Open AccessThis article is
- freely available
Intrusion Detection of NSM Based DoS Attacks Using Data Mining in Smart Grid
Department of Computer Science and Engineering, Ewha Womans University, Seoul 120-750, Korea
Department of Computer Engineering, Hankyong National University, Anseong 456-749, Korea
Managed Security Research Team, Electronics and Telecommunications Research Institute, Daejeon 305-700, Korea
* Author to whom correspondence should be addressed.
Received: 5 September 2012; in revised form: 9 October 2012 / Accepted: 12 October 2012 / Published: 19 October 2012
Abstract: In this paper, we analyze the Network and System Management (NSM) requirements and NSM data objects for the intrusion detection of power systems; NSM is an IEC 62351-7 standard. We analyze a SYN flood attack and a buffer overflow attack to cause the Denial of Service (DoS) attack described in NSM. After mounting the attack in our attack testbed, we collect a data set, which is based on attributes for the attack. We then run several data mining methods with the data set using the Waikato Environment for Knowledge Analysis (WEKA). In the results, we select the decision tree algorithms with high detection rates, and choose key attributes in high level components of the trees. When we run several data mining methods again with the data set of chosen key attributes, the detection rates of most data mining methods are higher than before. We prove that our selected attack attributes, and the proposed detection process, are efficient and suitable for intrusion detection in the smart grid environment.
Keywords: Denial of Service (DoS) attack; intrusion detection; Network and System Management (NSM); smart grid; data mining
Article StatisticsClick here to load and display the download statistics.
Notes: Multiple requests from the same IP address are counted as one view.
Cite This Article
MDPI and ACS Style
Choi, K.; Chen, X.; Li, S.; Kim, M.; Chae, K.; Na, J. Intrusion Detection of NSM Based DoS Attacks Using Data Mining in Smart Grid. Energies 2012, 5, 4091-4109.
Choi K, Chen X, Li S, Kim M, Chae K, Na J. Intrusion Detection of NSM Based DoS Attacks Using Data Mining in Smart Grid. Energies. 2012; 5(10):4091-4109.
Choi, Kyung; Chen, Xinyi; Li, Shi; Kim, Mihui; Chae, Kijoon; Na, JungChan. 2012. "Intrusion Detection of NSM Based DoS Attacks Using Data Mining in Smart Grid." Energies 5, no. 10: 4091-4109.