Improving Cybersecurity Situational Awareness in Smart Grid Environments

Thusitha Thilina Dayaratne, Fariha Tasmin Jaigirdar, Rumpa Dasgupta, Amin Sakzad, Carsten Rudolph

Research output: Chapter in Book/Report/Conference proceedingChapter (Book)Researchpeer-review

4 Citations (Scopus)


Demand response (DR) and peer-to-peer (P2P) energy trading in smart grids use distributed architectures and multiple data sources to enable more consumer involvement. Given the reliance on and behind-the-meter data and the distributed and heterogeneous setups, these data and processes are prone to various cybersecurity attacks. Hence, identification of security risks and continuous situational awareness is essential to establish system trust and resilience. In such a multi-layered, distributed system, data origin and the steps for processing, modifying and aggregating data are highly significant. Data provenance denotes metadata describing data derivation throughout the different layers of the system. Tracking data provenance can provide valuable information on data history and lineage. However, while provenance generates metadata for data history, security-relevant information to estimate relevant risks are not addressed. This chapter emphasises the need for security-aware data provenance in residential DR and P2P energy trading. Based on the existing Prov-IoT model for security-aware provenance in the Internet of Things applications, we present a refined model with entities and metadata specific to smart grids and microgrids. This instantiation named Prov-IoT-MG, demonstrates the importance and necessity of security-aware provenance graphs for continuously estimating risks against man-in-the-middle, false data injection and load altering attacks. We illustrate how Prov-IoT-MG graphs can be generated and evaluated at run-time and are useful in providing up-to-date information on active security controls and other security-relevant information. Finally, we discuss how these graphs help to improve the resilience of grid processes with higher situational awareness.

Original languageEnglish
Title of host publicationPower Systems Cybersecurity
Subtitle of host publicationMethods, Concepts, and Best Practices
EditorsHassan Haes Alhelou, Nikos Hatziargyriou, Zhao Yang Dong
Place of PublicationCham Switzerland
Number of pages20
ISBN (Electronic)9783031203602
ISBN (Print)9783031203596
Publication statusPublished - 2023

Publication series

NamePower Systems
ISSN (Print)1612-1287
ISSN (Electronic)1860-4676


  • Cybersecurity awareness
  • Security metadata
  • Smart grid security provenance

Cite this