OT Operational Anomaly Detection (OAD) T&D + DER

Research output: NRELPresentation


The growth of utility-scale renewable energy resources, distributed energy resources (DER), and transportation electrification has increased uncertainty and cybersecurity risks in power grids. The Purdue Enterprise Reference Architecture model which is widely adopted by the utility industry is now insufficient to protect the power grid against cyber-attacks. There is a need to identify what cybersecurity model is effective on Energy Management System (EMS), Advanced Distribution Management System (ADMS), and DER Management System (DERMS) to address the fundamental cybersecurity challenges in the age of increasing renewable energy and DER share as well as consumer participation in the electric energy industry. The next generation of cybersecurity model for OT network should be able to detect inside attackers, mitigate the cybersecurity risks arising from the new grid participants including DER aggregators, electric vehicle owners, and behind-the-meter consumers outside the utility company, and develop the strategy to trust consumer measurement data. This panel will discuss the challenges and pathways for the development of an ensemble cybersecurity model based on predictive state estimation to detect cybersecurity anomalies in OT network including EMS, ADMS, and DERMS.
Original languageAmerican English
Number of pages19
StatePublished - 2023

Publication series

NamePresented at the 2023 IEEE Power & Energy Society General Meeting, 16-20 July 2023, Orlando, Florida

NREL Publication Number

  • NREL/PR-5D00-86275


  • cybersecurity
  • electrification
  • EMS
  • energy resources
  • FDIA
  • grid


Dive into the research topics of 'OT Operational Anomaly Detection (OAD) T&D + DER'. Together they form a unique fingerprint.

Cite this