• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

ARIES:一种用于智能电网的新型多元入侵检测系统。

ARIES: A Novel Multivariate Intrusion Detection System for Smart Grid.

机构信息

Department of Electrical and Computer Engineering, University of Western Macedonia, 50100 Kozani, Greece.

0INF, Imperial Offices, London E6 2JG, UK.

出版信息

Sensors (Basel). 2020 Sep 16;20(18):5305. doi: 10.3390/s20185305.

DOI:10.3390/s20185305
PMID:32948064
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC7570496/
Abstract

The advent of the Smart Grid (SG) raises severe cybersecurity risks that can lead to devastating consequences. In this paper, we present a novel anomaly-based Intrusion Detection System (IDS), called ARIES (smArt gRid Intrusion dEtection System), which is capable of protecting efficiently SG communications. ARIES combines three detection layers that are devoted to recognising possible cyberattacks and anomalies against (a) network flows, (b) Modbus/Transmission Control Protocol (TCP) packets and (c) operational data. Each detection layer relies on a Machine Learning (ML) model trained using data originating from a power plant. In particular, the first layer (network flow-based detection) performs a supervised multiclass classification, recognising Denial of Service (DoS), brute force attacks, port scanning attacks and bots. The second layer (packet-based detection) detects possible anomalies related to the Modbus packets, while the third layer (operational data based detection) monitors and identifies anomalies upon operational data (i.e., time series electricity measurements). By emphasising on the third layer, the ARIES Generative Adversarial Network (ARIES GAN) with novel error minimisation functions was developed, considering mainly the reconstruction difference. Moreover, a novel reformed conditional input was suggested, consisting of random noise and the signal features at any given time instance. Based on the evaluation analysis, the proposed GAN network overcomes the efficacy of conventional ML methods in terms of Accuracy and the F1 score.

摘要

智能电网 (SG) 的出现带来了严重的网络安全风险,可能导致灾难性的后果。在本文中,我们提出了一种新颖的基于异常的入侵检测系统 (IDS),称为 ARIES (smArt gRid Intrusion dEtection System),它能够有效地保护 SG 通信。ARIES 结合了三个检测层,致力于识别针对 (a) 网络流量、(b) Modbus/传输控制协议 (TCP) 数据包和 (c) 操作数据的可能的网络攻击和异常。每个检测层都依赖于使用源自发电厂的数据训练的机器学习 (ML) 模型。特别是,第一层(基于网络流量的检测)执行监督多类分类,识别拒绝服务 (DoS)、暴力攻击、端口扫描攻击和机器人。第二层(基于数据包的检测)检测与 Modbus 数据包相关的可能异常,而第三层(基于操作数据的检测)则监控和识别操作数据(即,时间序列电测量)上的异常。通过强调第三层,开发了具有新颖误差最小化函数的 ARIES 生成对抗网络 (ARIES GAN),主要考虑重建差异。此外,还提出了一种新的改进条件输入,由随机噪声和任何给定时间点的信号特征组成。基于评估分析,所提出的 GAN 网络在准确性和 F1 分数方面优于传统的 ML 方法。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/49a180fa80cc/sensors-20-05305-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/a982255e8ce3/sensors-20-05305-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/b0a42114bfae/sensors-20-05305-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/02b237f75de3/sensors-20-05305-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/506d0b292252/sensors-20-05305-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/bce4b72ec1ae/sensors-20-05305-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/f19fb0af251c/sensors-20-05305-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/756554554562/sensors-20-05305-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/49a180fa80cc/sensors-20-05305-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/a982255e8ce3/sensors-20-05305-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/b0a42114bfae/sensors-20-05305-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/02b237f75de3/sensors-20-05305-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/506d0b292252/sensors-20-05305-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/bce4b72ec1ae/sensors-20-05305-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/f19fb0af251c/sensors-20-05305-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/756554554562/sensors-20-05305-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/af0e/7570496/49a180fa80cc/sensors-20-05305-g008.jpg

相似文献

1
ARIES: A Novel Multivariate Intrusion Detection System for Smart Grid.ARIES:一种用于智能电网的新型多元入侵检测系统。
Sensors (Basel). 2020 Sep 16;20(18):5305. doi: 10.3390/s20185305.
2
Toward an Applied Cyber Security Solution in IoT-Based Smart Grids: An Intrusion Detection System Approach.迈向基于物联网的智能电网中的应用网络安全解决方案:入侵检测系统方法。
Sensors (Basel). 2019 Nov 14;19(22):4952. doi: 10.3390/s19224952.
3
Ensemble Model Based on Hybrid Deep Learning for Intrusion Detection in Smart Grid Networks.基于混合深度学习的智能电网网络入侵检测集成模型
Sensors (Basel). 2023 Aug 28;23(17):7464. doi: 10.3390/s23177464.
4
SGAN-IDS: Self-Attention-Based Generative Adversarial Network against Intrusion Detection Systems.SGAN-IDS:基于自注意力机制的对抗入侵检测系统的生成对抗网络。
Sensors (Basel). 2023 Sep 11;23(18):7796. doi: 10.3390/s23187796.
5
Adversarial attacks against supervised machine learning based network intrusion detection systems.对抗攻击对基于监督机器学习的网络入侵检测系统的影响。
PLoS One. 2022 Oct 14;17(10):e0275971. doi: 10.1371/journal.pone.0275971. eCollection 2022.
6
Development of a Machine-Learning Intrusion Detection System and Testing of Its Performance Using a Generative Adversarial Network.开发机器学习入侵检测系统并使用生成对抗网络测试其性能。
Sensors (Basel). 2023 Jan 24;23(3):1315. doi: 10.3390/s23031315.
7
DRL-GAN: A Hybrid Approach for Binary and Multiclass Network Intrusion Detection.深度强化学习生成对抗网络(DRL-GAN):一种用于二进制和多类网络入侵检测的混合方法。
Sensors (Basel). 2024 Apr 25;24(9):2746. doi: 10.3390/s24092746.
8
Comprehensive analysis and recommendation of feature evaluation measures for intrusion detection.入侵检测特征评估措施的综合分析与建议
Heliyon. 2020 Jul 9;6(7):e04262. doi: 10.1016/j.heliyon.2020.e04262. eCollection 2020 Jul.
9
Proposed algorithm for smart grid DDoS detection based on deep learning.基于深度学习的智能电网分布式拒绝服务攻击检测算法
Neural Netw. 2023 Feb;159:175-184. doi: 10.1016/j.neunet.2022.12.011. Epub 2022 Dec 21.
10
Data Randomization and Cluster-Based Partitioning for Botnet Intrusion Detection.数据随机化和基于聚类的分割在僵尸网络入侵检测中的应用。
IEEE Trans Cybern. 2016 Aug;46(8):1796-806. doi: 10.1109/TCYB.2015.2490802. Epub 2015 Oct 30.

引用本文的文献

1
A White Shark Equilibrium Optimizer with a Hybrid Deep-Learning-Based Cybersecurity Solution for a Smart City Environment.一种用于智慧城市环境的基于混合深度学习的网络安全解决方案的白鲨平衡优化器。
Sensors (Basel). 2023 Aug 24;23(17):7370. doi: 10.3390/s23177370.
2
Enhanced Modbus/TCP Security Protocol: Authentication and Authorization Functions Supported.增强型 Modbus/TCP 安全协议:支持身份验证和授权功能。
Sensors (Basel). 2022 Oct 20;22(20):8024. doi: 10.3390/s22208024.
3
Emerging and Established Trends to Support Secure Health Information Exchange.

本文引用的文献

1
Continuous Quantitative Risk Management in Smart Grids Using Attack Defense Trees.利用攻防树实现智能电网的连续定量风险管理
Sensors (Basel). 2020 Aug 7;20(16):4404. doi: 10.3390/s20164404.
支持安全健康信息交换的新兴趋势与既定趋势。
Front Digit Health. 2021 Apr 9;3:636082. doi: 10.3389/fdgth.2021.636082. eCollection 2021.
4
Cybersecurity in Power Grids: Challenges and Opportunities.电网中的网络安全:挑战与机遇
Sensors (Basel). 2021 Sep 16;21(18):6225. doi: 10.3390/s21186225.
5
TTAS: Trusted Token Authentication Service of Securing SCADA Network in Energy Management System for Industrial Internet of Things.TTAS:工业物联网能源管理系统中保障SCADA网络安全的可信令牌认证服务
Sensors (Basel). 2021 Apr 11;21(8):2685. doi: 10.3390/s21082685.