Towards a Comprehensive Framework for Cyber-Incident Response Decision Support in Smart Grids

TL;DR

This paper proposes a comprehensive decision support framework for smart grid cybersecurity, integrating Attack-Defense Trees and Multi-Criteria Decision Making to help operators prioritize security measures effectively.

Contribution

It introduces a novel framework combining attack-defense analysis with decision-making methods for improved cybersecurity in smart grids.

Findings

Enhanced prioritization of security measures

Optimized defense strategies based on risk analysis

Insights into decision-making in intelligent power systems

Abstract

The modernization of power grid infrastructures necessitates the incorporation of decision support systems to effectively mitigate cybersecurity threats. This paper presents a comprehensive framework based on integrating Attack-Defense Trees and the Multi-Criteria Decision Making method to enhance smart grid cybersecurity. By analyzing risk attributes and optimizing defense strategies, this framework enables grid operators to prioritize critical security measures. Additionally, this paper incorporates findings on decision-making processes in intelligent power systems to present a comprehensive approach to grid cybersecurity. The proposed model aims to optimize the effectiveness and efficiency of grid cybersecurity efforts while offering insights into future grid management challenges.