Virtual sensor supervised learning for cyber-attack neutralization

Roychowdhury, Subhrajit; Abbaszadeh, Masoud; Dokucu, Mustafa Tekin

Advanced Search OptionsAdvanced Search queries use a traditional Term Search. For more info, see our FAQ.

All Fields:

Patent Title:

Abstract:

Assignee:

Inventor(s):

Patent Number:

Patent Classification (CPC):

All Classifications
A - human necessities
A01 - agriculture
A21 - baking
A22 - butchering
A23 - foods or foodstuffs
A24 - tobacco
A41 - wearing apparel
A42 - headwear
A43 - footwear
A44 - haberdashery
A45 - hand or travelling articles
A46 - brushware
A47 - furniture
A61 - medical or veterinary science
A62 - life-saving
A63 - sports
A99 - subject matter not otherwise provided for in this section
B - performing operations
B01 - physical or chemical processes or apparatus in general
B02 - crushing, pulverising, or disintegrating
B03 - separation of solid materials using liquids or using pneumatic tables or jigs
B04 - centrifugal apparatus or machines for carrying-out physical or chemical processes
B05 - spraying or atomising in general
B06 - generating or transmitting mechanical vibrations in general
B07 - separating solids from solids
B08 - cleaning
B09 - disposal of solid waste
B21 - mechanical metal-working without essentially removing material
B22 - casting
B23 - machine tools
B24 - grinding
B25 - hand tools
B26 - hand cutting tools
B27 - working or preserving wood or similar material
B28 - working cement, clay, or stone
B29 - working of plastics
B30 - presses
B31 - making articles of paper, cardboard or material worked in a manner analogous to paper
B32 - layered products
B33 - additive manufacturing technology
B41 - printing
B42 - bookbinding
B43 - writing or drawing implements
B44 - decorative arts
B60 - vehicles in general
B61 - railways
B62 - land vehicles for travelling otherwise than on rails
B63 - ships or other waterborne vessels
B64 - aircraft
B65 - conveying
B66 - hoisting
B67 - opening, closing {or cleaning} bottles, jars or similar containers
B68 - saddlery
B81 - microstructural technology
B82 - nanotechnology
B99 - subject matter not otherwise provided for in this section
C - chemistry
C01 - inorganic chemistry
C02 - treatment of water, waste water, sewage, or sludge
C03 - glass
C04 - cements
C05 - fertilisers
C06 - explosives
C07 - organic chemistry
C08 - organic macromolecular compounds
C09 - dyes
C10 - petroleum, gas or coke industries
C11 - animal or vegetable oils, fats, fatty substances or waxes
C12 - biochemistry
C13 - sugar industry
C14 - skins
C21 - metallurgy of iron
C22 - metallurgy
C23 - coating metallic material
C25 - electrolytic or electrophoretic processes
C30 - crystal growth
C40 - combinatorial technology
C99 - subject matter not otherwise provided for in this section
D - textiles
D01 - natural or man-made threads or fibres
D02 - yarns
D03 - weaving
D04 - braiding
D05 - sewing
D06 - treatment of textiles or the like
D07 - ropes
D10 - indexing scheme associated with sublasses of section d, relating to textiles
D21 - paper-making
D99 - subject matter not otherwise provided for in this section
E - fixed constructions
E01 - construction of roads, railways, or bridges
E02 - hydraulic engineering
E03 - water supply
E04 - building
E05 - locks
E06 - doors, windows, shutters, or roller blinds in general
E21 - earth drilling
E99 - subject matter not otherwise provided for in this section
F - mechanical engineering
F01 - machines or engines in general
F02 - combustion engines
F03 - machines or engines for liquids
F04 - positive - displacement machines for liquids
F05 - indexing schemes relating to engines or pumps in various subclasses of classes f01-f04
F15 - fluid-pressure actuators
F16 - engineering elements and units
F17 - storing or distributing gases or liquids
F21 - lighting
F22 - steam generation
F23 - combustion apparatus
F24 - heating
F25 - refrigeration or cooling
F26 - drying
F27 - furnaces
F28 - heat exchange in general
F41 - weapons
F42 - ammunition
F99 - subject matter not otherwise provided for in this section
G - physics
G01 - measuring
G02 - optics
G03 - photography
G04 - horology
G05 - controlling
G06 - computing
G07 - checking-devices
G08 - signalling
G09 - education
G10 - musical instruments
G11 - information storage
G12 - instrument details
G16 - information and communication technology [ict] specially adapted for specific application fields
G21 - nuclear physics
G99 - subject matter not otherwise provided for in this section
H - electricity
H01 - basic electric elements
H02 - generation
H03 - basic electronic circuitry
H04 - electric communication technique
H05 - electric techniques not otherwise provided for
H99 - subject matter not otherwise provided for in this section
Y - new / cross sectional technologies
Y02 - technologies or applications for mitigation or adaptation against climate change
Y04 - information or communication technologies having an impact on other technology areas
Y10 - technical subjects covered by former uspc

More Options ...

Title: Virtual sensor supervised learning for cyber-attack neutralization

Abstract

An industrial asset may have monitoring nodes that generate current monitoring node values. A dynamic, resilient estimator may split a temporal monitoring node space into normal and one or more abnormal subspaces associated with different kinds of attack vectors. According to some embodiments, a neutralization model is constructed and trained for each attack vector using supervised learning and the associated abnormal subspace. In other embodiments, a single model is created using out-of-range values for abnormal monitoring nodes. Responsive to an indication of a particular abnormal monitoring node or nodes, the system may automatically invoke the appropriate neutralization model to determine estimated values of the particular abnormal monitoring node or nodes (e.g., by selecting the correct model or using out-of-range values). The series of current monitoring node values from the abnormal monitoring node or nodes may then be replaced with the estimated values.

Inventors:: Roychowdhury, Subhrajit; Abbaszadeh, Masoud; Dokucu, Mustafa Tekin

Issue Date:: 2023-08-15

Research Org.:: General Electric Co., Schenectady, NY (United States)

Sponsoring Org.:: USDOE

OSTI Identifier:: 2222146

Patent Number(s):: 11729190

Application Number:: 16/666,807

Assignee:: General Electric Company (Schenectady, NY)

DOE Contract Number:: OE0000833

Resource Type:: Patent

Resource Relation:: Patent File Date: 10/29/2019

Country of Publication:: United States

Language:: English

Subject:: 97 MATHEMATICS AND COMPUTING

Citation Formats


                    Roychowdhury, Subhrajit, Abbaszadeh, Masoud, and Dokucu, Mustafa Tekin. Virtual sensor supervised learning for cyber-attack neutralization.  United States: N. p., 2023. 
        Web.

Copy to clipboard


                    Roychowdhury, Subhrajit, Abbaszadeh, Masoud, & Dokucu, Mustafa Tekin. Virtual sensor supervised learning for cyber-attack neutralization.  United States.

Copy to clipboard


                    Roychowdhury, Subhrajit, Abbaszadeh, Masoud, and Dokucu, Mustafa Tekin. Tue .  
        "Virtual sensor supervised learning for cyber-attack neutralization".  United States.  https://www.osti.gov/servlets/purl/2222146.

Copy to clipboard


                    
@article{osti_2222146,

  title        = {Virtual sensor supervised learning for cyber-attack neutralization},

  author       = {Roychowdhury, Subhrajit and Abbaszadeh, Masoud and Dokucu, Mustafa Tekin},

  abstractNote = {An industrial asset may have monitoring nodes that generate current monitoring node values. A dynamic, resilient estimator may split a temporal monitoring node space into normal and one or more abnormal subspaces associated with different kinds of attack vectors. According to some embodiments, a neutralization model is constructed and trained for each attack vector using supervised learning and the associated abnormal subspace. In other embodiments, a single model is created using out-of-range values for abnormal monitoring nodes. Responsive to an indication of a particular abnormal monitoring node or nodes, the system may automatically invoke the appropriate neutralization model to determine estimated values of the particular abnormal monitoring node or nodes (e.g., by selecting the correct model or using out-of-range values). The series of current monitoring node values from the abnormal monitoring node or nodes may then be replaced with the estimated values.},

  doi          = {},

  journal      = {},
number       = ,

  volume       = ,

  place        = {United States},

  year         = {2023},

  month        = {8}

}

Copy to clipboard

Patent:

Save / Share:

Export Metadata

Save to My Library

Works referenced in this record:

Autonomous Reconfigurable Virtual Sensing System for Cyber-Attack Neutralization
patent-application, July 2019

Abbaszadeh, Masoud; Mestha, Lalit Keshav
US Patent Application 15/977,595; 2019/0230106 Al
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20190230106

Using virtual sensors to accommodate industrial asset control systems during cyber attacks
patent-application, February 2019

Mestha, Lalit Keshav; Achanta, Hema Kumari; John, Justin Varkey
US Patent Application 15/683250; 20190068618
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20190068618

Multi-Modal, Multi-Disciplinary Feature Discovery to Detect Cyber Threats in Electric Power Grid
patent-application, September 2018

Yan, Weizhong; Abbaszadeh, Masoud; Mestha, Lalit Keshav
US Patent Application 15/454219; 20180262525
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180262525

Cluster-based decision boundaries for threat detection in industrial asset control system
patent-application, July 2018

Abbaszadeh, Masoud; Bushey, Cody Joe; Mestha, Lalit Keshav
US Patent Application 15/397062; 20180191758
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180191758

Cyberattack-Resilient Control System Design
patent-application, July 2019

Wei, Dong; Wang, Lingyun; de Agular, Leandro Pfleger
US Patent Application 16/331,159; 2019/0220374 Al
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20190220374

Security network devices by forecasting future security incidents for a network based on past security incidents
patent, January 2020

Han, Yufei; Shen, Yun; Yumer, Leylya
US Patent Document 10,547,623
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/10547623

Unauthorized Communication Detection Apparatus and Recording Medium
patent-application, August 2020

Hawana, Hiroki; Naka, Kenji; Taniguchi, Tsuyoshi
US Patent Application 16/565574; 20200275278
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20200275278

Cyber-Attack Detection and Neutralization
patent-application, September 2018

Mestha, Lalit Keshav; Anubi, Olugbenga; Abbaszadeh, Masoud
US Patent Application 15/454,144; 2018/0255091 Al
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180255091

A new Method Against Attacks on Networked Industrial Control Systems
conference, August 2017

Truong, Nguyen Dao; Tu, Le My
FAIR - NGHIÊN CỨU CƠ BẢN VÀ ỨNG DỤNG CÔNG NGHỆ THÔNG TIN - 2016
https://doi.org/10.15625/vap.2016.0002

Automated Attack Localization and Detection
patent-application, June 2018

Abbaszadeh, Masoud; Mestha, Lalit Keshav; Bushey, Cody
US Patent Application 15/478425; 20180157831
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180157831

Multi-mode boundary selection for threat detection in industrial asset control system
patent-application, June 2018

Holzhauer, Daniel Francis; Bushey, Cody Joe; Mestha, Lalit Keshav
US Patent Application 15/371723; 20180159877
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20180159877

Multi-Class Decision System for Categorizing Industrial Asset Attack and Fault Types
patent-application, February 2019

Abbaszadeh, Masoud; Mestha, Lalit Keshav; Yan, Weizhong
US Patent Application 15/691,827; 2019/0058715 Al
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/20190058715

Profiling cyber threats detected in a target environment and automatically generating one or more rule bases for an expert system usable to profile cyber threats detected in a target environment
patent, October 2017

Laidlaw, Stuart; Harold, St. John; Hillick, Mark
US Patent Document 9,807,109
URL: https://image-ppubs.uspto.gov/dirsearch-public/print/downloadPdf/9807109

Vulnerabilities and Countermeasures – A Survey on the Cyber Security Issues in the Transmission Subsystem of a Smart Grid
journal, April 2012

Deng, Yi; Shukla, Sandeep
Journal of Cyber Security and Mobility
https://doi.org/10.13052/jcsm2245-1439.1236

Similar Records in DOE Patents and OSTI.GOV collections:

Using virtual sensors to accommodate industrial asset control systems during cyber attacks

Patent Mestha, Lalit Keshav; Achanta, Hema Kumari; John, Justin Varkey; ...

In some embodiments, an industrial asset may be associated with a plurality of monitoring nodes, each monitoring node generating a series of monitoring node values over time that represent operation of the industrial asset. A threat detection computer may determine that an attacked monitoring node is currently being attacked. Responsive to this determination, a virtual sensor coupled to the plurality of monitoring nodes may estimate a series of virtual node values for the attacked monitoring node(s) based on information received from monitoring nodes that are not currently being attacked. The virtual sensor may then replace the series of monitoring nodemore » « less
Full Text Available
Using virtual sensors to accommodate industrial asset control systems during cyber attacks

Patent Mestha, Lalit Keshav; Achanta, Hema Kumari; John, Justin Varkey; ...

In some embodiments, an industrial asset may be associated with a plurality of monitoring nodes, each monitoring node generating a series of monitoring node values over time that represent operation of the industrial asset. A threat detection computer may determine that an attacked monitoring node is currently being attacked. Responsive to this determination, a virtual sensor coupled to the plurality of monitoring nodes may estimate a series of virtual node values for the attacked monitoring node(s) based on information received from monitoring nodes that are not currently being attacked. The virtual sensor may then replace the series of monitoring nodemore » « less
Full Text Available
Dynamic, resilient virtual sensing system and shadow controller for cyber-attack neutralization

Patent Roychowdhury, Subhrajit; Abbaszadeh, Masoud; Dokucu, Mustafa Tekin

An industrial asset may have monitoring nodes (e.g., sensor or actuator nodes) that generate current monitoring node values. An abnormality detection and localization computer may receive the series of current monitoring node values and output an indication of at least one abnormal monitoring node that is currently being attacked or experiencing a fault. An actor-critic platform may tune a dynamic, resilient state estimator for a sensor node and output tuning parameters for a controller that improve operation of the industrial asset during the current attack or fault. The actor-critic platform may include, for example, a dynamic, resilient state estimator, anmore » « less
Full Text Available
Adaptive, self-tuning virtual sensing system for cyber-attack neutralization

Patent Abbaszadeh, Masoud; Dokucu, Mustafa Tekin; John, Justin Varkey

An industrial asset may have a plurality of monitoring nodes, each monitoring node generating a series of monitoring node values over time representing current operation of the industrial asset. An abnormality detection computer may determine that an abnormal monitoring node is currently being attacked or experiencing a fault. An autonomous, resilient estimator may continuously execute an adaptive learning process to create or update virtual sensor models for that monitoring node. Responsive to an indication that a monitoring node is currently being attacked or experiencing a fault, a level of neutralization may be automatically determined. The autonomous, resilient estimator may thenmore » « less
Full Text Available
Autonomous reconfigurable virtual sensing system for cyber-attack neutralization

Patent Abbaszadeh, Masoud; Mestha, Lalit Keshav

An industrial asset may be associated with a plurality of monitoring nodes, each monitoring node generating a series of monitoring node values over time representing current operation of the industrial asset. An abnormality detection computer may determine that at least one abnormal monitoring node is currently being attacked or experiencing a fault. A virtual sensing estimator may continuously execute an adaptive learning process to create or update virtual sensor models for the monitoring nodes. Responsive to an indication that a monitoring node is currently being attacked or experiencing a fault, the virtual sensing estimator may be dynamically reconfigured to estimatemore » « less
Full Text Available

Similar Records

Title: Virtual sensor supervised learning for cyber-attack neutralization

Abstract

Citation Formats

Autonomous Reconfigurable Virtual Sensing System for Cyber-Attack Neutralization patent-application, July 2019

Using virtual sensors to accommodate industrial asset control systems during cyber attacks patent-application, February 2019

Multi-Modal, Multi-Disciplinary Feature Discovery to Detect Cyber Threats in Electric Power Grid patent-application, September 2018

Cluster-based decision boundaries for threat detection in industrial asset control system patent-application, July 2018

Cyberattack-Resilient Control System Design patent-application, July 2019

Security network devices by forecasting future security incidents for a network based on past security incidents patent, January 2020

Unauthorized Communication Detection Apparatus and Recording Medium patent-application, August 2020

Cyber-Attack Detection and Neutralization patent-application, September 2018

A new Method Against Attacks on Networked Industrial Control Systems conference, August 2017

Automated Attack Localization and Detection patent-application, June 2018

Multi-mode boundary selection for threat detection in industrial asset control system patent-application, June 2018

Multi-Class Decision System for Categorizing Industrial Asset Attack and Fault Types patent-application, February 2019

Profiling cyber threats detected in a target environment and automatically generating one or more rule bases for an expert system usable to profile cyber threats detected in a target environment patent, October 2017

Vulnerabilities and Countermeasures – A Survey on the Cyber Security Issues in the Transmission Subsystem of a Smart Grid journal, April 2012

Autonomous Reconfigurable Virtual Sensing System for Cyber-Attack Neutralization
patent-application, July 2019

Using virtual sensors to accommodate industrial asset control systems during cyber attacks
patent-application, February 2019

Multi-Modal, Multi-Disciplinary Feature Discovery to Detect Cyber Threats in Electric Power Grid
patent-application, September 2018

Cluster-based decision boundaries for threat detection in industrial asset control system
patent-application, July 2018

Cyberattack-Resilient Control System Design
patent-application, July 2019

Security network devices by forecasting future security incidents for a network based on past security incidents
patent, January 2020

Unauthorized Communication Detection Apparatus and Recording Medium
patent-application, August 2020

Cyber-Attack Detection and Neutralization
patent-application, September 2018

A new Method Against Attacks on Networked Industrial Control Systems
conference, August 2017

Automated Attack Localization and Detection
patent-application, June 2018

Multi-mode boundary selection for threat detection in industrial asset control system
patent-application, June 2018

Multi-Class Decision System for Categorizing Industrial Asset Attack and Fault Types
patent-application, February 2019

Profiling cyber threats detected in a target environment and automatically generating one or more rule bases for an expert system usable to profile cyber threats detected in a target environment
patent, October 2017

Vulnerabilities and Countermeasures – A Survey on the Cyber Security Issues in the Transmission Subsystem of a Smart Grid
journal, April 2012