Embedded Cyber-Physical Anomaly Detection in Smart Meters

  • Massimiliano Raciti
  • Simin Nadjm-Tehrani
Part of the Lecture Notes in Computer Science book series (LNCS, volume 7722)


Smart grid security has many facets, ranging over a spectrum from resisting attacks aimed at supervisory and control systems, to end user privacy concerns while monitored by the utility enterprise. This multi-faceted problem also includes vulnerabilities that arise from deployment of local cyber-physical attacks at a smart metering location, with a potential to a) manipulate the measured energy consumption, and b) being massively deployed aiming at destabilisation. In this paper we study a smart metering device that uses a trusted platform for storage and communication of metering data, and show that despite the hard core security, there is still room for deployment of a second level of defence as an embedded real-time anomaly detector that can cover both the cyber and physical domains.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Fang, X., Misra, S., Xue, G., Yang, D.: Smart grid-the new and improved power grid: A survey. IEEE Communications Surveys Tutorials PP(99), 1–37 (2011)Google Scholar
  2. 2.
    Rajkumar, R.R., Lee, I., Sha, L., Stankovic, J.: Cyber-physical systems: the next computing revolution. In: Proceedings of the 47th Design Automation Conference, DAC 2010, pp. 731–736. ACM (2010)Google Scholar
  3. 3.
    Alcaraz, C., Fernandez, G., Carvajal, F.: Security aspects of SCADA and DCS environments. In: Lopez, J., Setola, R., Wolthusen, S.D. (eds.) Critical Infrastructure Protection. LNCS, vol. 7130, pp. 120–149. Springer, Heidelberg (2012)CrossRefGoogle Scholar
  4. 4.
    NISTIR 7628: Guidelines for Smart Grid Cyber Security. Privacy and the Smart Grid, vol. 2, (accessed June 2012)
  5. 5.
    NISTIR 7628: Guidelines for Smart Grid Cyber Security Requirements, (accessed June 2012)
  6. 6.
    Pallotti, E., Mangiatordi, F.: Smart grid cyber security requirements. In: 2011 10th International Conference on Environment and Electrical Engineering (EEEIC), pp. 1–4 (2011)Google Scholar
  7. 7.
    Lu, Z., Lu, X., Wang, W., Wang, C.: Review and evaluation of security threats on the communication networks in the smart grid. In: Military Communication Conference, MILCOM 2010, pp. 1830–1835 (2010)Google Scholar
  8. 8.
    Cleveland, F.: Cyber security issues for advanced metering infrastructure (ami). In: 2008 IEEE Power and Energy Society General Meeting - Conversion and Delivery of Electrical Energy in the 21st Century, pp. 1–5 (July 2008)Google Scholar
  9. 9.
    Berthier, R., Sanders, W., Khurana, H.: Intrusion detection for advanced metering infrastructures: Requirements and architectural directions. In: 2010 First IEEE International Conference on Smart Grid Communications (SmartGridComm), pp. 350–355 (October 2010)Google Scholar
  10. 10.
    Berthier, R., Sanders, W.: Specification-based intrusion detection for advanced metering infrastructures. In: 2011 IEEE 17th Pacific Rim International Symposium on Dependable Computing (PRDC), pp. 184–193 (December 2011)Google Scholar
  11. 11.
    Kush, N., Foo, E., Ahmed, E., Ahmed, I., Clark, A.: Gap analysis of intrusion detection in smart grids. In: Valli, C. (ed.) 2nd International Cyber Resilience Conference, Secau - Security Research Centre, pp. 38–46 (August 2011)Google Scholar
  12. 12.
    McLaughlin, S., Podkuiko, D., McDaniel, P.: Energy theft in the advanced metering infrastructure. In: Rome, E., Bloomfield, R. (eds.) CRITIS 2009. LNCS, vol. 6027, pp. 176–187. Springer, Heidelberg (2010)CrossRefGoogle Scholar
  13. 13.
    McLaughlin, S., Podkuiko, D., Miadzvezhanka, S., Delozier, A., McDaniel, P.: Multi-vendor penetration testing in the advanced metering infrastructure. In: Proceedings of the 26th Annual Computer Security Applications Conference. ACSAC 2010, pp. 107–116. ACM (2010)Google Scholar
  14. 14.
    Kadurek, P., Blom, J., Cobben, J., Kling, W.: Theft detection and smart metering practices and expectations in the netherlands. In: 2010 IEEE PES Innovative Smart Grid Technologies Conference Europe (ISGT Europe), pp. 1–6 (2010)Google Scholar
  15. 15.
    Broxvall, M.: Metering devices with legal calibration requirements, Deliverable D2.1, (accessed May 2012)
  16. 16.
    EU SecFutur FP7 Project, (accessed June 2012)
  17. 17.
    Ernoult, M., Meslier, F.: Analysis and forecast of electrical energy demand. In: Revue générale de l’électricité, vol. 4 (1982)Google Scholar
  18. 18.
    Chicco, G., Napoli, R., Postolache, P., Scutariu, M., Toader, C.: Electric energy customer characterisation for developing dedicated market strategies. In: 2001 IEEE Porto Power Tech Proceedings, vol. 1, p. 6 (2001)Google Scholar
  19. 19.
    Burbeck, K., Nadjm-Tehrani, S.: Adaptive real-time anomaly detection with incremental clustering. Information Security Technical Report - Elsevier 12(1), 56–67 (2007)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2013

Authors and Affiliations

  • Massimiliano Raciti
    • 1
  • Simin Nadjm-Tehrani
    • 1
  1. 1.Department of Computer and Information ScienceLinköping UniversityLinköpingSweden

Personalised recommendations