Wei Dong,Xiaojin Liu

DOI: https://doi.org/10.1109/tii.2015.2495147

IF: 12.3

2015-01-01

IEEE Transactions on Industrial Informatics

Abstract:Time synchronization is crucial for cyber-physical systems (CPSs), e.g., wireless sensor and actuator networks. Cyber physical security is an important yet challenging problem. In particular, attacks to the time synchronization service may incur data distortion or even malfunction of the whole system. Sybil attack is one of the most common attack types for sensor networks, where a node illegitimately claims multiple identities. Existing secure time-synchronization protocols; however, cannot well address Sybil attacks in the time synchronization process. We propose a robust and secure time-synchronization protocol (RTSP) to defend against Sybil attacks. Different from previous secure timesync protocols, RTSP employs a novel graph theoretical approach, which is able to perform anomaly detection at the message level instead of the node level. This fine-grained detection ability enables RTSP to become robust against Sybil attacks, as well as node compromise and message manipulation attacks. Extensive experimental results show the effectiveness of our proposed protocol.

Yong Xu,Mei Fang,Ya-Jun Pan,Kaibo Shi,Zheng-Guang Wu

DOI: https://doi.org/10.1002/rnc.5223

IF: 3.8973

2020-01-01

International Journal of Robust and Nonlinear Control

Abstract:SummaryThis article presents a two‐layered framework to investigate the output synchronization problem in nonhomogeneous agent systems in the presence of periodic energy‐limited denial‐of‐service (DoS) attacks with an event‐triggered control strategy. Under the developed framework, the proposed controller for different agents is composed of a dynamic compensator and a regulator, where the dynamic compensator on the first layer can copy the dynamics of the leader node. DoS attacks with a periodic (partially known) attack strategy are based on a time sequence and interrupt the data exchange over a shard network consisting of the leader node and dynamic compensators in the first layer. An event‐triggered control protocol is proposed to reduce the update frequency of the controller, and it also ensures that the output of every dynamic compensator can track the output of the leader node without occurring “Zeno phenomenon.” Based on the output regulator theory, the regulator for every agent can guarantee that all nonhomogeneous agents can converge to the trajectory of every dynamic compensator in the bottom layer. Finally, a simulation example is demonstrated to verify the new design method developed.

Xiaoming Duan,Nikolaos M. Freris,Peng Cheng

DOI: https://doi.org/10.1109/allerton.2016.7852364

2016-01-01

Abstract:Recently, the Secure Average Time Synchronization (SATS) protocol has been proposed and analyzed; this distributed clock synchronization protocol is capable of successfully tackling several attacks such as denial-of-service (DoS), message-delay, message duplication/repetition, and even a generic message manipulation. However, the collusion attack, in which neighboring malicious nodes may cooperate so as to strike stealthier attacks that are more difficult to handle, remains by and large an open problem. In the setup of SATS, we derive the fundamental asymptotic bounds in the number of malicious agents-as function of the benign ones-that can be efficiently handled without tampering accurate network-wide synchronization. Going a step further, we develop a risk model for collusions and use it to obtain even tighter bounds. In specific, we establish that SATS can handle 'many' malicious nodes with high probability: an order of almost square-root of the benign ones for the case of no risk, and almost linear when the risk of collusion is accounted. Last but not least, we analyze and experimentally assess an interesting phenomenon: the presence of attackers may lead to a convergence speedup of SATS, since malicious nodes can be effectively constrained from the network, thus affecting the algebraic connectivity of the graph corresponding to the network topology. Numerical simulations verify the theoretical results, i.e., collusions are avoided when the number of malicious nodes is bounded by the asymptotic bounds and the algebraic connectivity increases due to incorporating 'well behaved' malicious nodes.

Subham Sahoo,Yongheng Yang,Frede Blaabjerg

DOI: https://doi.org/10.1109/tpel.2020.3005208

IF: 5.967

2021-01-01

IEEE Transactions on Power Electronics

Abstract:Although distributed control in microgrids is well known for reliability and scalability, the absence of a global monitoring entity makes it highly vulnerable to cyber attacks. Considering that the detection of cyber attacks becomes fairly easy for distributed observers, a well-planned set of balanced attacks, commonly termed as stealth attack, can always bypass these observers with the control objectives being successfully met. In this letter, a mitigation technique is thus introduced to remove stealth attack on the frequency control input in ac microgrids. The mitigation is carried out using a novel event-driven attack-resilient controller for N cooperative grid-forming converters, which guarantees resilient synchronization for up to N - 1 attacked units. Finally, the resilience capabilities and robustness of the proposed controller are discussed and verified under various scenarios.

Daotong Zhang,Peng Shi,Jonathon Chambers

DOI: https://doi.org/10.1016/j.jfranklin.2024.107243

IF: 4.246

2024-09-14

Journal of the Franklin Institute

Abstract:In this paper, the problem of synchronization control of cyber–physical systems with time-varying dynamics under Denial-of-Service attacks is studied. The communication channels of the synchronization protocol between the subsystems in the cyber–physical systems may be injected into DoS attacks. To counteract the adverse effects of these attacks on synchronization, a target reference model is initially created for each subsystem to mimic its standard operational dynamics. Subsequently, utilizing this reference model, an adaptive compensator is proposed. The unified synchronization protocol guarantees that the synchronization error remains minimal through the adjustment of specific parameters, even under DoS attacks. To showcase the efficiency of this approach, an illustrative numerical simulation example is conducted.

automation & control systems,engineering, electrical & electronic, multidisciplinary,mathematics, interdisciplinary applications

Aquib Mustafa,Hamidreza Modares,Rohollah Moghadam

DOI: https://doi.org/10.1016/j.automatica.2020.108869

IF: 6.4

2020-05-01

Automatica

Abstract:<p>In this paper, we first address adverse effects of attacks on distributed synchronization of multi-agent systems, by providing conditions under which an attacker can destabilize the underlying network, as well as another set of conditions under which local neighborhood tracking errors of intact agents converge to zero. Based on this analysis, we propose a Kullback–Libeler divergence based criterion in view of which each agent detects its neighbors' misbehavior and, consequently, forms a self-belief about the trustworthiness of the information it receives. Agents continuously update their self-beliefs and communicate them with their neighbors to inform them of the significance of their outgoing information. Moreover, if the self-belief of an agent is low, it forms trust on its neighbors. Agents incorporate their neighbors' self-beliefs and their own trust values on their control protocols to slow down and mitigate attacks. We show that using the proposed resilient approach, an agent discards the information it receives from a neighbor only if its neighbor is compromised, and not solely based on the discrepancy among neighbors' information, which might be caused by legitimate changes, and not attacks. The proposed approach is guaranteed to work under mild connectivity assumptions.</p>

Qisheng Jiang,Chundong Wang

2024-06-19

Abstract:Scientists have built a variety of covert channels for secretive information transmission with CPU cache and main memory. In this paper, we turn to a lower level in the memory hierarchy, i.e., persistent storage. Most programs store intermediate or eventual results in the form of files and some of them call fsync to synchronously persist a file with storage device for orderly persistence. Our quantitative study shows that one program would undergo significantly longer response time for fsync call if the other program is concurrently calling fsync, although they do not share any data. We further find that, concurrent fsync calls contend at multiple levels of storage stack due to sharing software structures (e.g., Ext4's journal) and hardware resources (e.g., disk's I/O dispatch queue). We accordingly build a covert channel named Sync+Sync. Sync+Sync delivers a transmission bandwidth of 20,000 bits per second at an error rate of about 0.40% with an ordinary solid-state drive. Sync+Sync can be conducted in cross-disk partition, cross-file system, cross-container, cross-virtual machine, and even cross-disk drive fashions, without sharing data between programs. Next, we launch side-channel attacks with Sync+Sync and manage to precisely detect operations of a victim database (e.g., insert/update and B-Tree node split). We also leverage Sync+Sync to distinguish applications and websites with high accuracy by detecting and analyzing their fsync frequencies and flushed data volumes. These attacks are useful to support further fine-grained information leakage.

Cryptography and Security,Operating Systems

He Huang,Jiawei Xu,Jing Wang,Xiangyong Chen

DOI: https://doi.org/10.1016/j.amc.2024.128840

IF: 4.397

2024-06-05

Applied Mathematics and Computation

Abstract:This paper studies the secure synchronization problem for two-time-scale complex dynamical networks with unknown dynamics information and malicious attacks. The challenge is that under complex dynamic networks with unknown dynamic information, all system matrices are unknown. To ameliorate this conundrum, we design a reinforcement learning algorithm, conjoined with a full-order processing of singularly perturbed parameters, with the express objective of securing the stability of the synchronization error system within a context devoid of adversarial intrusions. Second, in order to reduce the impact of malicious attacks, a switching function is developed based on feedback gain. Besides, it is proved that the proposed distributed controllers can still guarantee the convergence of the synchronization error system under malicious attacks. Finally, two numerical examples are given to illustrate the applicability and effectiveness of the proposed algorithm.

mathematics, applied

Junfeng Guo,Fei Wang,Qianwen Xue,Mengqing Wang

DOI: https://doi.org/10.1177/09596518241255413

2024-06-18

Proceedings of the Institution of Mechanical Engineers Part I Journal of Systems and Control Engineering

Abstract:Proceedings of the Institution of Mechanical Engineers, Part I: Journal of Systems and Control Engineering, Ahead of Print. The issue of secure cluster synchronization (SCS) of complex dynamical networks (CDNs) with parameter mismatches under deception attacks is investigated in this article. Firstly, the deception attacks are supposed to inject false information into controller-to-actuator channels, while the occurrences of deception attack are always subject to Bernoulli distribution. Secondly, an improved pinning impulsive control strategy is designed. The impulsive gain in the control strategy is take from a new range. Moreover, we obtain the estimation of synchronization error upper bound and boundaries of secure synchronization region. The synchronization error will converge to a bounded ball that depends on attack energy at a exponential rate. The CDNs without deception attacks under pinning impulsive control can achieve complete cluster synchronization. Finally, two numerical examples with 20 nodes based on MATLAB software are presented to demonstrate the effectiveness of the theoretical results.

automation & control systems

Wenhai Qi,Yanjing Yi,Peng Shi,Guangdeng Zong,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2023.3300727

2024-01-01

Abstract:This brief studies the adaptive event-driven control for continuous positive stochastic semi-Markov jump models in the presence of cyber attacks. To save the limited network resources, an adaptive event-driven mechanism is constructed, in which the communication threshold can be dynamically tuned according to the error and state signals. On the basis of linear co-positive Lyapunov function and gain matrix decomposition, stochastic stability conditions are developed under the framework of deception attacks. Next, the design strategy of adaptive event-driven controller is proposed to guarantee the positivity and stochastic stability of the underlying system in linear programming. Furthermore, by means of a lower bound of inter execution time, it is illustrated that there will be finite triggering within a limited time, resulting in no Zeno phenomenon. Finally, a communication network model is shown to verify the theoretical findings.

Federico Mason,Federico Chiariotti,Pietro Talli,Andrea Zanella

2024-11-12

Abstract:Semantic communication is a new paradigm that considers the meaning of transmitted information to optimize communication. One possible application is the remote monitoring of a process under communication costs: scheduling updates based on semantic considerations can significantly reduce transmission frequency while maintaining high-quality tracking performance. However, semantic scheduling also opens a timing-based side-channel that an eavesdropper may exploit to obtain information about the state of the remote process, even if the content of updates is perfectly secure. In this work, we study an eavesdropping attack against pull-based semantic scheduling for the tracking of remote Markov processes. We provide a theoretical framework for defining the effectiveness of the attack and of possible countermeasures, as well as a practical heuristic that can provide a balance between the performance gains offered by semantic communication and the information leakage.

Systems and Control,Cryptography and Security,Information Theory,Multiagent Systems

Hekai Feng,Zhenyu Wu,Xuexi Zhang,Zehui Xiao,Meng Zhang,Jie Tao

DOI: https://doi.org/10.1016/j.ins.2024.120594

IF: 8.1

2024-04-12

Information Sciences

Abstract:This article focuses on the problem of adaptive event-triggered anti-synchronization control for bidirectional associative memory neural networks subject to energy-limited denial of service attacks. First, a novel adaptive event-triggered scheme is developed by resorting to the acknowledgment character technique, which can help conserve valuable communication resources and has better performance in resisting malicious cyber attacks compared to traditional schemes. Second, a more general attack strategy for denial of service attacks is proposed with the consideration of energy constraints, and an anti-synchronization error system is established to analyze the anti-synchronization behavior. Then, sufficient conditions are provided to guarantee the anti-synchronization of drive and response bidirectional associative memory neural networks in H∞ sense. Next, a design approach is obtained based on the above conditions for the controller gains. Finally, a numerical example is employed to demonstrate the effectiveness of the proposed method and its superiority over the traditional event-triggered scheme.

computer science, information systems

Wangli He,Zekun Mo,Qing-Long Han,Feng Qian

DOI: https://doi.org/10.1109/jas.2020.1003297

2020-01-01

IEEE/CAA Journal of Automatica Sinica

Abstract:Cyber attacks pose severe threats on synchronization of multi-agent systems. Deception attack, as a typical type of cyber attack, can bypass the surveillance of the attack detection mechanism silently, resulting in a heavy loss. Therefore, the problem of mean-square bounded synchronization in multi-agent systems subject to deception attacks is investigated in this paper. The control signals can be replaced with false data from controller-to-actuator channels or the controller. The success of the attack is measured through a stochastic variable. A distributed impulsive controller using a pinning strategy is redesigned, which ensures that mean-square bounded synchronization is achieved in the presence of deception attacks. Some sufficient conditions are derived, in which upper bounds of the synchronization error are given. Finally, two numerical simulations with symmetric and asymmetric network topologies are given to illustrate the theoretical results.

Yarin Perry,Neta Rozen Schiff,Michael Schapira

DOI: https://doi.org/10.14722/NDSS.2021.24302

Abstract:—The Network Time Protocol (NTP) synchronizes time across computer systems over the Internet and plays a crucial role in guaranteeing the correctness and security of many Internet applications. Unfortunately, NTP is vulnerable to so called time shifting attacks. This has motivated proposals and standardization efforts for authenticating NTP communications and for securing NTP clients . We observe, however, that, even with such solutions in place, NTP remains highly exposed to attacks by malicious timeservers . We explore the implications for time computation of two attack strategies: (1) compromising existing NTP timeservers, and (2) injecting new timeservers into the NTP timeserver pool. We first show that by gaining control over fairly few existing timeservers, an opportunistic attacker can shift time at state-level or even continent-level scale. We then demonstrate that injecting new timeservers with disproportionate influence into the NTP timeserver pool is alarmingly simple, and can be leveraged for launching both large-scale opportunistic attacks, and strategic, targeted attacks. We discuss a promising approach for mitigating such attacks.

Computer Science

Congcong Chen,Jinhua Cui,Gang Qu,Jiliang Zhang

2023-12-08

Abstract:Memory-disk synchronization is a critical technology for ensuring data correctness, integrity, and security, especially in systems that handle sensitive information like financial transactions and medical records. We propose SYNC+SYNC, a group of attacks that exploit the memory-disk synchronization primitives. SYNC+SYNC works by subtly varying the timing of synchronization on the write buffer, offering several advantages: 1) implemented purely in software, enabling deployment on any hardware devices; 2) resilient against existing cache partitioning and randomization techniques; 3) unaffected by prefetching techniques and cache replacement strategies. We present the principles of SYNC+SYNC through the implementation of two write covert channel protocols, using either a single file or page, and introduce three enhanced strategies that utilize multiple files and pages. The feasibility of these channels is demonstrated in both cross-process and cross-sandbox scenarios across diverse operating systems (OSes). Experimental results show that, the average rate can reach 2.036 Kb/s (with a peak rate of 14.762 Kb/s) and the error rate is 0% on Linux; when running on macOS, the average rate achieves 10.211 Kb/s (with a peak rate of 253.022 Kb/s) and the error rate is 0.004%. To the best of our knowledge, SYNC+SYNC is the first high-speed write covert channel for software cache.

Cryptography and Security

Wangli He,Xiaoyang Gao,Weimin Zhong,Feng Qian

DOI: https://doi.org/10.1016/j.ins.2018.04.020

IF: 8.1

2018-01-01

Information Sciences

Abstract:This paper is concerned with secure synchronization of multi-agent systems under deception attacks in the impulsive control framework. False data is injected into sensor-to-controller channels, which causes the transmittal signals being changed. Some stochastic variables obeying the Bernoulli distribution associated with communication channels between neighbouring agents are proposed to describe the case whether channels are suffered from the attack. A distributed impulsive controller is proposed and bounded synchronization, caused by false data injection is studied. Several mean-square bounded synchronization conditions are derived and the error bound is also given. Finally, two examples are provided to verify the theoretical results.

Li Shu,Shengyuan Xu,Choon Ki Ahn

DOI: https://doi.org/10.1109/tnse.2024.3421364

IF: 6.6

2024-08-18

IEEE Transactions on Network Science and Engineering

Abstract:In this article, we investigate the synchronization problem for Markovian jump complex networks (MJCNs) subjected to communication delays and denial-of-service (DoS) attacks. A new synchronization scheme is proposed to address the four common circumstances encountered in real-world situations: 1) DoS attacks, 2) distributed communication delays, 3) system-controller mode asynchrony, and 4) event-triggered mechanism (ETM). Initially, we hypothesize that the mode transition rate and detection probability are bounded rather than precisely known. Furthermore, the probability density function of the communication delay is characterized as a distribution kernel. A sufficient condition for the synchronization of the MJCNs is then established by constructing a Lyapunov-Krasovskii function in conjunction with the distributed kernel. To further decrease network communication, a delay-dependent ETM is also proposed. Subsequently, an event-triggered-based asynchronous strategy is developed by using the hidden Markov model. The gain matrix is computed by employing linear matrix inequalities. Ultimately, the proposed strategy's effectiveness is established through two simulated demonstrations.

engineering, multidisciplinary,mathematics, interdisciplinary applications

Shiyu Dong,Hong Zhu,Shouming Zhong,Kaibo Shi,Jianquan Lu

DOI: https://doi.org/10.1109/tnnls.2021.3106383

IF: 14.255

2023-01-01

IEEE Transactions on Neural Networks and Learning Systems

Abstract:This article is dedicated to investigating the impulsive-based almost surely synchronization issue of neural network systems (NSSs) with quality-of-service constraints. First, the communication network considered suffers from random double deception attacks, which are modeled as a nonlinear function and a desynchronizing impulse sequence, respectively. Meanwhile, the impulsive instants and impulsive gains are randomly and only their expectations are available. Second, by taking two different types of random deception attacks into consideration, a novel mathematical model for vulnerable NSSs is constructed. Then, almost surely synchronization criteria are established by using Borel-Cantelli lemma. Furthermore, based on the derived strong and weak sufficient conditions, the almost surely synchronization of NSSs is achieved. Finally, the section of numerical example is shown to illustrate the effectiveness of the proposed method.

Saad Kriouile,Mohamad Assaad,Deniz Gündüz,Touraj Soleymani

2024-03-07

Abstract:In this paper, we investigate denial-of-service attacks against status updating. The target system is modeled by a Markov chain and an unreliable wireless channel, and the performance of status updating in the target system is measured based on two metrics: age of information and age of incorrect information. Our objective is to devise optimal attack policies that strike a balance between the deterioration of the system's performance and the adversary's energy. We model the optimal problem as a Markov decision process and prove rigorously that the optimal jamming policy is a threshold-based policy under both metrics. In addition, we provide a low-complexity algorithm to obtain the optimal threshold value of the jamming policy. Our numerical results show that the networked system with the age-of-incorrect-information metric is less sensitive to jamming attacks than with the age-of-information metric. Index Terms-age of incorrect information, age of information, cyber-physical systems, status updating, remote monitoring.

Information Theory,Optimization and Control

Hui Li,Yanfei Zheng,Mi Wen,Kefei Chen

DOI: https://doi.org/10.1007/978-3-540-77018-3_52

2007-01-01

Abstract:Clock synchronization is a critical issue in most wireless sensor network applications. Although the synchronization is well studied in last few years. Most of these synchronization protocols assume benign environments, but cannot survive malicious attacks in hostile environments, especially when there are compromised nodes. In this paper, we propose a secure synchronization protocol for sensor network. Our protocol combine the sender-receiver model and receiver-receiver model to verify the synchronization process between each synchronizing pair. The approach guarantees that normal nodes can synchronize their clocks to global clock even if each normal node has up to t colluding malicious neighbor nodes during synchronization phase.