, P. (2009, January 15\u201316). An analysis of CVSS version 2 vulnerability scoring. Proceedings of the 2009 3rd International Symposium on Empirical Software Engineering and Measurement, Lake Buena Vista, FL, USA.","DOI":"10.1109\/ESEM.2009.5314220"},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.cosrev.2017.09.001","article-title":"A survey on the usability and practical applications of graphical security models","volume":"26","author":"Hong","year":"2017","journal-title":"Comput. Sci. Rev."},{"key":"ref_25","unstructured":"Sheyner, O., Haines, J., Jha, S., Lippmann, R., and Wing, J.M. (2002, January 12\u201315). Automated generation and analysis of attack graphs. Proceedings of the 2002 IEEE Symposium on Security and Privacy, Berkeley, CA, USA."},{"key":"ref_26","doi-asserted-by":"crossref","unstructured":"Schneier, B. (2015). Secrets and Lies: Digital Security in a Networked World, John Wiley & Sons.","DOI":"10.1002\/9781119183631"},{"key":"ref_27","unstructured":"Shipman, J.W. (2013). Tkinter 8.4 Reference: A GUI for Python, New Mexico Tech Computer Center."},{"key":"ref_28","doi-asserted-by":"crossref","unstructured":"Schneider, K.P., Chen, Y., Chassin, D.P., Pratt, R.G., Engel, D.W., and Thompson, S.E. (2008). Modern Grid Initiative Distribution Taxonomy Final Report, Pacific Northwest National Lab. (PNNL). Technical report.","DOI":"10.2172\/1040684"},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"3181","DOI":"10.1109\/TPWRS.2017.2760011","article-title":"Analytic considerations and design basis for the IEEE distribution test feeders","volume":"33","author":"Schneider","year":"2017","journal-title":"IEEE Trans. Power Syst."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"2742","DOI":"10.1016\/j.comnet.2012.03.027","article-title":"A survey of routing protocols for smart grid communications","volume":"56","author":"Saputro","year":"2012","journal-title":"Comput. Netw."},{"key":"ref_31","doi-asserted-by":"crossref","first-page":"396","DOI":"10.1016\/j.rser.2015.10.036","article-title":"A survey on the critical issues in smart grid technologies","volume":"54","author":"Colak","year":"2016","journal-title":"Renew. Sustain. Energy Rev."},{"key":"ref_32","unstructured":"Cohen, M.A. (2022, May 08). GridLAB-D Taxonomy Feeder Graphs. Available online: http:\/\/emac.berkeley.edu\/gridlabd\/taxonomy_graphs\/."},{"key":"ref_33","doi-asserted-by":"crossref","first-page":"19","DOI":"10.4236\/jcc.2019.73003","article-title":"Study of smart grid communication network architectures and technologies","volume":"7","author":"Raza","year":"2019","journal-title":"J. Comput. Commun."},{"key":"ref_34","doi-asserted-by":"crossref","unstructured":"Clements, S.L., Carroll, T.E., and Hadley, M.D. (2011). Home Area Networks and the Smart Grid, Pacific Northwest National Lab. (PNNL). Technical report.","DOI":"10.2172\/1031987"},{"key":"ref_35","unstructured":"(2015). Communication Network Interdependencies in Smart Grids, ENISA."},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Wadhawan, Y., and Anas AlMajali, C.N. (2018). A Comprehensive Analysis of Smart Grid Systems against Cyber-Physical Attacks. Electronics, 7.","DOI":"10.3390\/electronics7100249"},{"key":"ref_37","unstructured":"Blank, R.M. (2022, May 08). Guide for Conducting Risk Assessments, Available online: https:\/\/nvlpubs.nist.gov\/nistpubs\/legacy\/sp\/nistspecialpublication800-30r1.pdf."},{"key":"ref_38","unstructured":"Le, D.T. (2021). Smart Grid Cybersecurity Experimentation: Architecture and Methodology. [Ph.D. Thesis, Japan Advanced Institute of Science and Technology]."},{"key":"ref_39","first-page":"29","article-title":"SUS: A retrospective","volume":"8","author":"Brooke","year":"2013","journal-title":"J. Usability Stud."},{"key":"ref_40","doi-asserted-by":"crossref","unstructured":"Sauro, J., and Lewis, J.R. (2009, January 4\u20139). Correlations among prototypical usability metrics: Evidence for the construct of usability. Proceedings of the SIGCHI Conference on Human Factors in Computing Systems, Boston, MA, USA.","DOI":"10.1145\/1518701.1518947"},{"key":"ref_41","unstructured":"Tullis, T.S., and Stetson, J.N. (2004, January 7\u201311). A comparison of questionnaires for assessing website usability. Proceedings of the Usability Professional Association Conference, Minneapolis, MN, USA."},{"key":"ref_42","doi-asserted-by":"crossref","first-page":"574","DOI":"10.1080\/10447310802205776","article-title":"An empirical evaluation of the system usability scale","volume":"24","author":"Bangor","year":"2008","journal-title":"Intl. J. Hum.-Comput. Interact."},{"key":"ref_43","doi-asserted-by":"crossref","unstructured":"Le, T.D., Beuran, R., Ge, M., and Hong, J.B. (2022, May 08). GridAttackAnalyzer: Smart Grid Attack Analysis Framework. Available online: https:\/\/github.com\/crond-jaist\/GridAttackAnalyzer.","DOI":"10.3390\/s22134795"},{"key":"ref_44","doi-asserted-by":"crossref","unstructured":"Sarajli\u0107, D., and Rehtanz, C. (2020, January 23\u201325). Overview of distribution grid test systems for benchmarking of power system analyses. Proceedings of the 2020 AEIT International Annual Conference (AEIT), Catania, Italy.","DOI":"10.23919\/AEIT50178.2020.9241140"},{"key":"ref_45","unstructured":"PG&E Pacific Gas and Electric Prototypical Feeder Models, PG&E."},{"key":"ref_46","doi-asserted-by":"crossref","unstructured":"Jahangiri, P., Wu, D., Li, W., Aliprantis, D.C., and Tesfatsion, L. (2012, January 22\u201326). Development of an agent-based distribution test feeder with smart-grid functionality. Proceedings of the 2012 IEEE Power and Energy Society General Meeting, San Diego, CA, USA.","DOI":"10.1109\/PESGM.2012.6345084"},{"key":"ref_47","doi-asserted-by":"crossref","unstructured":"McDermott, T. (2011, January 20\u201323). A test feeder for DG protection analysis. Proceedings of the 2011 IEEE\/PES Power Systems Conference and Exposition, Phoenix, AZ, USA.","DOI":"10.1109\/PSCE.2011.5772608"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/22\/13\/4795\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T23:39:49Z","timestamp":1760139589000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/22\/13\/4795"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,6,24]]},"references-count":47,"journal-issue":{"issue":"13","published-online":{"date-parts":[[2022,7]]}},"alternative-id":["s22134795"],"URL":"https:\/\/doi.org\/10.3390\/s22134795","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,6,24]]}}}