Plan2Defend: AI Planning for Cybersecurity in Smart Grids

Plan2Defend: AI Planning for Cybersecurity in Smart Grids

AI Planning (or Automated Planning) is a sub-field within AI which has been applied to several information security sub-fields, particularly vulnerability detection and incident response. Compared to other AI techniques such as machine learning, AI planning has the advantage of requiring no data or...

Full description

Saved in:
Bibliographic Details
Published in:2021 IEEE PES Innovative Smart Grid Technologies - Asia (ISGT Asia) pp. 1 - 5
Main Authors: Choi, Taejun, Ko, Ryan K L, Saha, Tapan, Scarsbrook, Joshua, Koay, Abigail MY, Wang, Shunyao, Zhang, Wenlu, Clair, Connor St
Format: Conference Proceeding
Language:English
Published: IEEE 05-12-2021
Subjects:
AI planning
Asia
automated planning
critical infrastructure
cyber resilience
cyber-security
energy grid security
False Data Injection attacks
Focusing
Industries
Information security
Machine learning
Man-in-the-Middle attacks
Operational Technology (OT)
Planning
PLC security
Prototypes
Smart grid security
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:AI Planning (or Automated Planning) is a sub-field within AI which has been applied to several information security sub-fields, particularly vulnerability detection and incident response. Compared to other AI techniques such as machine learning, AI planning has the advantage of requiring no data or datasets to train. Instead, an entity within a domain is modelled, describing the relevant features of an environment, the goals, constraints, and the actions available to the entity. This paper surveys the traditional field of automated planning and explores its application to the field of information security and in particular, automating cyber incident response. Relevant AI planning techniques are then applied to implement a prototype which demonstrates the feasibility of automating incident response, focusing on False Data Injection Attacks (FDIA) against smart grid as a use case. The effectiveness of this prototype is validated on a digital twin power delivery system at The University of Queensland Industry 4.0 Energy Testlab. The effectiveness of this prototype is quantitatively assessed with reference to best industry practice before discussing the strengths and weaknesses of adopting AI planning for incident response, and information security domains generally.
ISSN:2378-8542
DOI:10.1109/ISGTAsia49270.2021.9715679