This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited.

1. Introduction

The depletion of fossil fuel resources, adverse environmental impacts, and the inefficiency of traditional power grids have precipitated numerous challenges in the domain of power distribution. The adoption of microgrids and distributed generators (DGs) has emerged as a viable solution to address these issues.

The principal parameters governing microgrid control encompass frequency, voltage, and active and reactive power of DGs. Microgrids can operate in two modes: grid-connected and islanded modes. In the MG island mode, the controller must equalize the frequency and voltage of all DGs. In general, they should be equal to the slack output. Consequently, the production of all DGs must be adjusted and synchronized [1].

The control of DGs is typically accomplished through three methods [2]:

I. Centralized control.

Centralized control entails the utilization of a centralized controller, where the output of all DGs is conveyed to a central controller. The centralized controller is integrated. This controller requires a communication channel; however, since it does not compare with neighboring outputs, it is not suitable for synchronization.

In decentralized control, each DG is equipped with an independent controller that operates autonomously without relying on neighboring DG information or requiring communication links. In this controller, synchronization remains an issue.

Distributed controllers, on the other hand, control each DG individually but utilize information from adjacent DGs. Consequently, communication links are imperative for synchronization and stabilization. Thus, communication networks play a crucial role in facilitating the exchange of information among neighboring DGs. The distributed method uses the information of neighboring agents. Hence, it is more suitable for synchronization and stabilization than other controllers, thus finding widespread application in microgrid control [2–4].

In the centralized and distributed controller, communication links are required for control. However, the utilization of communication links poses various challenges, including disruption, loss, uncertainty, noise, time delay, and susceptibility to cyber-attacks.

In this study, we employ a cooperative hierarchical distributed controller. This controller performs control in three primary, secondary, and tertiary layers. The tertiary layer determines the reference of the secondary layer. Also, the secondary layer refers to the primary layer [5, 6]. Reference [4] has provided complete explanations about the types of microgrid stability methods.

In recent studies [7], researchers have investigated the challenges posed by communication links in secondary controller communication and explored the effects of delay in hierarchical distributed controllers. Additionally, event-triggered methods in hierarchical controllers have been proposed to minimize data transmission [8, 9].

These disturbances disrupt the regulation and equalization of the output voltage and frequency. Consequently, numerous studies have been conducted in recent years to examine the effects of cyber-attacks on microgrids. Cyber-attacks exploit sensor output transmission and actuator output, with various attack methodologies targeting sensor output transmission channels for sabotage [10]. The literature extensively discusses communication channel issues and cyber-attacks on microgrids [11–14]. In [15], FDI attacks are considered from the perspective of multiagent systems. In [16, 17], cyber-attacks on sensors and actuators in multiagent systems are discussed. In [18], the secure control for T-S fuzzy systems under stealthy attacks is investigated, and a novel adaptive attack controller is studied. In [19], the stability effects of DoS, stealth, and deception attacks on the system are analyzed.

In [20, 21], the effect of Denial of Service (DoS) attacks on a hierarchical controller is investigated using the consensus method for the microgrid. In [22, 23], researchers study the cyber-attack stability problems of secondary controlled microgrids under DoS attacks. In [24], the attack effect of the sensor and actuator is involved in the microgrid equations, and the error effect is controlled using a $H_{\infty }$ robust control method. In [25], the data loss between the microgrid and the main grid is addressed. The error identification is discussed in [26, 27]. An adaptive resilience controller was designed in [28] to mitigate DoS and FDI cyber-attacks in a DC microgrid. Reference [29] addresses the simultaneous effects of two cyber-attacks on the microgrid by designing a suitable controller, with experimental results demonstrating efficacy.

Furthermore [14] investigates the effects of data loss and delay in microgrids, while [20] considers DoS cyber-attacks in the context of time delays. Reference [30] employs a decentralized controller from a multiagent systems perspective to counter the impact of DoS attacks in microgrids, while [31] discusses sensor attacks, hijacking attacks, and DoS attacks on secondary controllers, albeit with limited analysis of their stability and coordination. Reference [32] examines the effect of DoS cyber-attacks on microgrids, focusing on frequency using the secondary controller, with voltage remaining unexplored. In [3], microgrids are characterized as cyber-physical systems (CPS), with the effects of two types of cyber-attacks on the secondary controller investigated. Resilient control against cyber-attacks on communication links is proposed in [11, 33], albeit without studying sensor attacks. Reference [34] proposes quantum communication to enhance cybersecurity in distributed microgrid control, while [35] suggests adaptive controllers to mitigate the effects of errors and FDI attacks. Reference [36] analyzes the cyber-attack of false data injection on secondary frequency controllers. Finally, [37] introduces a robust controller for frequency synchronization of islanded microgrids against FDI attacks, though voltage and active power control are not explored. References [38, 39] discuss the hijacking attack, but stabilization and synchronization have not been studied.

Various disturbances in the communication channel can disrupt microgrid operations, potentially leading to instability and desynchronization. Fading, electromagnetic interference, noise, delay, uncertainty, and cyber-attacks are among the phenomena that can impact communication channels. This article delves into the ramifications of cyber-attacks on these channels.

In recent research, extensive investigations have been conducted into system stability, robustness, flexibility, and coordination. However, synchronous investigation of communication links and sensor attacks remains unexplored. Cyber-attacks on microgrids have primarily focused on attack detection and outcomes, with stability and synchronization considerations often overlooked. Communication channel disturbances have the potential to induce microgrid instability and disrupt synchronization. Thus, system resilience against cyber-attacks warrants investigation, evaluation, and comparison, with a view to enhancing system stability and synchronization.

This paper comprehensively analyzes various cyber-attacks on hierarchical controllers in microgrids from a multiagent systems perspective, treating DGs as agents interconnected via communication links delineated by an adjacency matrix. The study also examines cyber-attacks on sensors and communication links, followed by an analysis of system stabilization and synchronization. The microgrid equations are scrutinized during attacks, with stability assessments conducted. Synchronization and stabilization conditions in the presence of attacks are derived, with the overarching goal of designing a controller resilient to diverse cyber-attacks. Additionally, the study investigates the impact of different cyber-attacks on cooperative distributed hierarchical controllers, with resilience indices (RI) computed to compare the resilience of different cyber-attacks on the distributed cooperative hierarchical controller.

The innovations of this study can be summarized as follows:

1. Presentation of a novel robust controller for reference-based cooperative hierarchical control, showcasing the adverse effects of cyber-attacks on communication links between DGs in island mode. Modeling and formulation of cyber-attacks (DoS attacks, sensor attacks, and data hijacking) within the DG model are proposed. To our knowledge, cyber-attack modeling for cooperative hierarchical secondary controllers is presented for the first time.

The most important advantage of the designed controller is to provide convenient coordination and low calculations. Despite time delays, cyber-attacks, and errors, coordination and stability are maintained.

The remainder of this paper is organized as follows: Sections 2 delve into the DG system model and designing a distributed hierarchical cooperative controller, respectively. Section 3 explores the Lemmas, Assumptions, and Definitions, while Section 4 examines cyber-attacks on such controllers. Section 5 discusses system stability and synchronization, followed by simulations in Section 6. Finally, Section 7 concludes the paper.

2. Large-Signal Dynamical and Control

We have used a fully nonlinear model including various parts such as distributed sources, the main power grid, internal controllers (power controller, voltage controller, and current controller), communication channels, filters, and loads [5].$$\begin{array}{}\text{(1)}& \begin{array}{c}{\dot{x}}_i=f_i{x}_i+k_i{x}_i{D}_i+g_i{x}_i{u}_i,\\ y_i=h_i{x}_i,\\ x_i={\delta }_i{P}_i{Q}_i{\varphi }_{\text{di}}{\varphi }_{\text{qi}}{\gamma }_{\text{di}}{\gamma }_{\text{qi}}{i}_{\text{ldi}}{i}_{\text{lqi}}{v}_{\text{odi}}{v}_{\text{oqi}}{i}_{\text{odi}}{i}_{\text{oqi}},\\ D_i={{\omega }_{\text{com}}{v}_{\text{bdi}}{v}_{\text{bqi}}}^T,\end{array}\end{array}$$where $x_i$ and $u_i$ are the state and control vectors, respectively. ${\delta }_i$ is the angle of the reference frame about the ordinary frame, $P_i$ and $Q_i$ are the instantaneous active and reactive power after passing through the low-pass filter (LPF), respectively. ${\varphi }_{\text{dq}}$ and ${\gamma }_{\text{di}}$ are the auxiliary variables in the voltage and current controller. $i_{\text{odq}}$, $v_{\text{odq}}$, and $i_{\text{ldq}}$ are the DG current and voltage, and load current, respectively [6]. References [40, 41] as fully explained about the model.

2.1. Designing a Distributed Hierarchical Cooperative Controller

A cooperative distributed hierarchical controller consists of two main controllers: the primary controller and the secondary controller [2]. The secondary controller is for yaw reduction, and the primary controller is for stability. The general depiction of the DG and controller is illustrated in Figure 1. According to Figure 1, $V_n^{\mathrm{\ast }}$ and ${\omega }_n^{\mathrm{\ast }}$ should be reset by the secondary controller to minimize deviation in the input of the primary controller.

[figure(s) omitted; refer to PDF]

The control objectives are twofold: stabilization and synchronization. In the stable mode, equations (2)–(5) must be satisfied. In equations (2)–(5), frequency and voltage conditions hold paramount significance. In the equations below, $P_{i}t$, $Q_{i}t$, $V_{\text{odi}}t$, ${\omega }_{\text{odi}}t$, $V_{\text{ref}}$, and ${\omega }_{\text{ref}}$ active and reactive output power, voltage, and frequency are output and reference, respectively.$$\begin{array}{}\text{(2)}& V_{\text{odi}}t=V_{\text{ref}},i=1,2,3,\dots ,n,\text{(3)}& {\omega }_{\text{odi}}t={\omega }_{\text{ref}},i=1,2,3,\dots ,n,\text{(4)}& \frac{P_{i}t}{P_{i,\max }}=\frac{P_{j}t}{P_{j,\max }},i=1,2,3,\dots ,n,\text{(5)}& \frac{Q_{i}t}{Q_{i,\max }}=\frac{Q_{j}t}{Q_{j,\max }},i=1,2,3,\dots ,n.\end{array}$$

2.2. Primary Controller

The primary controller offers a key advantage by implementing droop control, which inherently mitigates the risk of external interference. However, a notable drawback of droop control is the deviation of output values from the reference point. To address this issue, the secondary controller comes into play. The primary controller encompasses current, voltage, and power controllers, as illustrated in Figures 2 and 3. In specific references, the primary controller is conceptualized as the internal controller of the DG.

[figure(s) omitted; refer to PDF]

2.2.1. Calculation of Instantaneous and Average Power

In the power controller shown in Figure 2, first, the instantaneous power is obtained from (6) by using the outputs of DGs and bypassing this power through a LPF with Equation (7), and the average power is calculated as ${P_i{Q}_i}^T$ [6]. $\tilde{p}$ and $\tilde{q}$ are active and reactive momentary power. ${\omega }_c$ is the LPF cutoff frequency.$$\begin{array}{c}\text{(6)}& \begin{array}{c}{\tilde{p}}_i=v_{\text{odi}}{i}_{\text{odi}}+v_{\text{oqi}}{i}_{\text{oqi}},\\ {\tilde{q}}_i=v_{\text{oqi}}{i}_{\text{odi}}-v_{\text{odi}}{i}_{\text{oqi}},\end{array}\text{(7)}& P_i=\frac{{\omega }_c}{S+{\omega }_c}\tilde{p},Q_i=\frac{{\omega }_c}{S+{\omega }_c}\tilde{q}.\end{array}$$

2.2.2. Droop Controller

The main formula of the primary controller is as follows [5, 6]:$$\begin{array}{}\text{(8)}& \begin{array}{c}{v}_{\text{oi}}^{\mathrm{\ast }}=V_{\text{ni}}^{\mathrm{\ast }}-n_{\text{qi}}{Q}_i,\\ {\omega }_{\text{oi}}^{\mathrm{\ast }}={\omega }_{\text{ni}}^{\mathrm{\ast }}-m_{\text{pi}}{P}_i.\end{array}\end{array}$$

Upon transitioning the voltage frame to the d-q axis, Equation (8) is reformulated as follows.$$\begin{array}{c}\text{(9)}& v_{\text{odi}}^{\mathrm{\ast }}=V_{\text{ni}}^{\mathrm{\ast }}-n_{\text{qi}}{Q}_i,v_{\text{oqi}}^{\mathrm{\ast }}=0.\end{array}$$

Then, based on Equation (8), the power controller output is computed. The $v_{oi}^{\mathrm{\ast }}$ and ${\omega }_{oi}^{\mathrm{\ast }}$ are subsequently fed into the voltage controller and the virtual synchronous converter (VSC), respectively. In this equation, $n_{\text{qi}}$, $m_{\text{pi}}$, $V_{\text{ni}}^{\mathrm{\ast }}$, and ${\omega }_{\text{ni}}^{\mathrm{\ast }}$ represent the droop coefficients and reference values of the primary controller.

The primary voltage and current controllers, depicted in Figure 3, are implemented as proportional–integral (PI) controllers. The output of the voltage controller serves as the input to the current controller.

2.3. Secondary Controller

The secondary controller within the microgrid is illustrated in Figure 4. The output of the secondary controller ${V_{\text{ni}}^{\mathrm{\ast }}{\omega }_{\text{ni}}^{\mathrm{\ast }}}^T$ and DGi output ${V_{\text{oi}}{\omega }_{\text{oi}}}^T$ serve as inputs to the primary controller. The reference in the secondary controller is determined by the average voltage and frequency output or a consensus mechanism. The controller design employs the feedback linearization method.

[figure(s) omitted; refer to PDF]

The main goal in designing this controller is to apply the appropriate control input ${V_{\text{ni}}^{\mathrm{\ast }}{\omega }_{\text{ni}}^{\mathrm{\ast }}}^T$ to the primary controller to stabilize and synchronize the system and eliminate its deviation.

2.3.1. Using Feedback Linearization to Calculate the Appropriate Control Input

By employing feedback linearization, Equation (10) is derived from equations (8) and (9), [6].$$\begin{array}{}\text{(10)}& \begin{array}{c}{\dot{v}}_{odi}^{\mathrm{\ast }}={\dot{V}}_{ni}^{\mathrm{\ast }}-n_{qi}{\dot{Q}}_i=u_{vi},\\ {\dot{\omega }}_{oi}^{\mathrm{\ast }}={\dot{\omega }}_{ni}^{\mathrm{\ast }}-m_{pi}{\dot{P}}_i=u_{\omega i}.\end{array}\end{array}$$

Feedback linearization facilitates the calculation of auxiliary control input [23], as expressed in Equation (11).$$\begin{array}{}\text{(11)}& \begin{array}{c}{u}_{\text{vi}}=-C_v{e}_{\text{voi}}t,\\ u_{\omega i}=-C_{\omega }{e}_{\mathrm{\omega }\text{oi}}t,\\ u_{pi}=m_{\text{pi}}{\dot{P}}_i=-C_P{e}_{\text{Poi}}t.\end{array}\end{array}$$

In Equation (11), $e_{\text{voi}}t$, $e_{\mathrm{\omega }\text{oi}}t$, and $e_{\text{Poi}}t$ denote synchronization errors, while $C_v$, $C_{\omega }$, and $C_P$ represent voltage, frequency, and power control gains, respectively. $u_{vi}$, $u_{\mathrm{\omega }\mathrm{i}}$, and $u_{\text{pi}}$ are auxiliary voltage, frequency, and power control inputs.

The tracking error in multiagent systems is defined by the following equation [6].$$\begin{array}{}\text{(12)}& \begin{array}{c}{e}_{\mathrm{v}{\mathrm{o}}_{\mathrm{i}}}=\sum a_{ij}{v_0}_{i}t-v_{0j}t+g_i{v_0}_{i}t-v_{\text{ref}},\\ e_{\mathrm{\omega }\text{oi}}={\displaystyle \sum }_{j\epsilon n_j}{a}_{ij}{\omega }_{oi}t-{\omega }_{oj}t+g_i{\omega }_{oi}t-{\omega }_{\text{ref}},\\ e_{\text{Poi}}=\sum a_{ij}{m}_{P_i}{P}_i-m_{Pj}{P}_j.\end{array}\end{array}$$

In Equation (12) $P_i,{v_0}_{i}t,{\omega }_{\text{oi}}t$ and $P_j,{v_0}_{j}t,{\omega }_{\text{oj}}t$ are the average output power, frequency, and voltage of DGi and DGj. ${\omega }_{\text{ref}}$ and $v_{\text{ref}}$ are the angular frequency and voltage of the slack, respectively. $a_{ij}$ shows the telecommunication connection of different agents to each other. $g_i$ indicates the telecommunication connection of various agents to the reference. When DGi receives information from the reference, $g_i=1$; otherwise, $g_i=0$. $e_{\mathrm{v}{\mathrm{o}}_{\mathrm{i}}}$, $e_{\mathrm{\omega }\text{oi}}$, and $e_{\text{Poi}}$ the neighborhood error is voltage, frequency, and active power. Using the feedback linearization method, the voltage and frequency control inputs are obtained as shown in the following equation.$$\begin{array}{}\text{(13)}& \begin{array}{c}{V}_{\text{ni}}^{\mathrm{\ast }}=\int u_{\text{vi}}+n_{\text{qi}}{\dot{Q}}_{i}dt,\\ {\omega }_{\text{ni}}^{\mathrm{\ast }}=\int u_{\mathrm{\omega }\mathrm{i}}+u_{\text{Pi}}dt.\end{array}\end{array}$$

In Equation (13), the ${\dot{Q}}_i$ is defined as follows:$$\begin{array}{}\text{(14)}& {\dot{Q}}_i=-{\omega }_c{Q}_i+{\omega }_c{v}_{\text{oqi}}{i}_{\text{odi}}-v_{\text{odi}}{i}_{\mathrm{o}{\mathrm{q}}_{\mathrm{i}}}=-{\omega }_c{Q}_i+{\omega }_c\dot{\tilde{q},}\end{array}$$where ${\dot{Q}}_i$ is related to the internal information of the DG and thus remains unaffected by external disturbances. $\tilde{q}$ represents the instantaneous reactive power, ${\omega }_c$ is the LPF cutoff frequency, $v_o,i_o$ denote the output voltage and current of DG [6, 40]. To elucidate the control method, the control process is delineated in Figure 5.

[figure(s) omitted; refer to PDF]

3. The Lemmas, Assumptions, and Definitions

3.1. Graph Theory

Communication channels serve as conduits for transferring data among DGs. This study delves into graph theory within the framework of multiagent systems to scrutinize DG communication channels, treating DGs as discrete entities analogous to agents. The assessment of communication channels is conducted utilizing an adjacency matrix.

Reynolds’ laws are instrumental in the analysis of multiagent systems, presenting the following tenets:

I. Absence of incidence with neighbors

These principles are applicable to the analysis of DGs within the paradigm of multiagent systems. Reynold’s laws underscore the significance of cooperative dynamics among agents in accomplishing predefined objectives. Multiagent systems exhibit augmented performance, bolstering system compatibility and stability. Moreover, they showcase heightened resilience and efficacy in mitigating errors and combatting cyber-attacks [46, 47].

Errors in multiagent systems manifest across three primary categories:

1. Actuator errors stemming from diminished actuator efficiency.

The communication graph in graph theory is represented as $Gv,\epsilon ,A$, where $A_G\subset R\times R$ is the set of nodes or DGs. $VG=v_1,v_2,\dots ,v_N$ and $EG\subset VG\times VG$ are nodes or DGs, and communication links, respectively. $v_i,v_j$ indicates that there is a communication link from node i to j.

The entries $a_{ij}$ of this matrix are the weight of the paths of the graph. If graph i gives information to graph j$a_{ij}=1$, otherwise $a_{ij}=0$. Additionally, the matrices $\Delta$ and Laplacian $L$ are defined as follows [48]:$$\begin{array}{c}\text{(15)}& D=\text{diag}{\Delta }_i,{\Delta }_i={\displaystyle \sum }_{v_j=N_i}{a}_{ij},\\ L=D-A_G,\end{array}$$where ${\Delta }_i$ denotes the number of edges entering the node [16].

According to Reynold’s third law, synchronization is achieved by two methodologies or determining the central focal point. The first method entails computing a consensus, considering the center as the average of all outputs and denoted by $y^{\mathrm{\ast }}t$. The second method involves reference-based determination, signified by $y_{\text{ref}}$.$$\begin{array}{c}\text{(17)}& \underset{t⟶\infty }{\lim }{y}_{i}t-y^{\mathrm{\ast }}t=0,i=1,2,3,\dots ,n,\underset{t⟶\infty }{\lim }{y}_{i}t-y_{\text{ref}}=0,i=1,2,3,\dots ,n.\end{array}$$

In Equation (17), $y^{\mathrm{\ast }}t=1/n{\sum }_{i=1}^n{y}_{i}t$ is the average value of system outputs [45, 49].

3.2. RI

Resilience is a critical parameter that emphasizes a system’s ability to withstand disruptions, showcasing its resistance to disturbances. In contrast, reliability gauges the performance of a power system in the face of various events, highlighting its robustness against extreme circumstances and susceptibility to vulnerabilities [50].

The degree of resilience spans from zero to infinity, where complete resilience signifies imperviousness to severe disruptions, rendering them inconsequential. Conversely, a resilience value of zero indicates system instability following any disturbance. Resilience ensures the continuity of electricity supply during significant disturbances while maintaining stability. A higher resilience coefficient signifies a diminished impact of disturbances on the system [51].

Defining resilience within the context of a power system lacks a universal definition. However, it generally encompasses the system’s capacity to recover from disruptions stemming from extreme events swiftly. System resilience is quantified based on its performance loss, with various methodologies available for performance assessment. Previous studies have delineated the loss of performance and its typologies [51].

In this study, resilience indicators are employed to probe the ramifications of cyber-attacks on the secondary controller. The assessment and comparison of cyber-attack impacts are evaluated utilizing this coefficient.

Definition of RI: The RI is defined as follows [51]:$$\begin{array}{}\text{(18)}& \text{RI\hspace{0.17em}}\text{Resilience\hspace{0.17em}Indices}=\frac{1}{\text{Loss}}\text{Loss}=\frac{1}{t_2-t_1}{\int }_{t_1}^{t_2}\frac{y_0-yt}{yt}dt,\end{array}$$where $y_0$ and $yt$ denote the initial and output values, respectively. $t_1$ and $t_2$ indicate the beginning and end of the measurement interval, respectively. The RI scrutinizes the impact of the attack on the agent.

In the proposed controller, the RI for output voltage and frequency is delineated as follows:$$\begin{array}{c}\text{(19)}& \text{Loss}\mathrm{v}\text{oltage}=\frac{1}{t_2-t_1}{\int }_{t_1}^{t_2}\frac{V_{\text{ref}}-v_{\text{odi}}t}{v_{\text{odi}}t}dt,\text{Loss}\text{frequency}=\frac{1}{t_2-t_1}{\int }_{t_1}^{t_2}\frac{{\omega }_{\text{ref}}-{\omega }_{\text{oi}}t}{{\omega }_{\text{oi}}t}dt.\end{array}$$

3.3. Assumptions and Lemma

The subsequent definitions and lemmas are imperative for the thorough investigation of this study.

$Q=D+GA+A^{T}D+G$ is a positive definite matrix ($D+G$ is a positive definite matrix) [53].

4. Cyber-Attacks on the Cooperative Distributed Hierarchical Controller

Given that the microgrid operates as a CPS, it is susceptible to cyber-attacks. Security concerns are discussed within three fundamental domains: confidentiality, integrity, and availability. Depending on the nature of the attack, one or more of these domains may be compromised.

The general categories of cyber-attacks encompass:

1. Deception attack

Assuming $\overline{y}$ represents the measured output, and y signifies the output received.

In a DoS attack, the communication channel is obstructed, impeding information flow to the output. It can be modeled as (21).$$\begin{array}{}\text{(21)}& \overline{y}\epsilon 0.\end{array}$$

A reply attack involves the substitution of current output with previous outputs, denoted as (22). $Y$ Saved outputs are past.$$\begin{array}{}\text{(22)}& \overline{y}\subset Y.\end{array}$$

Deception attacks entail the injection of false information into the transmitted output, represented mathematically as $y^a$. Sensor attacks and hijacking are subcategories falling under this overarching category [54].$$\begin{array}{}\text{(23)}& \overline{y}=y+y^a.\end{array}$$

The figure illustrating the DGs and controllers with cyber-attacks is presented in Figure 4.

4.1. Sensor and Actuator Attacks in the Secondary Controller

In this attack, the wrong data amount is injected from the output of the sensors to the communication link. The difference between noise and sensor cyber-attacks is that the magnitude of cyber-attacks is much greater than the noise. In many cases, there are many similarities between a cyber-attack and a sensor fault. The main difference is that the cyber-attack enters the communication link, but the error is added to the sensor output [55].

In the hierarchical controller, a sensor attack occurs between the sensors of the secondary controllers, and an actuator attack occurs between the primary and secondary controllers. The sensor and actuator cyber-attacks cause the voltage and frequency information of a DG to reach the wrong neighboring DG and may cause system instability.

4.1.1. Mathematical Model of Sensory and Actuator Attack

Cyber-attack on actuators and sensors is modeled as follows:$$\begin{array}{}\text{(24)}& u_i^c=u_i+{\alpha }_i{u}_i^a{y}_i^s=y_i+{\beta }_i{y}_i^a,\end{array}$$where $u_i^c$ and $y_i^s$ are control signals and disrupted states due to actuator and sensor attacks, respectively. $u_i$ and $y_i$ are the control signal and the actual state, respectively. $u_i^a$ and $y_i^a$ are the actuator and sensor attack signals, respectively. If ${\alpha }_i,{\beta }_i=0$, there is no attack.

The effect of this attack on the secondary controller using formulas (12)–(14) is as follows.

4.1.2. Voltage Controller With the Presence Sensor and Actuator Attacks

Equation (12) in multiagent systems can be rewritten as (19) in the voltage controller considering the sensor and actuator cyber-attack.$$\begin{array}{c}\text{(25)}& u_{\text{vi}}^s=-C_v{e}_{\text{vi}}^s=-C_v\sum a_{ij}{v}_{\text{oi}}^s-v_{\text{oj}}^s+g_i{v}_{\text{oi}}^s-v_{\text{ref}},u_{\text{vi}}^c=u_{\text{vi}}^s+{\alpha }_i{u}_{\text{vi}}^a=-C_v\sum a_{ij}{v}_{\text{oi}}-v_{\text{oj}}+g_i{v}_{\text{oi}}-v_{\text{ref}}-C_v\sum a_{ij}{\beta }_i{v}_{\text{oi}}^a-{\beta }_j{v}_{\text{oj}}^a+g_i{\beta }_i{v}_{\text{oi}}^a+{\alpha }_i{u}_{\text{vi}}^a.\end{array}$$

Therefore, the input signal of the primary controller is equal:$$\begin{array}{}\text{(26)}& V_{\text{ni}}^{\mathrm{\ast }}=\int u_{\text{vi}}^c+n_{\text{Qi}}{\dot{Q}}_{i}dt=\int u_{\text{vi}}\pm C_v\sum a_{ij}{\beta }_i{v}_{\text{oi}}^a-{\beta }_j{v}_{\text{oj}}^a+g_i{\beta }_i{v}_{\text{oi}}^a+{\alpha }_i{u}_{\text{vi}}^a+n_{\text{Qi}}{\dot{Q}}_{i}dt.\end{array}$$

4.1.3. Frequency Controller With the Presence Sensor and Actuator Attacks

The same equation can be obtained for the frequency controller of Equation (13) in the presence of the sensor attack.$$\begin{array}{}\text{(27)}& {\omega }_{\text{ni}}^{\mathrm{\ast }}=\int u_{\mathrm{\omega }\mathrm{i}}^c+m_P\dot{P}dt=\int u_{\mathrm{\omega }\mathrm{i}}^c+u_{\text{Pi}}^{c}dt.\end{array}$$

If the attack on the actuator and sensor occurs at the frequency and active power, it is written as$$\begin{array}{}\text{(28)}& u_{\text{Pi}}^c=u_{\text{Pi}}^s+{\alpha }_i^{″}{u}_{\text{Pi}}^a,u_{\mathrm{\omega }\mathrm{i}}^c=u_{\mathrm{\omega }\mathrm{i}}^s+{\alpha }_i^{\prime }{u}_{\mathrm{\omega }\mathrm{i}}^a{P}_i^s=P_i+{\beta }_i^{″}{P}_i^a,{\omega }_{\text{oi}}^s={\omega }_{oi}+{\beta }_i^{\prime }{\omega }_{\text{oi}}^a,\end{array}$$where $u_{\mathrm{\omega }\mathrm{i}}^c$, $u_{\mathrm{\omega }\mathrm{i}}^s$, and $u_{\mathrm{\omega }\mathrm{i}}^a$ are the disturbed frequency control signal, the control signal with the sensor attack, and the actuator attack signal, respectively. These parameters are the same for frequency and power. The control signal for the sensor attack is as follows:$$\begin{array}{}\text{(29)}& u_{{\omega }_i}^c=u_{{\omega }_i}^s+{\alpha }_i^{\prime }{u}_{{\omega }_i}^a=u_{{\omega }_i}-C_{\omega }\sum a_{ij}{\beta }_i^{\prime }{\omega }_{oi}^a-{\beta }_j^{\prime }{\omega }_{oj}^a+g_i{\beta }_i^{\prime }{\omega }_{oi}^a+{\alpha }_i^{\prime }{u}_{{\omega }_i}^a{u}_{P_i}^c=u_{P_i}^s+{\alpha }_i^{″}{u}_{P_i}^a=u_{P_i}-C_P\sum a_{ij}{m}_{P_i}{\beta }_i^{″}{P}_i^a-m_{P_j}{\beta }_j^{″}{P}_j^a.\end{array}$$

In the event of an attack, the variable ${\alpha }^{\prime },{\alpha }^{″},{\beta }^{\prime },{\beta }_i^{″}$ is assigned a value of 1. Conversely, if there is no attack, ${\alpha }^{\prime },{\alpha }^{″},{\beta }^{\prime },{\beta }_i^{″}$ is set to 0.

Finally, the frequency control signal is as follows:$$\begin{array}{}\text{(30)}& {\omega }_{n_i}^{\mathrm{\ast }}=\int u_{{\omega }_i}^c+u_{p_i}^{c}dt=\int u_{{\omega }_i}-C_{\omega }\sum a_{ij}{\beta }_i^{\prime }{\omega }_{oi}^a-{\beta }_j^{\prime }{\omega }_{oj}^a+g_i{\beta }_i^{\prime }{\omega }_{oi}^a+{\alpha }_i^{\prime }{u}_{{\omega }_i}^a+u_{p_i}-C_P\sum a_{ij}{m}_{P_i}{\beta }_i^{″}{P}_i^a-m_{P_j}{\beta }_j^{″}{P}_j^{a}dt.\end{array}$$

4.2. Hijacking Attacks in the Secondary Controller

In hijacking attacks, the system output is first removed. Then, it is replaced by the attacker with a value that is the same as the original output value.

4.2.1. Mathematical Model of Hijacking Attacks

Equation (31) shows the mathematical model of hijacking attacks.$$\begin{array}{}\text{(31)}& y^{c}t=1-{\rm H}yt+{\rm H}{y}^{a}t.\end{array}$$

If ${\rm H}=0$, the attack has not happened, and if ${\rm H}=1$, a cyber-attack has occurred in the communication network. In (31), $y^{c}t,yt,y^{a}t$ is the damaged, nonattack, and attack output, respectively [38].

According to (31), the output voltage, power, and angular frequency with the hijacking attack are equal to the following equations.$$\begin{array}{}\text{(32)}& \begin{array}{c}{v}_{\text{oj}}^{c}t=1-{\rm H}{v}_{\text{oj}}t+{\rm H}{v}_{\text{oj}}^{a}t,\\ {\omega }_{\text{oj}}^{c}t=1-{\rm H}{\omega }_{\text{oj}}t+{\rm H}{\omega }_{\text{oj}}^{a}t,\\ P_{\text{oj}}^{c}t=1-{\rm H}{P}_{\text{oj}}t+{\rm H}{P}_{\text{oj}}^{a}t.\end{array}\end{array}$$

4.2.2. Voltage Controller With the Presence of Hijacking Attacks

The voltage and frequency disturbance control signals, as per Equation (32), are generated. Subsequently, equations (32) and (11) are utilized to calculate the error, control input of the DG control, represented as follows.$$\begin{array}{c}\text{(33)}& u_{vi}^c=-C_v{e}_{voi}^c=-C_v\sum a_{ij}{v}_{oi}-v_{oj}^c+g_i{v}_{oi}-v_{ref},u_{\text{vi}}^c=-C_v\sum a_{ij}{v}_{oi}-v_{oj}+g_i{v}_{oi}-v_{\text{ref}}+a_{ij}\alpha v_{\text{oj}}-v_{\text{oj}}^a{u}_{vi}^c=-C_v{e}_{\text{vo}}+e_{\text{vo}}^a,\end{array}$$$u_{\text{vi}}^c$ represents the control input perturbed by the cyber-attack, where $e_o,e_o^a$ denotes typical errors and attack errors, respectively. The control signal in the presence of a cyber-attack is then derived as shown as follows.$$\begin{array}{}\text{(34)}& V_{\text{ni}}^{\mathrm{\ast }}=\int u_{vi}^c+n_{\text{Qi}}{\dot{Q}}_{i}dt.\end{array}$$

4.2.3. Frequency Controller With the Presence of Hijacking Attacks

For formulating the frequency controller, Equation (35) is obtained using equations (11), (12), and (32).$$\begin{array}{}\text{(35)}& u_{\mathrm{\omega }\mathrm{i}}^c=-C_{\omega }{e}_{\mathrm{\omega }\text{oi}}^c=C_{\omega }\sum a_{ij}{\omega }_{\text{oi}}-{\omega }_{\text{oj}}^c+g_i{\omega }_{oi}-{\omega }_{\text{ref}}=-C_{\omega }\sum a_{ij}{\omega }_{oi}-{\omega }_{\text{oj}}+g_i{\omega }_{\text{oi}}-{\omega }_{\text{ref}}+a_{ij}\alpha {\omega }_{\text{oj}}-{\omega }_{\text{oj}}^a{u}_{\mathrm{\omega }\mathrm{i}}^c=-C_{\omega }{e}_{\mathrm{\omega }\mathrm{o}}+e_{\mathrm{\omega }\mathrm{o}}^a.\end{array}$$

Additionally, the power control signal input can be computed as depicted in the following equation.$$\begin{array}{}\text{(36)}& u_{Pi}^c=-C_P\sum a_{ij}{m}_{\text{Pi}}{P}_{\text{oi}}-m_{\text{Pj}}{P}_{oj}^a=-C_P\sum a_{ij}{m}_{\text{Pi}}{P}_{\text{oi}}-m_{\text{Pj}}{P}_{\text{oj}}+a_{ij}\mathrm{{\rm H}}{\mathrm{m}}_{\text{Pj}}{P}_{oj}-P_{\text{oj}}^a{u}_{Pi}^c=-C_P{e}_{\text{Po}}+e_{\text{Po}}^a.\end{array}$$

Subsequent to the aforementioned calculations, the angular frequency control input signal is determined according to the following equation.$$\begin{array}{}\text{(37)}& {\omega }_{ni}^{\mathrm{\ast }}=\int u_{\omega i}^c+u_{Pi}^{c}dt.\end{array}$$

4.3. DoS Attacks in the Secondary Controller

In the DoS method, the attacker endeavors to sever the communication channel by obstructing data transmission, leading to information loss [56]. These attacks result in communication system disruptions, where hijacking and sensor attacks compromise measured values, communication links, or actuator values. The DoS attack, specifically, interrupts agent communication [57, 58].

4.3.1. Mathematical Model of DoS Attacks

During a DoS attack, the duration and period of the attack are denoted by ${\psi }_s^{ij}=t_s^{ij},t_s^{ij}+{\tau }_s^{ij}$ and ${\tau }_0$, respectively Here, $t_s^{ij}$ represents the start time of the sth attack within the timeframe between two DGs, DGi and DGj. Consequently, the total duration of attacks (${\Xi }_D^{ij}$) is expressed as shown in the following equation.$$\begin{array}{}\text{(38)}& {\Xi }_D^{ij}{t}_1,t_2=\bigcup _{s=1}^{\infty }{\psi }_s^{ij}\cap t_1,t_2.\end{array}$$

At the onset of the attack, the adjacency matrix undergoes changes as illustrated in the following equation, which are time-dependent.$$\begin{array}{}\text{(39)}& a_{ij}=\begin{array}{cc}0,& t\in {\Xi }_D^{ij}{t}_1,t_2,\\ a_{ij},& \text{otherwise}.\end{array}\end{array}$$

The DoS attack in this study disrupts communication links, infiltrating links between agents. This interference may sever communication links, isolating several nodes or rendering a node unavailable. The node values during a DoS cyber-attack are presented in the following equation.$$\begin{array}{}\text{(40)}& \begin{array}{c}{y}_i^{c}t={\Delta }_i^{x}t{x}_{i}t,\\ u_i^{c}t={\Delta }_i^{u}t{u}_{i}t.\end{array}\end{array}$$

Diagonal matrices ${\Delta }_i^{x}t,{\Delta }_i^{c}t$ signify DoS attack occurrences on states and control inputs, respectively. The values $y_i^{c}t$ and $u_i^{c}t$ denote state and input values of the controller under attack, respectively. ${\Delta }_i^{x}t,{\Delta }_i^{u}t=1$ if the DoS attack occurs, and ${\Delta }_i^{x}t,{\Delta }_i^{u}t=0$ otherwise. Based on this notion, control inputs and sensor values in the presence of a DoS cyber-attack are derived as follows:$$\begin{array}{c}\text{(41)}& \begin{array}{c}{u}_{\text{vi}}^c={\Delta }_{iv}^{u}t{u}_{\text{vi}},\\ u_{\mathrm{\omega }\mathrm{i}}^c={\Delta }_{i\omega }^{u}t{u}_{\mathrm{\omega }\mathrm{i}}\\ u_{\text{Pi}}^c={\Delta }_{iP}^u{u}_{\text{Pi}},\end{array},\begin{array}{c}{\omega }_{\text{oj}}^c={\Delta }_{j\omega }^x{\omega }_{\text{oj}}t,\\ v_{\text{oj}}^c={\Delta }_{jv}^{x}t{v}_{\text{oj}}t,\\ P_j^c={\Delta }_{jP}^x{P}_j,\end{array}\end{array}$$${\Delta }_{jv}^{x}t,{\Delta }_{i\omega }^{x}t,{\Delta }_{jP}^{x}t$ are DoS attack coefficients on the voltage, frequency, and active power sensors, while ${\Delta }_{iP}^{u}t,{\Delta }_{i\omega }^{u}t,{\Delta }_{iv}^{u}t$ are attack coefficients on frequency, voltage, and active power control signals, respectively.

4.3.2. Voltage and Frequency Controllers With the Presence of DoS Attacks

By substituting Equation (41) into equations (11) and (12), the control input is obtained as depicted as follows.$$\begin{array}{}\text{(42)}& \begin{array}{c}{u}_{\text{vi}}^c={\Delta }_{iv}^{u}t{u}_{\text{vi}}=-{\Delta }_{iv}^{u}t{C}_v\sum a_{ij}{v}_{oi}-v_{oj}^c+g_i{v}_{\text{oi}}-v_{\text{ref}},\\ u_{\mathrm{\omega }\mathrm{i}}^c={\Delta }_{i\omega }^{u}t{u}_{\mathrm{\omega }\mathrm{i}}=-{\Delta }_{i\omega }^u{C}_{\omega }\sum a_{ij}{\omega }_{oi}-{\omega }_{oj}^c+g_i{\omega }_{\text{oi}}-{\omega }_{\text{ref}},\\ u_{Pi}^c={\Delta }_{iP}^u{u}_{\text{Pi}}=-{\Delta }_{iP}^u{C}_P\sum a_{ij}{m}_{\text{pi}}{P}_i-m_{\text{pj}}{P}_j^c.\end{array}\end{array}$$

Subsequently, the voltage control signal is determined by substituting it into Equation (13) as illustrated in the following equation.$$\begin{array}{}\text{(43)}& V_{\text{ni}}^{\mathrm{\ast }}=\int -{\Delta }_{iv}^u{C}_v{a}_{ij}{v}_{oi}-{\Delta }_{jv}^x{v}_{\text{oj}}^c+g_i{v}_{\text{oi}}-v_{\text{ref}}+n_{Q_i}{\dot{Q}}_i.\end{array}$$

Likewise, the frequency controller is adjusted during the cyber-attack, represented below in the following equation.$$\begin{array}{}\text{(44)}& {\omega }_{\text{ni}}^{\mathrm{\ast }}=\int u_{\mathrm{\omega }\mathrm{i}}^c+u_{\text{Pi}}^{c}dt.\end{array}$$

By incorporating the values from Equation (42) into Equation (44), the control input is determined as shown in the following equation.$$\begin{array}{}\text{(45)}& {\omega }_{ni}^{\mathrm{\ast }}=\int -{\Delta }_{i\omega }^u{C}_{\omega }{a}_{ij}{\omega }_{oi}-{\Delta }_{j\omega }^x{\omega }_{oj}^c+g_i{\omega }_{\text{oi}}-{\omega }_{\text{ref}}-{\Delta }_{iP}^u{C}_P{a}_{ij}{m}_{Pi}{P}_i-m_{\text{Pj}}{\Delta }_{\text{jP}}^x{P}_{j}dt.\end{array}$$

This study accounts for DoS attacks on sensors (${\Delta }_{i\omega }^u={\Delta }_{iP}^u={\Delta }_{iv}^u=1$).

5. Stability Analysis

The proof of stability concerning the communication link and the agent is conducted separately. This article operates under the assumption of limited and unknown errors, considering a continuous tree. Furthermore, the interconnection among different DGs remains constant in accordance with the adjacency matrix. Here, $e_{voi}$ and $\delta$ are defined as the error and conflict vectors of the system, as expressed in the following equation.$$\begin{array}{c}\text{(46)}& e_{\text{voi}}=L+G{v}_{\text{odi}}-v_{\text{ref}},\delta =v_{\text{od}}-v_{\text{ref}}.\end{array}$$

The control input signal, influenced by cyber-attacks and taking into account the error signal, is derived as shown in the following equation.$$\begin{array}{}\text{(47)}& u_v^c=-C_v{e}_{\text{vo}}^c=-C_{v}L+G{v}_{\text{odi}}^c-v_{\text{ref}}=-C_{v}M{v}_{\text{odi}}^c-v_{\text{ref}},M=L+G.\end{array}$$

In Equation (47), $u_v^c,e_{\text{vo}}^c,v_{\text{odi}}^c$ represent the control input, error signal, and voltage output with cyber-attack. Assuming a DoS attack occurs in the communication channel, the control signal in the presence of a cyber-attack is obtained as depicted in Equation (48). In this context, ${\Delta }_{iv}^{u}t,{\Delta }_{\mathrm{i}\mathrm{\omega }}^{u}t,{\Delta }_{\text{iP}}^{u}t=1$ implies that a cyber-attack is considered in secondary control for sensors, while no cyber-attack occurs in the actuators. By utilizing equations (11) and (12), the following relationships are established:$$\begin{array}{}\text{(48)}& u_{\text{vi}}^c=-C_v{e}_{\text{voi}}^c{e}_{\text{voi}}^c=\sum a_{ij}{v_0}_{i}t-v_{0j}^{c}t+g_i{v_0}_{i}t-v_{\text{ref}}.\end{array}$$

The theories and lemmas presented herein are employed to validate the stability and coordination of the microgrid. Further elucidation of Lemmas 1 and 2, pertaining to synchronization and stabilization, is provided in [52, 53].

Despite cyber-attacks, the error is as follows.$$\begin{array}{}\text{(49)}& e_{\text{vo}}^c=e_{\text{vo}}+e_{\text{vo}}^a.\end{array}$$

In Equation (49), $e_{vo}^a$ is the error induced by the attack.

The candidate Lyapunov function is considered as follows. $V_s$ is the Lyapunov function related to system error, and $V_a$ is related to cyber-attack.$$\begin{array}{}\text{(50)}& V=V_s+V_a,V_s=\frac{1}{2}{e_{\text{vo}}}^{T}A{e}_{\text{vo}},V_a=\frac{1}{2}{e_{\text{vo}}^a}^{T}A{e}_{\text{vo}}^a.\end{array}$$

The following relations are used to prove stability.$$\begin{array}{c}\text{(51)}& \dot{V}={\dot{V}}_s+{\dot{V}}_a,{\dot{V}}_s={e_{\text{vo}}}^{T}A{\dot{e}}_{\text{vo}},{\dot{V}}_a={e_{\text{vo}}^a}^{T}A{\dot{e}}_{\text{vo}}^a,\begin{array}{c}{e}_{\text{vo}}=M\delta =M{v}_{\text{od}}-v_{\text{ref}}\\ e_{\text{vo}}^{\text{sa}}=M{\delta }^a=M{v}_{\text{od}}^a-v_{\text{ref}}\end{array}⟶\begin{array}{c}{\dot{e}}_{vo}=M\dot{\delta }=M{\dot{v}}_{\text{od}}=M-C_v{e}_{\text{vo}},\\ {\dot{e}}_{vo}^a=M{\dot{\delta }}^a=M{\dot{v}}_{\text{od}}^a=M-C_v{e}_{\text{vo}}^a.\end{array}\end{array}$$

Therefore, the derivative of the Lyapunov functions is obtained.$$\begin{array}{}\text{(52)}& {\dot{V}}_s=-C_v{e_{\text{vo}}}^T\text{AM}{e}_{\text{vo}}{\dot{V}}_a=-C_v{e_{\text{vo}}^a}^T\text{AM}{e}_{\text{vo}}^a,\end{array}$$where $X=AM$. Any square matrix is obtained from the sum of two matrices.$$\begin{array}{}\text{(53)}& X=\frac{1}{2}X+X^T+\frac{1}{2}X-X^T.\end{array}$$

In this formula, we have $e_{vo}X-X^T/2e_{\text{vo}}=0$ and $e_{\text{vo}}^{\text{sa}}X-X^T/2e_{\text{vo}}^{\text{sa}}=0$. Therefore, we have the following:$$\begin{array}{}\text{(54)}& \dot{V}=-\frac{C_v}{2}{e}_{\text{vo}}^{T}X+X^T{e}_{\text{vo}}-\frac{C_v}{2}{e_{\text{vo}}^a}^{T}X+X^T{e}_{\text{vo}}^a.\end{array}$$

According to Lemma 2, $Q=X+X^T$ is positive definite, so:$$\begin{array}{}\text{(55)}& \dot{V}=-\frac{C_v}{2}{e}_{\text{vo}}^{T}Q{e}_{vo}-\frac{C_v}{2}{e_{\text{vo}}^a}^{T}Q{e}_{\text{vo}}^a<0,\end{array}$$$\dot{V}$ is negative definite. Therefore, despite a cyber-attack, stability is maintained.

To prove synchronization, we need to demonstrate that the steady-state error tends to 0 despite this controller (i.e., ${\lim }_{t⟶\infty }{e}^c⟶0$). By considering Lemma 1, asymptotic stability is achieved, and synchronization is attained. According to the results, the system is globally coordinated. Also, the larger the $C_v$ value, the faster the synchronization. Therefore, with the correct selection $C_v$, this controller is accomplished.

With the above proof, if the tree is connected, stability is maintained despite cyber-attacks. Additionally, as a multifunctional system, the voltage and frequency of all DGs should converge to the same value.

6. Case Studies

The presented content is validated through case studies. A case study model incorporating communication links is outlined in [44]. Furthermore, the model parameters are described, with the reference voltage set at 380 volts and the frequency at 50 Hz (${\omega }_{\text{ref}}=2\pi f_{\text{ref}}$). Additionally, the secondary layer factors are $C_P=C_{\omega }=C_v=50$. DGs are interconnected via power and communication links. Various cyber-attacks’ effects on the secondary controller are evaluated using MATLAB simulations.

6.1. Scenario 1: Effect of Secondary Controller on Synchronization

The performance of the secondary and primary controllers of the system is examined in the absence of disturbances. Controllers are designed to enhance the flexibility, reliability, and performance of the microgrid in both grid-connected and islanded modes. In islanded microgrids, different controllers are commonly employed for power sharing. It is imperative to maintain constant frequency and voltage in island mode. Using only the primary controller results in a sharp voltage drop, disrupting synchronization, and causing frequency and voltage deviations. Consequently, minimizing deviations becomes necessary. Moreover, the system is sensitive to noise, disturbances, and unmodeled dynamics. While the primary controller ensures stability to a large extent, it may not adequately achieve synchronization. Thus, the secondary controller is introduced.

In steady-state operation, the frequency and voltage cannot vary significantly. Voltage may fluctuate by several volts, and the frequency by 1 Hz. While the system may withstand attacks momentarily, long-term effects are severe. Therefore, the designed controller must be robust and resilient against attacks.

Figure 6 illustrates the efficiency of the secondary and primary controllers for synchronization without cyber-attacks. As depicted, this controller effectively synchronizes the frequency and voltage output, aligning it with the reference values. Moreover, the voltage and frequency ranges with this controller remain within permissible limits. The synchronization time is also deemed appropriate in this scenario.

[figure(s) omitted; refer to PDF]

6.2. Scenario 2: Sensor Attack on DG2 and DG3

Different DG positions were assessed to investigate the effects of the attack. In this scenario, the voltage sensor of DG2 and DG3 is attacked at t = 0.5 s, followed by the frequency sensor of DG2 and DG3 at t = 1 s. and finally, the active power sensor of DG2 and DG3 at t = 1.5 s. Voltage and power sensor attacks induce 10% changes in the output, while frequency sensor attacks result in 0.08% changes in the output. The impact on other DGs is analyzed. Figure 7 shows the effects of this attack. The simulation results demonstrate that when a cyber-attack occurs on the first DG, DG2 is most affected, followed by DG3 and DG4. Additionally, sensor cyber-attacks on neighboring DGs have a greater impact. Despite the cyber-attacks, the controller effectively mitigates their effects.

[figure(s) omitted; refer to PDF]

Moreover, a cyber-attack on the voltage sensor influences the frequency value, indicating an interaction between voltage and frequency controllers. For instance, at t = 0.5 s, the voltage sensor attack causes changes in frequency, with DG2 experiencing the maximum frequency effect. Changes in the power sensor output minimally affect system performance. The resilience coefficient in the presence of this attack is detailed in Table 1.

Table 1

Examining the effect of sensor attack using resilience indices.

Despite the sensor attacks, all DGs achieve stability and synchronization. Notably, frequency variations are less than voltage variations, with maximum frequency changes of 6% while maintaining stability. The transient mode transition time is less than 0.2 s, indicating efficient performance. The system overload is tolerable, and synchronization is achieved promptly.

The value of the resilience coefficient in the presence of this attack is as follows:

6.3. Scenario 3: Hijacking Attack

This section evaluates the impact of a hijacking attack on DGs. The hijacking attack occurs in the system from t = 0.5 s to t = .6 s with replacement voltage of $v_{\text{odj}}^a=420^v$ and a frequency of ${\omega }_{oj}^a=340^{\text{rad}/\sec }$ between DG1 and DG2, also at t = 1 s to t = 1.1 s between DG3 and DG4. Notably, the replaced values cannot deviate significantly from the output value to avoid easy detection.

The simulation results depicted in Figure 8 demonstrate that disturbances in DG frequency induce changes in output voltage and vice versa. The impact of the attack on DGs depends on its location, with frequency attacks causing voltage changes and vice versa. Despite the cyber-attack, the distributed hierarchical controller effectively manages the outputs, achieving voltage and frequency synchronization in less than 0.5 s. Moreover, the secondary layer initiates synchronization after the attack concludes. Table 2 presents the RI in the presence of hijacking attacks. Following the end of the hijacking attack, the system swiftly returns to its normal state within 0.2 s. The extent of overshoot depends on the magnitude of the attack.

[figure(s) omitted; refer to PDF]

Table 2

Examining the effect of hijacking attack using resilience indices.

6.4. Scenario 4: Periodic DoS Cyber-Attack on the Communication Link Between DG1 and DG2

In this scenario, a periodic DoS attack occurs between DG1 and DG2, resulting in the loss of information reaching DG3 and DG4 during each attack. The attack parameters are defined as ${\tau }_s^{12}=0.1$, ${\Xi }_D^{ij}{t}_1,t_2=0.5$, and ${\tau }_0=0.5$.

This scenario assesses the control method’s capability to withstand continuous connection and disconnection against a severe cyber-attack. The simulation results depicted in Figure 9 illustrate the effect of DoS cyber-attacks on the voltage (a) and frequency (b) of DGs between the DG1 and DG2 communication channels. During each attack, DG3 and DG4 are disconnected from the slack bus, resulting in outputs deviating from the reference. However, after the attacks conclude, it takes 0.4 s for all sources to recover their output values.

[figure(s) omitted; refer to PDF]

Despite the interruptions, the system performs well in dealing with this attack, with outputs restored and synchronized upon attack cessation.

When a DoS attack occurs, data loss during the attack may disrupt the stability and synchronization of a portion of the network. Disconnecting affected DGs from the network helps mitigate the problem. However, DGs closer to the attack source are more vulnerable. If a DG is disconnected from the root agent due to a DoS attack, it will be disconnected from the network. Nevertheless, if the tree remains connected, synchronization and stabilization can be maintained. Table 3 shows the RI in the presence of DoS attacks.

Table 3

Examining the effect of DoS attack using resilience indices.

Table 4 shows the peak voltage (PV) and frequency values (PF) due to various cyber-attacks. According to the cyber-attack table, DoS has a significant impact on the maximum voltage. Additionally, during the attack, the effect of kidnapping is high. If the connection to the root is disconnected, the maximum voltage value increases.

Table 4

Comparing the effect of different cyber-attacks on microgrid output.

6.5. Scenario 5: Comparing the Proposed Method With the Methods in [48, 58]

In [48, 58], the distributed secondary control of a microgrid employs active and reactive power in controllers. The control signals in these references are defined as follows:$$\begin{array}{}\text{(56)}& \begin{array}{c}{u}_{\text{vi}}=-C_v{e}_{\text{vi}}t=-C_v\sum a_{ij}{v_0}_{i}t-v_{0j}t+g_i{v_0}_{i}t-v_{\text{ref}}+\sum a_{ij}{m}_{\text{Pi}}{P}_{i}t-m_{\text{Pj}}{P}_{j}t,\\ u_{\mathrm{\omega }\mathrm{i}}t=-C_{\omega }{e}_{\mathrm{\omega }\mathrm{i}}t=-C_{\omega }{\displaystyle \sum }_{j\epsilon N_j}{a}_{ij}{\omega }_{oi}t-{\omega }_{\text{oj}}t+g_i{\omega }_{\text{oi}}t-{\omega }_{\text{ref}}+\sum a_{ij}{n}_{\text{Qi}}{Q}_{i}t-n_{\text{Qj}}{Q}_{j}t,\end{array}\text{(57)}& \begin{array}{c}{u}_{vi}^c=-C_v{e}_{\text{vi}}^{c}t=-C_v\sum a_{ij}{v_0}_{i}t-v_{oj}^{c}t+g_i{v_0}_{i}t-v_{\text{ref}}+\sum a_{ij}{m}_{Pi}{P}_{i}t-m_{Pj}{P}_j^{c}t,\\ u_{\omega i}^{c}t=-C_{\omega }{e}_{\mathrm{\omega }\mathrm{i}}^{c}t=-C_{\omega }{\displaystyle \sum }_{j\epsilon N_j}{a}_{ij}{\omega }_{oi}t-{\omega }_{oj}^{c}t+g_i{\omega }_{oi}t-{\omega }_{\text{ref}}+\sum a_{ij}{n}_{Qi}{Q}_{i}t-n_{Qj}{Q}_j^{c}t.\end{array}\end{array}$$