Leuchtturm der Energieforschung / Research / Energy Economics and Energy Informatics / Cybersecurity in Smart Grids

Cybersecurity in Smart Grids

In the age of hyperconnectivity, network security is no longer an optional protective measure but a central architectural principle. The research field of cybersecurity in smart grids investigates how communication and control systems in cyber-physical energy systems can be operated securely, reliably, and resiliently. 
The focus is on proactive, intelligent, and model-based security mechanisms that go beyond traditional perimeter protection approaches. To this end, security analyses are combined with modeling, simulation, and systematic testing to detect threats early, quantitatively evaluate protective measures, and develop robust operational strategies.

 

Prof. Dr.-Ing. Reinhard German
FAU Erlangen-Nürnberg / Chair Computer Science 7 (Computer Networks and Communication Systems)

Our research integrates approaches from network security, in particular:

  • Network fuzzing to identify protocol and implementation vulnerabilities
    Intrusion detection systems (IDS) based on AI and deep learning to detect complex attacks
  • Network security simulation for realistic analysis of attack scenarios in smart grids and IoT systems
  • A particular focus is on securing critical infrastructure (KRITIS) while taking into account current regulatory requirements such as NIS2, the Cyber Resilience Act (CRA), IEC 62443, and MITRE ATT&CK.
  • IT/OT Security in Distribution Networks (Control Center, Substation, and Field Device Communication)
  • Securing smart meter and gateway infrastructures as well as sensitive energy data
  • Secure integration of flexible consumers and generators (e-mobility, heat pumps, storage)
  • Virtual power plants and energy communities (identities, role and access models)
  • Resilience assessment and attack simulation for energy systems relevant to critical infrastructure
  • Security and resilience requirements for smart grid services (availability, integrity, confidentiality)
  • Threat modeling, risk analysis, and security-by-design for communication architectures
  • AI-based anomaly detection and event correlation in distributed systems
  • Intelligent testing methods (e.g., fuzzing) for identifying vulnerabilities
  • Simulation and emulation for evaluating protective measures and operational strategies
  • Methods for adaptive reconfiguration and prioritized handling of critical services
  • Laboratory and virtualization environments for network analysis
  • Computing resources for data-driven analysis and prototyping
  • Security and resilience analyses of IT/OT communication and system architectures
  • Development of monitoring and incident response strategies for smart grid environments
  • Training on OT security fundamentals, threat models, and best practices

Research Projects