Detecting Cyber-Attacks in Modern Power Systems Using an Unsupervised Monitoring Technique

Benamar Bouyeddou, Fouzi Harrou, Ying Sun

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Scopus citations

Abstract

Cyber-attacks detection in modern power systems is undoubtedly indispensable to enhance their resilience and guarantee the continuous production of electricity. As the number of attacks is very small compared to normal events, and attacks are unpredictable, it is not obvious to build a model for attacks. Here, only anomaly-free measurements are utilized to build a reference model for intrusion detection. Specifically, this study presents an unsupervised intrusion detection approach using the k-nearest neighbor algorithm and exponential smoothing monitoring scheme for uncovering attacks in modern power systems. Essentially, the k-nearest neighbor algorithm is implemented to compute the deviation between actual measurements and the faultless (training) data. Then, the exponential smoothing method is used to set up a detection decision-based kNN metric for anomaly detection. The proposed procedure has been tested to detect cyber-attacks in a two-line three-bus power transmission system. The proposed approach has been shown good detection performance.
Original languageEnglish (US)
Title of host publication2021 IEEE 3rd Eurasia Conference on Biomedical Engineering, Healthcare and Sustainability (ECBIOS)
PublisherIEEE
ISBN (Print)978-1-7281-9305-2
DOIs
StatePublished - Aug 13 2021

Fingerprint

Dive into the research topics of 'Detecting Cyber-Attacks in Modern Power Systems Using an Unsupervised Monitoring Technique'. Together they form a unique fingerprint.

Cite this