Raman Goyal,Dhrubajit Chowdhury,Shantanu Rane

2024-03-13

Abstract:This paper introduces a novel approach to concurrently design dynamic controllers and correlated differential privacy noise in dynamic control systems. An increase in privacy noise increases the system's privacy but adversely affects the system's performance. Our approach optimizes the noise distribution while shaping closed-loop system dynamics such that the privacy noise has the least impact on system performance and the most effect on system privacy. We further add privacy noise to both control input and system output to privatize the system's state for an adversary with access to both communication channels and direct output measurements. The study also suggests tailored privacy bounds for different states, providing a comprehensive framework for jointly optimizing system performance and privacy in the context of differential privacy.

Systems and Control,Optimization and Control

Di Zhang,Yuan-Hua Ni

DOI: https://doi.org/10.1002/oca.3062

2024-01-01

Abstract:A linear-quadratic optimal control is investigated in this article under the differential privacy (DP) philosophy to trade off the performance and privacy of sensitive information, where the two controllers have asymmetric information structure and some prescribed signal needs to be tracked. Note that the system output and tracking signal are always sensitive and easy to be filched by adversaries; thus the DP methodology is explored to protect them. Under DP Gaussian mechanism, the optimal linear controllers are first studied for finite-horizon and infinite-horizon problems. Then, the bounds of mean-square error of steady-state Kalman filter estimator is provided, and the DP parameter design will be guided that characterizes the privacy of sensitive information. As the DP Gaussian noise will degrade the controlled performance, the degraded performance is quantitatively calculated. Finally, a numerical example is given that shows the efficiency of obtained results. A linear-quadratic (LQ) optimal control is investigated in this paper under the differential privacy (DP) philosophy to trade off the performance and privacy of sensitive information, where the two controllers have asymmetric information structure and some prescribed signal needs to be tracked.image

Yiwen Qi,Shitong Guo,Ronghu Chi,Yiwen Tang,Ziyu Qu

DOI: https://doi.org/10.1109/tsmc.2024.3487985

2024-01-01

Abstract:Differential privacy preserving ensures the privacy of the system data by adding certain regular noises to the data to cover up the real information. The main challenges of strong nonlinearities, uncertainty, and data privacy are considered together for switched systems, and a novel privacy-preserving robust model-free adaptive predictive control (PPR-MFAPC) method is proposed that guarantees both $H_{\infty}$ performance and system privacy. At first, a performance-dependent differential privacy noise conforming the Laplace distribution is designed, which can adaptively adjust the noise size to balance the system performance and privacy. Then, a novel privacy level analysis with evaluation method is presented. Subsequently, the strong uncertainties of switched systems is solved through a dynamic linearization method. On this basis, a novel cost function is designed by considering both the $H_{\infty}$ performance and system privacy to balance the system performance and privacy from the perspective of control design. Further, by incorporating a parameter estimator and a prediction algorithm, the private MFAPC anti-noise controller is obtained. Finally, the feasibility of the PPR-MFAPC is explained with illustrative example.

Dhrubajit Chowdhury,Raman Goyal,Shantanu Rane

2024-03-13

Abstract:We introduce a novel approach to make the tracking error of a class of nonlinear systems differentially private in addition to guaranteeing the tracking error performance. We use funnel control to make the tracking error evolve within a performance funnel that is pre-specified by the user. We make the performance funnel differentially private by adding a bounded continuous noise generated from an Ornstein-Uhlenbeck-type process. Since the funnel controller is a function of the performance funnel, the noise adds randomized perturbation to the control input. We show that, as a consequence of the differential privacy of the performance funnel, the tracking error is also differentially private. As a result, the tracking error is bounded by the noisy funnel boundary while maintaining privacy. We show a simulation result to demonstrate the framework.

Systems and Control

Ying Yang,Yong Wang,Zhilong Huang

DOI: https://doi.org/10.1080/00207721.2020.1871106

IF: 2.648

2021-01-01

International Journal of Systems Science

Abstract:This paper devotes to a feedback control strategy for nonlinear stochastic dynamical system to track a prespecified stationary response probability density. The system description and control design are conducted in Hamiltonian framework, and the excitations are confined to Gaussian white noises. The control design consists of several successive steps: firstly, separating the control into conservative and dissipative components by physical intuition, and expanding two components as polynomials; secondly, deriving the low-dimensional averaged equations of controlled Hamiltonian by stochastic averaging, and obtaining the stationary probability density of controlled responses by solving the associated Fokker-Planck-Kolmogorov (FPK) equation; thirdly and finally, determining the polynomial coefficients by minimising the performance index which balances the tracking performance and control cost. Two examples, i.e. Duffing oscillator and frictional system are adopted to illustrate the application and efficacy of this control strategy to track Gaussian and non-Gaussian response probability density.

Kaixiang Zhang,Yongqiang Wang,Ziyou Song,Zhaojian Li

2024-06-05

Abstract:Distributed model predictive control (DMPC) has attracted extensive attention as it can explicitly handle system constraints and achieve optimal control in a decentralized manner. However, the deployment of DMPC strategies generally requires the sharing of sensitive data among subsystems, which may violate the privacy of participating systems. In this paper, we propose a differentially-private DMPC algorithm for linear discrete-time systems subject to coupled global constraints. Specifically, we first show that a conventional distributed dual gradient algorithm can be used to address the considered DMPC problem but cannot provide strong privacy preservation. Then, to protect privacy against the eavesdropper, we incorporate a differential-privacy noise injection mechanism into the DMPC framework and prove that the resulting distributed optimization algorithm can ensure both provable convergence to a global optimal solution and rigorous $\epsilon$-differential privacy. In addition, an implementation strategy of the DMPC is designed such that the recursive feasibility and stability of the closed-loop system are guaranteed. Simulation results are provided to demonstrate the effectiveness of the developed approach.

Systems and Control

Yiwen Qi,Yiwen Tang,Yu Kawano

DOI: https://doi.org/10.1109/tsmc.2024.3355409

2024-01-01

IEEE Transactions on Systems, Man, and Cybernetics: Systems

Abstract:In this article, the full differential privacy-preserving problem for switched LPV systems is concerned. The security of a control system is the ability to avoid intentional sabotage or accidental interference affecting its normal operation. For switched LPV systems, it contains both internal (scheduling variable and switching signal) and external (system output) information that needs to be protected, we adopt differential privacy to achieve its full privacy preserving. The resulting challenges are: 1) privacy design for three types of system signals and 2) dual asynchronization analysis under triple privacy noise. Accordingly, three differential privacy definitions and Laplace (resp. uniform) noise design methods are presented. Sufficient conditions for $H_{\infty}$ control design with dual asynchronization analysis are given. Finally, simulation results verify the effectiveness of the proposed method.

automation & control systems,computer science, cybernetics

Chao Yang,Wen Yang,Hongbo Shi

2022-01-01

Abstract: In this paper, we study the privacy preservation problem in a cooperative networked control system working for the task of LQG control. The system consists of a user and a server: the user owns the state process, the server provides computation capability, and the user employs the server to compute control inputs for it. To enable the server's computation, the user needs to provide the measurements of the process states to the server. However, the user regards the states as privacy and wants the server to have deviated knowledge of the state estimates rather than the true value. Regarding that, we propose a novel local design of privacy preservation, which creates a deviation in the server's knowledge of the state estimates from the true value. Meanwhile, we propose an associated privacy metric to measure the deviation and analyze the privacy performance accordingly. Furthermore, we analyze the service loss in the LQG control performance caused by the privacy scheme. Finally, we study the performance trade-off between the privacy preservation and the LQG control, where the proposed optimization problems are solved by numerical methods efficiently.

Genki Sugiura,Kaito Ito,Kenji Kashima

DOI: https://doi.org/10.1109/lcsys.2021.3087096

2022-01-01

IEEE Control Systems Letters

Abstract:Differential privacy is a privacy measure based on the difficulty of discriminating between similar input data. In differential privacy analysis, similar data usually implies that their distance does not exceed a predetermined threshold. It, consequently, does not take into account the difficulty of distinguishing data sets that are far apart, which often contain highly private information. This problem has been pointed out in the research on differential privacy for static data, and Bayesian differential privacy has been proposed, which provides a privacy protection level even for outlier data by utilizing the prior distribution of the data. In this letter, we introduce this Bayesian differential privacy to dynamical systems, and provide privacy guarantees for distant input data pairs and reveal its fundamental property. For example, we design a mechanism that satisfies the desired level of privacy protection, which characterizes the trade-off between privacy and information utility.

Teimour Hosseinalizadeh,Nima Monshizadeh

2024-10-23

Abstract:In the recent years, we have observed three significant trends in control systems: a renewed interest in data-driven control design, the abundance of cloud computational services and the importance of preserving privacy for the system under control. Motivated by these factors, this work investigates privacy-preserving outsourcing for the design of a stabilizing controller for unknown linear time-invariant <a class="link-external link-http" href="http://systems.The" rel="external noopener nofollow">this http URL</a> main objective of this research is to preserve the privacy for the system dynamics by designing an outsourcing mechanism. To achieve this goal, we propose a scheme that combines transformation-based techniques and robust data-driven control design methods. The scheme preserves the privacy of both the open-loop and closed-loop system matrices while stabilizing the system under <a class="link-external link-http" href="http://control.The" rel="external noopener nofollow">this http URL</a> scheme is applicable to both data with and without disturbance and is lightweight in terms of computational overhead. Numerical investigations for a case study demonstrate the impacts of our mechanism and its role in hindering malicious adversaries from achieving their goals.

Systems and Control

Vincent Pacelli,Anirudha Majumdar

DOI: https://doi.org/10.48550/arXiv.2109.08262

2021-09-17

Abstract:The rapid development of affordable and compact high-fidelity sensors (e.g., cameras and LIDAR) allows robots to construct detailed estimates of their states and environments. However, the availability of such rich sensor information introduces two technical challenges: (i) the lack of analytic sensing models, which makes it difficult to design controllers that are robust to sensor failures, and (ii) the computational expense of processing the high-dimensional sensor information in real time. This paper addresses these challenges using the theory of differential privacy, which allows us to (i) design controllers with bounded sensitivity to errors in state estimates, and (ii) bound the amount of state information used for control (i.e., to impose bounded rationality). The resulting framework approximates the separation principle and allows us to derive an upper-bound on the cost incurred with a faulty state estimator in terms of three quantities: the cost incurred using a perfect state estimator, the magnitude of state estimation errors, and the level of differential privacy. We demonstrate the efficacy of our framework numerically on different robotics problems, including nonlinear system stabilization and motion planning.

Optimization and Control,Robotics,Systems and Control

Haleh Hayati,Nathan van de Wouw,Carlos Murguia

2023-07-27

Abstract:We address the problem of synthesizing distorting mechanisms that maximize infinite horizon privacy for Networked Control Systems (NCSs). We consider stochastic LTI systems where information about the system state is obtained through noisy sensor measurements and transmitted to a (possibly adversarial) remote station via unsecured/public communication networks to compute control actions (a remote LQR controller). Because the network/station is untrustworthy, adversaries might access sensor and control data and estimate the system state. To mitigate this risk, we pass sensor and control data through distorting (privacy-preserving) mechanisms before transmission and send the distorted data through the communication network. These mechanisms consist of a linear coordinate transformation and additive-dependent Gaussian vectors. We formulate the synthesis of the distorting mechanisms as a convex program. In this convex program, we minimize the infinite horizon mutual information (our privacy metric) between the system state and its optimal estimate at the remote station for a desired upper bound on the control performance degradation (LQR cost) induced by the distortion mechanism.

Cryptography and Security,Information Theory,Systems and Control

Alimzhan Sultangazin,Paulo Tabuada

DOI: https://doi.org/10.1109/tac.2020.2982611

IF: 6.549

2021-02-01

IEEE Transactions on Automatic Control

Abstract:Cloud computing platforms are being increasingly used for closing feedback control loops, especially when computationally expensive algorithms, such as model-predictive control, are used to optimize performance. Outsourcing of control algorithms entails an exchange of data between the control system and the cloud and, naturally, raises concerns about the privacy of the control system's data (e.g., state trajectory and control objective). Moreover, any attempt at enforcing privacy needs to add minimal computational overhead to avoid degrading control performance. In this article, we propose several transformation-based methods for enforcing data privacy. We also quantify the amount of provided privacy and discuss how much privacy is lost when the adversary has access to side knowledge. We address three different scenarios: 1) the cloud has no knowledge about the system being controlled; 2) the cloud knows what sensors and actuators the system employs but not the system dynamics; and 3) the cloud knows the system dynamics, its sensors, and actuators. In all of these three scenarios, the proposed methods allow for the control over the cloud without compromising private information (which information is considered private depends on the considered scenario).

automation & control systems,engineering, electrical & electronic

Yong Chen,Deqing Huang,Shuangquan Tan

DOI: https://doi.org/10.1109/tcsii.2023.3300714

2023-01-01

Abstract:In this paper, a secure iterative learning control architecture is proposed for networked systems, aiming to track the desired output and protect the privacy of signals. The main technique challenges lie in that the homomorphic encryption is integrated into the control scheme without destructing the performance of systems. Therefore, the iterative learning control algorithm based on the quantized feedback and saturated input is presented to support the design of encrypted controller, and the conditions on the parameters of cryptosystem are established to ensure that the inputs obtained by actuator are reliable. As the results, the calculation of secure control law only relies on the encrypted data, thus immunizing the disclosure attacks of adversaries. To the best of our knowledge, there is currently little work to investigate the secure iterative learning control scheme, which can enhance the practicability and security of systems due to the data-driven strategy and encryption mechanism.

engineering, electrical & electronic

Zhe Xu,Kasra Yazdani,Matthew T. Hale,Ufuk Topcu

DOI: https://doi.org/10.48550/arXiv.1909.13294

2019-09-29

Abstract:Privacy is an important concern in various multiagent systems in which data collected from the agents are sensitive. We propose a differentially private controller synthesis approach for multi-agent systems subject to high-level specifications expressed in metric temporal logic (MTL). We consider a setting where each agent sends data to a cloud (computing station) through a set of local hubs and the cloud is responsible for computing the control inputs of the agents. Specifically, each agent adds privacy noise (e.g., Gaussian noise) point-wise in time to its own outputs before sharing them with a local hub. Each local hub runs a Kalman filter to estimate the state of the corresponding agent and periodically sends such state estimates to the cloud. The cloud computes the optimal inputs for each agent subject to an MTL specification. While guaranteeing differential privacy of each agent, the controller is also synthesized to ensure a probabilistic guarantee for satisfying the MTL <a class="link-external link-http" href="http://specification.We" rel="external noopener nofollow">this http URL</a> provide an implementation of the proposed method on a simulation case study with two Baxter-On-Wheels robots as the agents.

Systems and Control,Robotics

Sayak Ray Chowdhury,Xingyu Zhou,Ness Shroff

DOI: https://doi.org/10.48550/arXiv.2108.11563

2021-08-26

Abstract:In this paper, we study the problem of regret minimization in reinforcement learning (RL) under differential privacy constraints. This work is motivated by the wide range of RL applications for providing personalized service, where privacy concerns are becoming paramount. In contrast to previous works, we take the first step towards non-tabular RL settings, while providing a rigorous privacy guarantee. In particular, we consider the adaptive control of differentially private linear quadratic (LQ) systems. We develop the first private RL algorithm, PRL, which is able to attain a sub-linear regret while guaranteeing privacy protection. More importantly, the additional cost due to privacy is only on the order of $\frac{\ln(1/\delta)^{1/4}}{\epsilon^{1/2}}$ given privacy parameters $\epsilon, \delta > 0$. Through this process, we also provide a general procedure for adaptive control of LQ systems under changing regularizers, which not only generalizes previous non-private controls, but also serves as the basis for general private controls.

Machine Learning

Lei Wang,Ian R. Manchester,Jochen Trumpf,Guodong Shi

DOI: https://doi.org/10.48550/arXiv.2008.10193

2020-08-24

Abstract:This paper studies initial-value privacy problems of linear dynamical systems. We consider a standard linear time-invariant system with random process and measurement noises. For such a system, eavesdroppers having access to system output trajectories may infer the system initial states, leading to initial-value privacy risks. When a finite number of output trajectories are eavesdropped, we consider a requirement that any guess about the initial values can be plausibly denied. When an infinite number of output trajectories are eavesdropped, we consider a requirement that the initial values should not be uniquely recoverable. In view of these two privacy requirements, we define differential initial-value privacy and intrinsic initial-value privacy, respectively, for the system as metrics of privacy risks. First of all, we prove that the intrinsic initial-value privacy is equivalent to unobservability, while the differential initial-value privacy can be achieved for a privacy budget depending on an extended observability matrix of the system and the covariance of the noises. Next, the inherent network nature of the considered linear system is explored, where each individual state corresponds to a node and the state and output matrices induce interaction and sensing graphs, leading to a network system. Under this network system perspective, we allow the initial states at some nodes to be public, and investigate the resulting intrinsic initial-value privacy of each individual node. We establish necessary and sufficient conditions for such individual node initial-value privacy, and also prove that the intrinsic initial-value privacy of individual nodes is generically determined by the network structure. These results may be extended to linear systems with time-varying dynamics under the same analysis framework.

Systems and Control

Kaiqun Zhu,Zidong Wang,Derui Ding,Hongli Dong,Qing-Long Han

DOI: https://doi.org/10.1109/tsmc.2024.3391065

2024-07-19

IEEE Transactions on Systems Man and Cybernetics Systems

Abstract:This article addresses the privacy-preserving control issue for two-dimensional systems with probabilistic constraints. According to the exclusive or logical operation and the dynamic coding–decoding rule, a privacy-preserving mechanism (PPM) is developed, under which the transmitted data is efficiently compressed and encrypted into a ciphertext with finite bits. A PPM-based controller is designed that simultaneously guarantees a prescribed probabilistic constraint, mean-square boundedness, and privacy performance. Mathematical techniques, including mathematical induction, Chebyshev inequality, and matrix analysis, are employed to establish sufficient conditions for the presence of the desired controller gains. Additionally, the privacy and secrecy performance of the PPM is analyzed and simulation examples are presented to showcase the efficacy of the proposed controller design method.

automation & control systems,computer science, cybernetics

Xiao-Kang Liu,Ji-Feng Zhang,Jimin Wang

DOI: https://doi.org/10.1016/j.automatica.2020.109283

IF: 6.4

2020-12-01

Automatica

Abstract:<p>This paper investigates the differential private algorithm for the average output consensus control of continuous-time heterogeneous systems. A distributed hybrid controller is designed where agents exchange information at discrete time instants. The proposed controller protects the individual privacy by imposing random noises upon the interactive information. Based on the stochastic approximation method, we employ a series of time-varying control gains to relax the existing mechanisms which require the privacy noises to be exponentially decaying with time. Using non-decaying privacy noises, the delivered information can keep random with an invariant variance, and the real information cannot be directly exposed to the eavesdropper along with time. We further develop a method to design the control gain such that the heterogeneous systems can achieve asymptotically unbiased output average consensus with the desired accuracy and meet the predefined differential privacy index. Finally, a numerical example is provided to demonstrate the effectiveness of the theoretical results.</p>

automation & control systems,engineering, electrical & electronic