Date of Graduation
5-2026
Document Type
Thesis
Degree Name
Master of Science in Computer Science (MS)
Degree Level
Graduate
Department
Electrical Engineering and Computer Science
Advisor/Mentor
Farnell, Chris
Committee Member
Li, Qinghua
Second Committee Member
McCann, Roy
Keywords
Cyber Threat Modeling; Risk Assessment, Result Validation; Schweitzer Engineering Laboratories (SEL); Hardware-in-the-Loop (HIL)
Abstract
The electrical power grid is one of the most critical infrastructure systems, with virtually every other critical system relying on its electricity to operate effectively [1]. One failure in the electrical grid can have cascading effects, reducing, or outright stopping the operation of services vital to people’s lives. Ensuring continuous availability of the electrical grid is vital. This constant need for availability poses a challenge to identify potential cyber-attacks and their impacts. The grid is constantly growing with the addition of DERs (Distributed Energy Resources). Common DERs, such as photovoltaic systems or wind farms, can provide primary or secondary generation for the grid. Despite their many benefits, DERs provide yet another attack vector for bad actors looking to target critical infrastructure. A platform for simulating these systems to research potential threat vectors, mitigation strategies/efficacies and a systems overall cyber resiliency is crucial for the future of the safety and security of the grid. Example grids have already been modeled by IEEE (Institute of Electrical and Electronics Engineers) in the form of the 34 bus and 123 bus models. However, these models do not contain any DERs, leading to difficulties simulating cyber-attacks against DERs, and modeling their effects on the grid. The Cyber Threat Modeling, Risk Analysis and Mitigation for Power Grids with Distributed Energy Resources project funded by CITES (Center for Infrastructure Trustworthiness in Energy Systems) expands the IEEE-123 bus model capacity to include DERs and integrated protection devices. This paper proposes a cyber-physical test bed that enables the study of cyber-attacks in a high-fidelity environment and serves as a method of validating results of offline simulations. The inclusion of DERs creates a more realistic grid to better inform risk analysis and mitigation strategies. The model makes use of the IEEE-123 bus feeder distribution system, Hardware-in-the-Loop (HIL) simulations utilizing a Typhoon HIL real-time simulator, and SEL (Schweitzer Engineering Laboratories) devices to enhance realism. A system such as this opens the door for research into attack mitigations, training opportunities, and data collection. [1] Cybersecurity and Infrastructure Security Agency (CISA), "Learn — Infrastructure Dependency Primer," cisa.gov. [Online]. Available: https://www.cisa.gov/topics/critical-infrastructure-security-and-resilience/resilience-services/infrastructure-dependency-primer/learn. [Accessed: Feb. 18, 2026].
Citation
Harris, Z. C. (2026). SEL & HIL Integrations for Real-Time Cyber Threat Modeling, Risk Assessment, and Result Validation. Graduate Theses and Dissertations Retrieved from https://scholarworks.uark.edu/etd/6242
IEEE123Bus_V-CITES.tse (1413 kB)
Constant_Power_Loads.tlib (995 kB)
IEEE123Bus_V-Base.tse (1337 kB)