Jiajun Shen,Dongqin Feng

DOI: https://doi.org/10.1109/hpcc.2014.115

2014-01-01

Abstract:With the development of the industrial informatization, the problems of security in field device layer have been gradually exposed, which mainly involves specified industrial communication protocols. Clock synchronization protocol, as one of the most important industrial communication protocols, ensures the real-time performance of industrial control system. Considering that the related researches have not yet formed a mature system, we propose a new method for analyzing the vulnerability of clock synchronization protocol in this article. In this method, SPN(stochastic petri net) is introduced as a modeling tool, while IEEE 1588 PTP clock synchronization protocol is regarded as the research object. An SPN(stochastic petri net) model is strictly built according to the protocol. Then, steady-state probability expressions are obtained by the isomorphic Markov chain. Through changing trigger rate of transitions of several pivotal states which are related to vulnerability, the influences of each parameter has on the model could be quantitatively reflected in the result of simulation in order to analyze vulnerability of clock synchronization protocol by determining the critical factors that affect protocol's vulnerability.

Jiajun Shen,Dongqin Feng

DOI: https://doi.org/10.1080/00207721.2017.1406555

IF: 2.648

2018-01-01

International Journal of Systems Science

Abstract:In this paper, the cross-layer security problem of cyber-physical system (CPS) is investigated from the game-theoretic perspective. Physical dynamics of plant is captured by stochastic differential game with cyber-physical influence being considered. The sufficient and necessary condition for the existence of state-feedback equilibrium strategies is given. The attack-defence cyber interactions are formulated by a Stackelberg game intertwined with stochastic differential game in physical layer. The condition such that the Stackelberg equilibrium being unique and the corresponding analytical solutions are both provided. An algorithm is proposed for obtaining hierarchical security strategy by solving coupled games, which ensures the operational normalcy and cyber security of CPS subject to uncertain disturbance and unexpected cyberattacks. Simulation results are given to show the effectiveness and performance of the proposed algorithm.

Dandan Zhang,Xin Jin,Hongye Su

DOI: https://doi.org/10.1109/tac.2023.3343588

IF: 6.549

2024-01-01

IEEE Transactions on Automatic Control

Abstract:By designing a time-regularized (Zeno-free) event-triggered strategy for the state-feedback control law, this paper considers the stochastic stabilization of networked control systems, where the networked communication is constrained by stochastic pulsing denial-of-service (DoS) attacks. The attacks' cardinal number is supposed to be subject to Poisson distribution, so the inter-attack time, i.e., the time between two consecutive attack instants, is subject to exponential distribution. The considered system is modeled as the stochastic hybrid formalism, where the randomness enters through the jump map into the reset value (inter-attack time directly related) of the designed triggered strategy. Using stochastic hybrid tools to combine attack-active parts with attack-over parts, we show that the designed triggered strategy, if designed well according to the actual system needs, can tolerate (be resilient to) the pulsing DoS attacks without jeopardizing the stability and Zeno-freeness.

Meng-zhou Gao,Dong-qin Feng

DOI: https://doi.org/10.1631/fitee.1700334

IF: 2.526

2018-01-01

Frontiers of Information Technology & Electronic Engineering

Abstract:Security issues in networked control systems (NCSs) have received increasing attention in recent years. However, security protection often requires extra energy consumption, computational overhead, and time delays, which could adversely affect the real-time and energy-limited system. In this paper, random cryptographic protection is implemented. It is less expensive with respect to computational overhead, time, and energy consumption, compared with persistent cryptographic protection. Under the consideration of weak attackers who have little system knowledge, ungenerous attacking capability and the desire for stealthiness and random zero-measurement attacks are introduced as the malicious modification of measurements into zero signals. NCS is modeled as a stochastic system with two correlated Bernoulli distributed stochastic variables for implementation of random cryptographic protection and occurrence of random zero-measurement attacks; the stochastic stability can be analyzed using a linear matrix inequality (LMI) approach. The proposed stochastic stability analysis can help determine the proper probability of running random cryptographic protection against random zero-measurement attacks with a certain probability. Finally, a simulation example is presented based on a vertical take-off and landing (VTOL) system. The results show the effectiveness, robustness, and application of the proposed method, and are helpful in choosing the proper protection mechanism taking into account the time delay and in determining the system sampling period to increase the resistance against such attacks.

LI Peikai,LIU Yun,XIN Huanhai,QI Donglian

DOI: https://doi.org/10.7500/AEPS20170705002

2018-01-01

Abstract:Distributed cooperative control mode is an effective approach to overcome the problem of integrating multiple and strongly random distributed generators (DGs) into cyber physical system in distribution network.However,due to the integration between cyber and physical layers,cyber attacks could threat the safe and stable operation of power system through invading the cyber system.A dynamic attack-defense game model based vulnerability assessment of cyber-physical system (CPS)in distribution network is proposed.Firstly,a cooperative control strategy of DGs is described,and its convergence property is analyzed and summarized.Then,a risk assessment of CPS in distribution network is developed,which integrates the risk assessment method,the cooperative control strategy of DGs and strategies of attacker and defender.After that,the dynamic attack-defense game function and its solving steps are designed,which achieves the vulnerability assessment of CPS in distribution network with distributed cooperative control mode.Finally,the effectiveness of the proposed method is verified through simulations involving the IEEE 34-bus distribution network.

Yinan Wang,Gangfeng Yan,Ronghao Zheng

DOI: https://doi.org/10.3390/app8050768

2018-01-01

Applied Sciences

Abstract:The integration of modern computing and advanced communication with power grids has led to the emergence of electrical cyber-physical systems (ECPSs). However, the massive application of communication technologies makes the power grids become more vulnerable to cyber attacks. In this paper, we study the vulnerability of ECPSs and develop defence strategies against cyber attacks. Detection and protection algorithms are proposed to deal with the emergency of cascading failures. Moreover, we propose a weight adjustment strategy to solve the unbalanced power flows problem which is caused by splitting incidents. A MATLAB-based platform with advantages of easy programming, fast calculation, and no damage to systems is built for the offline simulation and analysis of the vulnerability of ECPSs. We also propose a five-aspect method of vulnerability assessment which includes the robustness, economic costs, degree of damage, vulnerable equipment, and trip point. The study is of significance to decision makers as they can get specific advice and defence strategies about a special power system.

Jiajun Shen,Xiangshen Ye,Dongqin Feng

DOI: https://doi.org/10.1080/00207179.2020.1750707

IF: 2.102

2020-01-01

International Journal of Control

Abstract:Multi-agent cyber-physical systems (CPSs) are ubiquitous in various modern critical infrastructures, especially in industrial automation control involved in the petrochemical, metallurgy, textile, and pharmaceutical, which are vulnerable for their hierarchically and horizontally interconnected architecture. In this paper, we investigate a resilient control design problem for industrial multi-agent CPSs of centralised information structure, with Markovian and physically coupled dynamics from a game-theoretic perspective. First, we investigate a worst-case design problem and solve for worst-case disturbance strategy and optimal disturbance attenuation level parameter through an equivalent two-person zero-sum differential game in both finite- and infinite-horizon. Second, we study a corresponding N-person worst-case nonzero-sum differential game and derive state-feedback Nash equilibrium solution of robustness property as resilient control strategy for each agent. The experimental case study is given to demonstrate that using resilient control strategy, each agent could maintain its physical plant operationally normal under cyber attack, malicious disturbance input and physical state interdependency.

Jianxin Xu,Dongqin Feng

DOI: https://doi.org/10.1155/2017/2430835

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:This paper discusses two aspects of major risks related to the cyber security of an industrial control system (ICS), including the exploitation of the vulnerabilities of legitimate communication parties and the features abused by unauthorized parties. We propose a novel framework for exposing the above two types of risks. A state fusion finite state machine (SF-FSM) model is defined to describe multiple request-response packet pair sequence signatures of various applications using the same protocol. An inverted index of keywords in an industrial protocol is also proposed to accomplish fast state sequence matching. Then we put forward the concept of scenario reconstruction, using state sequence matching based on SF-FSM, to present the known vulnerabilities corresponding to applications of a specific type and version by identifying the packet interaction characteristics from the data flow in the supervisory control layer network. We also implement an anomaly detection approach to identifying illegal access using state sequence matching based on SF-FSM. An anomaly is asserted if none of the state sequence signatures in the SF-FSM is matched with a packet flow. Ultimately, an example based on industrial protocols is demonstrated by a prototype system to validate the methods of scenario reconstruction and anomaly detection.

Hongyan Liu,Xiang Chen,Yi Shen,Qun Huang,Zhengyan Zhou,Dong Zhang,Chunming Wu

DOI: https://doi.org/10.1109/iwqos57198.2023.10188714

2023-01-01

Abstract:In programmable networks, some networking systems coordinate data plane switches to realize in-network functions (e.g., in-band network telemetry). However, the vulnerabilities of inter-device coordination are still largely unknown and neglected, which is highly concerning given the increasing popularity of this paradigm. In this paper, we identify three attack scenarios built upon such vulnerabilities, where attackers mislead the behaviors of networking systems that exploit inter-device coordination to execute in-network functions. We implement 20 existing networking systems on Tofino-based switches and a simulator, and attack these systems with the identified attacks. The experimental results indicate that our attacks significantly interfere with the normal operations of the selected networking systems, e.g., the cache hit rate of NetCache drops 38%. Our analysis also demonstrates that none of existing methods can fully mitigate our attacks since they fail to verify the packets for inter-device coordination.

Ruiwen He,Xiaoyu Ji,Wenyuan Xu

DOI: https://doi.org/10.1109/ei250167.2020.9346835

2020-01-01

Abstract:With the development of information technology and Power Internet of Things, the increasing number of networked terminals presents new network security threats. Industrial control equipment and systems have vulnerabilities in hardware, software and firmware, and advanced persistent threat against ICS has become more complex and diverse. However, most of the research are aimed at the detection of single vulnerability, and lack attack mechanism analysis and threat assessment for attack chain. We proposed a threat assessment method based on vulnerability descriptive text and described the attributes of attack samples according to the classification results in attack targets, methods and consequences. We constructed attack graphs based on attack sample attributes and cyber-physical topology to quantitatively evaluate the feasibility and benefits of each attack path from vulnerability capabilities and the impact of devices in the physical world. Finally, we took the substation device status monitoring system as an example to verify the feasibility of this method.

Jiajun Shen,Dongqin Feng

DOI: https://doi.org/10.1155/2017/9017039

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:With the integration of physical plant and network, cyber-physical systems (CPSs) are increasingly vulnerable due to their distributed and hierarchical framework. Stackelberg interdependent security game (SISG) is proposed for characterizing the interdependent security in CPSs, that is, the interactions between individual CPSs, which are selfish but nonmalicious with the payoff function being formulated from a cross-layer perspective. The pure-strategy equilibria for two-player symmetric SISG are firstly analyzed with the strategy gap between individual and social optimum being characterized, which is known as negative externalities. Then, the results are further extended to the asymmetric and m-player SISG. At last, a numerical case of practical experiment platform is analyzed for determining the comprehensively optimal security configuration for administrator.

Qingyang Li,Yang Li,Shichao Liu,Xiaozhe Wang,Hicham Chaoui

DOI: https://doi.org/10.1109/jetcas.2022.3151645

IF: 5.877

2022-03-01

IEEE Journal on Emerging and Selected Topics in Circuits and Systems

Abstract:While securing wide-area damping controllers (WADCs) against cyber attacks becomes critical, most existing efforts deal with model-based attacks. A smart attacker may not follow the prescribed models and can intelligently change the attack actions. To tackle this challenge, this work proposes a stochastic game theoretic framework that can model the dynamic interaction between the attacker (a jammer) and the defender (intrusion detector in the WADC) with the player’s type uncertainty to optimally manage the vulnerability of the power system. Uniquely, the always opponent assumption of the other player made in most of the existing works is removed as this assumption may lead to serious resource waste due to the high over-defense rate. In this incomplete information stochastic game, the attacker intelligently jams the communication links between phasor measurement units (PMUs) and WADCs, while the intrusion detection of the WADCs is considered as the defense action. The vulnerability level of the power system resulted from the attack and defense actions in the cyber-layer is indexed by the trace of the observability Gramian. Therefore, the proposed stochastic game framework provides a cyber-physical view to make the optimal cyber-layer intrusion detection system (IDS) triggering strategy for the WADC. As the types of the other player are unknown to the defender, a Bayesian based posterior type belief update method is proposed for the defender to update the type belief about the opponent by the boundary probability based on the Bayesian Nash Equilibrium. The proposed cyber-layer IDS triggering strategy is tested and compared with other game approaches on the IEEE 39-bus 10-generator system. Simulation results show that the proposed approach can achieve the same defense performance compared to the complete information stochastic game while reducing the over-defense rate from 40% to 16%.

Keren Chen,Fushuan Wen,Chung-Li Tseng,Minghui Chen,Zeng Yang,Hongwei Zhao,Huiyu Shang

DOI: https://doi.org/10.3390/en12153002

IF: 3.2

2019-01-01

Energies

Abstract:In a Cyber-Physical Power System (CPPS), the interaction between the power cyber system and the power physical system becomes more extensive and more in-depth. The failure of a cyber component could have an impact on the security and reliability of the power physical system. Existing publications have focused on the impacts of the power cyber network on the power physical network, while a general CPPS model considering the mutual impacts of these two networks is less studied. Given this background, a game-theoretic approach for a cyber-physical power system vulnerability analysis is proposed. First, a CPPS interactive model framework is structured, consisting of five types of elements: P-nodes, PP-links, C-nodes, CC-links and CP-links. The interactions among these elements are considered. On this basis, the system cascading failure under potential attacks is analyzed, followed with an optimal load curtailment operation when in an emergency. To further illustrate the system vulnerability, a bi-level optimization model under a game-theoretic framework is presented to describe the interactions between a CPPS attacker and a system defender. Optimal resource allocation by the system defender for maintaining system reliability can be obtained by solving the problem. The feasibility and effectiveness of the proposed method are demonstrated by a revised version of the IEEE 14-bus power system.

Wenhai Qi,Yanjing Yi,Peng Shi,Guangdeng Zong,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2023.3300727

2024-01-01

Abstract:This brief studies the adaptive event-driven control for continuous positive stochastic semi-Markov jump models in the presence of cyber attacks. To save the limited network resources, an adaptive event-driven mechanism is constructed, in which the communication threshold can be dynamically tuned according to the error and state signals. On the basis of linear co-positive Lyapunov function and gain matrix decomposition, stochastic stability conditions are developed under the framework of deception attacks. Next, the design strategy of adaptive event-driven controller is proposed to guarantee the positivity and stochastic stability of the underlying system in linear programming. Furthermore, by means of a lower bound of inter execution time, it is illustrated that there will be finite triggering within a limited time, resulting in no Zeno phenomenon. Finally, a communication network model is shown to verify the theoretical findings.

Han Qin,Jiaming Weng,Dong Liu,Donglian Qi,Yufei Wang

DOI: https://doi.org/10.17775/cseejpes.2020.04550

IF: 6.014

2024-01-01

CSEE Journal of Power and Energy Systems

Abstract:With the help of advanced information technology, real-time monitoring and control levels of cyber-physical distribution systems (CPDS) have been significantly improved. However due to the deep integration of cyber and physical systems, attackers could still threaten the stable operation of CPDS by launching cyber-attacks, such as denial-of-service (DoS) attacks. Thus, it is necessary to study the CPDS risk assessment and defense resource allocation methods under DoS attacks. This paper analyzes the impact of DoS attacks on the physical system based on the CPDS fault self-healing control. Then, considering attacker and defender strategies and attack damage, a CPDS risk assessment framework is established. Furthermore, risk assessment and defense resource allocation methods, based on the Stackelberg dynamic game model, are proposed under conditions in which the cyber and physical systems are launched simultaneously. Finally, a simulation based on an actual CPDS is performed, and the calculation results verify the effectiveness of the algorithm.

Wang Chunlei,Miao Qing,Dai Yiqi

DOI: https://doi.org/10.1109/MINES.2012.147

2012-01-01

Abstract:With the increase of network complexity and continuous development of network attack techniques, it is unrealistic to prevent network from attacks or intrusion threats absolutely, a large number of critical network services require that they can provide adequate qualities of services in the face of suffering intrusions or even certain parts of network system be destroyed. Therefore, network survivability technologies in open environment are becoming a research focus in network security field. This paper proposes network threat evolution model based on threat evolutionary behaviors and threat propagations. Then, network survivability is abstracted as a dynamic game process among network attacker, network defender and normal user, thereafter network survivability stochastic game model is established and network survivability analysis algorithm is proposed based on the game model. Finally, the proposed network survivability analysis model and approach are experimented in a typical network environment. The results show that the analysis model and approach proposed are feasible and effective.

Boyu Gao,Libao Shi

DOI: https://doi.org/10.1109/access.2020.2973030

IF: 3.9

2020-01-01

IEEE Access

Abstract:The rapid development of advanced information and communication technology has made modern power systems evolve into more complicated cyber-physical power systems (CPPSs) with mutual coupling characteristics between cyber systems and power systems, and at the same time, the CPPSs have to confront some newly emerged risks owing to cyber system unreliability or cyberattacks. In this paper, regarding the cyber and physical attacks in a CPPS, the operation risks and vulnerabilities of transmission lines are discussed in detail by building relevant game-theoretic models. Under two possible cyberattack scenarios, namely time delay of system recovery and distributed denial of service, a three-stage defender-attacker-defender tri-level mathematical programming model is proposed based on dynamic game theory of complete information. In particular, the objective functions and corresponding constraint conditions in each level are analyzed and constructed elaborately. For the solution of this proposed tri-level programming model, a solution method based on an improved particle swarm optimization approach combined with sequential quadratic programming technique is applied during analysis. Finally, the proposed model is validated through two case studies, and some preliminary concluding remarks are summarized.

Wenhai Qi,Yifan Wang,Guangdeng Zong,Huaicheng Yan,Zheng-Guang Wu,Shan Jin

DOI: https://doi.org/10.1109/tcsi.2024.3424512

2024-01-01

IEEE Transactions on Circuits and Systems I Regular Papers

Abstract:The issue of adaptive protocol-based control is studied for nonhomogeneous stochastic semi-Markov jump systems with denial-of-service (DoS) attacks. As a result of cyber attacks occurring during networked information transmission, the security controller design for the underlying nonhomogeneous semi-Markov jump systems becomes significantly more complicated. Different from the existing self-triggered strategy, an adaptive self-triggered strategy is proposed to reduce the updating frequency of the controller by adjusting the on-line threshold. The main novelty lies in constructing an appropriate adaptive self-triggered strategy to realize better dynamic performance, overcoming the difficulty caused by DoS attacks. By using the algebraic relationship among transition probability, probability distribution function, and probability density function, the time-varying transition rate is expressed based on the semi-Markov process. According to adaptive self-triggered strategy and DoS attacks, stochastic stability conditions are established. Furthermore, the desired adaptive self-triggered controller gains are derived to realize the stochastic stability for the corresponding system. Finally, the boost converter circuit model is carried out to ensure the feasibility of the proposed theoretical results.

Peng Huang,Yinan Wang,Gangfeng Yan

DOI: https://doi.org/10.1109/iecon.2017.8216086

2017-01-01

Abstract:This paper considers a framework of electrical cyber-physical systems (ECPSs) in which each bus and branch in a power grid is equipped with a controller and a sensor. By means of measuring the damages of cyber attacks in terms of cutting off transmission lines, three solution approaches are proposed to assess and deal with the damages caused by faults or cyber attacks. Splitting incident is treated as a special situation in cascading failure propagation. A new simulation platform is built for simulating the protection procedure of ECPSs under faults. The vulnerability of ECPSs under faults is analyzed by experimental results based on IEEE 39-bus system.

Yi-nan WANG,Yan-jun LIN,Huan LI,Zhi-yun LIN,Wen-yuan XU,Qiang YANG,Gang-feng YAN

DOI: https://doi.org/10.13195/j.kzyjc.2016.0311

2017-01-01

Abstract:Considering the influence of denial-of-service(DoS) attacks on electrical cyber physical systems(ECPSs), this paper studies the problem of vulnerability analysis and countermeasure synthesis for electrical network control systems under DoS attacks. Distributed control and its features are considered for the design of transmission paths of sensors and remote terminal units(RTUs) based on automatic voltage regulators(AVR) of synchronous generators. An algorithm is proposed for identifying and protecting vulnerable nodes and lines in electrical network control systems by solving a problem of optimum sparse matrix. Countermeasures of electrical communication networks under DoS attacks are further studied. The proposed algorithms are validated on the IEEE 9-node system. Spectific advice and defending strategies against cyber attacks are given according to the algorithms.