Implementing smart grid functionalities integrates information and communication technologies into substations, giving rise to a substantial risk potential through cyber attacks. To cope with these threats the project will research a specific anomaly detection system for the automation network in substations and implement it as proof-of-concept.
Goal of the project is to improve security within the communication network of important constituents of the smart grid, the substations. Patterns of regular network behavior will be described by formal methods. These patterns will then be used to monitor network traffic during ongoing operations by automatically detecting and reporting anomalies. The result of the project will be an anomaly detection system and its proof-of-concept implementation capable of operating within the network as embedded system. Therefore, the detection system is designed to execute on systems with restricted resources.