Xiaoqiang Ren,Jiaqi Yan,Yilin Mo

DOI: https://doi.org/10.1109/TSP.2017.2788420

IF: 4.875

2018-01-01

IEEE Transactions on Signal Processing

Abstract:This paper studies binary hypothesis testing based on measurements from a set of sensors, a subset of which can be compromised by an attacker. The measurements from a compromised sensor can be manipulated arbitrarily by the adversary. The asymptotic exponential rate, with which the probability of error goes to zero, is adopted to indicate the detection performance of a detector. In practice, we ex...

Xiaoqiang Ren,Yilin Mo

DOI: https://doi.org/10.1109/tsp.2018.2853110

IF: 4.875

2018-01-01

IEEE Transactions on Signal Processing

Abstract:This paper studies how to deploy sensors in the context of detection in adversarial environments. A fusion center is performing a binary hypothesis testing based on measurements from remotely deployed heterogeneous sensors. An attacker may compromise some of the deployed sensors, which send arbitrary measurements to the fusion center. The problems of interest are: to characterize the performance of the system under attack and, thus, develop a performance metric; and to deploy sensors within a cost budget, such that the proposed performance metric is maximized. In this paper, we first present a performance metric by formulating the detection in adversarial environments in a game theoretic way. A Nash equilibrium pair of the detection algorithm and attack strategy, with the deployed sensors given, is provided and the corresponding detection performance is adopted as the performance metric. We then show that the optimal sensor deployment can be determined approximately by solving a group of unbounded knapsack problems. We also show that the performance metric gap between the optimal sensor deployment and the optimal one with sensors being identical is within a fixed constant for any cost budget. The main results are illustrated by numerical examples.

Rohan Chabukswar,Yilin Mo,Bruno Sinopoli

DOI: https://doi.org/10.3182/20130925-2-de-4044.00033

2013-01-01

IFAC Proceedings Volumes

Abstract:Cyber-physical systems employing remote sensors and actuators and sparse communication networks are pervading the infrastructure. In this paper we consider a prototypical problem of estimating a binary state using measurements provided by binary sensors. We propose a new approach to estimate the states based on sensor measurements that may have been corrupted by an attacker. The problem is formulated as a minimax problem in which a detector attempts to maximize the probability of detection in case of the worst case attempt by the attacker to minimize this probability. A fixed form of the detector is proposed in the case where the sensors are of equivalent specifications, along with a method to find the optimal detector parameters.

Junkun Li,Jiming Chen,Ten H. Lai

DOI: https://doi.org/10.1109/tw.2013.072313.122083

2012-01-01

Abstract:Intrusion detection is a significant application in wireless sensor networks (WSNs). S. Kumar et al have introduced the concept of barrier coverage, which deploys sensors in a narrow belt region to guarantee that any intrusion across the region is to be detected. However, the practical issues have not been investigated such as scheduling sensors energy-efficiently while guaranteeing the detection probability of any intrusion across the region based on probabilistic sensing model, which is a more realistic sensing model. Besides, the intruders may be humans, animals, fighter planes or other things, which obviously have diverse moving speeds. In this paper, we analyze the detection probability of arbitrary path across the barrier of sensors theoretically and take the maximum speed of possible intruders into consideration since the sensor networks are designed for different intruders in different scenarios. Based on the theoretical analysis of detection probability, we formulate a Minimum Weight ∈-Barrier Problem about how to schedule sensors energy-efficiently. We show the problem NP-hard and propose a bounded approximation algorithm, called Minimum Weight Barrier Algorithm (MWBA) to schedule the activation of sensors. To evaluate our design, we analyze the performance of MWBA theoretically and also perform extensive simulations to demonstrate the effectiveness of our proposed algorithm.

Xiaoqiang Ren,Yilin Mo

DOI: https://doi.org/10.23919/acc.2018.8430768

2018-01-01

Abstract:This paper considers hypothesis testing using multiple sensors, among which some might be compromised and send arbitrary data. There exist no less than two hypotheses, which is an extension of the binary hypothesis testing in our recent work [1]. The exponent rate, under which the worst-case probability of detection error goes to zero, is adopted as the performance metric. The problem is formulated in a game theoretic way and an equilibrium pair of attack and detection strategies is given. We also provide a simplified equilibrium detection algorithm when the mean of Gaussian noises is to be determined. Two extensions are also studied and a Nash equilibrium is provided for each case using a similar methodology. In the first extension, composite hypothesis testing is studied, i.e., the distribution of observations under each hypothesis is not known exactly but is characterized by a (unknown) parameter. In the second one, heterogeneous sensors are used to collect measurements.

Chen Yan,Hocheol Shin,Connor Bolton,Wenyuan Xu,Yongdae Kim,Kevin Fu

DOI: https://doi.org/10.1109/sp40000.2020.00026

2020-01-01

Abstract:Over the last six years, several papers demonstrated how intentional analog interference based on acoustics, RF, lasers, and other physical modalities could induce faults, influence, or even control the output of sensors. Damage to the availability and integrity of sensor output carries significant risks to safety-critical systems that make automated decisions based on trusted sensor measurement. Established signal processing models use transfer functions to express reliability and dependability characteristics of sensors, but existing models do not provide a deliberate way to express and capture security properties meaningfully. Our work begins to fill this gap by systematizing knowledge of analog attacks against sensor circuitry and defenses. Our primary contribution is a simple sensor security model such that sensor engineers can better express analog security properties of sensor circuitry without needing to learn significantly new notation. Our model introduces transfer functions and a vector of adversarial noise to represent adversarial capabilities at each stage of a sensor's signal conditioning chain. The primary goals of the systematization are (1) to enable more meaningful quantification of risk for the design and evaluation of past and future sensors, (2) to better predict new attack vectors, and (3) to establish defensive design patterns that make sensors more resistant to analog attacks.

Yilin Mo,Joao P. Hespanha,Bruno Sinopoli

DOI: https://doi.org/10.1109/tsp.2013.2284145

IF: 4.875

2014-01-01

IEEE Transactions on Signal Processing

Abstract:We consider the detection of a binary random state based on measurements that can be manipulated by an attacker. The attacker is assumed to have full information about the true value of the state to be estimated as well as the values of all the measurements. However, the attacker can only manipulate of the measurements. The detection problem is formulated as a minimax optimization, where one seeks to construct an optimal detector that minimizes the "worst-case" probability of error against all possible manipulations by the attacker. We show that if the attacker can manipulate at least half the measurements (n >= m/2) then the optimal worst-case detector should ignore all m measurements and be based solely on the a-priori information. When the attacker can manipulate less than half of the measurements (n < m/2), we show that the optimal detector is a threshold rule based on a Hamming- like distance between the (manipulated) measurement vector and two appropriately defined sets. For the special case where n = (m-1)/2, our results provide a constructive procedure to derive the optimal detector. We also design a heuristic detector for the case where n << m, and prove the asymptotic optimality of the detector when m -> infinity Finally we apply the proposed methodology in the case of i.i.d. Gaussian measurements.

Shibo He,Jiming Chen,Yuanchao Shu,Xianbin Cui,Kun Shi,Chunjuan Wei,Zhiguo Shi

DOI: https://doi.org/10.1109/twc.2021.3089039

IF: 10.4

2021-01-01

IEEE Transactions on Wireless Communications

Abstract:Information barrier coverage has been widely adopted to prevent unauthorized invasion of important areas in Internet of Things. As sensors are typically placed outdoors, they are susceptible to getting faulty. Previous works assumed that faulty sensors are easy to recognize, e.g., they may stop functioning or output apparently deviant sensory data. In practice, there exist multiple types of fault that sensors may have during operation. It is, thereby, difficult to recognize faulty sensors as well as their invalid output and attain accurate intrusion detection. We, in this paper, propose a novel fault-tolerant intrusion detection algorithm (TrusDet) based on trust management to address this challenging issue. TrusDet comprises of three steps: i) sensor-level detection, ii) sink-level decision by collective voting, and iii) trust management and fault determination. In the Step i) and ii), TrusDet divides the surveillance area into a set of fine-grained subareas and exploits temporal and spatial correlation of sensory output among sensors in different subareas to yield a more accurate and robust performance of information barrier coverage. In the Step iii), TrusDet builds a trust management based framework to determine the confidence level of sensors being faulty. We implement TrusDet on HC-SR501 infrared sensors, and design hardware and software to build a practical detection system. Extensive experimental results and simulation results validate the information coverage model and demonstrate that TrusDet has a very low false alarm rate.

Zishuo Li,Yilin Mo,Fei Hao

DOI: https://doi.org/10.1109/tsp.2021.3075147

IF: 4.875

2021-01-01

IEEE Transactions on Signal Processing

Abstract:This paper considers the problem of sequential binary hypothesis testing based on observations from a network of m sensors where a subset of the sensors is compromised by a malicious adversary. The asymptotic average sample number required to reach a certain level of error probability is selected as the performance metric of the system. We propose an asymptotically optimal voting algorithm for the sensor network with a fusion center and generalize it to fully-distributed networks, where the algorithm stays asymptotically optimal under the weak assumption that the sensor network is connected. Moreover, we prove that both of the proposed algorithms are asymptotically optimal in the presence of Byzantine sensors, in the sense that each of them forms a Nash equilibrium with the worst-case attack (flip-attack). Compared to existing distributed detection strategies, the proposed scheme has a low message complexity, which is independent of the error probability and the sample number, by taking advantage of the sparsity of votes. The results are corroborated by numerical simulations.

Kyriakos G. Vamvoudakis,João Pedro Hespanha,Bruno Sinopoli,Yilin Mo

DOI: https://doi.org/10.1109/TAC.2014.2351671

2014-01-01

Abstract:We propose new game theoretic approaches to estimate a binary random variable based on sensor measurements that may have been corrupted by a cyber-attacker. The estimation problem is formulated as a zero-sum partial information game in which a detector attempts to minimize the probability of an estimation error and an attacker attempts to maximize this probability. While this problem can be solved exactly by reducing it to the computation of the value of a matrix, this approach is computationally feasible only for a small number of sensors. The two key results of this paper provide complementary computationally efficient solutions to the construction of the optimal detector. The first result provides an explicit formula for the optimal detector but it is only valid when the number of sensors is roughly smaller than two over the probability of sensor errors. In contrast, the detector provided by the second result is valid for an arbitrary number of sensor. While it may result in a probability of estimation error that is ϵ above the minimum achievable, we show that this error ϵ is small when the number of sensors is large, which is precisely the case for which the first result does not apply.

Xiaoqiang Ren,Yilin Mo,Karl H. Johansson

DOI: https://doi.org/10.1016/j.ifacol.2018.12.050

2018-01-01

IFAC-PapersOnLine

Abstract:This paper studies static state estimation based on measurements from a set of sensors, a subset of which can be compromised by an attacker. The measurements from a compromised sensor can be manipulated arbitrarily by the adversary. A new notion is adopted to indicate the performance of an estimator, that is, the asymptotic exponential rate, with which the worst-case probability of estimate lying outside certain ball centered at the true underlying state goes to zero. An optimal estimator, which computes Chebyshev centers and only utilizes the information contained in the averaged measurements, is proposed. Numerical examples are given to elaborate the results.

Jiantao Jiao,Lin Zhang,Robert D. Nowak

DOI: https://doi.org/10.1109/tit.2012.2201914

IF: 2.5

2012-01-01

IEEE Transactions on Information Theory

Abstract:In many signal detection and classification problems, we have knowledge of the distribution under each hypothesis, but not the prior probabilities. This paper is aimed at providing theory to quantify the performance of detection via estimating prior probabilities from either labeled or unlabeled training data. The error or risk is considered as a function of the prior probabilities. We show that the risk function is locally Lipschitz in the vicinity of the true prior probabilities, and the error of detectors based on estimated prior probabilities depends on the behavior of the risk function in this locality. In general, we show that the error of detectors based on the maximum likelihood estimate (MLE) of the prior probabilities converges to the Bayes error at a rate of n(-1/2), where is the number of training data. If the behavior of the risk function is more favorable, then detectors based on the MLE have errors converging to the corresponding Bayes errors at optimal rates of the form n(-(1+alpha)/2), where alpha > 0 is a parameter governing the behavior of the risk function with a typical value alpha = 1. The limit alpha -> infinity corresponds to a situation where the risk function is flat near the true probabilities, and thus insensitive to small errors in the MLE; in this case, the error of the detector based on the MLE converges to the Bayes error exponentially fast with. We show that the bounds are achievable no matter given labeled or unlabeled training data and are minimax-optimal in the labeled case.

Xiaoshan Wang,Tan F. Wong

2023-12-02

Abstract:This paper presents a privacy-preserving event detection scheme based on measurements made by a network of sensors. A diameter-like decision statistic made up of the marginal types of the measurements observed by the sensors is employed. The proposed detection scheme can achieve the best type-I error exponent as the type-II error rate is required to be negligible. Detection performance with finite-length observations is also demonstrated through a simulation example of spectrum sensing. Privacy protection is achieved by obfuscating the type data with random zero-modulo-sum numbers that are generated and distributed via the exchange of encrypted messages among the sensors. The privacy-preserving performance against ``honest but curious'' adversaries, including colluding sensors, the fusion center, and external eavesdroppers, is analyzed through a series of cryptographic games. It is shown that the probability that any probabilistic polynomial time adversary successfully estimates the sensors' measured types can not be much better than independent guessing, when there are at least two non-colluding sensors.

Information Theory

Wen Yang,Xinting Zhang,Weijie Luo,Zongyu Zuo

DOI: https://doi.org/10.1016/j.ins.2020.08.008

IF: 8.1

2021-02-01

Information Sciences

Abstract:<p>With the development of digitization and intelligence of information technology, cyber attacks tend to be much more complicated and intelligent, which can disrupt the normal system operation if no any protection mechanism is implemented. Motivated by the security problem of industrial control system, we study secure estimation problem in which sensors are exposed to hostile communication environment, where the attacker can randomly launch either DoS attacks or data integrity attacks. We design a distributed estimator equipped with a statistical learning based detector for each sensor over wireless sensor network, and derive an optimal gain for the estimator. Moreover, we investigate the relationship between false rate and the chosen confident level of the detector, we also demonstrate the influence of sliding window of the detector on the estimation performance and show the existence of an optimal scaling parameter corresponding to the best estimation performance. Finally, we prove the effectiveness and feasibility of the proposed estimator by some numerical examples.</p>

computer science, information systems

Shang Li,Xiaoou Li,Xiaodong Wang,Jingchen Liu

DOI: https://doi.org/10.48550/arXiv.1601.06447

2016-01-25

Abstract:This work investigates the sequential hypothesis testing problem with online sensor selection and sensor usage constraints. That is, in a sensor network, the fusion center sequentially acquires samples by selecting one "most informative" sensor at each time until a reliable decision can be made. In particular, the sensor selection is carried out in the online fashion since it depends on all the previous samples at each time. Our goal is to develop the sequential test (i.e., stopping rule and decision function) and sensor selection strategy that minimize the expected sample size subject to the constraints on the error probabilities and sensor usages. To this end, we first recast the usage-constrained formulation into a Bayesian optimal stopping problem with different sampling costs for the usage-contrained sensors. The Bayesian problem is then studied under both finite- and infinite-horizon setups, based on which, the optimal solution to the original usage-constrained problem can be readily established. Moreover, by capitalizing on the structures of the optimal solution, a lower bound is obtained for the optimal expected sample size. In addition, we also propose algorithms to approximately evaluate the parameters in the optimal sequential test so that the sensor usage and error probability constraints are satisfied. Finally, numerical experiments are provided to illustrate the theoretical findings, and compare with the existing methods.

Applications,Information Theory

Xiaoqiang Ren,Yilin Mo,Jie Chen,Karl Henrik Johansson

DOI: https://doi.org/10.1109/tac.2020.2982589

2020-01-01

Abstract:This paper studies static state estimation in multi-sensor settings, with a caveat that an unknown subset of the sensors are compromised by an adversary, whose measurements can be manipulated arbitrarily. A new performance metric, which quantifies the asymptotic decay rate for the probability of having an estimation error larger than $delta$, is proposed. We develop an optimal estimator for the new performance metric with a fixed $delta$, which is the Chebyshev center of a union of ellipsoids. We further provide an estimator that is optimal for every $delta$, for the special case where the sensors are homogeneous. Numerical examples are given to elaborate the results.

Haoxiang Ma,Shuo Han,Charles A. Kamhoua,Jie Fu

DOI: https://doi.org/10.48550/arXiv.2304.05962

2023-04-12

Computer Science and Game Theory

Abstract:This paper is concerned with the optimal allocation of detection resources (sensors) to mitigate multi-stage attacks, in the presence of the defender's uncertainty in the attacker's intention. We model the attack planning problem using a Markov decision process and characterize the uncertainty in the attacker's intention using a finite set of reward functions -- each reward represents a type of the attacker. Based on this modeling framework, we employ the paradigm of the worst-case absolute regret minimization from robust game theory and develop mixed-integer linear program (MILP) formulations for solving the worst-case regret minimizing sensor allocation strategies for two classes of attack-defend interactions: one where the defender and attacker engage in a zero-sum game, and another where they engage in a non-zero-sum game. We demonstrate the effectiveness of our framework using a stochastic gridworld example.

Yue Wang,Yan Shi

DOI: https://doi.org/10.1007/s11760-024-03203-3

IF: 1.583

2024-06-26

Signal Image and Video Processing

Abstract:Information security must be maintained because the amount of data in the world today is growing exponentially. The issues related to security are growing as big data usage increases. Finding ways to identify intrusions into networks and information systems is one of the major issues in this subject. It is imperative and important to enhance intrusion detection skills in order to address malevolent behavior in large data. This paper presents a scalable approach to harmful data detection. Three variables have been considered in this strategy and model: scalability, user review, and temporal progress. High volumes of data can be processed using this technology. Time is split into time periods for data training in this system, and each time interval uses users' review information to train the data. Large volumes of data require sophisticated strategies to handle, and scalability in storage allows for faster processing and fewer computations. This approach is a kind of hardware–software hybrid solution for malware detection. A fresh approach to feature extraction has also been applied. In the suggested method, the bacteria algorithm in conjunction with the immune system algorithm has been utilized for the prediction operation, and the modified support vector machine algorithm and optical density have been utilized for classification. Based on the findings, the suggested combination algorithm outperforms other comparable techniques with a 21% detection rate, a 62% false alarm rate, a 15% accuracy rate, and a 73% training duration.

engineering, electrical & electronic,imaging science & photographic technology

Yuan Chen,Soummya Kar,Jose M. F. Moura

DOI: https://doi.org/10.1109/tcns.2017.2690399

IF: 4.347

2018-09-01

IEEE Transactions on Control of Network Systems

Abstract:This paper studies an attacker against a cyber-physical system (CPS) whose goal is to move the state of a CPS to a target state while ensuring that his or her probability of being detected does not exceed a given bound. The attacker&#x27;s probability of being detected is related to the non-negative bias induced by his or her attack on the CPS&#x27;s detection statistic. We formulate a linear quadratic cost function that captures the attacker&#x27;s control goal and establish constraints on the induced bias that reflect the attacker&#x27;s detection-avoidance objectives. When the attacker is constrained to be detected at the false alarm rate of the detector, we show that the optimal attack strategy reduces to a linear feedback of the attacker&#x27;s state estimate. In the case that the attacker&#x27;s bias is upper bounded by a positive constant, we provide two algorithmsan optimal algorithm and a suboptimal, less computationally intensive algorithmto find suitable attack sequences. Finally, we illustrate our attack strategies in numerical examples based on a remotely controlled helicopter under attack.

computer science, information systems,automation & control systems

Kang Yang,Rui Wang,Yu Jiang,Houbing Song,Chenxia Luo,Yong Guan,Xiaojuan Li,Zhiping Shi

DOI: https://doi.org/10.1016/j.future.2018.03.050

IF: 7.307

2018-01-01

Future Generation Computer Systems

Abstract:This paper focuses on the security issues of Cyber-Physical Systems with multiple sensors measuring the same physical variables. We use an abstract sensor model, and each sensor provides the controller with an interval that contains the true value. Some of the sensors may be subject to malicious attacks and provide the wrong measurements, thereby misleading the controller into performing an unsafe action. Although there are several existing methods for detecting sensor attacks in the presence of transient sensor faults, they treat all sensors’ faults and attacks in the same way, and may not work well when an attacker has sufficient ability to cover up for different sensors at different times, e.g., stealth attacks. To address this problem, we propose a pairwise inconsistency based algorithm to enhance attack detection capability. The main idea is to build different fault models for different sensors, add a virtual sensor to utilize the fusion intervals and historical measurements, and use pairwise inconsistencies between real and virtual sensors to identify attacks. Finally, we validate the performance of the algorithm on real measurement data obtained from the LEGO EV3 ground vehicle, the results show that the proposed method outperforms state-of-the-art algorithms.