Towards feature engineering for intrusion detection in IEC-61850 communication networks

被引：2

作者：

Quincozes, Vagner E. ^{[1
]}

Quincozes, Silvio E. ^{[2
,3
]}

Passos, Diego ^{[1
,4
]}

Albuquerque, Celio ^{[1
]}

Mosse, Daniel ^{[5
]}

机构：

[1] Univ Fed Fluminense, Comp Sci Dept, Niteroi, Brazil

[2] Univ Fed Pampa, Campus Alegrete, Alegrete, Brazil

[3] Univ Uberlandia, Programa Posgrad Computacao PPGCO, Uberlandia, Brazil

[4] DEETC, Inst Super Engn Lisboa ISEL, Lisbon, Portugal

[5] Univ Pittsburgh, Comp Sci, Pittsburgh, PA 15260 USA

来源：

ANNALS OF TELECOMMUNICATIONS | 2024年 / 79卷 / 7-8期

基金：

巴西圣保罗研究基金会;

关键词：

Feature extraction; Intrusion detection systems (IDSs); Machine learning (ML); Digital substations; IEC-61850; ANOMALY DETECTION;

D O I：

10.1007/s12243-024-01011-x

中图分类号：

TN [电子技术、通信技术];

学科分类号：

0809 ;

摘要：

Digital electrical substations are fundamental in providing a reliable basis for smart grids. However, the deployment of the IEC-61850 standards for communication between intelligent electronic devices (IEDs) brings new security challenges. Intrusion detection systems (IDSs) play a vital role in ensuring the proper function of digital substations services. However, the current literature lacks efficient IDS solutions for certain classes of attacks, such as the masquerade attack. In this work, we propose the extraction and correlation of relevant multi-layer information through a feature engineering process to enable the deployment of machine learning-based IDSs in digital substations. Our results demonstrate that the proposed solution can detect attacks that are considered challenging in the literature, attaining an F1-score of up to 95.6% in the evaluated scenarios.

引用

页码：537 / 551

页数：15

共 36 条

[21] An Intrusion Detection System for IEC61850 Automated Substations [J].

Premaratne, Upeka Kanchana ;

Samarabandu, Jagath ;

Sidhu, Tarlochan S. ;

Beresh, Robert ;

Tan, Jian-Cheng .

IEEE TRANSACTIONS ON POWER DELIVERY, 2010, 25 (04) :2376-2383

[22]

Quincozes SE, 2019, 9 LATIN AM NETWORK O, P1

[23]

Quincozes SE, 2019, LANOMS

[24] An extended assessment of metaheuristics-based feature selection for intrusion detection in CPS perception layer [J].

Quincozes, Silvio E. ;

Passos, Diego ;

Albuquerque, Celio ;

Mosse, Daniel ;

Ochi, Luiz Satoru .

ANNALS OF TELECOMMUNICATIONS, 2022, 77 (7-8) :457-471

[25] A survey on intrusion detection and prevention systems in digital substations [J].

Quincozes, Silvio E. ;

Albuquerque, Celio ;

Passos, Diego ;

Mosse, Daniel .

COMPUTER NETWORKS, 2021, 184

[26]

Quincozes VE, 2023, Power system intrusion dataset

[27]

Quincozes VE, 2022, 2022 6 CYBER SECURIT, P1

[28]

Rashid MTA, 2014, I C INF TECH MULTIM, P5, DOI 10.1109/ICIMU.2014.7066594

[29] On IEC 61850 communication networks in smart grids system: Methodology of implementation and performances analysis on an experimental platform [J].

Saadi, Kaoutar ;

Abbou, Rosa .

INTERNATIONAL JOURNAL OF ENERGY RESEARCH, 2022, 46 (01) :89-103

[30]

Silva Estevao F. C., 2023, Advanced Information Networking and Applications: Proceedings of the 37th International Conference on Advanced Information Networking and Applications (AINA-2023). Lecture Notes in Networks and Systems (654), P199, DOI 10.1007/978-3-031-28451-9_18

← 1 2 3 4 →