ProSeG project is organized into five work packages described as follows:

WP1: Taxonomy of security vulnerabilities and resilience

In WP1, an initial investigation of several types of attacks and anomalies in Smart Grids will be conducted and detection and protection requirements will be identified. This investigation will develop case studies in collaboration with the electrical distribution company (CEEE-D), Globosense, and CP Electronics. Finally, this work package will define a taxonomy of security vulnerabilities in Smart Grids. (NB: WP1 is the only work package that does not depend on any other WP.) The main tasks of this WP are:

• Task 1.1: Investigate the characteristics of attacks and anomalies.
• Task 1.2: Development of case studies (SCADA Infrastructure).
• Task 1.3: Development of case studies (Home Facilities).
• Task 1.4: Proposal of a taxonomy of vulnerabilities.

WP2: Mechanisms for detecting attacks and anomalies

WP2 will investigate techniques based on statistical analysis and machine learning for the detection of attacks and anomalies in Smart Grids, which may be adopted seamlessly in SCADA systems and domestic facilities. Encryption algorithms will also be discussed. Initially, techniques traditionally applied to detecting anomalies in traditional networks will be studied. Then these techniques will be adapted or specific ones will be developed for Smart Grids. In this regard, the results and case studies generated by WP1 will be used by WP2. The main tasks of this WP are:

• Task 2.1: Investigate existing techniques for anomaly detection.
• Task 2.2: Development of techniques and mechanisms for Smart Grids.
• Task 2.3: Formalization and mathematical analysis/simulation.

WP3: Security and resilience management architecture

WP3 will be responsible for developing a policy-based management architecture using the mechanisms proposed in WP2. Initially, a module for correlation of evidences and monitoring data will be developed. Techniques for the dynamic reconfiguration of infrastructure resources using policy-based management will be also developed. Finally, policy configurations and resilience strategies that prove to be effective against determined attack types will be consolidated in management patterns. The main tasks of WP1 are:

• Task 3.1: Proposal and development of a module for correlation of evidences and monitoring data.
• Task 3.2: Proposal and development of reconfiguration techniques using policy-based management.
• Task 3.3: Identification and abstraction of best practices through management patterns.

WP4: Testbed and evaluation environment

WP4 aims to consolidate the items from the previous work packages and allow the evaluation of the proposed solutions on real test environments. Two cycles of testing and evaluation are planned. The first cycle will be performed in a controlled environment (UFRGS) and the second one will consist of deploying and testing the prototype on the CEEE-D infrastructure. We will evaluate specific points belonging to electrical substations that can be eventually replicated in the testbed. The testbed may also include a sensor-based monitoring network in order to collect uncorrupted data. WP4 is explicitly dependent of the first three WPs. Finally, an integrated test plan will be defined and the whole infrastructure will be evaluated. The WP main tasks are:

• Task 4.1: Development of an integrated infrastructure for security and resilience.
• Task 4.2: Test plan formulation.
• Task 4.3: Experimentation and analysis.

WP5: Coordination and dissemination

The tasks belonging to the WP5 will be executed in parallel to the other work packages. WP5 will receive information from the other WPs to identify and determine needed modifications in the project. In addition to the preparation and modification of written reports and research papers, another envisioned activity of this WP is related to the creation and maintaining of a Web portal that will be used to publish project documents and scientific results, and allow interaction with partner companies. The main tasks of this WP are:

• Task 5.1: Report submission and periodic planning meetings.
• Task 5.2: Scientific paper submission to refereed journals and conferences.
• Task 5.3: Creation and maintaining of a Web portal to promote the project.

Regarding knowledge dissemination, the project will target refereed journals in the fields of network management, Smart Grids, and control systems, including: Elsevier Computer Networks, Springer Journal of Network and Systems Management, Wiley International Journal of Network Management, IEEE Transactions on Network and Service Management, IEEE Communications Magazine, IEEE Networks, IEEE Transactions on Smart Grid, IEEE Control Systems Magazine, IEEE Transactions on Power Systems, and IEEE Transactions on Automatic Control. Besides, the project will also target the following conferences and workshops: IEEE/IFIP Network Operations and Management Symposium (NOMS), International Conference on Network and Service Management (CNSM), International Conference on Autonomous Infrastructure, Management and Security (AIMS), IEEE International Symposium on Policies for Distributed Systems and Networks (POLICY), IFIP/IEEE International Symposium on Integrated Network Management (IM), IEEE International Conference on Smart Grid Communications (SmartGridComm), IEEE PES Innovative Smart Grid Technologies (ISGT) Europe, Brazilian Symposium on Computer Networks and Distributed Systems (SBRC), International Symposium on Computer Architecture and High Performance Computing (SBAC- PAD), Brazilian Symposium on Information and Computing Systems Security (SBSeg), ACM/IEEE CPS Week, and ACM International Conference on High Confidence Networked Systems (HiCoNS).