Hend Alshede,Kamal Jambi,Laila Nassef,Nahed Alowidi,Etimad Fadel

DOI: https://doi.org/10.3390/s24175492

IF: 3.9

2024-08-26

Sensors

Abstract:Advanced metering infrastructures (AMIs) aim to enhance the efficiency, reliability, and stability of electrical systems while offering advanced functionality. However, an AMI collects copious volumes of data and information, making the entire system sensitive and vulnerable to malicious attacks that may cause substantial damage, such as a deficit in national security, a disturbance of public order, or significant economic harm. As a result, it is critical to guarantee a steady and dependable supply of information and electricity. Furthermore, storing massive quantities of data in one central entity leads to compromised data privacy. As such, it is imperative to engineer decentralized, federated learning (FL) solutions. In this context, the performance of participating clients has a significant impact on global performance. Moreover, FL models have the potential for a Single Point of Failure (SPoF). These limitations contribute to system failure and performance degradation. This work aims to develop a performance-based hierarchical federated learning (HFL) anomaly detection system for an AMI through (1) developing a deep learning model that detects attacks against this critical infrastructure; (2) developing a novel aggregation strategy, FedAvg-P, to enhance global performance; and (3) proposing a peer-to-peer architecture guarding against a SPoF. The proposed system was employed in experiments on the CIC-IDS2017 dataset. The experimental results demonstrate that the proposed system can be used to develop a reliable anomaly detection system for AMI networks.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Shihua Sun,Pragya Sharma,Kenechukwu Nwodo,Angelos Stavrou,Haining Wang

2024-08-14

Abstract:The rapid proliferation of Internet of Things (IoT) devices across multiple sectors has escalated serious network security concerns. This has prompted ongoing research in Machine Learning (ML)-based Intrusion Detection Systems (IDSs) for cyber-attack classification. Traditional ML models require data transmission from IoT devices to a centralized server for traffic analysis, raising severe privacy concerns. To address this issue, researchers have studied Federated Learning (FL)-based IDSs that train models across IoT devices while keeping their data localized. However, the heterogeneity of data, stemming from distinct vulnerabilities of devices and complexity of attack vectors, poses a significant challenge to the effectiveness of FL models. While current research focuses on adapting various ML models within the FL framework, they fail to effectively address the issue of attack class imbalance among devices, which significantly degrades the classification accuracy of minority attacks. To overcome this challenge, we introduce FedMADE, a novel dynamic aggregation method, which clusters devices by their traffic patterns and aggregates local models based on their contributions towards overall performance. We evaluate FedMADE against other FL algorithms designed for non-IID data and observe up to 71.07% improvement in minority attack classification accuracy. We further show that FedMADE is robust to poisoning attacks and incurs only a 4.7% (5.03 seconds) latency overhead in each communication round compared to FedAvg, without increasing the computational load of IoT devices.

Cryptography and Security,Networking and Internet Architecture

Muhammad Akbar Husnoo,Adnan Anwar,Md Enamul Haque,A. N. Mahmood

2024-07-20

Abstract:The increasing security and privacy concerns in the Smart Grid sector have led to a significant demand for robust intrusion detection systems within critical smart grid infrastructure. To address the challenges posed by privacy preservation and decentralized power system zones with distinct data ownership, Federated Learning (FL) has emerged as a promising privacy-preserving solution which facilitates collaborative training of attack detection models without necessitating the sharing of raw data. However, FL presents several implementation limitations in the power system domain due to its heavy reliance on a centralized aggregator and the risks of privacy leakage during model update transmission. To overcome these technical bottlenecks, this paper introduces a novel decentralized federated anomaly detection scheme based on two main gossip protocols namely Random Walk and Epidemic. Our findings indicate that the Random Walk protocol exhibits superior performance compared to the Epidemic protocol, highlighting its efficacy in decentralized federated learning environments. Experimental validation of the proposed framework utilizing publicly available industrial control systems datasets demonstrates superior attack detection accuracy while safeguarding data confidentiality and mitigating the impact of communication latency and stragglers. Furthermore, our approach yields a notable 35% improvement in training time compared to conventional FL, underscoring the efficacy and robustness of our decentralized learning method.

Cryptography and Security,Artificial Intelligence,Distributed, Parallel, and Cluster Computing,Machine Learning

WANG Xin,ZHOU Ze-bao,YU Yun,CHEN Yu-xu,REN Hao-wen,JIANG Yi-bo,SUN Ling-yun

DOI: https://doi.org/10.11896/jsjkx.210700195

2022-01-01

Computer Science

Abstract:Federated learning has solved the problem of data interoperability under the premise of satisfying user privacy protection and data security.However,traditional federated learning lacks an incentive mechanism to encourage and attract data owners to participate in federated learning.Meanwhile,the lack of a federated learning audit mechanism provides the possibility for malicious nodes to conduct sabotage attacks.In response to this problem,this paper proposes a reliable federated learning incentive mechanism for electric metering data based on blockchain technology.This method starts from two aspects:rewarding data parti-cipants for training participation and evaluating data reliability for all of them.We design an algorithm to evaluate the training effect of data participants.The contribution of data participants is determined from the perspective of training effect and training cost,and the participants are rewarded according to the contribution.At the same time,a reputation model is established for the reliability of the data participants,and the reputation of the data participants is updated according to the training effect,so as to achieve the reliability assessment for data participants.Based on the open-source framework of federated learning and real electric metering data,a case study is carried out,and the obtained results verify the effectiveness of our method.

Jing Wang,Zhuoqun Xia,Yaling Chen,Chang Hu,Fei Yu

DOI: https://doi.org/10.3389/fphy.2022.1102892

IF: 3.718

2022-12-23

Frontiers in Physics

Abstract:In order to alleviate the privacy issue of traditional smart grids, some researchers have proposed a power metering system based on a federated learning framework, which jointly trains the model by exchanging gradients between multiple data owners instead of raw data. However, recent research shows that the federated learning framework still has privacy and security issues. Secondly, since the server does not have direct access to all parties data sets and training process, malicious attackers may conduct poisoning attacks. This is a new security threat in federated learning - poisoning attack. However, solving the two problems at the same time seems to be contradictory because privacy protection requires the inseparability of the training gradients of all parties, and security requires the server to be able to identify the poisoned client. To solve the above issues, this paper proposes an intrusion detection method based on federated learning client-side security in AMI networks, which uses CKKS to protect model parameters. In addition, to resist the poisoning attack in federated learning, the model trained by the data processing center and the model trained by each client are firstly calculated for the direction similarity, and the similarity value is scaled as the adaptive weight of the aggregation model. Then, the size of each client model update is normalized to be the same size as the data processing center model update. Finally, the normalized updates and adaptive weights are weighted averaged to form a global model update. The research results show that the method in this paper can effectively resist inference attacks and poisoning attacks. In the AMI network, the intrusion detection method based on federated learning can maintain a good detection performance.

physics, multidisciplinary

Jichao Bi,Shibo He,Fengji Luo,Jiming Chen,Da -Wen Huang,Mingyang Sun

DOI: https://doi.org/10.1109/trustcom56396.2022.00024

2022-01-01

Abstract:Backboned by smart meter networks, Advanced Metering Infrastructures (AMIs) play a critical role in smart grids. This paper studies a new False Data Injection Attack (FDIA) scenario targeting AMIs, in which the attacker injects and propagates computer worms (i.e., false data codes) to maliciously increase the readings of networked smart meters and create economic loss to the end customers. This paper establishes the false data code propagation and attack models in such a scenario; based on this, this paper proposes a differential game model for describing the attack and defense process for FDIA against AMIs. A computationally efficient algorithm is developed to solve the proposed differential model and obtain the potential Nash equilibrium (NE) strategy pair. Extensive numerical simulations are conducted to validate the effectiveness of the proposed method under different energy tariff structures.

Mohamed I. Ibrahem,Mohamed Mahmoud,Mostafa M. Fouda,Fawaz Alsolami,Waleed Alasmary,Xuemin,Shen

DOI: https://doi.org/10.48550/arXiv.2011.03814

2020-11-08

Abstract:In advanced metering infrastructure (AMI), smart meters (SMs), which are installed at the consumer side, send fine-grained power consumption readings periodically to the electricity utility for load monitoring and energy management. Change and transmit (CAT) is an efficient approach to collect these readings, where the readings are not transmitted when there is no enough change in consumption. However, this approach causes a privacy problem that is by analyzing the transmission pattern of an SM, sensitive information on the house dwellers can be inferred. For instance, since the transmission pattern is distinguishable when dwellers are on travel, attackers may analyze the pattern to launch a presence-privacy attack (PPA) to infer whether the dwellers are absent from home. In this paper, we propose a scheme, called "STDL", for efficient collection of power consumption readings in AMI networks while preserving the consumers' privacy by sending spoofing transmissions (redundant real readings) using a deep-learning approach. We first use a clustering technique and real power consumption readings to create a dataset for transmission patterns using the CAT approach. Then, we train an attacker model using deep-learning, and our evaluations indicate that the success rate of the attacker is about 91%. Finally, we train a deep-learning-based defense model to send spoofing transmissions efficiently to thwart the PPA. Extensive evaluations are conducted, and the results indicate that our scheme can reduce the attacker's success rate, to 13.52% in case he knows the defense model and to 3.15% in case he does not know the model, while still achieving high efficiency in terms of the number of readings that should be transmitted. Our measurements indicate that the proposed scheme can reduce the number of readings that should be transmitted by about 41% compared to continuously transmitting readings.

Cryptography and Security

Md Raihan Uddin,Ratun Rahman,Dinh C. Nguyen

2024-11-07

Abstract:Smart metering networks are increasingly susceptible to cyber threats, where false data injection (FDI) appears as a critical attack. Data-driven-based machine learning (ML) methods have shown immense benefits in detecting FDI attacks via data learning and prediction abilities. Literature works have mostly focused on centralized learning and deploying FDI attack detection models at the control center, which requires data collection from local utilities like meters and transformers. However, this data sharing may raise privacy concerns due to the potential disclosure of household information like energy usage patterns. This paper proposes a new privacy-preserved FDI attack detection by developing an efficient federated learning (FL) framework in the smart meter network with edge computing. Distributed edge servers located at the network edge run an ML-based FDI attack detection model and share the trained model with the grid operator, aiming to build a strong FDI attack detection model without data sharing. Simulation results demonstrate the efficiency of our proposed FL method over the conventional method without collaboration.

Machine Learning,Artificial Intelligence,Cryptography and Security

Khalid Alnowibet,Andres Annuk,Udaya Dampage,Mohamed A. Mohamed

DOI: https://doi.org/10.3390/su132111836

IF: 3.9

2021-10-26

Sustainability

Abstract:During the last few years, attention has overwhelmingly focused on the integrated management of urban services and the demand of customers for locally-based supply. The rapid growth in developing smart measuring devices has made the underlying systems more observable and controllable. This exclusive feature has led the system designers to pursue the implementation of complex protocols to provide faster services based on data exchanges. On the other hand, the demands of consumers for locally-based supply could cause a disjunction and islanding behavior that demands to be dealt with by precise action. At first, keeping a centralization scheme was the main priority. However, the advent of distributed systems opened up new solutions. The operation of distributed systems requires the implementation of strong communication links to boost the existing infrastructure via smart control and supervision, which requires a foundation and effective investigations. Hence, necessary actions need to be taken to frustrate any disruptive penetrations into the system while simultaneously benefiting from the advantages of the proposed smart platform. This research addresses the detection of false data injection attacks (FDIA) in energy hub systems. Initially, a multi-hub system both in the presence of a microgrid (the interconnected smart energy hub-based microgrid system) and without it has been modeled for energy management in a way that allows them to cooperate toward providing energy with each other. Afterward, an FDIA is separately exerted to all three parts of the energy carrier including the thermal, water, and electric systems. In the absence of FDIA detection, the impact of FDIA is thoroughly illustrated on energy management, which considerably contributes to non-optimal operation. In the same vein, the intelligent priority selection based reinforcement learning (IPS-RL) method is proposed for FDIA detection. In order to model the uncertainty effects, the unscented transformation (UT) is applied in a stochastic framework. The results on the IEEE standard test system validate the system’s performance.

environmental sciences,environmental studies,green & sustainable science & technology

Muhammad Akbar Husnoo,Adnan Anwar,Haftu Tasew Reda,Nasser Hosseinzadeh,Shama Naz Islam,Abdun Naser Mahmood,Robin Doss

2023-04-07

Abstract:With the growing concern about the security and privacy of smart grid systems, cyberattacks on critical power grid components, such as state estimation, have proven to be one of the top-priority cyber-related issues and have received significant attention in recent years. However, cyberattack detection in smart grids now faces new challenges, including privacy preservation and decentralized power zones with strategic data owners. To address these technical bottlenecks, this paper proposes a novel Federated Learning-based privacy-preserving and communication-efficient attack detection framework, known as FedDiSC, that enables Discrimination between power System disturbances and Cyberattacks. Specifically, we first propose a Federated Learning approach to enable Supervisory Control and Data Acquisition subsystems of decentralized power grid zones to collaboratively train an attack detection model without sharing sensitive power related data. Secondly, we put forward a representation learning-based Deep Auto-Encoder network to accurately detect power system and cybersecurity anomalies. Lastly, to adapt our proposed framework to the timeliness of real-world cyberattack detection in SGs, we leverage the use of a gradient privacy-preserving quantization scheme known as DP-SIGNSGD to improve its communication efficiency. Extensive simulations of the proposed framework on publicly available Industrial Control Systems datasets demonstrate that the proposed framework can achieve superior detection accuracy while preserving the privacy of sensitive power grid related information. Furthermore, we find that the gradient quantization scheme utilized improves communication efficiency by 40% when compared to a traditional federated learning approach without gradient quantization which suggests suitability in a real-world scenario.

Cryptography and Security,Distributed, Parallel, and Cluster Computing,Machine Learning

Mohamed I. Ibrahem,Mahmoud M. Badr,Mohamed Mahmoud,Waleed Alasmary,Mostafa M. Fouda

DOI: https://doi.org/10.1109/isncc52172.2021.9615798

2021-10-31

Abstract:Reporting fine-grained power consumption readings periodically in advanced metering infrastructure (AMI) results in transmitting a massive amount of data by each smart meter (SM). To collect these readings efficiently, change and transmit (CAT) approach can be used. In CAT, the SM sends a consumption reading only when there is enough change in the consumption, which reduces the number of transmitted readings. However, using the CAT approach may trigger attackers to launch a presence-privacy attack (PPA) to infer sensitive information such as the absence of the house occupants by analyzing their SM’s transmission pattern. Therefore, in this paper, we propose a scheme, called “STID”, for collecting the power consumption readings efficiently in AMI networks while preserving the consumers’ privacy by transmitting spoofing transmissions based on an interactive deep-learning defense model. First, we create a dataset that contains the CAT transmission patterns using real power consumption readings and a clustering technique. Next, we train a deep-learning-based attacker model to launch PPA, and the results indicate that the success rate of the attacker is about 90%. Finally, to mitigate the PPA, we train a defense model using deep-learning to transmit spoofing transmissions. The evaluations of our envisioned STID scheme demonstrate a significant reduction in the attacker’s success rate while achieving high efficiency in terms of the number of readings that should be transmitted. Our measurements indicate that our proposed STID can reduce the attacker’s success rate to 6.12% and increase efficiency by about 38% compared to transmitting readings periodically.

Wei Yang,Yu Yao,Tong Zhao,Yao Shan

DOI: https://doi.org/10.1109/TII.2023.3240739

IF: 12.3

2023-10-01

IEEE Transactions on Industrial Informatics

Abstract:Honeypots have proven to be an effective defense method for industrial control systems (ICSs). However, as attacker skills become more sophisticated, it becomes increasingly difficult to develop honeypots that can effectively recognize and respond to such attacks. In this article, we propose a neural network-based ICS honeypot scheme named NeuPot that improves security from two aspects: 1) honeypot interaction; and 2) cyber threats detection capability. NeuPot can respond to attacker requests depending on a specific industrial scenario without constant communication with the ICS and detect malicious traffic. To create this honeypot scheme, a new seq2seq time-series forecast model guided by Huber loss is designed to simulate the long-term changes in actual ICS physical processes. Second, a Modbus honeypot framework is created to react to changes in these ICS physical processes in their interactions with attackers and to capture various cyber threats against the ICS. Further, a novel loss function for industrial protocol-level malicious traffic detection is devised to identify known and unknown threats. According to our experiments, the proposed honeypot scheme is highly effective and outperforms state-of-the-art schemes in terms of interactivity and in detecting cyber threats.

Computer Science,Engineering

Firdous Kausar,Sambrdhi Deo,Sajid Hussain,Zia Ul Haque

DOI: https://doi.org/10.3390/en17215337

IF: 3.2

2024-10-27

Energies

Abstract:Cyber-physical power systems (CPPS) integrate information and communication technology into conventional electric power systems to facilitate bidirectional communication of information and electric power between users and power grids. Despite its benefits, the open communication environment of CPPS is vulnerable to various security attacks. This paper proposes a federated deep learning-based architecture to detect false data injection attacks (FDIAs) in CPPS. The proposed work offers a strong, decentralized alternative with the ability to boost detection accuracy while maintaining data privacy, presenting a significant opportunity for real-world applications in the smart grid. This framework combines state-of-the-art machine learning and deep learning models, which are used in both centralized and federated learning configurations, to boost the detection of false data injection attacks in cyber-physical power systems. In particular, the research uses a multi-stage detection framework that combines several models, including classic machine learning classifiers like Random Forest and ExtraTrees Classifiers, and deep learning architectures such as Long Short-Term Memory (LSTM) and Gated Recurrent Unit (GRU). The results demonstrate that Bidirectional GRU and LSTM models with attention layers in a federated learning setup achieve superior performance, with accuracy approaching 99.8%. This approach enhances both detection accuracy and data privacy, offering a robust solution for FDIA detection in real-world smart grid applications.

energy & fuels

Zhou Su,Yuntao Wang,Tom H. Luan,Ning Zhang,Feng Li,Tao Chen,Hui Cao

DOI: https://doi.org/10.1109/tii.2021.3095506

IF: 12.3

2022-02-01

IEEE Transactions on Industrial Informatics

Abstract:With the prevalence of smart appliances, smart meters, and Internet of Things (IoT) devices in smart grids, artificial intelligence (AI) built on the rich IoT big data enables various energy data analysis applications and brings intelligent and personalized energy services for users. In conventional AI of Things (AIoT) paradigms, a wealth of individual energy data distributed across users' IoT devices needs to be migrated to a central storage (e.g., cloud or edge device) for knowledge extraction, which may impose severe privacy violation and data misuse risks. Federated learning, as an appealing privacy-preserving AI paradigm, enables energy data owners (EDOs) to cooperatively train a shared AI model without revealing the local energy data. Nevertheless, potential security and efficiency concerns still impede the deployment of federated-learning-based AIoT services in smart grids due to the low-quality shared local models, non-independently and identically distributed (non-IID) data distributions, and unpredictable communication delays. In this article, we propose a secure and efficient federated-learning-enabled AIoT scheme for private energy data sharing in smart grids with edge-cloud collaboration. Specifically, we first introduce an edge-cloud-assisted federated learning framework for communication-efficient and privacy-preserving energy data sharing of users in smart grids. Then, by considering non-IID effects, we design a local data evaluation mechanism in federated learning and formulate two optimization problems for EDOs and energy service providers. Furthermore, due to the lack of knowledge of multidimensional user private information in practical scenarios, a two-layer deep reinforcement-learning-based incentive algorithm is developed to promote EDOs' participation and high-quality model contribution. Extensive simulation results show that the proposed scheme can effectively stimulate EDOs to share high-quality local -odel updates and improve the communication efficiency.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Xuefei Yin,Yanming Zhu,Yi Xie,Jiankun Hu

DOI: https://doi.org/10.1109/OJCS.2022.3199755

2022-12-07

Abstract:Recent studies have demonstrated that smart grids are vulnerable to stealthy false data injection attacks (SFDIAs), as SFDIAs can bypass residual-based bad data detection mechanisms. The SFDIA detection has become one of the focuses of smart grid research. Methods based on deep learning technology have shown promising accuracy in the detection of SFDIAs. However, most existing methods rely on the temporal structure of a sequence of measurements but do not take account of the spatial structure between buses and transmission lines. To address this issue, we propose a spatiotemporal deep network, PowerFDNet, for the SFDIA detection in AC-model power grids. The PowerFDNet consists of two sub-architectures: spatial architecture (SA) and temporal architecture (TA). The SA is aimed at extracting representations of bus/line measurements and modeling the spatial structure based on their representations. The TA is aimed at modeling the temporal structure of a sequence of measurements. Therefore, the proposed PowerFDNet can effectively model the spatiotemporal structure of measurements. Case studies on the detection of SFDIAs on the benchmark smart grids show that the PowerFDNet achieved significant improvement compared with the state-of-the-art SFDIA detection methods. In addition, an IoT-oriented lightweight prototype of size 52 MB is implemented and tested for mobile devices, which demonstrates the potential applications on mobile devices. The trained model will be available at \textit{<a class="link-external link-https" href="https://github.com/HubYZ/PowerFDNet" rel="external noopener nofollow">this https URL</a>}.

Cryptography and Security,Artificial Intelligence,Machine Learning,Systems and Control

Tran Duc Luong,Vuong Minh Tien,Nguyen Huu Quyen,Do Thi Thu Hien,Phan The Duy,Van-Hau Pham

2023-09-20

Abstract:The significant rise of security concerns in conventional centralized learning has promoted federated learning (FL) adoption in building intelligent applications without privacy breaches. In cybersecurity, the sensitive data along with the contextual information and high-quality labeling in each enterprise organization play an essential role in constructing high-performance machine learning (ML) models for detecting cyber threats. Nonetheless, the risks coming from poisoning internal adversaries against FL systems have raised discussions about designing robust anti-poisoning frameworks. Whereas defensive mechanisms in the past were based on outlier detection, recent approaches tend to be more concerned with latent space representation. In this paper, we investigate a novel robust aggregation method for FL, namely Fed-LSAE, which takes advantage of latent space representation via the penultimate layer and Autoencoder to exclude malicious clients from the training process. The experimental results on the CIC-ToN-IoT and N-BaIoT datasets confirm the feasibility of our defensive mechanism against cutting-edge poisoning attacks for developing a robust FL-based threat detector in the context of IoT. More specifically, the FL evaluation witnesses an upward trend of approximately 98% across all metrics when integrating with our Fed-LSAE defense.

Cryptography and Security

Beibei Li,Rongxing Lu,Wei Wang,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1016/j.jpdc.2016.12.012

IF: 4.542

2017-05-01

Journal of Parallel and Distributed Computing

Abstract:False data injection (FDI) attacks are crucial security threats to smart grid cyber-physical system (CPS), and could result in cataclysmic consequences to the entire power system. However, due to the high dependence on open information networking, countering FDI attacks is challenging in smart grid CPS. Most existing solutions are based on state estimation (SE) at the highly centralized control center; thus, computationally expensive. In addition, these solutions generally do not provide a high level of security assurance, as evidenced by recent work that smart FDI attackers with knowledge of system configurations can easily circumvent conventional SE-based false data detection mechanisms. In this paper, in order to address these challenges, a novel distributed host-based collaborative detection method is proposed. Specifically, in our approach, we use a conjunctive rule based majority voting algorithm to collaboratively detect false measurement data inserted by compromised phasor measurement units (PMUs). In addition, an innovative reputation system with an adaptive reputation updating algorithm is also designed to evaluate the overall running status of PMUs, by which FDI attacks can be distinctly observed. Extensive simulation experiments are conducted with real-time measurement data obtained from the PowerWorld simulator, and the numerical results fully demonstrate the effectiveness of our proposal.

computer science, theory & methods

Muhammad Akbar Husnoo,Adnan Anwar,Haftu Tasew Reda,Nasser Hosseizadeh,Shama Naz Islam,Abdun Naser Mahmood,Robin Doss

2023-03-28

Abstract:With growing security and privacy concerns in the Smart Grid domain, intrusion detection on critical energy infrastructure has become a high priority in recent years. To remedy the challenges of privacy preservation and decentralized power zones with strategic data owners, Federated Learning (FL) has contemporarily surfaced as a viable privacy-preserving alternative which enables collaborative training of attack detection models without requiring the sharing of raw data. To address some of the technical challenges associated with conventional synchronous FL, this paper proposes FeDiSa, a novel Semi-asynchronous Federated learning framework for power system faults and cyberattack Discrimination which takes into account communication latency and stragglers. Specifically, we propose a collaborative training of deep auto-encoder by Supervisory Control and Data Acquisition sub-systems which upload their local model updates to a control centre, which then perform a semi-asynchronous model aggregation for a new global model parameters based on a buffer system and a preset cut-off time. Experiments on the proposed framework using publicly available industrial control systems datasets reveal superior attack detection accuracy whilst preserving data confidentiality and minimizing the adverse effects of communication latency and stragglers. Furthermore, we see a 35% improvement in training time, thus validating the robustness of our proposed method.

Cryptography and Security,Distributed, Parallel, and Cluster Computing,Machine Learning,Systems and Control

Beibei Li,Rongxing Lu,Gaoxi Xiao,Tao Li,Kim-Kwang Raymond Choo

DOI: https://doi.org/10.1109/tpwrs.2021.3127353

IF: 7.326

2022-07-01

IEEE Transactions on Power Systems

Abstract:The integration of phasor measurement units (PMUs) and phasor data concentrators (PDCs) in smart grids may be exploited by attackers to initiate new and sophisticated false data injection (FDI) attacks. Existing FDI attack mitigation approaches are generally less effective against sophisticated FDI attacks, such as collusive false data injection (CFDI) attacks launched by compromised PDCs (and PMUs) as we demonstrate in this paper. Thus, we propose a secure and resilience-enhanced scheme (SeCDM) to detect and mitigate such cyber threats in smart grids. Specifically, we design a decentralized homomorphic computation paradigm along with a hierarchical knowledge sharing algorithm to facilitate secure ciphertext calculation of state estimation residuals. Following this, a centralized FDI detector is implemented to detect FDI attacks. Findings from the security analysis demonstrate our approach achieves enhanced conventional FDI and CFDI attack resilience, and findings from our performance evaluations on the standard IEEE 14-, 24-, and 39-bus power systems also show that the communication overheads and computational complexity are reasonably low.

engineering, electrical & electronic