Security Defense of Large-Scale Networks under False Data Injection Attacks: An Attack Detection Scheduling Approach

Yuhan Suo, Senchun Chai*, Runqi Chai, Zhong Hua Pang, Yuanqing Xia, Guo Ping Liu

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Citation (Scopus)

Abstract

In large-scale networks, communication links between nodes are easily injected with false data by adversaries. This paper proposes a novel security defense strategy from the perspective of attack detection scheduling to ensure the security of the network. Based on the proposed strategy, each sensor can directly exclude suspicious sensors from its neighboring set. First, the problem of selecting suspicious sensors is formulated as a combinatorial optimization problem, which is non-deterministic polynomial-time hard (NP-hard). To solve this problem, the original function is transformed into a submodular function. Then, we propose an attack detection scheduling algorithm based on the sequential submodular optimization theory, which incorporates expert problem to better utilize historical information to guide the sensor selection task at the current moment. For different attack strategies, theoretical results show that the average optimization rate of the proposed algorithm has a lower bound, and the error expectation is bounded. In addition, under two kinds of insecurity conditions, the proposed algorithm can guarantee the security of the entire network from the perspective of the augmented estimation error. Finally, the effectiveness of the developed method is verified by the numerical simulation and practical experiment.

Original languageEnglish
Pages (from-to)1908-1921
Number of pages14
JournalIEEE Transactions on Information Forensics and Security
Volume19
DOIs
Publication statusPublished - 2024

Keywords

  • Networks security
  • attack detection scheduling
  • secure state estimation
  • security analysis
  • sequential submodular optimization

Fingerprint

Dive into the research topics of 'Security Defense of Large-Scale Networks under False Data Injection Attacks: An Attack Detection Scheduling Approach'. Together they form a unique fingerprint.

Cite this