Research

The CESAR Project, a collaboration between UNC Charlotte, NC State University, and North Carolina A&T State University, is at the forefront of research in cybersecurity and energy systems. The project is focused on developing a cybersecure, carbon-neutral power grid, addressing critical challenges in modern energy infrastructure through innovative research and technological advancements.

Key Areas of Research

1. Cybersecurity of Distributed Energy Resources (DER):

  • The research emphasizes securing DER systems, which are increasingly integral to modern power grids. This includes identifying vulnerabilities, mitigating potential cyber threats, and developing robust security protocols to protect DERs from malicious attacks. Key efforts include creating a comprehensive repository of known vulnerabilities and developing automated tools for vulnerability analysis.

2. Real-Time and Faster-Than-Real-Time Simulation:

  • Researchers are developing advanced simulation platforms capable of real-time and faster-than-real-time performance. These platforms enable detailed modeling of transmission and distribution (T&D) systems, allowing for extensive testing and validation of cybersecurity measures under various scenarios. This work is crucial for ensuring the scalability and reliability of proposed solutions in real-world environments.

3. Hardware-in-the-Loop (HIL) Testbeds:

  • The project includes the creation of HIL testbeds, which integrate physical hardware with virtual models to simulate the operation of power systems. These testbeds are essential for testing new technologies and cybersecurity solutions in a controlled yet realistic setting. The HIL environments allow researchers to experiment with different configurations and stress-test the systems against potential cyber threats.

4. Intelligent Energy Management and Control:

  • Researchers are focusing on advanced energy management systems that utilize artificial intelligence and machine learning to optimize the control and operation of power grids. This includes developing algorithms for the dynamic reconfiguration of microgrids, demand response strategies, and the integration of renewable energy sources. The goal is to enhance the efficiency, reliability, and security of energy distribution.

5. Human-Centered Computing and Usable Security:

  • The project also addresses the human factors in cybersecurity, aiming to develop user-friendly security mechanisms and interfaces. This includes designing systems that are not only secure but also easy to use and manage by operators, reducing the likelihood of human error and improving overall system security.

Key Features of Our Testbed Development

In the ever-evolving landscape of energy systems, ensuring robust security and reliability is paramount. Our state-of-the-art testbed development initiatives at UNC Charlotte are designed to address the complex challenges of modern energy grids. By leveraging advanced technologies and interdisciplinary research, we aim to make significant strides in energy security and resilience.

1. Hardware-in-the-Loop (HIL) Testbeds

Our HIL testbeds integrate real-world hardware with simulated environments to create realistic and dynamic testing scenarios. This allows us to:

  • Emulate Smart Home Devices: Virtual instances of IoT devices are created to study normal user behavior and monitor for potential vulnerabilities.
  • Simulate Grid Dynamics: Test the impacts of various attack vectors on grid stability and performance, including device spoofing, firmware vulnerabilities, and man-in-the-middle attacks.
  • Evaluate Security Measures: Implement and assess the effectiveness of advanced cybersecurity protocols in real-time.

2. Software-Based Integrated T&D Testbeds

Our software-based testbeds offer a flexible and scalable approach to testing and validation. Key components include:

  • Network Traffic Analysis: Utilize sophisticated tools to monitor and analyze network traffic, identifying potential threats and anomalies.
  • Fuzzing and Penetration Testing: Apply AI-assisted fuzzing techniques to uncover vulnerabilities in software and firmware.
  • Virtual Environments: Create controlled environments to simulate various cyber-attacks and study their impacts on grid operations.

3. Geographically-Distributed Testbeds

Our distributed testbeds span multiple locations, such as Charlotte and Raleigh, enhancing our ability to:

  • Conduct Large-Scale Testing: Coordinate testing across different sites to study the effects of distance and geographic distribution on grid reliability.
  • Collaborate with Industry Partners: Work closely with industry stakeholders, including the Department of Energy and National Security Agency, to ensure our research aligns with real-world needs.

Emulating Smart Home Devices

Our approach to emulating smart home devices involves creating virtual instances that replicate the behavior of real IoT devices. This enables us to:

  • Map Attack Surfaces: Identify and analyze potential attack surfaces across a wide range of devices.
  • Conduct Penetration Testing: Perform thorough penetration testing to uncover and mitigate vulnerabilities.
  • Generate Real-Time Data: Collect real-time power consumption data to evaluate the effects of various attacks on energy efficiency and reliability.

Network Traffic Analysis and Security Measures

We employ a multi-layered approach to network traffic analysis, combining tools such as:

  • Binary Analysis Tools: Examine the binary code of devices to detect malicious modifications.
  • Honeypots: Set up honeypots to attract and study cyber-attacks, gaining insights into attacker behavior and techniques.
  • Network Simulators: Use simulators to recreate network conditions and study the impact of different attack vectors.

Benefits of Our Testbed Development

  • Enhanced Security: By identifying and mitigating vulnerabilities, we significantly enhance the security of energy systems.
  • Improved Reliability: Our comprehensive testing ensures that energy grids can withstand various cyber and physical threats.
  • Industry Collaboration: Partnering with leading industry stakeholders ensures our research is practical and impactful.
  • Cutting-Edge Research: Our interdisciplinary team leverages the latest advancements in technology and research to push the boundaries of what’s possible in energy security.

The CESAR Project’s testbed development is a critical component in our mission to create a secure, carbon-neutral power grid. The testbed serves as a comprehensive platform for research, education, and innovation, enabling the simulation, analysis, and improvement of power grid technologies in a controlled, real-world environment. This initiative brings together advanced technologies, expert knowledge, and collaborative efforts from UNC Charlotte, North Carolina A&T State University, and North Carolina State University.

Objectives and Scope

The primary objective of the testbed development is to create an extensible and versatile research and education infrastructure. This infrastructure will support the security and resilience of distributed energy resources (DERs), transmission and distribution systems, and management/aggregator systems. The testbed is designed to facilitate cutting-edge research in cybersecurity, power system management, and renewable energy integration, addressing the evolving challenges of the modern power grid.

Components and Capabilities

  1. Geographically Distributed T&D Systems: The testbed will include geographically distributed transmission and distribution (T&D) systems, allowing researchers to simulate and analyze real-world scenarios. This setup will help in understanding the impact of DERs and other variables on grid stability and security.
  2. Hardware-in-the-Loop (HIL) Simulation: HIL simulation is a key feature of the testbed. It integrates real hardware components with virtual simulations, providing a realistic environment for testing and validating new technologies and strategies. This approach enables the assessment of hardware performance, reliability, and security under various operational conditions.
  3. Cybersecurity Analysis and Modeling: The testbed will incorporate advanced cybersecurity tools and methodologies to identify, analyze, and mitigate vulnerabilities in the power grid. This includes the development of knowledge repositories, automated exploit generation, malware analysis, and security policies. Researchers will focus on creating robust defenses against potential cyber threats.
  4. Data Collection and Ontology Development: An essential part of the testbed is the collection of data on known vulnerabilities, hardware specifications, software versions, and user application scenarios. This data will be used to develop accurate ontology models, which will enhance the understanding of software and vulnerability evolution. The continuous monitoring and analysis of this data will inform ongoing research and development efforts.
  5. Real-Time and Faster-than-Real-Time Simulation: The testbed will support real-time and faster-than-real-time large-scale co-simulation systems. These systems will enable the dynamic reconfiguration of microgrids, the management of energy resources, and the simulation of severe events, such as blackouts and cyber-attacks. This capability is crucial for validating the scalability and effectiveness of proposed solutions.
  6. Integration with Educational Modules: The testbed will be integrated into educational programs to develop and deliver innovative courses on the security of the future power grid. This includes remote hands-on exercises and professional training for current and future workforce, ensuring that they are equipped with the necessary skills to manage and protect the power grid.

Assessment and Sustainability

To ensure the success and sustainability of the testbed, the CESAR Project has established an Industry Advisory Board (IAB) and a formal evaluation process. The IAB, composed of experts from leading utilities, research firms, and organizations, will meet quarterly to review progress and provide critical feedback. Annual workshops will also be held to evaluate the testbed’s development plans, research activities, and overall impact.

Assessment criteria include the efficiency of research activities, the number and diversity of educational modules developed, the impact on workforce training, and the success in securing new research grants and partnerships. The project aims to convert research achievements into deployable practices through technology transfer, patents, and collaborations with industrial partners.

The CESAR Project’s testbed development is poised to transform North Carolina into a leading hub for research and education in cybersecure, carbon-neutral power grid technologies. By combining expertise from multiple institutions and fostering strong industry partnerships, the testbed will drive innovation and support the sustainable development of the energy sector.

  • Threat Detection and Analysis: Our research in threat detection and analysis focuses on developing advanced algorithms and methodologies to detect, analyze, and respond to cyber threats targeting energy systems. Leveraging the latest advancements in artificial intelligence (AI) and machine learning, we enhance our ability to identify anomalous behavior patterns indicative of potential cyber attacks. By analyzing large volumes of data from energy infrastructure sensors and network logs, we can swiftly detect and mitigate security breaches, safeguarding critical energy assets from cyber threats.
  • Secure Communication Protocols: In the realm of secure communication protocols, our research aims to design and evaluate robust encryption and authentication mechanisms tailored to the unique requirements of energy systems. We develop cryptographic protocols that ensure the integrity, confidentiality, and authenticity of data transmitted across energy networks, protecting sensitive information from unauthorized access and tampering. Through rigorous testing and validation, we ensure that our communication protocols meet the stringent security standards necessary to withstand sophisticated cyber attacks.
  • Vulnerability Assessment and Management: Our research efforts in vulnerability assessment and management involve conducting thorough evaluations of energy infrastructure to identify potential weaknesses and security vulnerabilities. We employ a combination of automated scanning tools, penetration testing techniques, and risk assessment methodologies to assess the security posture of energy systems comprehensively. By prioritizing vulnerabilities based on their severity and potential impact, we provide actionable recommendations for remediation and risk mitigation, empowering energy operators to strengthen their defenses against cyber threats.
  • Resilience of Distributed Energy Resources (DERs): Our research on the resilience of distributed energy resources (DERs) explores the interplay between cyber threats, grid disturbances, and the operational resilience of DERs. We analyze the susceptibility of DERs to cyber attacks and their impact on grid stability, reliability, and resilience. By developing models and simulation frameworks, we assess the effectiveness of DER control strategies, grid integration techniques, and resilience measures in mitigating the consequences of cyber incidents. Our research findings inform the design of resilient DER systems capable of withstanding cyber threats and contributing to the overall resilience of energy networks.
  • Incident Response and Recovery: In the domain of incident response and recovery, our research focuses on enhancing the preparedness and effectiveness of energy industry stakeholders in responding to cyber incidents. We develop comprehensive incident response plans, protocols, and procedures tailored to the unique challenges of energy cybersecurity. Through tabletop exercises, simulation drills, and training programs, we equip energy operators, emergency responders, and cybersecurity professionals with the skills and knowledge necessary to detect, contain, and recover from cyber attacks swiftly. By fostering a culture of resilience and readiness, we minimize the impact of cyber incidents on energy operations and infrastructure, ensuring the continuity and reliability of energy supply.