Abstract
With its flexibility and active defense capabilities, the power grid buffer network has attracted widespread attention as a novel means of power grid defense. This article proposes an intelligent active defense method specifically designed to mitigate penetration attacks on power grid buffer networks. In this method, attackers typically employ intelligent penetration attacks based on reinforcement learning, which model the penetration process as a Markov decision process. Attackers continuously train themselves through trial and error to optimize their penetration paths, thus enhancing their attack capabilities. To prevent malicious exploitation of intelligent penetration attacks, the power grid buffer network introduces a deceptive defense method aimed at countering attack strategies based on reinforcement learning. This method first gathers necessary information (state, action, reward) during the construction of the attack model by attackers. It then generates deceptive actions through state dimension inversion and confuses attackers by flipping reward value signs, thereby implementing deceptive defense at the early, middle, and late stages of penetration attacks on the power grid buffer network. Finally, this article conducts simulation experiments to compare the defensive effectiveness of the proposed method in three stages of the power grid buffer network’s defense against intelligent penetration attacks. The experimental results demonstrate that the proposed method reduces the success rate of intelligent penetration attacks based on reinforcement learning.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Arkin, B., Stender, S., Mcgraw, G.: Software penetration testing. IEEE Secur. Priv. 3(1), 84–87 (2005)
Yang, H.Y., Yuan, H.H., Zhang, L.: Host security assessment method based on attack graph. J. Commun. 43(2), 89–99 (2022)
Rowe, N.C., Custy, E.J., Duong, B.T.: Defending cyberspace with fake honeypots. J. Comput. 3(1), 25–36 (2007)
Kaur, G., Kaur, N.: Penetration testing-reconnaissance with NMAP tool. Int. J. Adv. Res. Comput. Sci. 8(3), 844–846 (2017)
Muliński, T.: ICT security in tax administration - Rapid7 Nexpose vulnerability analysis. Studia Informatica 24, 37–51 (2021)
Lee, A.: Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide. Packt Publishing, Birmingham (2012)
HelpSysthems: Core impact [EB] (2021)
Sayed, A.: Adaptation, learning, and optimization over networks. Found. Trends Mach. Learn. 7(4/5), 311–801 (2014)
Mnih, V., Kavukcuoglu, K., Silver, D., et al.: Playing atari with deep reinforcement learning. arXiv Preprint arXiv:1312.5602 (2013)
Zhou, S.C., Liu, J.J., Hou, D.D., et al.: Autonomous penetration testing based on improved deep Q-network. Appl. Sci. 11(19), 8823 (2021)
Tran, K., Akella, A., Standen, M., et al.: Deep hierarchical reinforcement agents for automated penetration testing. arXiv Preprint arXiv:2109.06449 (2021)
Dulac-Arnold, G., Evans, R., Sunehag, P., et al.: Reinforcement learning in large discrete action spaces. arXiv Preprint arXiv:1512.07679 (2015)
Yuill, J.J.: Defensive computer-security deception operations: processes, principles and techniques. North Carolina State University,Raleigh (2006)
Gartner Research: Hype cycle for threat-facing technologies 2017 [R] (2017)
Jia, Z.P., Fang, B.X., Liu, C.G., et al.: Survey on cyber deception. J. Commun. 38(12), 128–143 (2017)
Hu, Y.J., Ma, J., Guo, Y.B.: Research on cyber deception based on game theory. J. Commun. 39(S2), 9–18 (2018)
Wang, S., Wang, J.H., Pei, Q.Q., et al.: Active deception defense method based on dynamic camouflage network. J. Commun. 41(2), 97–111 (2020)
Jafarian, J.H., Al-Shaer, E., Duan, Q.: Adversary-aware IP address randomization for proactive agility against sophisticated attackers. In: Proceedings of 2015 IEEE Conference on Computer Communications, Piscataway, pp. 738–746. IEEE Press (2015)
Wang, K., Chen, X., Zhu, Y.F.: Random domain name and address mutation (RDAM) for thwarting reconnaissance attacks. PLoS ONE 12(5), e0177111 (2017)
Anagnostakis, K., Sidiroglou, S., Akritidis, P., et al.: Detecting targeted attacks using shadow honeypots. In: Proceedings of the 14th Conference on USENIX Security Symposium. USE-NIX Association, Berkeley (2005)
Rowe, N.C., Custy, E.J., Duong, B.T.: Defending cyberspace with fake honeypots. J. Comput. 2(2), 25–36 (2007)
Shi, L.Y., Jiang, L.L., Liu, X., et al.: Game theoretic analysis for the feature of mimicry honeypot. J. Electron. Inf. Technol. 35(5), 1063–1068 (2013)
Silver, D., Huang, A., Maddison, C.J., et al.: Mastering the game of Go with deep neural networks and tree search. Nature 529(7587), 484–489 (2016)
Berner, C., Brockman, G., Chan, B., et al.: Dota 2 with large scale deep reinforcement learning. arXiv Preprint arXiv:1912.06680 (2019)
Vinyals, O., Babuschkin, I., Czarnecki, W.M., et al.: Grandmaster level in StarCraft II using multi-agent reinforcement learning. Nature 575(7782), 350–354 (2019)
Schwartz, J., Kurniawati, H.: Autonomous penetration testing using reinforcement learning. arXiv Preprint arXiv:1905.05965 (2019)
Zennaro, F.M., Erdodi, L.: Modeling penetration testing with reinforcement learning using capture-the-flag challenges and tabular Q-learning. arXiv Preprint arXiv:2005.12632 (2005)
Zang, Y.C., Zhou, T.Y., Zhu, J.H., et al.: Domain-independent intelligent planning technology and its application to automated penetration testing oriented attack path discovery. J. Electron. Inf. Technol. 42(9), 2095–2107 (2020)
Schwartz, J.: Network attack simulator[EB] (2017)
Al Amin, M.A.R., Shetty, S., Njilla, L., Tosh, D.K., Kamhoua, C., et al.: Hidden Markov model and cyber deception for the prevention of adversarial lateral movement. IEEE Access 9, 49662–49682 (2021)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2024 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Yan, Y., Wang, W., Chen, X., Wang, W. (2024). Intelligent Active Defense Methods for Mitigating Penetration Attacks on Power Grid Buffer Networks. In: Dong, J., Zhang, L., Cheng, D. (eds) Proceedings of the 2nd International Conference on Internet of Things, Communication and Intelligent Technology. IoTCIT 2023. Lecture Notes in Electrical Engineering, vol 1197. Springer, Singapore. https://doi.org/10.1007/978-981-97-2757-5_53
Download citation
DOI: https://doi.org/10.1007/978-981-97-2757-5_53
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-97-2756-8
Online ISBN: 978-981-97-2757-5
eBook Packages: Computer ScienceComputer Science (R0)