Cross-Domain Generalization Failures in IIoT Intrusion Detection
June 30, 2026
Research shows that lightweight intrusion detection models for IIoT networks fail to generalize to unseen, structurally distinct networks. Models often over-rely on coarse port-category features that do not persist across different network environments, leading to poor out-of-distribution performance.
HOW THIS AFFECTS YOU
●
builderYou should avoid relying on lightweight models for edge security unless they are validated on diverse datasets.
●
policyThis highlights security risks in deploying unverified lightweight AI models to critical industrial infrastructure.