电力系统数据驱动模型的可转移注意力分散对抗攻击

IF 8 1区计算机科学 Q1 COMPUTER SCIENCE, THEORY & METHODS

IEEE Transactions on Information Forensics and Security Pub Date : 2025-03-07 DOI:10.1109/TIFS.2025.3565993

Rong Huang;Yuancheng Li;Peidong Yin;Xingyu Shang;Yuanyuan Wang

{"title":"电力系统数据驱动模型的可转移注意力分散对抗攻击","authors":"Rong Huang;Yuancheng Li;Peidong Yin;Xingyu Shang;Yuanyuan Wang","doi":"10.1109/TIFS.2025.3565993","DOIUrl":null,"url":null,"abstract":"As the digitalization of power systems progresses, data-driven models have garnered widespread attention due to their performance advantages, leading to the emergence of numerous data-driven intelligent models for power tasks, such as attack detection and stability assessment. However, data-driven models are susceptible to adversarial attacks, even when deployed in highly secure control centers. Considering the similarity in the semantic features extracted by structurally diverse data-driven models when addressing the same downstream tasks, this paper proposes a transferable attention-distracting adversarial attack tailored for power systems. This attack first introduces an adversarial perturbation selection framework with physical constraints specific to power systems. It also offers different loss functions to distract attention and strategies to weaken the significance of features. Simulation experiments confirm that distracting the model’s attention results in more stable transferable attack effects and significantly reduces the performance of data-driven models across different task scenarios. The experimental results underscore the importance of not neglecting the security and robustness of models in security-critical scenarios like power systems, even while achieving optimal performance.","PeriodicalId":13492,"journal":{"name":"IEEE Transactions on Information Forensics and Security","volume":"20 ","pages":"4985-4998"},"PeriodicalIF":8.0000,"publicationDate":"2025-03-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Transferable Attention-Distracting Adversarial Attack on Data-Driven Models for Power Systems\",\"authors\":\"Rong Huang;Yuancheng Li;Peidong Yin;Xingyu Shang;Yuanyuan Wang\",\"doi\":\"10.1109/TIFS.2025.3565993\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As the digitalization of power systems progresses, data-driven models have garnered widespread attention due to their performance advantages, leading to the emergence of numerous data-driven intelligent models for power tasks, such as attack detection and stability assessment. However, data-driven models are susceptible to adversarial attacks, even when deployed in highly secure control centers. Considering the similarity in the semantic features extracted by structurally diverse data-driven models when addressing the same downstream tasks, this paper proposes a transferable attention-distracting adversarial attack tailored for power systems. This attack first introduces an adversarial perturbation selection framework with physical constraints specific to power systems. It also offers different loss functions to distract attention and strategies to weaken the significance of features. Simulation experiments confirm that distracting the model’s attention results in more stable transferable attack effects and significantly reduces the performance of data-driven models across different task scenarios. The experimental results underscore the importance of not neglecting the security and robustness of models in security-critical scenarios like power systems, even while achieving optimal performance.\",\"PeriodicalId\":13492,\"journal\":{\"name\":\"IEEE Transactions on Information Forensics and Security\",\"volume\":\"20 \",\"pages\":\"4985-4998\"},\"PeriodicalIF\":8.0000,\"publicationDate\":\"2025-03-07\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Transactions on Information Forensics and Security\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10992256/\",\"RegionNum\":1,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, THEORY & METHODS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Information Forensics and Security","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10992256/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, THEORY & METHODS","Score":null,"Total":0}

引用次数: 0

摘要

随着电力系统数字化的发展，数据驱动模型因其性能优势而受到广泛关注，出现了大量用于攻击检测、稳定性评估等电力任务的数据驱动智能模型。然而，数据驱动的模型很容易受到对抗性攻击，即使部署在高度安全的控制中心。考虑到结构不同的数据驱动模型在处理相同下游任务时所提取的语义特征的相似性，本文提出了一种针对电力系统的可转移注意力对抗攻击。这种攻击首先引入了一个具有特定于电力系统的物理约束的对抗性扰动选择框架。它还提供了不同的损失函数来分散注意力和策略来削弱特征的重要性。仿真实验证实，分散模型的注意力可以获得更稳定的可转移攻击效果，并显著降低数据驱动模型在不同任务场景下的性能。实验结果强调了在电力系统等安全关键场景中，即使在实现最佳性能的同时，也不能忽视模型的安全性和鲁棒性的重要性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Transferable Attention-Distracting Adversarial Attack on Data-Driven Models for Power Systems

As the digitalization of power systems progresses, data-driven models have garnered widespread attention due to their performance advantages, leading to the emergence of numerous data-driven intelligent models for power tasks, such as attack detection and stability assessment. However, data-driven models are susceptible to adversarial attacks, even when deployed in highly secure control centers. Considering the similarity in the semantic features extracted by structurally diverse data-driven models when addressing the same downstream tasks, this paper proposes a transferable attention-distracting adversarial attack tailored for power systems. This attack first introduces an adversarial perturbation selection framework with physical constraints specific to power systems. It also offers different loss functions to distract attention and strategies to weaken the significance of features. Simulation experiments confirm that distracting the model’s attention results in more stable transferable attack effects and significantly reduces the performance of data-driven models across different task scenarios. The experimental results underscore the importance of not neglecting the security and robustness of models in security-critical scenarios like power systems, even while achieving optimal performance.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Transactions on Information Forensics and Security 工程技术-工程：电子与电气

CiteScore

14.40

自引率

7.40%

发文量

234

审稿时长

6.5 months

期刊介绍： The IEEE Transactions on Information Forensics and Security covers the sciences, technologies, and applications relating to information forensics, information security, biometrics, surveillance and systems applications that incorporate these features