Wind-turbine systems are considered among the most complex Cyber-Physical infrastructures causing huge cascading effects to other Critical Energy Infrastructures (CEIs), such as Electrical Power and Energy Systems (EPES), communications, transportation, industry and finance. Wind turbines are mainly composed of condition monitoring and operational data (i.e. Supervisory Command and Data Acquisition-SCADA), including air-temperature, air-pressure, voltage and power with multiple types of parameters and periodic characteristics.

In Italy, as in most parts of Europe, the measures to control the spread of the COVID-19 pandemic has had relevant impacts in several sectors, last but not the least the electricity one. The changes in day-to-day routine has affected the national energy demand: from the 11th of March to the 8th of May in Italy the electricity demand was dropped by -16%, with a decrease of about 7.7 TWh in comparison with the same period in 2019 (source TERNA, see figure).

With regards to the ongoing transformation of power grids into intelligent, automated systems – called smart grids – equipped with several assets for managing power flux and energy balance, such as measurement devices (Phasor Measurement Units, Smart Meters), actuators (circuit breakers, disconnectors) and network equipment (gateways, control nodes), the question of how to comprehensively perceive and understand complex, multi-staged attacks on smart grids is gaining increasingly more significance.

Following the advent of distributed generation, the electric grid underwent an impressive change in power flows. In fact, the grid had been designed and developed based on the fact that energy had a unidirectional power flow; electricity had to be produced in massive power plants from which, through the high voltage (HV) network, the energy had to be transmitted into the consumption areas, where it would reach the end user, through the medium voltage (MV) network and the low voltage (LV) network.

Energy networks are becoming ever more decentralized with an increasing number of renewable resources connected to them. Due to the volatile nature of this generation, distribution grids will need to ensure that controllable loads and renewable generation are synchronized, to avoid peaks and prevent over-loading. Achieving this will help enable renewable generation, ensure security of supply, and mitigate expensive grid upgrades.

­­In the energy domain, cybersecurity incidents information sharing [1] among the electrical power and energy systems (EPES) utilities is crucial for the successful mitigation of critical cybersecurity such events.

The electrical grid constitutes of legacy systems that were built with no security in mind. As we move towards the Industry 4.0 area though a high-degree of automation and connectivity provides: 1) fast and flexible configuration and updates as well as 2) easier maintenance and handling of misconfigurations and operational errors.