Adversarial Campaign Mitigation via ROC-Centric Prognostics

Machine learning models are vulnerable to adversarial inputs that induce seemingly unjustifiable errors. As automated classifiers are increasingly used in industrial control systems and machinery, these adversarial errors could grow to be a serious problem. Despite numerous studies over the past few years, the field of adversarial ML is still considered alchemy, with no practical unbroken defenses demonstrated to date, leaving PHM practitioners with few meaningful ways of addressing the problem. We introduce “turbidity detection” as a practical superset of the adversarial input detection problem, coping with adversarial campaigns rather than statistically invisible one-offs. This perspective is coupled with ROC-theoretic design guidance that prescribes an inexpensive domain adaptation layer at the output of a deep learning model during an attack campaign. The result aims to approximate the Bayes optimal mitigation that ameliorates the detection model’s degraded health. A proactively reactive type of prognostics is achieved via Monte Carlo simulation of various adversarial campaign scenarios, by sampling from the model’s own turbidity distribution to quickly deploy the correct mitigation during a real-world campaign.

Download Full-text

Cyber Risks to Critical Smart Grid Assets of Industrial Control Systems

Energies ◽

10.3390/en14175501 ◽

2021 ◽

Vol 14 (17) ◽

pp. 5501

Author(s):

Chenyang Liu ◽

Yazeed Alrowaili ◽

Neetesh Saxena ◽

Charalambos Konstantinou

Keyword(s):

Smart Grid ◽

Control Systems ◽

Transmission Lines ◽

Power Supply ◽

Electric Grid ◽

Industrial Control ◽

Industrial Control Systems ◽

The Past ◽

Failure To Protect ◽

The Cost

Cybersecurity threats targeting industrial control systems (ICS) have significantly increased in the past years. Moreover, the need for users/operators to understand the consequences of attacks targeting these systems and protect all assets is vital. This work explores asset discovery in ICS and how to rank these assets based on their criticality. This paper also discusses asset discovery and its components. We further present existing solutions and tools for asset discovery. We implement a method to identify critical assets based on their connection and discuss related results and evaluation. The evaluation utilises four attack scenarios to stress the importance of protecting these critical assets since the failure to protect them can lead to serious consequences. Using a 12-bus system case, our results show that targeting such a system can increase and overload transmission lines values to 120% and 181% MVA, which can affect the power supply and disrupt service, and it can increase the cost up to 60%, affecting the productivity of this electric grid.

Download Full-text

A Study of Identifying Attacks on Industry Internet of Things Using Machine Learning

10.5121/csit.2021.110707 ◽

2021 ◽

Author(s):

Chia-Mei Chen ◽

Zheng-Xun Cai ◽

Gu-Hsin Lai

Keyword(s):

Internet Of Things ◽

Control Systems ◽

Classification Model ◽

Multiple Sources ◽

Industrial Control ◽

Critical Function ◽

Industrial Control Systems ◽

Detection Model ◽

The Past ◽

Industrial Companies

The “Industry 4.0” revolution and Industry Internet of Things (IIoT) has dramatically transformed how manufacturing and industrial companies operate. Industrial control systems (ICS) process critical function, and the past ICS attacks have caused major damage and disasters in the communities. IIoT devices in an ICS environment communicate in heterogeneous protocols and the attack vectors might exhibit different misbehavior patterns. This study proposes a classification model to detect anomalies in ICS environments. The evaluation has been conducted by using ICS datasets from multiple sources and the results show that the proposed LSTM detection model performs effectively.

Download Full-text