Clustering and Ensemble Based Approach for Securing Electricity Theft Detectors Against Evasion Attacks

Islam Elgarhy; Mahmoud M. Badr; Mohamed M. E. A. Mahmoud; Mostafa M. Fouda; Maazen Alsabaan; Hisham A. Kholidy

doi:10.1109/ACCESS.2023.3318111

IEEE Access (Jan 2023)

Clustering and Ensemble Based Approach for Securing Electricity Theft Detectors Against Evasion Attacks

Islam Elgarhy,
Mahmoud M. Badr,
Mohamed M. E. A. Mahmoud,
Mostafa M. Fouda,
Maazen Alsabaan,
Hisham A. Kholidy

Affiliations

Islam Elgarhy: ORCiD; Department of Electrical and Computer Engineering, Tennessee Tech University, Cookeville, TN, USA
Mahmoud M. Badr: ORCiD; Department of Network and Computer Security, College of Engineering, SUNY Polytechnic Institute, Utica, NY, USA
Mohamed M. E. A. Mahmoud: ORCiD; Department of Electrical and Computer Engineering, Tennessee Tech University, Cookeville, TN, USA
Mostafa M. Fouda: ORCiD; Department of Electrical and Computer Engineering, College of Science and Engineering, Idaho State University, Pocatello, ID, USA
Maazen Alsabaan: ORCiD; Department of Computer Engineering, College of Computer and Information Sciences, King Saud University, Riyadh, Saudi Arabia
Hisham A. Kholidy: ORCiD; Department of Network and Computer Security, College of Engineering, SUNY Polytechnic Institute, Utica, NY, USA

DOI: https://doi.org/10.1109/ACCESS.2023.3318111
Journal volume & issue: Vol. 11
pp. 112147 – 112164

Abstract

Read online

In smart power grids, electricity theft causes huge economic losses to electrical utility companies. Machine learning (ML), especially deep neural network (DNN) models hold state-of-the-art performance in detecting electricity theft cyberattacks. However, DNN models are vulnerable to adversarial attacks, i.e., evasion attacks. In this work, we, first, study the vulnerability of the DNN-based electricity theft detectors against evasion attacks and the influence of the model’s regularization (generalization) and transferability on robustness. Then, we cluster the power consumers and train a detector for each cluster, and compare the performance and robustness of this detector to a global detector that is trained on all the consumers’ data. The results indicate that the cluster-based detector is not only more robust against evasion attacks but also enhances normal classification accuracy because its training data has more consumption pattern similarity compared to the training data of the global detector which requires higher level of regularization. Then, we develop a cluster-based parallel-ensemble electricity theft detector to achieve high robustness against evasion attacks and high detection accuracy. The proposed detector has two levels of defense, including clustering and ensemble, where clustering decreases regularization and improves robustness, and the ensemble of diverse decision models improves robustness against transferability. We evaluate the detector on different threat models, including Blackbox and Graybox with different knowledge about defense strategy, model architecture, and training dataset. The evaluation results indicate that unlike the existing solutions that sacrifice the normal accuracy of the model to improve the robustness against evasion attacks, the proposed detector outperforms the benchmark defenses in terms of robustness and normal classification accuracy.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords