Zhenan Feng,Ehsan Nekouei

2024-10-08

Abstract:Privacy is a major concern when computing-as-a-service (CaaS) platforms, e.g., cloud-computing platforms, are utilized for building automation, as CaaS platforms can infer sensitive information, such as occupancy, using the sensor measurements of a building. Although the existing encrypted model-based control algorithms can ensure the security and privacy of sensor measurements, they are highly complex to implement and require high computational resources, which result in a high cost of using CaaS platforms. To address these issues, in this paper, we propose an encrypted fully model-free event-triggered cloud-based HVAC control framework that ensures the privacy of occupancy information and minimizes the communication and computation overhead associated with encrypted HVAC control. To this end, we first develop a model-free controller for regulating indoor temperature and CO2 levels. We then design a model-free event-triggering unit which reduces the communication and computation costs of encrypted HVAC control using an optimal triggering policy. Finally, we evaluate the performance of the proposed encrypted fully model-free event-triggered cloud-based HVAC control framework using the TRNSYS simulator, comparing it to an encrypted model-based event-triggered control framework, which uses model predictive control to regulate the indoor climate. Our numerical results demonstrate that, compared to the encrypted model-based method, the proposed fully model-free framework improves the control performance while reducing the communication and computation costs. More specifically, it reduces the communication between the system and the CaaS platform by 64% amount, and its computation time is 75% less than that of the model-based control.

Systems and Control

Ruoxi Jia,Roy Dong,S. Shankar Sastry,Costas J. Spanos

DOI: https://doi.org/10.48550/arXiv.1607.03140

2016-07-12

Abstract:Large-scale sensing and actuation infrastructures have allowed buildings to achieve significant energy savings; at the same time, these technologies introduce significant privacy risks that must be addressed. In this paper, we present a framework for modeling the trade-off between improved control performance and increased privacy risks due to occupancy sensing. More specifically, we consider occupancy-based HVAC control as the control objective and the location traces of individual occupants as the private variables. Previous studies have shown that individual location information can be inferred from occupancy measurements. To ensure privacy, we design an architecture that distorts the occupancy data in order to hide individual occupant location information while maintaining HVAC performance. Using mutual information between the individual's location trace and the reported occupancy measurement as a privacy metric, we are able to optimally design a scheme to minimize privacy risk subject to a control performance guarantee. We evaluate our framework using real-world occupancy data: first, we verify that our privacy metric accurately assesses the adversary's ability to infer private variables from the distorted sensor measurements; then, we show that control performance is maintained through simulations of building operations using these distorted occupancy readings.

Cryptography and Security,Systems and Control

Xiaoliang Wang,Liang Bai,Qing Yang,Liu Wang,Frank Jiang

DOI: https://doi.org/10.1016/j.jisa.2019.04.010

IF: 4.96

2019-01-01

Journal of Information Security and Applications

Abstract:With the development of wireless sensor network and internet, ubiquitous eHealth care systems are booming. However, a great deal of data computing and storage processing restrict the scalability of ubiquitous eHealth. As a solution, cloud-based eHealth is coming up. However, using cloud-computing model often causes some privacy concerns. Massive medical data in eHealth system contain numerous sensitive information and electronic health records of users. Meanwhile, if data encryption is adopted to protect privacy, cloud center cannot process data. To solve this problem, a scheme based on fully homomorphism conception for privacy protection and data processing of eHealth is proposed in this paper. Our scheme not only meets the aforementioned dual requirements but also limit the arbitrary actions of patients and doctors.

Nianfeng Tian,Tao Ding,Yongheng Yang,Qinglai Guo,Hongbin Sun,Frede Blaabjerg

DOI: https://doi.org/10.1016/j.apenergy.2018.09.068

IF: 11.2

2018-01-01

Applied Energy

Abstract:Under the development of information and communication technologies, this paper discusses a cloud-based user side integrated energy management to improve the energy utilization efficiency in a smart community, for which a two-level model is proposed that relies on an energy hub and load aggregators. Furthermore, to address the issue of preserving confidentiality for the cloud service, an information-masking mechanism is designed based on linear mapping functions, whose information-masking requirements and processes are specified accordingly. Numerical results demonstrate the effectiveness of the proposed model and of the method for cloud computing.

Yili Jiang,Kuan Zhang,Yi Qian,Liang Zhou

DOI: https://doi.org/10.1109/vtc2020-fall49728.2020.9348516

2020-01-01

Abstract:The cloud-based Internet-of-Things (IoT) has been applied to support ubiquitous data collection and centralized data processing among various applications. Equipped with powerful resources, a semi-trusted cloud is able to deduce private information by launching inference attack. Homomorphic Encryption (HE) has been proposed as an effective way to preserve privacy from inference attack while allowing certain computation over ciphertext. However, HE leads to longer latency due to additional communication and computation overheads. In this paper, we propose an optimization framework in privacy-preserving access control under cloud-fog computing systems. The optimization goal is to maximize the average user satisfaction in the system, where cost and latency serve as key metrics measuring user satisfaction. Due to the NP-hardness of the formulated problem, we propose a low-complexity suboptimal algorithm to solve it, where the access offloading decision making, user cooperation, and resource allocation are considered. Simulation results are presented to show the advantages of our proposed algorithm in terms of the average USI (User Satisfaction Index) and the number of users with zero USI.

Alimzhan Sultangazin,Paulo Tabuada

DOI: https://doi.org/10.1109/tac.2020.2982611

IF: 6.549

2021-02-01

IEEE Transactions on Automatic Control

Abstract:Cloud computing platforms are being increasingly used for closing feedback control loops, especially when computationally expensive algorithms, such as model-predictive control, are used to optimize performance. Outsourcing of control algorithms entails an exchange of data between the control system and the cloud and, naturally, raises concerns about the privacy of the control system's data (e.g., state trajectory and control objective). Moreover, any attempt at enforcing privacy needs to add minimal computational overhead to avoid degrading control performance. In this article, we propose several transformation-based methods for enforcing data privacy. We also quantify the amount of provided privacy and discuss how much privacy is lost when the adversary has access to side knowledge. We address three different scenarios: 1) the cloud has no knowledge about the system being controlled; 2) the cloud knows what sensors and actuators the system employs but not the system dynamics; and 3) the cloud knows the system dynamics, its sensors, and actuators. In all of these three scenarios, the proposed methods allow for the control over the cloud without compromising private information (which information is considered private depends on the considered scenario).

automation & control systems,engineering, electrical & electronic

Kaixiang Zhang,Zhaojian Li,Yongqiang Wang,Nan Li

2024-05-06

Abstract:With the advent of 5G technology that presents enhanced communication reliability and ultra low latency, there is renewed interest in employing cloud computing to perform high performance but computationally expensive control schemes like nonlinear model predictive control (MPC). Such a cloud-based control scheme, however, requires data sharing between the plant (agent) and the cloud, which raises privacy concerns. This is because privacy-sensitive information such as system states and control inputs has to be sent to/from the cloud and thus can be leaked to attackers for various malicious activities. In this paper, we develop a simple yet effective affine masking strategy for privacy-preserving nonlinear MPC. Specifically, we consider external eavesdroppers or honest-but-curious cloud servers that wiretap the communication channel and intend to infer the plant's information including state information and control inputs. An affine transformation-based privacy-preservation mechanism is designed to mask the true states and control signals while reformulating the original MPC problem into a different but equivalent form. We show that the proposed privacy scheme does not affect the MPC performance and it preserves the privacy of the plant such that the eavesdropper is unable to identify the actual value or even estimate a rough range of the private state and input signals. The proposed method is further extended to achieve privacy preservation in cloud-based output-feedback MPC. Simulations are performed to demonstrate the efficacy of the developed approaches.

Systems and Control

Kun Xu,Yugang Niu,Zhina Zhang

DOI: https://doi.org/10.1109/tsmc.2024.3393865

2024-07-19

IEEE Transactions on Systems Man and Cybernetics Systems

Abstract:This article proposes a cloud-based load frequency control (LFC) scheme with privacy preserving for multiarea power systems. To prevent sensitive information of power systems from disclosure in the cloud service, Paillier cryptosystem is adopted to encrypt the sampling data. An encrypted LFC scheme is constructed by means of the homomorphism of Paillier cryptosystem, that is, the encrypted output does not need to be decrypted in cloud service. Considering that a bigger key size provides better privacy level, but will result in longer time delay, the tradeoff between privacy preserving level and control performance is analyzed by utilizing deterministic network calculus to evaluate the delay bound. Meanwhile, the decentralized characteristic of designed LFC scheme can avoid possible privacy leakage during the controller design procedure. Moreover, an optimization method is proposed for searching the suboptimal control gains. Finally, a simulation on a three-area power system is presented, in which 4 different key sizes from 256 to 2048 bits are tested to verify the effectiveness of the proposed scheme.

automation & control systems,computer science, cybernetics

Bojian Wen,Nianfeng Tian,Xinyao Feng,En Lu,Dejun Xiang,Qinglai Guo

DOI: https://doi.org/10.1109/ei247390.2019.9061924

2019-01-01

Abstract:With the application of new communication facilities and the development of information and communication technology, remote terminal unit and phasor measurement unit can obtain comprehensive and detailed information of power grid in real time, the demand of power system energy management has been increasingly improved. Meanwhile, the advantages of cloud computing prompt relevant researchers to consider the implementation of energy management system in the form of cloud services. However, privacy information of agents under the framework of cloud energy management may be exposed to third parties, such as cloud servers, or data attackers. To ensure the privacy preservation in cloud energy management problem in the form of linear programming, the information masking algorithm as well as its implementation mechanism in cloud are proposed. A case study on a smart home with electrical devices is conducted to demonstrate the proposed methodology.

Yan Cui,Siqi Li,Yue Wang,Bolin Gao

DOI: https://doi.org/10.1109/cvci51460.2020.9338620

2020-01-01

Abstract:With the development of Intelligent Connected Vehicles (ICVs), Cloud Control Platform is becoming an important part to compute driving strategies. However, when strategies are put to cloud, some of vehicle manufacturers' private data must be sent to the cloud, like Engine Map, which are core data for vehicle manufactures. How to protect these data has been the largest obstacle for the ICVs. Thus, this paper proposes a new framework in which Fully Homomorphic Encryption (FHE) and Blockchain technology are combined to compute encryption data on the cloud and record trails of cloud request. In this framework, private data can be protected, the scope of data usage will be limited, and at the same time, the execution of specific type of computations with encryption data on the cloud are fulfilled. In the end, with the help of Simple Encrypted Arithmetic Library (SEAL) developed by Microsoft Research, and IBM blockchain framework Hyperledger Fabric, this framework is verified to be feasible to build a trustworthy ICVs cloud computing system.

Jingwei Li,Jin Li,Xiaofeng Chen,Zheli Liu,Chunfu Jia

DOI: https://doi.org/10.1016/j.future.2013.06.011

IF: 7.307

2014-01-01

Future Generation Computer Systems

Abstract:As cloud computing becomes prevalent, more and more sensitive data is being centralized into the cloud, which raises a new challenge on how to utilize the outsourced data in a privacy-preserving manner. Although searchable encryption allows for privacy-preserving keyword search over encrypted data, it could not work effectively for restricting unauthorized access to the outsourced private data. In this paper, aiming at tackling the challenge of privacy-preserving utilization of data in cloud computing, we propose a practical hybrid architecture in which a private cloud is introduced as an access interface between the data owner/user and the public cloud. Under this architecture, a data utilization system is provided to achieve both exact keyword search and fine-grained access control over encrypted data. Security and efficiency analysis for the proposed system are presented in detail. Then, further enhancements for this system are considered in two steps. (1) We show how to extend our system to support efficient fuzzy keyword search while overcoming the disadvantage of insignificant decryption in the existing privacy-preserving fuzzy keyword search scheme. (2) We demonstrate approaches to realize an outsourcing cryptographic access control mechanism and further reduce the computational cost at the data user side.

Weiyan Xu,Jack Sun,Rachel Cardell-Oliver,Ajmal Mian,Jin B. Hong

DOI: https://doi.org/10.3390/s23104746

IF: 3.9

2023-05-15

Sensors

Abstract:Smart metering systems (SMSs) have been widely used by industrial users and residential customers for purposes such as real-time tracking, outage notification, quality monitoring, load forecasting, etc. However, the consumption data it generates can violate customers' privacy through absence detection or behavior recognition. Homomorphic encryption (HE) has emerged as one of the most promising methods to protect data privacy based on its security guarantees and computability over encrypted data. However, SMSs have various application scenarios in practice. Consequently, we used the concept of trust boundaries to help design HE solutions for privacy protection under these different scenarios of SMSs. This paper proposes a privacy-preserving framework as a systematic privacy protection solution for SMSs by implementing HE with trust boundaries for various SMS scenarios. To show the feasibility of the proposed HE framework, we evaluated its performance on two computation metrics, summation and variance, which are often used for billing, usage predictions, and other related tasks. The security parameter set was chosen to provide a security level of 128 bits. In terms of performance, the aforementioned metrics could be computed in 58,235 ms for summation and 127,423 ms for variance, given a sample size of 100 households. These results indicate that the proposed HE framework can protect customer privacy under varying trust boundary scenarios in SMS. The computational overhead is acceptable from a cost–benefit perspective while ensuring data privacy.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Jingming Li,Nianping Li,Jinqing Peng,Zhibin Wu,Haijiao Cui

DOI: https://doi.org/10.48550/arXiv.1904.04715

2019-04-09

Abstract:The proportion of Energy consumption in the building industry is great, as well as the amount of cooling and heating system. Scholars have been working on energy conservation of Heating, ventilation, and air-conditioning and other systems in buildings. The application of occupant behavior data for building energy optimization has started gaining attention from scholars. However, occupant behavior data concerns many aspects of occupants' privacy. Different types of occupant behavior data contain occupants' private information to different levels. It is crucial to conduct privacy protection of occupant behavior data when using occupant behavior for energy conservation. This paper presents the aspects of privacy issue when using occupant behavior data, and methods to protect data privacy with blockchain technology. Both two options of using blockchain for privacy protection, sending data records as transactions and storing files on the blockchain, are explained and evaluated with temperature records from an open access paper. Sending data as transactions can be used between sensors and local building management system. While storing files on blockchain can be used for collaboration of different building management systems. Advantages, drawbacks, and potentials of using blockchain for data and file transfer are discussed. The results should be helpful for using occupant behavior data for building energy optimization.

Cryptography and Security

Linwei Sang,Qinran Hu,Yinliang Xu,Zaijun Wu

DOI: https://doi.org/10.1109/tcc.2022.3142009

IF: 5.697

2022-01-01

IEEE Transactions on Cloud Computing

Abstract:Widespread advanced metering infrastructure and wide-area monitoring systems generate a significant amount of electricity load consumption data, which can facilitate eliciting end users’ temperature flexibility for demand response programs. However, the direct delivery of users’ load profiles is a threat to users’ privacy. So this paper proposes a privacy-preserving hybrid cloud framework for TCL-based demand response programs, composed of user private clouds and aggregation cloud. User clouds store users’ load profiles and elicit temperature flexibility by the proposed stable temperature-related regression model. In the aggregation cloud, this paper proposes the slope-priority flexibility aggregation method for the mean-variance analysis of aggregate flexibility and the XGBoost-accelerated disaggregation model for real-time selecting users based on users’ fitting coefficients. Hybrid cloud achieves privacy-preserving by separating flexibility eliciting models and aggregation/disaggregation methods into user private clouds and aggregation cloud. Numerical experiments verify that: 1) in user clouds, the stable regression model achieves less predict errors; 2) in aggregation cloud, the slope-priority method can achieve higher aggregate flexibility, and XGBoost-accelerated disaggregating reduces the solving time by nearly three orders of magnitude.

Hongli Zhang,Panpan Li,Zhigang Zhou,Junchao Wu,Xiang-Zhan Yu

DOI: https://doi.org/10.4304/jnw.9.5.1086-1095

2014-01-01

Journal of Networks

Abstract:With the proliferation of hybrid clouds in both cost-saving and effectiveness, a growing number of users are building their own private cloud. However, private cloud can only provide limited resource, and always resorts to public cloud in order to meet elastic service requirements. Generally, public cloud is operated by commercial service providers (CSPs) who are not completely honest with users to some extent. So, existing hybrid clouds service models are hampered by privacy concerns, and one of the main reasons is that a majority of users’ workloads involves sensitive contents and therefore can’t be directly outsourced to public cloud without proper protection. In this paper, we present a novel framework that makes such privacy-aware VM migration effectively. At First, all the users’ workloads are uploading and running in private cloud VMs then labeling the sensitive and non-sensitive VMs. Then, we design an effective way focusing on how to get VM migration queue without introducing heavy inter-cloud communication traffic after migration. Finally, non-sensitive VMs are migrated to public cloud with utmost effort by live migration premised on minimal service level agreement (SLA) disruption. Experiment results illustrate that our proposed framework is effective while occurring an acceptable communication overhead

Tongtong Sui,Jizhi Wang,Wen Liu,Jingshan Pan,Lizhen Wang,Yue Zhao,Lingrui Kong

DOI: https://doi.org/10.1016/j.jfranklin.2024.106677

IF: 4.246

2024-02-12

Journal of the Franklin Institute

Abstract:In network control systems (NCSs), one obvious advantage of using homomorphic encryption is to protect data privacy while remotely computing the control function without decryption. Homomorphism analysis shows that it is more secure to protect the control system with fully homomorphic encryption (FHE) than with partially homomorphic encryption (PHE). However, the high computational complexity of FHE hinders its acceptance in NCSs. In this paper, FHE is utilized to highly enhance the security of NCSs against potential eavesdropping attacks. To guarantee control efficiency, an optimization scheme of the encrypted control algorithm is designed to make FHE practically applicable for real-time control. Besides, the secure controller achieves the expected control performance and inherits asymptotic stability. The experimental results can demonstrate the effectiveness of the proposed encrypted control system in terms of efficiency, security, and stability.

automation & control systems,engineering, electrical & electronic, multidisciplinary,mathematics, interdisciplinary applications

Haleh Hayati,Nathan van de Wouw,Carlos Murguia

2024-08-10

Abstract:Cloud computing enables users to process and store data remotely on high-performance computers and servers by sharing data over the Internet. However, transferring data to clouds causes unavoidable privacy concerns. Here, we present a synthesis framework to design coding mechanisms that allow sharing and processing data in a privacy-preserving manner without sacrificing data utility and algorithmic performance. We consider the setup where the user aims to run an algorithm in the cloud using private data. The cloud then returns some data utility back to the user (utility refers to the service that the algorithm provides, e.g., classification, prediction, AI models, etc.). To avoid privacy concerns, the proposed scheme provides tools to co-design: 1) coding mechanisms to distort the original data and guarantee a prescribed differential privacy level; 2) an equivalent-but-different algorithm (referred here to as the target algorithm) that runs on distorted data and produces distorted utility; and 3) a decoding function that extracts the true utility from the distorted one with a negligible error. Then, instead of sharing the original data and algorithm with the cloud, only the distorted data and target algorithm are disclosed, thereby avoiding privacy concerns. The proposed scheme is built on the synergy of differential privacy and system immersion tools from control theory. The key underlying idea is to design a higher-dimensional target algorithm that embeds all trajectories of the original algorithm and works on randomly encoded data to produce randomly encoded utility. We show that the proposed scheme can be designed to offer any level of differential privacy without degrading the algorithm's utility. We present two use cases to illustrate the performance of the developed tools: privacy in optimization/learning algorithms and a nonlinear networked control system.

Cryptography and Security

Ruwei Huang,Si Yu,Wei Zhuang,Xiaolin Gui

DOI: https://doi.org/10.1109/gcc.2010.36

2010-01-01

Abstract:Privacy security is a key issue for cloud storage. To solve this problem, the paper proposes a privacy-preserving cloud storage framework, which includes the design of data organization structure, the generation and management of keys, the treatment of change of users' access right and dynamic operations of data, and the interaction between participants. We design an interactive protocol and an extirpation-based key derivation algorithm, which are combined with lazy revocation, multi-tree structure and symmetric encryption to form a privacy-preserving, efficient framework for cloud storage. A system is realized which is based on the framework. The paper analyzes the effectiveness of extirpation-based key derivation algorithm, the overhead of the system and the privacy security of the framework. Finally, we summarize our work and introduce our future research directions.

Yifu Sun,Qi Shen,Xiaohua Liu,Lei Zhang,Xin Li,Tao Zhang,Meishun Lin

DOI: https://doi.org/10.1016/j.enbuild.2024.114823

IF: 7.201

2024-01-01

Energy and Buildings

Abstract:Growing renewable energy integration leads to significant fluctuations in electricity generation. To address this challenge, market-based mechanisms for dynamic carbon emission factors and electricity prices are emerging, particularly in regions like China pursuing carbon neutrality. Buildings, with HVAC systems as the largest consumers, require flexible Demand Response (DR) strategies to balance these fluctuations while maintaining occupant comfort. This paper proposes a hierarchical control framework for building HVAC systems. It optimizes operation for various objectives (minimizing energy consumption, reducing electricity costs, and lowering carbon emissions), while ensuring thermal comfort. The framework involves three modules. First is the time-based demand allocation, which uses genetic algorithms to optimize energy use based on future cooling demands, indoor temperature, and fluctuating electricity and carbon prices. It provides building-level temperature setpoints and electricity consumption plans. Second is the spatial indoor demand adjustment, which balances overall cooling load and temperature satisfaction across individual spaces, taking into account room-specific costs and difficulty confidents for temperature adjustments. This module assigns future temperature setpoints to each space. Third is HVAC system follow-up control, which Implements the optimized setpoints for real-time control of the HVAC system. The framework’s effectiveness is verified through application to a real commercial building project. Compared to a baseline scenario, the optimal electricity cost strategy achieved a 6.5% cost reduction, and the optimal carbon emission reduction strategy achieved an 8.2% reduction. Real-world control based on carbon emission optimization resulted in an actual year-on-year carbon emission reduction of 8.7%.