HIDES: Hybrid Intrusion Detector for Energy Systems

Vivek Singh, Evan Vaughan, Joshua Rivera, Adarsh Hasandka

Research output: Contribution to conferencePaperpeer-review

7 Scopus Citations

Abstract

The establishment of a resilient electric grid accompanied by a secure communications network is an ongoing battle as advanced persistent threats continue to exploit existing vulnerabilities in legacy supervisory control and data acquisition system (SCADA) infrastructure. Traditional intrusion detection systems (IDSs) lack consistent performance because of the continuously evolving attack surface of SCADA systems. These shortcomings can be overcome by integrating logical system behavior, protocol-specific knowledge, and data-based learning to develop a comprehensive IDS solution. In this paper, we present a Hybrid Intrusion Detector for Energy Systems by integrating a network-based IDS, state-of-the-art machine learning-based IDS, and model-based IDS to detect unknown and stealthy cyberattacks targeting the SCADA networks. The proposed IDS uses synchrophasor measurements and cyber logs to learn patterns of different scenarios based on spatiotemporal behaviors of power systems. As a proof of concept, we implement and validate the proposed IDS by leveraging resources available at the National Renewable Energy Laboratory's Energy Systems Integration Facility test bed. Experimental results show promising performance in detecting cyberattacks while providing realtime visualization of power system measurements and cyber logs.

Original languageAmerican English
Number of pages6
DOIs
StatePublished - Feb 2020
Event2020 IEEE Texas Power and Energy Conference, TPEC 2020 - College Station, United States
Duration: 6 Feb 20207 Feb 2020

Conference

Conference2020 IEEE Texas Power and Energy Conference, TPEC 2020
Country/TerritoryUnited States
CityCollege Station
Period6/02/207/02/20

Bibliographical note

Publisher Copyright:
© 2020 IEEE.

NREL Publication Number

  • NREL/CP-5R00-75476

Keywords

  • machine-learning intrusion detection system
  • power engineering computing
  • power system measurement
  • SCADA systems
  • security of data

Fingerprint

Dive into the research topics of 'HIDES: Hybrid Intrusion Detector for Energy Systems'. Together they form a unique fingerprint.

Cite this