Yifan Jia,Jingyi Wang,Christopher M. Poskitt,Sudipta Chattopadhyay,Jun Sun,Yuqi Chen

DOI: https://doi.org/10.1016/j.ijcip.2021.100452

IF: 3.683

2021-01-01

International Journal of Critical Infrastructure Protection

Abstract:The threats faced by cyber-physical systems (CPSs) in critical infrastructure have motivated research into a multitude of attack detection mechanisms, including anomaly detectors based on neural network models. The effectiveness of anomaly detectors can be assessed by subjecting them to test suites of attacks, but less consideration has been given to adversarial attackers that craft noise specifically designed to deceive them. While successfully applied in domains such as images and audio, adversarial attacks are much harder to implement in CPSs due to the presence of other built-in defence mechanisms such as rule checkers (or invariant checkers). In this work, we present an adversarial attack that simultaneously evades the anomaly detectors and rule checkers of a CPS. Inspired by existing gradient-based approaches, our adversarial attack crafts noise over the sensor and actuator values, then uses a genetic algorithm to optimise the latter, ensuring that the neural network and the rule checking system are both deceived. We implemented our approach for two real-world critical infrastructure testbeds, successfully reducing the classification accuracy of their detectors by over 50% on average, while simultaneously avoiding detection by rule checkers. Finally, we explore whether these attacks can be mitigated by training the detectors on adversarial samples.

Paul J. Bonczek,Nicola Bezzo

DOI: https://doi.org/10.48550/arXiv.2005.07821

2020-05-16

Abstract:Stealthy false data injection attacks on cyber-physical systems introduce erroneous measurements onto sensors with the intent to degrade system performance. An intelligent attacker can design stealthy attacks with knowledge of the system model and noise characteristics to evade detection from state-of-the-art fault detectors by remaining within detection thresholds. However, during these hidden attacks, an attacker with the intention of hijacking a system will leave traces of non-random behavior that contradict with the expectation of the system model. Given these premises, in this paper we propose a run-time monitor called Cumulative Sign (CUSIGN) detector, for identifying stealthy falsified measurements by identifying if measurements are no longer behaving in a random manner. Specifically, our proposed CUSIGN monitor considers the changes in sign of the measurement residuals and their expected occurrence in order to detect if a sensor could be compromised. Moreover, our detector is designed to be a memoryless procedure, eliminating the need to store large sequences of data for attack detection. We characterize the detection capabilities of the proposed CUSIGN technique following the well-known $\chi^2$ failure detection scheme. Additionally, we show the advantage of augmenting CUSIGN to the model-based Cumulative Sum (CUSUM) detector, which provides magnitude bounds on attacks, for enhanced detection of sensor spoofing attacks. Our approach is validated with simulations on an unmanned ground vehicle (UGV) during a navigation case study.

Systems and Control,Robotics

Chongrong Fang,Yifei Qi,Jiming Chen,Rui Tan,Wei Xing Zheng

DOI: https://doi.org/10.1109/tac.2019.2950072

IF: 6.549

2019-01-01

IEEE Transactions on Automatic Control

Abstract:In this technical note, the tradeoff between the attack detectability and the performance degradation in stochastic cyber-physical systems is investigated. We consider a linear time-invariant system in which the attack detector performs a hypothesis test on the innovation of the Kalman filter to detect malicious tampering with the actuator signals. We adopt a notion of attack stealthiness to quantify the degree of stealth by limiting the maximum achievable exponents of both false alarm probability and detection probability below certain thresholds. And the conditions for any actuator attack to have a specific level of stealthiness are derived. Additionally, we characterize the upper bound of the performance degradation induced by attacks with a given extent of stealthiness that produces independent and identically distributed Gaussian innovations, and design the attack, which achieves the stated upper bound for right-invertible systems. Finally, our results are illustrated via numerical examples.

Chaoqun Yang,Zhiguo Shi,Heng Zhang,Junfeng Wu,Xiufang Shi

DOI: https://doi.org/10.1109/tcyb.2019.2912939

IF: 11.8

2020-01-01

IEEE Transactions on Cybernetics

Abstract:To invade a cyber-physical system (CPS) successfully, hackers are prone to simultaneously launching multiple cyber attacks on different sensors in a CPS. However, little attention has been paid to the problem of detecting multiple cyber attacks up to now. Therefore, in this paper, we deal with the problem on how to efficiently detect multiple cyber attacks aiming at different sensors in CPSs. To achieve the goal of simultaneously detecting both the number of attacks and the attacked sensors, we formulate this problem via a random finite set (RFS) theory, and then apply an iterative RFS-based Bayesian filter and its approximation to solve the problem. Four numerical experiments with different attacks are provided, and the results have demonstrated the effectiveness of the RFS-based approach for the problem of multiple attacks detection in CPSs.

Elham Honarvar,Abolghasem Daeichian,Francesco Delli Priscoli,Andrea Tortorelli

DOI: https://doi.org/10.1177/01423312241273857

IF: 2.146

2024-10-08

Transactions of the Institute of Measurement and Control

Abstract:Transactions of the Institute of Measurement and Control, Ahead of Print. Cyber-physical systems face cyberattacks that hinder performance, increase cost, or even collapse the system. Thus, rapid and accurate attack detection is crucial for quick activation of defense mechanisms. Model-based attack detection approaches are known for their precision; however, the unavailability of the exact system model poses a challenge. In response, model-free approaches have gained increased attention as a practical alternative. In this paper, an online model-free algorithm for detecting false data injection and jamming attacks on CPSs is proposed. The method leverages principal component analysis to reconstruct the expected observations in a reduced dimension space, emphasizing the most effective principal components. Then, deciding on attacked or normal operation relies on analyzing either the Euclidean distance or the cosine similarity of the discrepancy between the expected and actual observations. The proposed metrics effectively expose subtle deviations from expected behavior, as any alteration in these components augments the distance between the observed and reconstructed values. The proposed method was compared with the conventional cumulative sum discriminator and Kalman-based algorithm, using an IEEE-14, IEEE-30, and IEEE-118 bus systems. The results demonstrate the superiority of the proposed algorithm in terms of various evaluation metrics, including F-score, precision, recall, and miss detection ratio.

automation & control systems,instruments & instrumentation

Mehran Attar,Walter Lucia

DOI: https://doi.org/10.1109/tcns.2023.3244103

IF: 4.347

2023-01-01

IEEE Transactions on Control of Network Systems

Abstract:In recent years, different intelligent and undetectable cyber-attacks against networked control systems (e.g., replay and covert attacks) have been investigated. In this paper, we design a novel control architecture that prevents their existence. In particular, first, we propose to encode the sensor outputs into a randomly changing lower-dimensional space obtained by means of principal component analysis. Such a transformation ensures optimal information reconstruction on the controller's side, and it prevents the attacker from accessing the original sensor measurements, nullifying the possibility of perfect stealthy attacks. Then, on the controller's side, we design a passive Gaussian anomaly detector that leverages the output of an unknown input observer ad-hoc designed to estimate the system's states and unknown inputs simultaneously. It is formally shown that the proposed detection strategy is able to discover the presence of replay and covert attacks. Simulation results obtained considering a quadruple water tank system confirm the capability of the developed architecture.

computer science, information systems,automation & control systems

Yuqi Chen,Christopher M. Poskitt,Jun Sun

DOI: https://doi.org/10.1109/SP.2018.00016

2018-06-13

Abstract:Cyber-physical systems (CPS) consist of sensors, actuators, and controllers all communicating over a network; if any subset becomes compromised, an attacker could cause significant damage. With access to data logs and a model of the CPS, the physical effects of an attack could potentially be detected before any damage is done. Manually building a model that is accurate enough in practice, however, is extremely difficult. In this paper, we propose a novel approach for constructing models of CPS automatically, by applying supervised machine learning to data traces obtained after systematically seeding their software components with faults ("mutants"). We demonstrate the efficacy of this approach on the simulator of a real-world water purification plant, presenting a framework that automatically generates mutants, collects data traces, and learns an SVM-based model. Using cross-validation and statistical model checking, we show that the learnt model characterises an invariant physical property of the system. Furthermore, we demonstrate the usefulness of the invariant by subjecting the system to 55 network and code-modification attacks, and showing that it can detect 85% of them from the data logs generated at runtime.

Software Engineering,Cryptography and Security,Machine Learning

Tao Chen,Lei Wang,Xiaoqiang Ren,Zhitao Liu,Hongye Su

DOI: https://doi.org/10.1109/cdc49753.2023.10383555

2023-01-01

Abstract:In cyber-physical systems, replay attacks are a type of deception attacks that involve replaying previously recorded sensor data while injecting attack signals into the physical plant. The replay attacks are difficult to detect because the data being replayed is normal. To detect replay attacks, authentication signals are commonly used. However, injecting authentication signals may affect the performance of system states that are sensitive to noise or disturbance. To address this issue, the effect of authentication signals on sensitive states is measured in the sense of mean square error, and conditions that the authentication signal has a limited effect or even no effect on sensitive states are presented. Combining these conditions, optimization problems are constructed to design the authentication signal. Finally, the proposed method is validated through simulation results.

Fan Zhang,Qianmei Wu,Bohan Xuan,Yuqi Chen,Wei Lin,Christopher M. Poskitt,Jun Sun,Binbin Chen

DOI: https://doi.org/10.1109/tse.2023.3309330

2020-01-01

Abstract:Cyber-physical systems (CPSs) automating critical public infrastructure face a pervasive threat of attack, motivating research into different types of countermeasures. Assessing the effectiveness of these countermeasures is challenging, however, as benchmarks are difficult to construct manually, existing automated testing solutions often make unrealistic assumptions, and blindly fuzzing is ineffective at finding attacks due to the enormous search spaces and resource requirements. In this work, we propose active sensor fuzzing , a fully automated approach for building test suites without requiring any a prior knowledge about a CPS. Our approach employs active learning techniques. Applied to a real-world water treatment system, our approach manages to find attacks that drive the system into 15 different unsafe states involving water flow, pressure, and tank levels, including nine that were not covered by an established attack benchmark. Furthermore, we successfully generate targeted multi-point attacks which have been long suspected to be possible. We reveal that active sensor fuzzing successfully extends the attack benchmarks generated by our previous work, an ML-guided fuzzing tool, with two more kinds of attacks. Finally, we investigate the impact of active learning on models and the reason that the model trained with active learning is able to discover more attacks.

Kang Yang,Rui Wang,Yu Jiang,Houbing Song,Chenxia Luo,Yong Guan,Xiaojuan Li,Zhiping Shi

DOI: https://doi.org/10.1016/j.future.2018.03.050

IF: 7.307

2018-01-01

Future Generation Computer Systems

Abstract:This paper focuses on the security issues of Cyber-Physical Systems with multiple sensors measuring the same physical variables. We use an abstract sensor model, and each sensor provides the controller with an interval that contains the true value. Some of the sensors may be subject to malicious attacks and provide the wrong measurements, thereby misleading the controller into performing an unsafe action. Although there are several existing methods for detecting sensor attacks in the presence of transient sensor faults, they treat all sensors’ faults and attacks in the same way, and may not work well when an attacker has sufficient ability to cover up for different sensors at different times, e.g., stealth attacks. To address this problem, we propose a pairwise inconsistency based algorithm to enhance attack detection capability. The main idea is to build different fault models for different sensors, add a virtual sensor to utilize the fusion intervals and historical measurements, and use pairwise inconsistencies between real and virtual sensors to identify attacks. Finally, we validate the performance of the algorithm on real measurement data obtained from the LEGO EV3 ground vehicle, the results show that the proposed method outperforms state-of-the-art algorithms.

Zhengen Zhao,Yunsong Xu,Yuzhe Li,Ziyang Zhen,Ying Yang,Yang Shi

DOI: https://doi.org/10.1109/tac.2022.3230360

IF: 6.549

2022-01-01

IEEE Transactions on Automatic Control

Abstract:This article studies the issues of data-driven attack detection and identification for cyber-physical systems under sparse sensor attacks. First, based on the available input and output datasets, a data-driven monitor is formulated with the following two objectives: attack detection and attack identification. Then, with the subspace approach, a data-driven attack detection policy is presented, wherein the attack detector is designed directly by the process data. A subspace projection-based attack identification scheme is proposed via designing a bank of projection filters to determine the locations of attacked sensors. Moreover, the sparse recovery technique is adopted to decrease the combinatorial complexity of the subspace projection-based identification method. The attack identification is recast into a block-sparse recovery problem. Finally, the proposed methods are verified by the simulations on a flight vehicle system.

Guang‐Hong Yang,An-Yang Lu

DOI: https://doi.org/10.1109/TAC.2022.3218545

IF: 6.549

2023-09-01

IEEE Transactions on Automatic Control

Abstract:This article investigates the attack detection and identification problem for cyber-physical systems under sparse sensor attacks. A novel candidate set construction algorithm, where only partial combinations of different channels are checked, is proposed to efficiently generate the candidate set containing all the possible sets of corrupted channels under stealthy attacks. Besides, through introducing a unified attack model that precisely characterizes the attack performance and stealthiness, necessary and sufficient conditions for the existence of undetectable/unidentifiable attacks are proposed. Based on the obtained conditions, a novel attack detection and identification strategy is proposed. Compared with the existing methods focusing only on the measurements, more attacks can be detected/identified through introducing side information and the reliability of detector is enhanced through making full use of the attack performance analysis result. Finally, a numerical simulation is provided to illustrate the correctness and effectiveness of the proposed conditions and methods.

Engineering,Computer Science

Paul Griffioen,Sean Weerakkody,Bruno Sinopoli

DOI: https://doi.org/10.1109/tac.2020.3005686

IF: 6.549

2021-05-01

IEEE Transactions on Automatic Control

Abstract:This article considers the design and analysis of multiple moving target defenses for recognizing and isolating attacks on cyber-physical systems. We consider attackers who perform integrity attacks on some set of sensors and actuators in a control system. In such cases, it has been shown that a model aware adversary can carefully design attack vectors to bypass bad data detection and identification filters while causing damage to the control system. To counter such an attacker, we propose the moving target defense which introduces stochastic, time-varying parameters in the control system. The underlying random dynamics of the system limit an attacker's knowledge of the model and inhibit his or her ability to construct stealthy attack sequences. Moreover, the time-varying nature of the dynamics thwarts adaptive adversaries. We explore three main designs. First, we consider a hybrid system where parameters within the existing plant are switched among multiple modes. We demonstrate how such an approach can enable both the detection and identification of malicious nodes. Next, we investigate the addition of an extended system with dynamics that are coupled to the original plant but do not affect the system performance. Here, an attack on the original system will affect the authenticating subsystem and in turn be revealed by a set of sensors measuring the extended plant. Finally, we propose the use of sensor nonlinearities to enhance the effectiveness of the moving target defense. The nonlinear dynamics act to conceal normal operational behavior from an attacker who has tampered with the system state, further hindering an attacker's ability to glean information about the time-varying dynamics. In all cases mechanisms for analysis and design are proposed. Finally, we analyze attack detectability for each moving target defense by investigating expected lower bounds on the detection statistic. Our contributions are also tested via simulation.

automation & control systems,engineering, electrical & electronic

Yanfeng Chen,Zhiwei Feng,Qingxu Deng,Yan Wang

DOI: https://doi.org/10.1016/j.sysarc.2024.103110

IF: 5.836

2024-05-01

Journal of Systems Architecture

Abstract:Cyber–physical systems face the threat of sensor attacks, which can result in incorrect measurements of the physical state for the controller and lead to erroneous decisions and control instructions. To address this issue, our paper introduces a sensor attack detection method involving the active injection of excitation into the system and a comparison of actual sensor data with the expected response. First, we address challenges posed by sensing noise and uncertain delays by compensating for them and presenting a probability interval derived from the convolution of noise and delay. Second, we create an anticipated response spectrum by adjusting the probability interval within a defined time window under specific active excitation. Third, the disparity between the expected response spectrum and the actual sensor data within the time window is utilized to calculate the probability of a sensor being attacked. Finally, we evaluate the effectiveness of our method through extensive simulations in a vehicle-platoon case study.

computer science, software engineering, hardware & architecture

Bin Liu,Jingzhao Chen,Yong Hu

DOI: https://doi.org/10.1016/j.compind.2022.103609

IF: 10

2022-05-01

Computers in Industry

Abstract:Integrity and availability attacks can cause serious damage to modern industrial cyber-physical systems (ICPS). It is critical to detect and identify these attacks promptly and accurately. This paper investigates the anomaly detection for ICPS in the process industry. Three typical attacks, the Stuxnet-like, denial-of-service, and false data injection, are taken as specific defense targets. We propose to detect anomalies by quantifying the dynamic variations of generalized model implied by operating data, and present a mode division as the novel detection framework. The subspace technique and a quantization method for the amplitude-frequency characteristic deviation are employed to design the detector, which can be deployed independently in the active ICPS and does not cause any loss of control performance. An attack-defense experimental platform is developed to evaluate the detector under the attack scenarios of interest. The results show that the detector can detect any of the three attacks in a maximum of 28 s after the attack onset, and that these attacks can be distinguished by combining the state estimation residuals and system errors.

computer science, interdisciplinary applications

Andrew Kacmarcik,Milos Prvulovic

DOI: https://doi.org/10.1109/access.2024.3456050

IF: 3.9

2024-09-21

IEEE Access

Abstract:The continuing proliferation of Cyber Physical Systems (CPSs), those that integrate electronic control circuitry with a mechanical system allowing software commands to affect the physical world, while allowing for new efficiencies and convenience, also facilitates new security risks. While the cyber-domain components of a CPS control the behavior of the physical-domain components, attacks on either the physical-domain or cyber-domain can be used to control or subvert the CPS in ways that may cause serious harm or even loss of life. Unfortunately, most research in CPS attack detection has focused solely on monitoring the cyber domain for malicious software activity, and the few works that do monitor the physical domain neglect or independently monitor the cyber domain. With that in mind, this paper proposes a method of jointly monitoring both domains (cyber and physical) of a CPS, verifying not only that software commands are faithfully executed by the cyber-components of the CPS, but also that the physical-domain behavior of the CPS corresponds to those commands. We demonstrate the effectiveness of this approach through experiments using a medical CPS device subjected to both cyber and physical attacks. We show that different analog side channels (EM and acoustic in our experiments) are similarly effective for such monitoring and attack detection. We also show that, while some attacks can be detected through physical-domain monitoring alone or through cyber-domain monitoring alone, our joint monitoring of both domains allows for the detection of additional attacks that cannot be detected by monitoring only one of the domains, resulting in >99% attack detection accuracy measured over 1,000 instances of CPS activity.

computer science, information systems,telecommunications,engineering, electrical & electronic

Carlos Murguia,Justin Ruths

DOI: https://doi.org/10.48550/arXiv.1710.04407

2017-10-12

Systems and Control

Abstract:A vector-valued model-based cumulative sum (CUSUM) procedure is proposed for identifying faulty/falsified sensor measurements. First, given the system dynamics, we derive tools for tuning the CUSUM procedure in the fault/attack free case to fulfill a desired detection performance (in terms of false alarm rate). We use the widely-used chi-squared fault/attack detection procedure as a benchmark to compare the performance of the CUSUM. In particular, we characterize the state degradation that a class of attacks can induce to the system while enforcing that the detectors (CUSUM and chi-squared) do not raise alarms. In doing so, we find the upper bound of state degradation that is possible by an undetected attacker. We quantify the advantage of using a dynamic detector (CUSUM), which leverages the history of the state, over a static detector (chi-squared) which uses a single measurement at a time. Simulations of a chemical reactor with heat exchanger are presented to illustrate the performance of our tools.

Jitao Li,Zhenhua Wang,Yi Shen,Lihua Xie

DOI: https://doi.org/10.1109/tac.2023.3240383

IF: 6.549

2023-01-01

IEEE Transactions on Automatic Control

Abstract:This paper studies the problem of sensor attack detection for a class of cyber-physical systems with bounded perturbations. A novel attack detection method is proposed based on zonotopic reachability analysis. A false data injection attack is detected if there is no intersection between the predicted state set and the measurement state set. These sets are online calculated via zonotopic segments minimization. Two approaches, namely, projection and polytopic conversion, are presented to check the intersection situation. The detection performance is quantified using a stealthy attack set and the corresponding state estimation error set. Further, we consider replay attacks. To detect a replay attack, a watermark signal based active detection mechanism is introduced. Numerical simulations are conducted to demonstrate the validity of the proposed method.

automation & control systems,engineering, electrical & electronic

Kecheng Liu,Hui Zhang,Ya Zhang,Changyin Sun

DOI: https://doi.org/10.1109/tcyb.2022.3225236

IF: 11.8

2023-01-01

IEEE Transactions on Cybernetics

Abstract:This article studies the detection of discontinuous false data-injection (FDI) attacks on cyber-physical systems (CPSs). Considering the unknown stochastic properties of the process noise and measurement noise, deep reinforcement learning is applied to designing an FDI attack detector. First, the discontinuous attack detection problem is modeled as a partially observable Markov decision process (POMDP) and a neural network is used to explore the POMDP. In the network, sliding observation windows which are composed of the offline fragment historical data are used as the input. An approach to designing the reward in POMDP is provided to ensure the precision of the detection when there are even some state recognition errors. Second, sufficient conditions on attack frequency and duration to guarantee the applicability of the detector and the expected estimation performance are further given. Finally, simulation examples illustrate the effectiveness of the attack detector.

Haibin Guo,Zhong-Hua Pang,Chao Li

DOI: https://doi.org/10.1109/jas.2023.124086

2024-03-19

IEEE/CAA Journal of Automatica Sinica

Abstract:Dear Editor, This letter investigates a novel stealthy false data injection (FDI) attack scheme based on side information to deteriorate the multi-sensor estimation performance of cyber-physical systems (CPSs). Compared with most existing works depending on the full system knowledge, this attack scheme is only related to attackers' sensor and physical process model. The design principle of the attack signal is derived to diverge the system estimation performance. Next, it is proven that the proposed attack scheme can successfully bypass the residual-based detector. Finally, all theoretical results are verified by numerical simulation.

automation & control systems