Adaptive Normalized Attacks for Learning Adversarial Attacks and Defenses in Power Systems

2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm) Pub Date : 2019-10-01 DOI:10.1109/SmartGridComm.2019.8909713

Jiwei Tian, Tengyao Li, Fute Shang, Kunrui Cao, Jing Li, M. Ozay

{"title":"Adaptive Normalized Attacks for Learning Adversarial Attacks and Defenses in Power Systems","authors":"Jiwei Tian, Tengyao Li, Fute Shang, Kunrui Cao, Jing Li, M. Ozay","doi":"10.1109/SmartGridComm.2019.8909713","DOIUrl":null,"url":null,"abstract":"Vulnerability of various machine learning methods to adversarial examples has been recently explored in the literature. Power systems which use these vulnerable methods face a huge threat against adversarial examples. To this end, we first propose a more accurate and computationally efficient method called Adaptive Normalized Attack (ANA) to attack power systems using generate adversarial examples. We then adopt adversarial training to defend against attacks of adversarial examples. Experimental analyses demonstrate that our attack method provides less perturbation compared to the state-of-the-art FGSM (Fast Gradient Sign Method) and DeepFool, while our proposed method increases misclassification rate of learning methods for attacking power systems. In addition, the results show that the proposed adversarial training improves robustness of power systems to adversarial examples compared to using state-of-the-art methods.","PeriodicalId":377150,"journal":{"name":"2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SmartGridComm.2019.8909713","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

Abstract

Vulnerability of various machine learning methods to adversarial examples has been recently explored in the literature. Power systems which use these vulnerable methods face a huge threat against adversarial examples. To this end, we first propose a more accurate and computationally efficient method called Adaptive Normalized Attack (ANA) to attack power systems using generate adversarial examples. We then adopt adversarial training to defend against attacks of adversarial examples. Experimental analyses demonstrate that our attack method provides less perturbation compared to the state-of-the-art FGSM (Fast Gradient Sign Method) and DeepFool, while our proposed method increases misclassification rate of learning methods for attacking power systems. In addition, the results show that the proposed adversarial training improves robustness of power systems to adversarial examples compared to using state-of-the-art methods.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

电力系统中学习对抗性攻击与防御的自适应归一化攻击

最近在文献中探讨了各种机器学习方法对对抗性示例的脆弱性。使用这些易受攻击的方法的电力系统面临着对抗实例的巨大威胁。为此，我们首先提出了一种更准确和计算效率更高的方法，称为自适应归一化攻击(ANA)，通过生成对抗性示例来攻击电力系统。然后，我们采用对抗性训练来防御对抗性示例的攻击。实验分析表明，与最先进的FGSM(快速梯度符号方法)和DeepFool相比，我们的攻击方法提供了更少的扰动，而我们提出的方法增加了攻击电力系统的学习方法的误分类率。此外，结果表明，与使用最先进的方法相比，所提出的对抗训练提高了电力系统对对抗示例的鲁棒性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2019 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)

自引率

0.00%

发文量