A lightweight approach for network intrusion detection in industrial cyber-physical systems based on knowledge distillation and deep metric learning

被引:74
作者
Wang, Zhendong [1 ]
Li, Zeyu [1 ]
He, Daojing [2 ]
Chan, Sammy [3 ]
机构
[1] Jiangxi Univ Sci & Technol, Sch Informat Engn, Ganzhou 341000, Peoples R China
[2] Harbin Inst Technol, Sch Comp Sci & Technol, Shenzhen 518055, Peoples R China
[3] City Univ Hong Kong, Dept Elect Engn, Hong Kong 999077, Peoples R China
关键词
Intrusion detection; Industrial cyber-physical system; Knowledge distillation; Triplet neural network; SMART GRIDS; OPTIMIZATION; SECURITY;
D O I
10.1016/j.eswa.2022.117671
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
With the rapid development of technology and science, machine learning approaches and deep learning methods have been widely applied in industrial Cyber-Physical Systems. However, there are still some challenging issues for anomaly detection to classify various attacks in industrial CPS to ensure the cyber security, especially when dealing with resource-constrained IoT devices. In this paper, we propose a Knowledge Distillation model based on Triplet Convolution Neural Network to improve the model performance and greatly enhance the speed of anomaly detection for industrial CPS as well as reduce the complexity of the model. Specifically, during the training process, we design a robust model loss function to improve the training stability of the model. A new neural network training method called K-fold cross training is also proposed to enhance the accuracy of anomaly detection. A lot of experimental results demonstrate that the performance metrics of KD-TCNN on the benchmark datasets NSL-KDD and CIC ID52017 have significant advantages over traditional deep learning approaches and the recent state-of-the-art models. Furthermore, when compared to the original model, our model's computational cost and size are both reduced by roughly 86% with just 0.4% accuracy loss.
引用
收藏
页数:17
相关论文
共 50 条
[41]   A survey on attack detection, estimation and control of industrial cyber-physical systems [J].
Zhang, Dan ;
Wang, Qing-Guo ;
Feng, Gang ;
Shi, Yang ;
Vasilakos, Athanasios V. .
ISA TRANSACTIONS, 2021, 116 :1-16
[42]   A Network Traffic Intrusion Detection Method for Industrial Control Systems Based on Deep Learning [J].
Jin, Kai ;
Zhang, Lei ;
Zhang, Yujie ;
Sun, Duo ;
Zheng, Xiaoyuan .
ELECTRONICS, 2023, 12 (20)
[43]   An ensemble of fuzzy soft expert set with deep learning on attack detection for secure industrial cyber-physical systems [J].
Alotaibi, Sultan Refa ;
Alrayes, Fatma S. ;
Mansouri, Wahida ;
Alqahtani, Hamed ;
Alajmani, Samah Hazzaa ;
Alotaibi, Moneerah ;
Alallah, Fouad Shoie ;
Alshareef, Abdulrhman .
JOURNAL OF RADIATION RESEARCH AND APPLIED SCIENCES, 2025, 18 (02)
[44]   A Bayesian Deep Learning Approach With Convolutional Feature Engineering to Discriminate Cyber-Physical Intrusions in Smart Grid Systems [J].
Kaur, Devinder ;
Anwar, Adnan ;
Kamwa, Innocent ;
Islam, Shama ;
Muyeen, S. M. ;
Hosseinzadeh, Nasser .
IEEE ACCESS, 2023, 11 :18910-18920
[45]   Using Sensitivity Analysis and Cross-Association for the Design of Intrusion Detection Systems in Industrial Cyber-Physical Systems [J].
Haller, Piroska ;
Genge, Bela .
IEEE ACCESS, 2017, 5 :9336-9347
[46]   A new intrusion detection method for cyber-physical system in emerging industrial IoT [J].
Mittal, Himanshu ;
Tripathi, Ashish Kumar ;
Pandey, Avinash Chandra ;
Alshehri, Mohammad Dahman ;
Saraswat, Mukesh ;
Pal, Raju .
COMPUTER COMMUNICATIONS, 2022, 190 :24-35
[47]   Deep learning enabled class imbalance with sand piper optimization based intrusion detection for secure cyber physical systems [J].
Hilal, Anwer Mustafa ;
Al-Otaibi, Shaha ;
Mahgoub, Hany ;
Al-Wesabi, Fahd N. ;
Aldehim, Ghadah ;
Motwakel, Abdelwahed ;
Rizwanullah, Mohammed ;
Yaseen, Ishfaq .
CLUSTER COMPUTING-THE JOURNAL OF NETWORKS SOFTWARE TOOLS AND APPLICATIONS, 2023, 26 (03) :2085-2098
[48]   Deep learning enabled class imbalance with sand piper optimization based intrusion detection for secure cyber physical systems [J].
Anwer Mustafa Hilal ;
Shaha Al-Otaibi ;
Hany Mahgoub ;
Fahd N. Al-Wesabi ;
Ghadah Aldehim ;
Abdelwahed Motwakel ;
Mohammed Rizwanullah ;
Ishfaq Yaseen .
Cluster Computing, 2023, 26 :2085-2098
[49]   Optimal Feature Selection for Intrusion Detection in Medical Cyber-Physical Systems [J].
Schneble, William ;
Thamilarasu, Geethapriya .
2019 11TH INTERNATIONAL CONFERENCE ON ADVANCED COMPUTING (ICOAC 2019), 2019, :238-243
[50]   Heterogeneous GNN with Express Edges for Intrusion Detection in Cyber-Physical Systems [J].
Li, Hongwei ;
Chasaki, Danai .
2024 INTERNATIONAL CONFERENCE ON COMPUTING, NETWORKING AND COMMUNICATIONS, ICNC, 2024, :523-529