Ensemble OT Cybersecurity Model for EMS, ADMS, and DERMS in Control Center and Substation

The growth of utility-scale renewable energy resources, distributed energy resources (DER), and transportation electrification has increased uncertainty and cybersecurity risks in power grids. The Purdue Enterprise Reference Architecture model which is widely adopted by the utility industry is now insufficient to protect the power grid against cyber-attacks. There is a need to identify what cybersecurity model is effective on Energy Management System (EMS), Advanced Distribution Management System (ADMS), and DER Management System (DERMS) to address the fundamental cybersecurity challenges in the age of increasing renewable energy and DER share as well as consumer participation in the electric energy industry. The next generation of cybersecurity model for OT network should be able to detect inside attackers, mitigate the cybersecurity risks arising from the new grid participants including DER aggregators, electric vehicle owners, and behind-the-meter consumers outside the utility company, and develop the strategy to trust consumer measurement data. This panel will discuss the challenges and pathways for the development of an ensemble cybersecurity model based on predictive state estimation to detect cybersecurity anomalies in OT network including EMS, ADMS, and DERMS. Presentations in this panel session: - OT Operational Anomaly Detection (OAD) T&D + DER (23PESGM3922) - Cyber-Physical Security: Substations, DERs, and Distribution Systems (23PESGM3923) - OT Cybersecurity Model for Substations (23PESGM3925) - Cyber-Physical Security for Grid Resilience (23PESGM3927)