POWER GRID UNIVERSAL DETECTION AND COUNTERMEASURE OVERLAY INTELLIGENCE ULTRA LATENCY HYPERVISOR

摘要

Any system with an interface may be attacked by a bad actor. If that interface is exposed to a network, the bad actor may launch a remote attack or cause other systems to attack the system. Many attacks exploit vulnerabilities that are unknown to the system operators (e.g., zero-day attacks). Power grid components, such as electricity meters, are increasingly networked and, therefore, increasingly attacked. By determining a pattern of behavior for a meter and then looking for a variation of the pattern, an attack may be identified. Once an attack is discovered, countermeasures may be launched to restore the system to normal operations, harden the system against future attack, and/or retaliate against the attacker.

主权项

1. A power grid information system infrastructure, comprising:
a network interface operable to receive data regarding operation of an electricity meter; a processing unit operable to derive a usage profile from the received data; an analysis engine operable to detect an anomaly in the usage profile; and a response engine operable to respond or suggest a response to the anomaly.