Publication Details

Penetrating the Power Grid: Realistic Adversarial Attacks on Smart Grid Intrusion Detection Systrems

MUTUA, N.; NADJM-TEHRANI, S.; MATOUŠEK, P. Penetrating the Power Grid: Realistic Adversarial Attacks on Smart Grid Intrusion Detection Systrems. Critical Information Infrastructures Security. Lecture Notes in Computer Science. Springer Cham: Springer Nature Switzerland AG, 2025. p. 249-268. ISBN: 978-3-031-84259-7.

Czech title

Penetrating the Power Grid: Realistic Adversarial Attacks on Smart Grid Intrusion Detection Systrems č

Type

conference paper

Language

English

Authors

Mutua Nelson Makau, M.Sc. (DIFS)
Nadjm-Tehrani Simin, Prof.
Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS)

URL

https://link.springer.com/chapter/10.1007/978-3-031-84260-3_15

Keywords

Intrusion Detection System, Adversarial Attacks, Critical Infrastructure, Machine
Learning, Smart Grids.

Abstract

The widespread adoption and use of Machine Learning-Based Intrusion Detection
Systems (ML-IDS) has increased the flexibility and efficiency of automated cyber
attack detection in smart grid systems. However, the introduction of such IDSes
has created a new attack vector against the learning models commonly known as
adversarial attacks. Such attacks could have serious consequences in smart grid
systems, as adversaries can evade detection by the IDS. This could lead to
delayed attack detection. From the existing literature, a lot of research propose
threat models that are inappropriate for generating realistic adversarial
attacks. In this research, we model realistic adversarial attacks with a focus on
real attacker capabilities and circumstances required by attackers to launch
feasible and successful adversarial attacks. We demonstrate how adversarial
learning can be used to target ML models by using the Fast Gradient Sign Method
(FGSM) and Jacobian-based Saliency Map Attack (JSMA). A power system dataset
generated from smart grid testbed was used for testing the models. Overall, the
classification performance of three widely used classifiers Random Forest,
XGBoost and Naive Bayes decreased when adversarial samples were present. The
outcomes of this paper are useful for helping researcher model on realistic
scenarios to avoid dealing with hypothetical problems.

Published

2025

Pages

249–268

Proceedings

Critical Information Infrastructures Security

Series

Lecture Notes in Computer Science

Conference

The 19th International Conference on Critical Information Infrastructures Security (CRITIS 2024), Řím, IT

ISBN

978-3-031-84259-7

Publisher

Springer Nature Switzerland AG

Place

Springer Cham

DOI

10.1007/978-3-031-84260-3_15

BibTeX

@inproceedings{BUT189463,
  author="Nelson Makau {Mutua} and Simin {Nadjm-Tehrani} and Petr {Matoušek}",
  title="Penetrating the Power Grid: Realistic Adversarial Attacks on Smart Grid Intrusion Detection Systrems",
  booktitle="Critical Information Infrastructures Security",
  year="2025",
  series="Lecture Notes in Computer Science",
  pages="249--268",
  publisher="Springer Nature Switzerland AG",
  address="Springer Cham",
  doi="10.1007/978-3-031-84260-3\{_}15",
  isbn="978-3-031-84259-7",
  url="https://link.springer.com/chapter/10.1007/978-3-031-84260-3_15"
}

Files