Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Dynamic Role-Based Access Control Policy for Smart Grid Applications: An Offline Deep Reinforcement Learning Approach

Journal Article · · IEEE Transactions on Human-Machine Systems
 [1];  [2];  [1]
  1. Univ. of New Mexico, Albuquerque, NM (United States)
  2. Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
+ Show Author Affiliations

Role-based access control (RBAC) is adopted in the information and communication technology domain for authentication purposes. However, due to a very large number of entities within organizational access control (AC) systems, static RBAC management can be inefficient, costly, and can lead to cybersecurity threats. In this paper, a novel hybrid RBAC model is proposed, based on the principles of offline deep reinforcement learning (RL) and Bayesian belief networks. The considered framework utilizes a fully offline RL agent, which models the behavioral history of users as a Bayesian belief-based trust indicator. Thus, the initial static RBAC policy is improved in a dynamic manner through off-policy learning while guaranteeing compliance of the internal users with the security rules of the system. By deploying our implementation within the smart grid domain and specifically within a Distributed Energy Resources (DER) ecosystem, we provide an end-to-end proof of concept of our model. Finally, detailed analysis and evaluation regarding the offline training phase of the RL agent are provided, while the online deployment of the hybrid RL-based RBAC model into the DER ecosystem highlights its key operation features and salient benefits over traditional RBAC models.

Research Organization:
Sandia National Laboratories (SNL-NM), Albuquerque, NM (United States)
Sponsoring Organization:
USDOE Office of Energy Efficiency and Renewable Energy (EERE), Renewable Power Office. Solar Energy Technologies Office
Grant/Contract Number:
NA0003525
OSTI ID:
1872014
Report Number(s):
SAND2022-2911J; 706292
Journal Information:
IEEE Transactions on Human-Machine Systems, Journal Name: IEEE Transactions on Human-Machine Systems Journal Issue: 4 Vol. 52; ISSN 2168-2291
Publisher:
IEEECopyright Statement
Country of Publication:
United States
Language:
English

References (24)

Q-learning journal May 1992
Automatic fine-grained access control in SCADA by machine learning journal April 2019
A convolutional neural-based learning classifier system for detecting database intrusion via insider attack journal February 2020
Human-level control through deep reinforcement learning journal February 2015
Power system effects and mitigation recommendations for DER cyberattacks journal September 2019
Intelligent Performance-Aware Adaptation of Control Policies for Optimizing Banking Teller Process Using Machine Learning journal January 2020
Hybrid Intrusion Detection System Design for Distributed Energy Resource Systems conference April 2019
Database Intrusion Detection System Using Octraplet and Machine Learning conference April 2018
Path planning for intelligent robots based on deep Q-learning with experience replay and heuristic knowledge journal July 2020
Human-Swarm-Teaming Transparency and Trust Architecture journal July 2021
Physical Safety and Cyber Security Analysis of Multi-Agent Systems: A Survey of Recent Advances journal February 2021
Hierarchical Reinforcement Learning With Automatic Sub-Goal Identification journal October 2021
Deep Reinforcement Learning: A Brief Survey journal November 2017
Security in Mobile Edge Caching with Reinforcement Learning journal June 2018
International Development of a Distributed Energy Resource Test Platform for Electrical and Interoperability Certification
  • Johnson, Jay; Apablaza-Arancibia, Estefan; Ninad, Nayeem
  • 2018 IEEE 7th World Conference on Photovoltaic Energy Conversion (WCPEC) (A Joint Conference of 45th IEEE PVSC, 28th PVSEC & 34th EU PVSEC) https://doi.org/10.1109/PVSC.2018.8547588
conference June 2018
Incorporating Behavior in Attribute Based Access Control Model Using Machine Learning conference April 2021
Scheduling Semiconductor Testing Facility by Using Cuckoo Search Algorithm With Reinforcement Learning and Surrogate Modeling journal April 2019
A Double-Blind Anonymous Evaluation-Based Trust Model in Cloud Computing Environments journal March 2021
Security analysis in role-based access control journal November 2006
A Survey of Role Mining journal May 2016
A Survey on Deep Learning: Algorithms, Techniques, and Applications journal September 2019
Emergence-Based Access Control conference January 2018
Dynamic Access Control Policy based on Blockchain and Machine Learning for the Internet of Things journal January 2017
Counterfactual Multi-Agent Policy Gradients journal April 2018

Similar Records

Centralized and Decentralized Distributed Energy Resource Access Control Implementation Considerations.
Journal Article · Thu Sep 01 00:00:00 EDT 2022 · Energies · OSTI ID:1888513
Recommendations for Distributed Energy Resource Access Control
Technical Report · Thu Dec 31 23:00:00 EST 2020 · OSTI ID:1765273
Role-Based Access Control for Distributed Energy Resources v.1.0
Software · Mon Jul 19 20:00:00 EDT 2021 · OSTI ID:code-61160

Related Subjects

32 ENERGY CONSERVATION, CONSUMPTION, AND UTILIZATION
Bayesian belief
deep reinforcement learning (RL)
distributed energy resources (DER)
machine learning (ML)
offline policy improvement
role based access control (RBAC)
smart gird
trust