Detecting stealthy false data injection attacks in the smart grid using ensemble-based machine learning

Abstract Stealthy false data injection attacks target state estimation in energy management systems in smart power grids to adversely affect operations of the power transmission systems. This paper presents a data-driven machine learning based scheme to detect stealthy false data injection attacks on state estimation. The scheme employs ensemble learning, where multiple classifiers are used and decisions by individual classifiers are further classified. Two ensembles are used in this scheme, one uses supervised classifiers while the other uses unsupervised classifiers. The scheme is validated using simulated data on the standard IEEE 14-bus system. Experimental results show that the performance of both supervised individual and ensemble models are comparable. However, for unsupervised models, the ensembles performed better than the individual classifiers.

[1]  Beibei Li,et al.  Distributed host-based collaborative detection for false data injection attacks in smart grid cyber-physical system , 2017, J. Parallel Distributed Comput..

[2]  Can Yang,et al.  False Data Injection Attacks Detection in Power System Using Machine Learning Method , 2018 .

[3]  Song Liu,et al.  Statistical outlier detection for diagnosis of cyber attacks in power state estimation , 2016, 2016 IEEE Power and Energy Society General Meeting (PESGM).

[4]  Gabriela Hug,et al.  Vulnerability Assessment of AC State Estimation With Respect to False Data Injection Cyber-Attacks , 2012, IEEE Transactions on Smart Grid.

[5]  Corinna Cortes,et al.  Support-Vector Networks , 1995, Machine Learning.

[6]  Bernhard Schölkopf,et al.  Support Vector Method for Novelty Detection , 1999, NIPS.

[7]  Song Tan,et al.  Survey of Security Advances in Smart Grid: A Data Driven Approach , 2017, IEEE Communications Surveys & Tutorials.

[8]  Yang Weng,et al.  Ensuring cybersecurity of smart grid against data integrity attacks under concept drift , 2020, International Journal of Electrical Power & Energy Systems.

[9]  Rong Zheng,et al.  Detecting Stealthy False Data Injection Using Machine Learning in Smart Grid , 2017, IEEE Syst. J..

[10]  Shehroz S. Khan,et al.  A Survey of Recent Trends in One Class Classification , 2009, AICS.

[11]  Eric Byres The air gap: SCADA's enduring security myth , 2013, CACM.

[12]  Guy Lapalme,et al.  A systematic analysis of performance measures for classification tasks , 2009, Inf. Process. Manag..

[13]  Zhao Yang Dong,et al.  The 2015 Ukraine Blackout: Implications for False Data Injection Attacks , 2017, IEEE Transactions on Power Systems.

[14]  Jinping Hao,et al.  Sparse Malicious False Data Injection Attacks and Defense Mechanisms in Smart Grids , 2015, IEEE Transactions on Industrial Informatics.

[15]  Insoo Koo,et al.  Unsupervised Machine Learning-Based Detection of Covert Data Integrity Assault in Smart Grid Networks Utilizing Isolation Forest , 2019, IEEE Transactions on Information Forensics and Security.

[16]  Jürgen Schmidhuber,et al.  Deep learning in neural networks: An overview , 2014, Neural Networks.

[17]  P. Rousseeuw,et al.  A fast algorithm for the minimum covariance determinant estimator , 1999 .

[18]  SchmidhuberJürgen Deep learning in neural networks , 2015 .

[19]  Siu-Ming Yiu,et al.  Detecting Time Synchronization Attacks in Cyber-Physical Systems with Machine Learning Techniques , 2017, 2017 IEEE 37th International Conference on Distributed Computing Systems (ICDCS).

[20]  Jian Fu,et al.  A Novel Data Analytical Approach for False Data Injection Cyber-Physical Attack Mitigation in Smart Grids , 2017, IEEE Access.

[21]  Gaël Varoquaux,et al.  Scikit-learn: Machine Learning in Python , 2011, J. Mach. Learn. Res..

[22]  Peng Ning,et al.  False data injection attacks against state estimation in electric power grids , 2011, TSEC.

[23]  Chong Li,et al.  Online Cyber-Attack Detection in Smart Grid: A Reinforcement Learning Approach , 2018, IEEE Transactions on Smart Grid.

[24]  Insoo Koo,et al.  Feature Selection–Based Detection of Covert Cyber Deception Assaults in Smart Grid Communications Networks Using Machine Learning , 2018, IEEE Access.

[25]  Yitao Liu,et al.  Deep Learning-Based Interval State Estimation of AC Smart Grids Against Sparse Cyber Attacks , 2018, IEEE Transactions on Industrial Informatics.

[26]  Thomas G. Dietterich Multiple Classifier Systems , 2000, Lecture Notes in Computer Science.

[27]  M. Debruyne,et al.  Minimum covariance determinant , 2010 .

[28]  George Cybenko,et al.  Security Analytics and Measurements , 2012, IEEE Security & Privacy.

[29]  Insoo Koo,et al.  Covert Cyber Assault Detection in Smart Grid Networks Utilizing Feature Selection and Euclidean Distance-Based Machine Learning , 2018 .

[30]  R D Zimmerman,et al.  MATPOWER: Steady-State Operations, Planning, and Analysis Tools for Power Systems Research and Education , 2011, IEEE Transactions on Power Systems.

[31]  Brian K. Johnson,et al.  Diagnosis of Outliers and Cyber Attacks in Dynamic PMU-Based Power State Estimation , 2020, IEEE Transactions on Power Systems.

[32]  Kim-Kwang Raymond Choo,et al.  An Ensemble Intrusion Detection Technique Based on Proposed Statistical Flow Features for Protecting Network Traffic of Internet of Things , 2019, IEEE Internet of Things Journal.

[33]  Gustavo E. A. P. A. Batista,et al.  A study of the behavior of several methods for balancing machine learning training data , 2004, SKDD.

[34]  A. G. Expósito,et al.  Power system state estimation : theory and implementation , 2004 .

[35]  Yong Zhang,et al.  Detection of power grid disturbances and cyber-attacks based on machine learning , 2019, J. Inf. Secur. Appl..

[36]  H. Vincent Poor,et al.  Machine Learning Methods for Attack Detection in the Smart Grid , 2015, IEEE Transactions on Neural Networks and Learning Systems.

[37]  Adnan M. Abu-Mahfouz,et al.  Real Time Security Assessment of the Power System Using a Hybrid Support Vector Machine and Multilayer Perceptron Neural Network Algorithms , 2019, Sustainability.

[38]  Bruno Sinopoli,et al.  Integrity Data Attacks in Power Market Operations , 2011, IEEE Transactions on Smart Grid.

[39]  Michel Verleysen,et al.  The Curse of Dimensionality in Data Mining and Time Series Prediction , 2005, IWANN.

[40]  Sajjan G. Shiva,et al.  A Holistic Approach for Detecting DDoS Attacks by Using Ensemble Unsupervised Machine Learning , 2020, Advances in Intelligent Systems and Computing.

[41]  Jinyan Li,et al.  Prediction of Taxi Destinations Using a Novel Data Embedding Method and Ensemble Learning , 2020, IEEE Transactions on Intelligent Transportation Systems.

[42]  Lingfeng Wang,et al.  Coordinated attacks on electric power systems in a cyber-physical environment , 2017 .

[43]  Xiangyu Niu,et al.  Dynamic Detection of False Data Injection Attack in Smart Grid using Deep Learning , 2018, 2019 IEEE Power & Energy Society Innovative Smart Grid Technologies Conference (ISGT).

[44]  Nikunj C. Oza,et al.  Online Ensemble Learning , 2000, AAAI/IAAI.

[45]  Lang Tong,et al.  Malicious Data Attacks on the Smart Grid , 2011, IEEE Transactions on Smart Grid.

[46]  Jin Wei,et al.  Real-Time Detection of False Data Injection Attacks in Smart Grid: A Deep Learning-Based Intelligent Mechanism , 2017, IEEE Transactions on Smart Grid.

[47]  Saeed Ahmed,et al.  Extremely Randomized Trees-Based Scheme for Stealthy Cyber-Attack Detection in Smart Grid Networks , 2020, IEEE Access.

[48]  Farzad R. Salmasi,et al.  Detection of false data injection attacks against state estimation in smart grids based on a mixture Gaussian distribution learning method , 2017, IET Cyper-Phys. Syst.: Theory & Appl..

[49]  Amr M. Youssef,et al.  Detection of false data injection attacks in smart grids using Recurrent Neural Networks , 2018, 2018 IEEE Power & Energy Society Innovative Smart Grid Technologies Conference (ISGT).

[50]  Fei Tony Liu,et al.  Isolation-Based Anomaly Detection , 2012, TKDD.

[51]  Hans-Peter Kriegel,et al.  LOF: identifying density-based local outliers , 2000, SIGMOD 2000.

[52]  Zuyi Li,et al.  False data attack models, impact analyses and defense strategies in the electricity grid , 2017 .

[53]  Frederick T. Sheldon,et al.  Detecting Stealthy False Data Injection Attacks in Power Grids Using Deep Learning , 2018, 2018 14th International Wireless Communications & Mobile Computing Conference (IWCMC).

[54]  Mehul Motani,et al.  Detecting False Data Injection Attacks in AC State Estimation , 2015, IEEE Transactions on Smart Grid.