Skip to main content
SpringerLink
Log in

Intelligent Active Defense Methods for Mitigating Penetration Attacks on Power Grid Buffer Networks

  • Conference paper
  • First Online:
Proceedings of the 2nd International Conference on Internet of Things, Communication and Intelligent Technology (IoTCIT 2023)

Part of the book series: Lecture Notes in Electrical Engineering ((LNEE,volume 1197))

  • 67 Accesses

Abstract

With its flexibility and active defense capabilities, the power grid buffer network has attracted widespread attention as a novel means of power grid defense. This article proposes an intelligent active defense method specifically designed to mitigate penetration attacks on power grid buffer networks. In this method, attackers typically employ intelligent penetration attacks based on reinforcement learning, which model the penetration process as a Markov decision process. Attackers continuously train themselves through trial and error to optimize their penetration paths, thus enhancing their attack capabilities. To prevent malicious exploitation of intelligent penetration attacks, the power grid buffer network introduces a deceptive defense method aimed at countering attack strategies based on reinforcement learning. This method first gathers necessary information (state, action, reward) during the construction of the attack model by attackers. It then generates deceptive actions through state dimension inversion and confuses attackers by flipping reward value signs, thereby implementing deceptive defense at the early, middle, and late stages of penetration attacks on the power grid buffer network. Finally, this article conducts simulation experiments to compare the defensive effectiveness of the proposed method in three stages of the power grid buffer network’s defense against intelligent penetration attacks. The experimental results demonstrate that the proposed method reduces the success rate of intelligent penetration attacks based on reinforcement learning.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 299.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Hardcover Book
USD 379.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Arkin, B., Stender, S., Mcgraw, G.: Software penetration testing. IEEE Secur. Priv. 3(1), 84–87 (2005)

    Article  Google Scholar 

  2. Yang, H.Y., Yuan, H.H., Zhang, L.: Host security assessment method based on attack graph. J. Commun. 43(2), 89–99 (2022)

    Google Scholar 

  3. Rowe, N.C., Custy, E.J., Duong, B.T.: Defending cyberspace with fake honeypots. J. Comput. 3(1), 25–36 (2007)

    Google Scholar 

  4. Kaur, G., Kaur, N.: Penetration testing-reconnaissance with NMAP tool. Int. J. Adv. Res. Comput. Sci. 8(3), 844–846 (2017)

    Google Scholar 

  5. Muliński, T.: ICT security in tax administration - Rapid7 Nexpose vulnerability analysis. Studia Informatica 24, 37–51 (2021)

    Google Scholar 

  6. Lee, A.: Advanced Penetration Testing for Highly-Secured Environments: The Ultimate Security Guide. Packt Publishing, Birmingham (2012)

    Google Scholar 

  7. HelpSysthems: Core impact [EB] (2021)

    Google Scholar 

  8. Sayed, A.: Adaptation, learning, and optimization over networks. Found. Trends Mach. Learn. 7(4/5), 311–801 (2014)

    Article  Google Scholar 

  9. Mnih, V., Kavukcuoglu, K., Silver, D., et al.: Playing atari with deep reinforcement learning. arXiv Preprint arXiv:1312.5602 (2013)

  10. Zhou, S.C., Liu, J.J., Hou, D.D., et al.: Autonomous penetration testing based on improved deep Q-network. Appl. Sci. 11(19), 8823 (2021)

    Article  Google Scholar 

  11. Tran, K., Akella, A., Standen, M., et al.: Deep hierarchical reinforcement agents for automated penetration testing. arXiv Preprint arXiv:2109.06449 (2021)

  12. Dulac-Arnold, G., Evans, R., Sunehag, P., et al.: Reinforcement learning in large discrete action spaces. arXiv Preprint arXiv:1512.07679 (2015)

  13. Yuill, J.J.: Defensive computer-security deception operations: processes, principles and techniques. North Carolina State University,Raleigh (2006)

    Google Scholar 

  14. Gartner Research: Hype cycle for threat-facing technologies 2017 [R] (2017)

    Google Scholar 

  15. Jia, Z.P., Fang, B.X., Liu, C.G., et al.: Survey on cyber deception. J. Commun. 38(12), 128–143 (2017)

    Google Scholar 

  16. Hu, Y.J., Ma, J., Guo, Y.B.: Research on cyber deception based on game theory. J. Commun. 39(S2), 9–18 (2018)

    Google Scholar 

  17. Wang, S., Wang, J.H., Pei, Q.Q., et al.: Active deception defense method based on dynamic camouflage network. J. Commun. 41(2), 97–111 (2020)

    Google Scholar 

  18. Jafarian, J.H., Al-Shaer, E., Duan, Q.: Adversary-aware IP address randomization for proactive agility against sophisticated attackers. In: Proceedings of 2015 IEEE Conference on Computer Communications, Piscataway, pp. 738–746. IEEE Press (2015)

    Google Scholar 

  19. Wang, K., Chen, X., Zhu, Y.F.: Random domain name and address mutation (RDAM) for thwarting reconnaissance attacks. PLoS ONE 12(5), e0177111 (2017)

    Article  Google Scholar 

  20. Anagnostakis, K., Sidiroglou, S., Akritidis, P., et al.: Detecting targeted attacks using shadow honeypots. In: Proceedings of the 14th Conference on USENIX Security Symposium. USE-NIX Association, Berkeley (2005)

    Google Scholar 

  21. Rowe, N.C., Custy, E.J., Duong, B.T.: Defending cyberspace with fake honeypots. J. Comput. 2(2), 25–36 (2007)

    Article  Google Scholar 

  22. Shi, L.Y., Jiang, L.L., Liu, X., et al.: Game theoretic analysis for the feature of mimicry honeypot. J. Electron. Inf. Technol. 35(5), 1063–1068 (2013)

    Article  Google Scholar 

  23. Silver, D., Huang, A., Maddison, C.J., et al.: Mastering the game of Go with deep neural networks and tree search. Nature 529(7587), 484–489 (2016)

    Article  Google Scholar 

  24. Berner, C., Brockman, G., Chan, B., et al.: Dota 2 with large scale deep reinforcement learning. arXiv Preprint arXiv:1912.06680 (2019)

  25. Vinyals, O., Babuschkin, I., Czarnecki, W.M., et al.: Grandmaster level in StarCraft II using multi-agent reinforcement learning. Nature 575(7782), 350–354 (2019)

    Article  Google Scholar 

  26. Schwartz, J., Kurniawati, H.: Autonomous penetration testing using reinforcement learning. arXiv Preprint arXiv:1905.05965 (2019)

  27. Zennaro, F.M., Erdodi, L.: Modeling penetration testing with reinforcement learning using capture-the-flag challenges and tabular Q-learning. arXiv Preprint arXiv:2005.12632 (2005)

  28. Zang, Y.C., Zhou, T.Y., Zhu, J.H., et al.: Domain-independent intelligent planning technology and its application to automated penetration testing oriented attack path discovery. J. Electron. Inf. Technol. 42(9), 2095–2107 (2020)

    Google Scholar 

  29. Schwartz, J.: Network attack simulator[EB] (2017)

    Google Scholar 

  30. Al Amin, M.A.R., Shetty, S., Njilla, L., Tosh, D.K., Kamhoua, C., et al.: Hidden Markov model and cyber deception for the prevention of adversarial lateral movement. IEEE Access 9, 49662–49682 (2021)

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. NARI Group Corporation/State Grid Electric Power Research Institute, Nanjing, 210003, China

    Yunsong Yan, Wang Wang, Xiong Chen & Wei Wang

  2. School of Electrical Engineering, Southeast University, Nanjing, 210096, China

    Yunsong Yan

Authors
  1. Yunsong Yan
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Wang Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Xiong Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Wei Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Wang Wang .

Editor information

Editors and Affiliations

  1. Central South University, Changsha, Hunan, China

    Jian Dong

  2. School of Information Engineering, Shenzhen University, Shenzhen, Guangdong, China

    Long Zhang

  3. School of Information and Control Engineering, China University of Mining and Technolog, Xuzhou, Jiangsu, China

    Deqiang Cheng

Rights and permissions

Reprints and permissions

Copyright information

© 2024 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Yan, Y., Wang, W., Chen, X., Wang, W. (2024). Intelligent Active Defense Methods for Mitigating Penetration Attacks on Power Grid Buffer Networks. In: Dong, J., Zhang, L., Cheng, D. (eds) Proceedings of the 2nd International Conference on Internet of Things, Communication and Intelligent Technology. IoTCIT 2023. Lecture Notes in Electrical Engineering, vol 1197. Springer, Singapore. https://doi.org/10.1007/978-981-97-2757-5_53

Download citation

  • DOI: https://doi.org/10.1007/978-981-97-2757-5_53

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-97-2756-8

  • Online ISBN: 978-981-97-2757-5

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation