{"id":"https://openalex.org/W4389388065","doi":"https://doi.org/10.1109/smartgridcomm57358.2023.10333966","title":"On Evasion of Machine Learning-based Intrusion Detection in Smart Grids","display_name":"On Evasion of Machine Learning-based Intrusion Detection in Smart Grids","publication_year":2023,"publication_date":"2023-10-31","ids":{"openalex":"https://openalex.org/W4389388065","doi":"https://doi.org/10.1109/smartgridcomm57358.2023.10333966"},"language":"en","primary_location":{"id":"doi:10.1109/smartgridcomm57358.2023.10333966","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm57358.2023.10333966","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5037026401","display_name":"Aneeqa Mumrez","orcid":null},"institutions":[{"id":"https://openalex.org/I102335020","display_name":"Karlsruhe Institute of Technology","ror":"https://ror.org/04t3en479","country_code":"DE","type":"education","lineage":["https://openalex.org/I102335020","https://openalex.org/I1305996414"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Aneeqa Mumrez","raw_affiliation_strings":["Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)"],"affiliations":[{"raw_affiliation_string":"Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)","institution_ids":["https://openalex.org/I102335020"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022362231","display_name":"Gustavo S\u00e1nchez","orcid":"https://orcid.org/0000-0003-0064-4116"},"institutions":[{"id":"https://openalex.org/I102335020","display_name":"Karlsruhe Institute of Technology","ror":"https://ror.org/04t3en479","country_code":"DE","type":"education","lineage":["https://openalex.org/I102335020","https://openalex.org/I1305996414"]},{"id":"https://openalex.org/I4210138172","display_name":"Institute of Information Security","ror":"https://ror.org/03rmfrm44","country_code":"JP","type":"education","lineage":["https://openalex.org/I4210138172"]}],"countries":["DE","JP"],"is_corresponding":false,"raw_author_name":"Gustavo S\u00e1nchez","raw_affiliation_strings":["Institute of Information Security and Dependability KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)"],"affiliations":[{"raw_affiliation_string":"Institute of Information Security and Dependability KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)","institution_ids":["https://openalex.org/I102335020","https://openalex.org/I4210138172"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025369498","display_name":"Ghada Elbez","orcid":"https://orcid.org/0000-0003-1137-1782"},"institutions":[{"id":"https://openalex.org/I102335020","display_name":"Karlsruhe Institute of Technology","ror":"https://ror.org/04t3en479","country_code":"DE","type":"education","lineage":["https://openalex.org/I102335020","https://openalex.org/I1305996414"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Ghada Elbez","raw_affiliation_strings":["Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)"],"affiliations":[{"raw_affiliation_string":"Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)","institution_ids":["https://openalex.org/I102335020"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014228448","display_name":"Veit Hagenmeyer","orcid":"https://orcid.org/0000-0002-3572-9083"},"institutions":[{"id":"https://openalex.org/I102335020","display_name":"Karlsruhe Institute of Technology","ror":"https://ror.org/04t3en479","country_code":"DE","type":"education","lineage":["https://openalex.org/I102335020","https://openalex.org/I1305996414"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Veit Hagenmeyer","raw_affiliation_strings":["Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)"],"affiliations":[{"raw_affiliation_string":"Institute for Automation and Applied Informatics (IAI) KASTEL Security Research Labs (SRL), Karlsruhe Institute of Technology (KIT)","institution_ids":["https://openalex.org/I102335020"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5037026401"],"corresponding_institution_ids":["https://openalex.org/I102335020"],"apc_list":null,"apc_paid":null,"fwci":1.4352,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.83413424,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10917","display_name":"Smart Grid Security and Resilience","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/2207","display_name":"Control and Systems Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/modbus","display_name":"Modbus","score":0.8817887306213379},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7488173246383667},{"id":"https://openalex.org/keywords/testbed","display_name":"Testbed","score":0.731272280216217},{"id":"https://openalex.org/keywords/evasion","display_name":"Evasion (ethics)","score":0.7176631093025208},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.6998223066329956},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.6891857385635376},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4558613896369934},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.4156873822212219},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3359746038913727},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.18433907628059387},{"id":"https://openalex.org/keywords/communications-protocol","display_name":"Communications protocol","score":0.09523364901542664}],"concepts":[{"id":"https://openalex.org/C2776666747","wikidata":"https://www.wikidata.org/wiki/Q1135322","display_name":"Modbus","level":3,"score":0.8817887306213379},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7488173246383667},{"id":"https://openalex.org/C31395832","wikidata":"https://www.wikidata.org/wiki/Q1318674","display_name":"Testbed","level":2,"score":0.731272280216217},{"id":"https://openalex.org/C2781251061","wikidata":"https://www.wikidata.org/wiki/Q5416089","display_name":"Evasion (ethics)","level":3,"score":0.7176631093025208},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.6998223066329956},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.6891857385635376},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4558613896369934},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.4156873822212219},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3359746038913727},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.18433907628059387},{"id":"https://openalex.org/C12269588","wikidata":"https://www.wikidata.org/wiki/Q132364","display_name":"Communications protocol","level":2,"score":0.09523364901542664},{"id":"https://openalex.org/C8891405","wikidata":"https://www.wikidata.org/wiki/Q1059","display_name":"Immune system","level":2,"score":0.0},{"id":"https://openalex.org/C203014093","wikidata":"https://www.wikidata.org/wiki/Q101929","display_name":"Immunology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/smartgridcomm57358.2023.10333966","is_oa":false,"landing_page_url":"https://doi.org/10.1109/smartgridcomm57358.2023.10333966","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE International Conference on Communications, Control, and Computing Technologies for Smart Grids (SmartGridComm)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320325698","display_name":"Helmholtz Association","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W9657784","https://openalex.org/W1552238199","https://openalex.org/W1576185228","https://openalex.org/W2067775505","https://openalex.org/W2123886726","https://openalex.org/W2146211060","https://openalex.org/W2151298633","https://openalex.org/W2887434122","https://openalex.org/W2951987931","https://openalex.org/W2962862931","https://openalex.org/W2994973900","https://openalex.org/W3015481738","https://openalex.org/W3033609135","https://openalex.org/W3088989944","https://openalex.org/W3092030485","https://openalex.org/W3123953333","https://openalex.org/W3125068687","https://openalex.org/W3196299211","https://openalex.org/W4288062092","https://openalex.org/W4293317155","https://openalex.org/W4301880089","https://openalex.org/W4315647204","https://openalex.org/W4387197245","https://openalex.org/W6600428322","https://openalex.org/W6681652963","https://openalex.org/W6737947904","https://openalex.org/W6841041139","https://openalex.org/W6929040167"],"related_works":["https://openalex.org/W2394363056","https://openalex.org/W2362216025","https://openalex.org/W2371014880","https://openalex.org/W3015293401","https://openalex.org/W2357768347","https://openalex.org/W4223430807","https://openalex.org/W2379048028","https://openalex.org/W2371067528","https://openalex.org/W2808001300","https://openalex.org/W1548771250"],"abstract_inverted_index":{"Artificial":[0],"intelligence":[1],"techniques":[2,35],"play":[3],"a":[4,31,70,107],"significant":[5],"role":[6],"in":[7,96,124],"the":[8,28,56,79,87,119,125,140,147],"cybersecurity":[9],"of":[10,33,73,81,91,121,128,143,149,155],"smart":[11],"grids":[12],"(SGs).":[13],"Machine":[14],"learning":[15],"(ML)":[16],"algorithms":[17,65],"can":[18],"successfully":[19,42],"differentiate":[20],"between":[21],"normal":[22,53],"behaviour":[23],"and":[24,89,136],"attacks,":[25],"even":[26],"if":[27],"anomalies":[29],"are":[30],"by-product":[32],"malicious":[34,40,74],"never":[36],"seen":[37],"before.":[38],"However,":[39],"actors":[41],"evade":[43],"ML-based":[44,62,109],"intrusion":[45,63],"detection":[46,64],"systems":[47],"(IDSs)":[48],"with":[49,78],"attacks":[50,82,123],"that":[51,111],"mimic":[52],"operation.":[54],"In":[55],"present":[57],"paper,":[58],"we":[59,105,132,158],"proactively":[60],"test":[61],"against":[66,93],"adversarial":[67],"scenarios":[68],"for":[69,152],"better":[71],"understanding":[72],"capabilities.":[75],"We":[76,116],"start":[77],"implementation":[80],"(reconnaissance,":[83],"data":[84],"modification":[85],"on":[86],"fly,":[88],"denial":[90],"service":[92],"Modbus":[94,113,129,164],"TCP)":[95],"our":[97,134,160],"testbed":[98],"at":[99],"KASTEL":[100],"Security":[101],"Lab":[102],"Energy.":[103],"Then,":[104],"develop":[106],"prototype":[108],"IDS":[110,156],"monitors":[112],"TCP":[114,165],"traffic.":[115,167],"explicitly":[117],"discuss":[118,137],"feasibility":[120],"evasion":[122],"problem":[126],"space":[127],"TCP.":[130],"Finally,":[131],"report":[133],"findings":[135],"challenges":[138],"from":[139],"attacker\u2019s":[141],"point":[142],"view.":[144],"Additionally,":[145],"considering":[146],"scarcity":[148],"available":[150],"datasets":[151],"effective":[153],"evaluation":[154],"approaches,":[157],"release":[159],"dataset":[161],"which":[162],"includes":[163],"network":[166]},"counts_by_year":[{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":2}],"updated_date":"2026-03-05T09:29:38.588285","created_date":"2025-10-10T00:00:00"}