A nifty collaborative intrusion detection and prevention architecture for Smart Grid ecosystems

被引:50
|
作者
Patel, Ahmed [1 ,2 ]
Alhussian, Hitham [3 ]
Pedersen, Jens Myrup [4 ]
Bounabat, Bouchaib [5 ]
Celestino Junior, Joaquim [1 ]
Katsikas, Sokratis [6 ]
机构
[1] State Univ Ceara UECE, Comp Networks & Secur Lab LARCES, Fortaleza, Ceara, Brazil
[2] Univ Kingston, Fac Sci Engn & Comp, Kingston, England
[3] Univ Teknol Petronas, Bandar Seri Iskandar 32610, Perak Darul Rid, Malaysia
[4] Aalborg Univ, Dept Elect Syst, Aalborg, Denmark
[5] Mohammed V Univ Rabat, Natl Higher Sch Comp Sci & Syst Anal ENSIAS, BP 713, Rabat, Morocco
[6] Norwegian Univ Sci & Technol, Ctr Cyber & Informat Secur, N-2802 Gjovik, Norway
关键词
Smart Grid (SG); Intrusion Detection and Prevention System (IDPS); Intelligent Collaborative Autonomic; Management; Risk assessment management; Soft computing; SCADA; SYSTEM;
D O I
10.1016/j.cose.2016.07.002
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Smart Grid (SG) systems are critical, intelligent infrastructure utility services connected through open networks that are potentially susceptible to cyber-attacks with very acute security risks of shutdown, loss of life, and loss of revenue. Traditional intrusion detection systems based on signature and anomaly techniques are no longer sufficient to protect SGs due to their new connectivity and management challenges, the ever-rapidly-evolving masquerades, and cyber criminality levied against them. SGs require cyber-security systems to render them resilient and protected through advanced Intrusion Detection and Prevention System (IDPS) techniques and mechanisms. This paper proposes a smart collaborative advanced IDPS to provide the best possible protection of SGs with a fully distributed management structure that supports the network and host based detections and the prevention of attacks. By facilitating a reliable, scalable, and flexible design, the specific requirements of IDPS for SGs can be more easily met via a fuzzy risk analyzer, an independent and ontology knowledge based inference engine module. These can work collaboratively by managing functions across multiple IDPS domains. A set of extensive and intensive simulated experiments shows that with its smart advanced components incorporating soft computing machine-learning techniques and a rich ontology knowledge base with fuzzy logic analysis, it detects and prevents intrusions more efficiently. The multi-faceted results of the simulation also show that the proposed Collaborative Smart IDPS (CSIDPS) system increases the intrusion detection accuracy and decreases the false positive alarms when compared to traditional IDPSs. This is epitomized by the skillful use of the confusion matrix technique for organizing classifiers, visualizing their performance, and assessing their overall behavior. In the final analysis, the CSIDPS architecture is designed toward contributing to de facto norms for SG ecosystems. (C) 2016 Elsevier Ltd. All rights reserved.
引用
收藏
页码:92 / 109
页数:18
相关论文
共 50 条
  • [41] A high throughput string matching architecture for intrusion detection and prevention
    Tan, L
    Sherwood, T
    [J]. 32ND INTERNATIONAL SYMPOSIUM ON COMPUTER ARCHITECTURE, PROCEEDINGS, 2005, : 112 - 122
  • [42] MELODY: SYNTHESIZED DATASETS FOR EVALUATING INTRUSION DETECTION SYSTEMS FOR THE SMART GRID
    Babu, Vignesh
    Kumar, Rakesh
    Hoang Hai Nguyen
    Nicol, David M.
    Palani, Kartik
    Reed, Elizabeth
    [J]. 2017 WINTER SIMULATION CONFERENCE (WSC), 2017, : 1061 - 1072
  • [43] DISTRIBUTED IP WATCHLIST GENERATION FOR INTRUSION DETECTION IN THE ELECTRICAL SMART GRID
    Klump, Ray
    Kwiatkowski, Matthew
    [J]. CRITICAL INFRASTRUCTURE PROTECTION IV, 2010, 342 : 113 - 126
  • [44] The Research of AMI Intrusion Detection Method using ELM in Smart Grid
    Li, Yuancheng
    Zhang, Chaochao
    Yang, Liqun
    [J]. INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2016, 10 (05): : 283 - 295
  • [45] A Distributed Intrusion Detection System for Future Smart Grid Metering Network
    Chatzimiltis, Sotiris
    Shojafar, Mohammad
    Tafazolli, Rahim
    [J]. ICC 2023-IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, 2023, : 3339 - 3344
  • [46] Federated Learning-Based Intrusion Detection Method for Smart Grid
    Bin Dongmei
    Li Xin
    Yang Chunyan
    Han Songming
    Ling Ying
    [J]. 2023 2ND ASIA CONFERENCE ON ALGORITHMS, COMPUTING AND MACHINE LEARNING, CACML 2023, 2023, : 316 - 322
  • [47] A Distributed Intrusion Detection Scheme about Communication Optimization in Smart Grid
    Li, Yunfa
    Zhou, Qili
    [J]. MATHEMATICAL PROBLEMS IN ENGINEERING, 2013, 2013
  • [48] A Behavior-based Intrusion Detection Technique for Smart Grid Infrastructure
    Kwon, YooJin
    Kim, Huy Kang
    Lim, Yong Hun
    Lim, Jong In
    [J]. 2015 IEEE EINDHOVEN POWERTECH, 2015,
  • [49] Intrusion Detection Method Based on SMOTE Transformation for Smart Grid Cybersecurity
    Massaoudi, Mohamed
    Refaat, Shady S.
    Abu-Rub, Haitham
    [J]. 3RD INTERNATIONAL CONFERENCE ON SMART GRID AND RENEWABLE ENERGY (SGRE), 2022,
  • [50] Model based Intrusion Detection System for Synchrophasor Applications in Smart Grid
    Khan, Rafiullah
    Albalushi, Abdullah
    McLaughlin, Kieran
    Laverty, David
    Sezer, Sakir
    [J]. 2017 IEEE POWER & ENERGY SOCIETY GENERAL MEETING, 2017,