Resiliency-Driven Cyber–Physical Risk Assessment and Investment Planning for Power Substations

As energy systems move into the larger domains of cyber–physical systems (CPSs), cyber threats on energy system infrastructure are likely to increase. Cybersecurity strategies must be evaluated and analyzed regularly to establish and maintain cyber resilience in CPS. With increased physical and cyber assaults on electrical grid power substations, it is critical to prioritize expenditures to enhance operational CPS resilience. An integrated cyber–physical paradigm for power system risk analysis and investment planning for power substations is presented in this article. To address and effectively manage cyber–physical risks, the proposed approach integrates power system resilience with cyber vulnerabilities capturing the maturity indicator level (MIL) concept. The defense strategies are analyzed for various attack scenarios using defender–attacker interactions. The defender's strategies for no-information, full-information, and partial-information defender–attacker interactions are compared to obtain the best possible investment strategy for minimizing the overall risk. The presented framework is simulated and validated for PJM five-bus and IEEE 39 bus systems.