A. Sahu, H. N. R. K. Tippanaboyana, Lindsay Hefton, A. Goulart
{"title":"AMI网络中非法节点检测","authors":"A. Sahu, H. N. R. K. Tippanaboyana, Lindsay Hefton, A. Goulart","doi":"10.1109/ISAP.2017.8071424","DOIUrl":null,"url":null,"abstract":"Advanced Metering Infrastructure (AMI) is an integral part of smart power grids. With advanced computing and communications, cybersecurity has emerged to be a critical issue for AMI networks, which demand confidentiality and integrity. Cyber attackers can employ unauthorized devices, also known as rogue nodes, to steal customers' private information, modify or create wrong data that can financially impact customers, utilities, and the electricity market. To detect rogue nodes in AMI networks, we propose and simulate two Intrusion Detection Systems (IDS). Their goal is to detect man-in-the-middle attacks (MiTM), where the rogue node steals information using Address Resolution Protocol (ARP) cache poisoning. A host-based simplistic IDS for the smart meters and a network-based IDS for the data concentrator, which has a larger computing power, were implemented to detect and stop such MiTM attacks. The proposed IDS system uses a Bayesian-based machine learning technique so that the IDS learns the behavior of the attack and detects future attacks.","PeriodicalId":257100,"journal":{"name":"2017 19th International Conference on Intelligent System Application to Power Systems (ISAP)","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Detection of rogue nodes in AMI networks\",\"authors\":\"A. Sahu, H. N. R. K. Tippanaboyana, Lindsay Hefton, A. Goulart\",\"doi\":\"10.1109/ISAP.2017.8071424\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Advanced Metering Infrastructure (AMI) is an integral part of smart power grids. With advanced computing and communications, cybersecurity has emerged to be a critical issue for AMI networks, which demand confidentiality and integrity. Cyber attackers can employ unauthorized devices, also known as rogue nodes, to steal customers' private information, modify or create wrong data that can financially impact customers, utilities, and the electricity market. To detect rogue nodes in AMI networks, we propose and simulate two Intrusion Detection Systems (IDS). Their goal is to detect man-in-the-middle attacks (MiTM), where the rogue node steals information using Address Resolution Protocol (ARP) cache poisoning. A host-based simplistic IDS for the smart meters and a network-based IDS for the data concentrator, which has a larger computing power, were implemented to detect and stop such MiTM attacks. The proposed IDS system uses a Bayesian-based machine learning technique so that the IDS learns the behavior of the attack and detects future attacks.\",\"PeriodicalId\":257100,\"journal\":{\"name\":\"2017 19th International Conference on Intelligent System Application to Power Systems (ISAP)\",\"volume\":\"56 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 19th International Conference on Intelligent System Application to Power Systems (ISAP)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISAP.2017.8071424\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 19th International Conference on Intelligent System Application to Power Systems (ISAP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISAP.2017.8071424","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Advanced Metering Infrastructure (AMI) is an integral part of smart power grids. With advanced computing and communications, cybersecurity has emerged to be a critical issue for AMI networks, which demand confidentiality and integrity. Cyber attackers can employ unauthorized devices, also known as rogue nodes, to steal customers' private information, modify or create wrong data that can financially impact customers, utilities, and the electricity market. To detect rogue nodes in AMI networks, we propose and simulate two Intrusion Detection Systems (IDS). Their goal is to detect man-in-the-middle attacks (MiTM), where the rogue node steals information using Address Resolution Protocol (ARP) cache poisoning. A host-based simplistic IDS for the smart meters and a network-based IDS for the data concentrator, which has a larger computing power, were implemented to detect and stop such MiTM attacks. The proposed IDS system uses a Bayesian-based machine learning technique so that the IDS learns the behavior of the attack and detects future attacks.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
