Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids
<p dir="ltr">Smart grids (SGs), a cornerstone of modern power systems, facilitate efficient management and distribution of electricity. Despite their advantages, increased connectivity and reliance on communication networks expand their susceptibility to cyber threats. Machine learni...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | , , , |
| Published: |
2023
|
| Subjects: | |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1864513527031529472 |
|---|---|
| author | Hadir Teryak (17986978) |
| author2 | Abdullatif Albaseer (16904607) Mohamed Abdallah (3073191) Saif Al-Kuwari (16904610) Marwa Qaraqe (10135172) |
| author2_role | author author author author |
| author_facet | Hadir Teryak (17986978) Abdullatif Albaseer (16904607) Mohamed Abdallah (3073191) Saif Al-Kuwari (16904610) Marwa Qaraqe (10135172) |
| author_role | author |
| dc.creator.none.fl_str_mv | Hadir Teryak (17986978) Abdullatif Albaseer (16904607) Mohamed Abdallah (3073191) Saif Al-Kuwari (16904610) Marwa Qaraqe (10135172) |
| dc.date.none.fl_str_mv | 2023-11-23T09:00:00Z |
| dc.identifier.none.fl_str_mv | 10.1109/ojies.2023.3336234 |
| dc.relation.none.fl_str_mv | https://figshare.com/articles/journal_contribution/Double-Edged_Defense_Thwarting_Cyber_Attacks_and_Adversarial_Machine_Learning_in_IEC_60870-5-104_Smart_Grids/25243360 |
| dc.rights.none.fl_str_mv | CC BY 4.0 info:eu-repo/semantics/openAccess |
| dc.subject.none.fl_str_mv | Engineering Control engineering, mechatronics and robotics Electrical engineering Electronics, sensors and digital hardware Manufacturing engineering IEC Standards Security Protocols Cyberattack Support vector machines Data models Resilience Adversarial machine learning Deep learning Intrusion detection Machine learning Smart grids IEC 60870-5-104 protocol |
| dc.title.none.fl_str_mv | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| dc.type.none.fl_str_mv | Text Journal contribution info:eu-repo/semantics/publishedVersion text contribution to journal |
| description | <p dir="ltr">Smart grids (SGs), a cornerstone of modern power systems, facilitate efficient management and distribution of electricity. Despite their advantages, increased connectivity and reliance on communication networks expand their susceptibility to cyber threats. Machine learning (ML) can radically transform cyber security in SGs and secure protocols as in IEC 60870 standard, an international standard for electric power system communication. Notwithstanding, cyber adversaries are now exploiting ML-based intrusion detection systems (IDS) using adversarial ML attacks, potentially undermining SG security. This article addresses cyber attacks on the communication network of SGs, specifically targeting the IEC 60870-5-104 protocol. We introduce a novel ML-based IDS framework for the IEC 60870-5-104 protocol. Specifically, we employ an artificial neural network (ANN) to analyze a new and realistically representative dataset of IEC 60870-5-104 traffic data, unlike previous research that relies on simulated or unrelated data. This approach assists in identifying anomalies indicative of cyber attacks more accurately. Furthermore, we evaluate the resilience of our ANN model against adversarial attacks, including the fast gradient sign method, projected gradient descent, and Carlini and Wagner attacks. Our results demonstrate that the proposed framework can accurately detect cyber attacks and remains robust to adversarial attacks. This offers efficient and resilient IDS capabilities to detect and mitigate cyber attacks in real-world ML-based adversarial environments.</p><h2>Other Information</h2><p dir="ltr">Published in: IEEE Open Journal of the Industrial Electronics Society<br>License: <a href="https://creativecommons.org/licenses/by/4.0/" target="_blank">https://creativecommons.org/licenses/by/4.0/</a><br>See article on publisher's website: <a href="https://dx.doi.org/10.1109/ojies.2023.3336234" target="_blank">https://dx.doi.org/10.1109/ojies.2023.3336234</a></p> |
| eu_rights_str_mv | openAccess |
| id | Manara2_cd6d116d4cbd284ea5a7fcd4255af40b |
| identifier_str_mv | 10.1109/ojies.2023.3336234 |
| network_acronym_str | Manara2 |
| network_name_str | Manara2 |
| oai_identifier_str | oai:figshare.com:article/25243360 |
| publishDate | 2023 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| rights_invalid_str_mv | CC BY 4.0 |
| spelling | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart GridsHadir Teryak (17986978)Abdullatif Albaseer (16904607)Mohamed Abdallah (3073191)Saif Al-Kuwari (16904610)Marwa Qaraqe (10135172)EngineeringControl engineering, mechatronics and roboticsElectrical engineeringElectronics, sensors and digital hardwareManufacturing engineeringIEC StandardsSecurityProtocolsCyberattackSupport vector machinesData modelsResilienceAdversarial machine learningDeep learningIntrusion detectionMachine learningSmart gridsIEC 60870-5-104 protocol<p dir="ltr">Smart grids (SGs), a cornerstone of modern power systems, facilitate efficient management and distribution of electricity. Despite their advantages, increased connectivity and reliance on communication networks expand their susceptibility to cyber threats. Machine learning (ML) can radically transform cyber security in SGs and secure protocols as in IEC 60870 standard, an international standard for electric power system communication. Notwithstanding, cyber adversaries are now exploiting ML-based intrusion detection systems (IDS) using adversarial ML attacks, potentially undermining SG security. This article addresses cyber attacks on the communication network of SGs, specifically targeting the IEC 60870-5-104 protocol. We introduce a novel ML-based IDS framework for the IEC 60870-5-104 protocol. Specifically, we employ an artificial neural network (ANN) to analyze a new and realistically representative dataset of IEC 60870-5-104 traffic data, unlike previous research that relies on simulated or unrelated data. This approach assists in identifying anomalies indicative of cyber attacks more accurately. Furthermore, we evaluate the resilience of our ANN model against adversarial attacks, including the fast gradient sign method, projected gradient descent, and Carlini and Wagner attacks. Our results demonstrate that the proposed framework can accurately detect cyber attacks and remains robust to adversarial attacks. This offers efficient and resilient IDS capabilities to detect and mitigate cyber attacks in real-world ML-based adversarial environments.</p><h2>Other Information</h2><p dir="ltr">Published in: IEEE Open Journal of the Industrial Electronics Society<br>License: <a href="https://creativecommons.org/licenses/by/4.0/" target="_blank">https://creativecommons.org/licenses/by/4.0/</a><br>See article on publisher's website: <a href="https://dx.doi.org/10.1109/ojies.2023.3336234" target="_blank">https://dx.doi.org/10.1109/ojies.2023.3336234</a></p>2023-11-23T09:00:00ZTextJournal contributioninfo:eu-repo/semantics/publishedVersiontextcontribution to journal10.1109/ojies.2023.3336234https://figshare.com/articles/journal_contribution/Double-Edged_Defense_Thwarting_Cyber_Attacks_and_Adversarial_Machine_Learning_in_IEC_60870-5-104_Smart_Grids/25243360CC BY 4.0info:eu-repo/semantics/openAccessoai:figshare.com:article/252433602023-11-23T09:00:00Z |
| spellingShingle | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids Hadir Teryak (17986978) Engineering Control engineering, mechatronics and robotics Electrical engineering Electronics, sensors and digital hardware Manufacturing engineering IEC Standards Security Protocols Cyberattack Support vector machines Data models Resilience Adversarial machine learning Deep learning Intrusion detection Machine learning Smart grids IEC 60870-5-104 protocol |
| status_str | publishedVersion |
| title | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| title_full | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| title_fullStr | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| title_full_unstemmed | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| title_short | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| title_sort | Double-Edged Defense: Thwarting Cyber Attacks and Adversarial Machine Learning in IEC 60870-5-104 Smart Grids |
| topic | Engineering Control engineering, mechatronics and robotics Electrical engineering Electronics, sensors and digital hardware Manufacturing engineering IEC Standards Security Protocols Cyberattack Support vector machines Data models Resilience Adversarial machine learning Deep learning Intrusion detection Machine learning Smart grids IEC 60870-5-104 protocol |