Domain-Adversarial Transfer Learning for Robust Intrusion Detection in the Smart Grid

The smart grid faces growing cyber-physical attack threats aimed at the critical systems and processes communicating over the complex cyber-infrastructure. Thanks to the increasing availability of high-quality data and the success of deep learning algorithms, machine learning (ML)-based detection and classification have been increasingly effective and adopted against sophisticated attacks. However, many of these techniques rely on the assumptions that the training and testing datasets share the same distribution and the same class labels in a stationary environment. As such assumptions may fail to hold when the system dynamics shift and new threat variants emerge in a non-stationary environment, the capability of trained ML models to adapt in complex operating scenarios will be critical to their deployment in real-world smart grid communications. To this aim, this paper proposes a domain-adversarial transfer learning framework for robust intrusion detection against smart grid attacks. The framework introduces domain-adversarial training to create a mapping between the labeled source domain and the unlabeled target domain so that the classifiers can learn in a new feature space against unknown threats. The proposed framework with different baseline classifiers was evaluated using a smart grid cyber-attack dataset collected over a realistic hardware-in-the- loop security testbed. The results have demonstrated effective performance improvements of trained classifiers against unseen threats of different types and locations.

[1]  Chun Wang,et al.  Advanced Cyber-Physical Attack Classification with Extreme Gradient Boosting for Smart Transmission Grids , 2019, 2019 IEEE Power & Energy Society General Meeting (PESGM).

[2]  Zhuo Lu,et al.  Deep Learning-Aided Cyber-Attack Detection in Power Transmission Systems , 2018, 2018 IEEE Power & Energy Society General Meeting (PESGM).

[3]  Anna Scaglione,et al.  A hybrid network IDS for protective digital relays in the power transmission grid , 2014, 2014 IEEE International Conference on Smart Grid Communications (SmartGridComm).

[4]  Leonidas J. Guibas,et al.  Taskonomy: Disentangling Task Transfer Learning , 2018, 2018 IEEE/CVF Conference on Computer Vision and Pattern Recognition.

[5]  Anna Scaglione,et al.  Low-Resolution Fault Localization Using Phasor Measurement Units with Community Detection , 2018, 2018 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm).

[6]  Haibo He,et al.  Cyber-physical attacks and defences in the smart grid: a survey , 2016, IET Cyper-Phys. Syst.: Theory & Appl..

[7]  Viktor K. Prasanna,et al.  Generative Adversarial Network for Synthetic Time Series Data Generation in Smart Grids , 2018, 2018 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm).

[8]  Zhigang Chu,et al.  Unobservable False Data Injection Attacks against PMUs: Feasible Conditions and Multiplicative Attacks , 2018, 2018 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm).

[9]  Allan Tucker,et al.  Intrusion Detection Using Transfer Learning in Machine Learning Classifiers Between Non-cloud and Cloud Datasets , 2018, IDEAL.

[10]  Biplab Sikdar,et al.  Securing Substations through Command Authentication Using On-the-fly Simulation of Power System Dynamics , 2018, 2018 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm).

[11]  Sachin Shetty,et al.  Feature-based transfer learning for network security , 2017, MILCOM 2017 - 2017 IEEE Military Communications Conference (MILCOM).

[12]  Jianmin Wang,et al.  Partial Transfer Learning with Selective Adversarial Networks , 2017, 2018 IEEE/CVF Conference on Computer Vision and Pattern Recognition.

[13]  Qiang Yang,et al.  A Survey on Transfer Learning , 2010, IEEE Transactions on Knowledge and Data Engineering.

[14]  Abdolreza Mirzaei,et al.  Transfer Learning Based Intrusion Detection , 2018, 2018 8th International Conference on Computer and Knowledge Engineering (ICCKE).

[15]  Bo Tang,et al.  Detection of false data attacks in smart grid with supervised learning , 2016, 2016 International Joint Conference on Neural Networks (IJCNN).

[16]  Erhan Guven,et al.  A Survey of Data Mining and Machine Learning Methods for Cyber Security Intrusion Detection , 2016, IEEE Communications Surveys & Tutorials.

[17]  Yoshua Bengio,et al.  Generative Adversarial Nets , 2014, NIPS.

[18]  Thomas H. Morris,et al.  Machine learning for power system disturbance and cyber-attack discrimination , 2014, 2014 7th International Symposium on Resilient Control Systems (ISRCS).

[19]  Boudewijn R. Haverkort,et al.  Context-aware local Intrusion Detection in SCADA systems: A testbed and two showcases , 2017, 2017 IEEE International Conference on Smart Grid Communications (SmartGridComm).

[20]  François Laviolette,et al.  Domain-Adversarial Training of Neural Networks , 2015, J. Mach. Learn. Res..

[21]  H. Vincent Poor,et al.  Machine Learning Methods for Attack Detection in the Smart Grid , 2015, IEEE Transactions on Neural Networks and Learning Systems.