Letter: Detecting the One-Shot Dummy Attack on the Power Industrial Control Processes With an Unsupervised Data-Driven Approach

Abstract

Dear Editor, Dummy attack (DA), a deep stealthy but impactful data integrity attack on power industrial control processes, is recently recognized as hiding the corrupted measurements in normal measurements. In this letter, targeting a more practical case, we aim to detect the one-shot DA, with the purpose of revealing the DA once it is launched. Specifically, we first formulate an optimization problem to generate one-shot DAs. Then, an unsupervised data-driven approach based on a modified local outlier factor (MLOF) is proposed to detect them. To improve the detection performance, the measurements are preprocessed with the gamma transformation and the power patterns are extracted from historical data and integrated into the MLOF algorithm. Finally, extensive experiments are conducted to evaluate the performance of the proposed approach with real-world load data.