Real-time anomaly-based distributed intrusion detection systems for advanced Metering Infrastructure utilizing stream data mining

Fadwa Abdul Aziz Alseiari, Zeyar Aung

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

30 Scopus citations

Abstract

The advanced Metering Infrastructure (AMI) is one of the core components of smart grids' architecture. As AMI components are connected through mesh networks in a distributed mechanism, new vulnerabilities will be exploited by grid's attackers who intentionally interfere with network's communication system and steal customer data. As a result, identifying distributed security solutions to maintain the confidentiality, integrity, and availability of AMI devices' traffic is an essential requirement that needs to be taken into account. This paper proposes a real-time distributed intrusion detection system (DIDS) for the AMI infrastructure that utilizes stream data mining techniques and a multi-layer implementation approach. Using unsupervised online clustering techniques, the anomaly-based DIDS monitors the data flow in the AMI and distinguish if there are anomalous traffics. By comparing between online and offline clustering techniques, the experimental results showed that online clustering Mini-Batch K-means were successfully able to suit the architecture requirements by giving high detection rate and low false positive rates.

Original languageBritish English
Title of host publicationProceedings - 2015 International Conference on Smart Grid and Clean Energy Technologies, ICSGCE 2015
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages148-153
Number of pages6
ISBN (Electronic)9781467387347
DOIs
StatePublished - 15 Apr 2016
Event5th International Conference on Smart Grid and Clean Energy Technologies, ICSGCE 2015 - Offenburg, Germany
Duration: 20 Oct 201523 Oct 2015

Publication series

NameProceedings - 2015 International Conference on Smart Grid and Clean Energy Technologies, ICSGCE 2015

Conference

Conference5th International Conference on Smart Grid and Clean Energy Technologies, ICSGCE 2015
Country/TerritoryGermany
CityOffenburg
Period20/10/1523/10/15

Keywords

  • advanced metering infrastructure
  • distributed intrusion detection system
  • mini-batch k-means
  • online clustering
  • smart grids
  • stream mining

Fingerprint

Dive into the research topics of 'Real-time anomaly-based distributed intrusion detection systems for advanced Metering Infrastructure utilizing stream data mining'. Together they form a unique fingerprint.

Cite this