Xiang Yin

DOI: https://doi.org/10.48550/arXiv.1903.11413

2019-03-27

Abstract:This article considers state estimation and veri cation problems for an important class of man-made cyber-physical systems called Discrete-Event Systems (DES).

Systems and Control

Peili Ding,Yinan Wang,Gangfeng Yan,Wei Li

DOI: https://doi.org/10.1109/cac.2017.8243929

2017-01-01

Abstract:Recent years, the issue of cyber security has become ever more prevalent in the analysis and design of electrical cyber-physical systems (ECPSs). In this paper, we present the TrueTime Network Library for modeling the framework of ECPSs and focuses on the vulnerability analysis of ECPSs under DoS attacks. Model predictive control algorithm is used to control the ECPS under disturbance or attacks. The performance of decentralized and distributed control strategies are compared on the simulation platform. It has been proved that DoS attacks happen at dada collecting sensors or control instructions actuators will influence the system differently.

Qi Zhang

DOI: https://doi.org/10.3389/fphy.2023.1185103

IF: 3.718

2023-01-01

Frontiers in Physics

Abstract:The problem of robust predictability against sensor attacks is investigated. The objective of a diagnoser is to predict the occurrence of a critical event of a discrete event system (DES) under partial observation. An attacker may rewrite the diagnoser observation by inserting fake events or erasing real events. Two novel structures, namely, real diagnoser and the fake diagnoser, are constructed based on the diagnoser of the system. We compute the hybrid diagnoser as the parallel composition of the real diagnoser and the fake diagnoser. The hybrid diagnoser can be used to verify if a critical event of the system is robustly predictable when an attacker tampers with the diagnoser observation.

Jie Zhang,Zhiwu Li

DOI: https://doi.org/10.3390/math12233842

IF: 2.4

2024-12-07

Mathematics

Abstract:In the context of discrete event systems (DESs), critical states usually refer to a system configuration of interest, describing certain important system properties, e.g., fault diagnosability, state/language opacity, and state/event concealment. Technically, a DES is critically observable if an intruder can always unambiguously infer, by observing the system output, whether the plant is currently in a predefined set of critical states or the current state set is disjointed with the critical states. In this paper, given a partially observable DES modeled with a finite-state automaton that is not critically observable, we focus on how to make it critically observable, which is achieved by proposing a novel enforcement mechanism based on differential privacy (DP). Specifically, we consider two observations where one observation cannot determine whether a system is currently in the predefined critical states (i.e., the observation violating the critical observability) while the other is randomly generated by the system. When these two observations are processed separately by the differential privacy mechanism (DPM), the system generates an output, exposed to the intruder, that is randomly modified such that its probability approximates the two observations. In other words, the intruder cannot determine the original input of a system by observing its output. In this way, even if the utilized DPM is published to the intruder, they are unable to identify whether critical observability is violated.

mathematics

Zhang Yifang,Wu Zhengguang,Wu Zongze,Meng Deyuan

DOI: https://doi.org/10.1007/s11432-020-3190-2

2022-01-01

Science China Information Sciences

Abstract:We develop the resilient observer-based event-triggered control update strategy in this paper.It is utilized to achieve the input-to-state stability(ISS) of cyber-physical systems(CPSs) when there is an asynchronous denial-of-service(DoS) attack, which is launched by malicious adversaries both on measurement channel and control channel in a random attack strategy. To estimate the unmeasurable states while saving the limited networked bandwidth, an H_∞ observer-based event-triggered control scheme is first designed to guarantee the ISS of CPSs with economic communication. Moreover, the occurrence of Zeno behavior can be eliminated by providing the existence of a lower positive bound of any two inter-event times. Then, a recursive model of asynchronous DoS attacks is introduced. A resilient control update strategy is proposed and further analyzed to derive the stability criterion of CPSs. At last, a numerical simulation example is given to demonstrate the effectiveness of the introduced control update policy.

Yinan Wang,Wei Li,Gangfeng Yan,Sumian Song

DOI: https://doi.org/10.1109/icit.2017.7915433

2017-01-01

Abstract:This paper proposes an unified framework for electrical cyber physical systems (ECPSs) and studies the mechanism of cyber attacks and cyber security. Communication networks are designed by characteristics of power grids. This model is universal to both transmission and distribution grids. The fragility of ECPSs under cyber attacks (DoS attacks and false data injection attacks) is analyzed in three scenarios based on different types and attackers' acknowledgments of the ECPSs. It has been proved that attacks happen at information uploading routers or control strategy downloading routers will influence the system differently. The effectiveness of relay protection policies and cyber security policies are verified by experimental results.

Qi Zhang,Zhiwu Li,Carla Seatzu,Alessandro Giua

DOI: https://doi.org/10.1109/etfa.2018.8502501

2018-01-01

Abstract:The problem of stealthy attacks for partially-observed discrete event systems is considered. An operator observes the plant through an observation mask that does not allow him to detect the occurrence of certain events (silent events). The observation is corrupted by an intruder who can insert and erase some sensor readings. We construct an attack structure A which guarantees that, when the plant reaches an unsafe state, A can make the operator think that the plant is in a safe state. Based on A, we can obtain a stealthy attack structure As by simply removing from A all the exposing states, all the weakly exposing states and their input and output arcs. The stealthy attack structure As only contains the possible attacks that can not be detected by the operator.

Yi Wang,Yuting Li,Zhenhua Yu,Naiqi Wu,Zhiwu Li

DOI: https://doi.org/10.1016/j.ins.2021.03.033

IF: 8.1

2021-07-01

Information Sciences

Abstract:<p>Resilience is a critical criterion to evaluate a networked system including discrete-event systems (DESs). This research touches upon the supervisory control problem of a DES modeled with labeled Petri nets under malicious attacks. Attacks on a system can be categorized into actuator attacks and sensor attacks. The former may cause an actuator to fail to execute the commands issued from a supervisor that enforces a specification. The latter may attack a sensor to corrupt an observation (i.e., a sequence of observable transition labels) by different types of attacks such as insertion, removal, and replacement of transition labels. For actuator attacks, if we can detect them and disable some particular controllable transition labels before reaching a state that does not satisfy the specification, then we can find a modified supervisor to enforce the specification. For sensor attacks, we assume that, once a time, only one attack can be carried out, i.e., the attacker does not change the attack during an observation corruption. Given a specification, we consider in a plant model any two feasible transition sequences that share the same corrupted observation under attacks. It is shown that there exists a supervisor to enforce the specification if the one-step controllable extensions of the two transition sequences either satisfy or violate the specification simultaneously. To this end, a novel structure, namely a product observation reachability graph constructed from a plant and its specification, is proposed to decide the existence of such a supervisor by checking whether each state in the graph satisfies a particular condition. The application of the reported methods is demonstrated through examples.</p>

computer science, information systems

Qi Zhang,Carla Seatzu,Zhiwu Li,Alessandro Giua

DOI: https://doi.org/10.1109/ACCESS.2021.3135870

2021-12-14

Abstract:The problem of state estimation in the setting of partially-observed discrete event systems subject to cyber attacks is considered. An operator observes a plant through a natural projection that hides the occurrence of certain events. The objective of the operator is that of estimating the current state of the system. The observation is corrupted by an attacker which can tamper with the readings of a set of sensors thus inserting some fake events or erasing some observations. The aim of the attacker is that of altering the state estimation of the operator. An automaton, called joint estimator, is defined to describe the set of all possible attacks. In more details, an unbounded joint estimator is obtained by concurrent composition of two state observers, the attacker observer and the operator observer. The joint estimator shows, for each possible corrupted observation, the joint state estimation, i.e., the set of states consistent with the uncorrupted observation and the set of states consistent with the corrupted observation. Such a structure can be used to establish if an attack function is harmful w.r.t. a misleading relation. Our approach is also extended to the case in which the attacker may insert at most n events between two consecutive observations.

Cryptography and Security,Formal Languages and Automata Theory

Fei Wang,Jan Komenda,Feng Lin

2023-09-21

Abstract:This paper investigates the coordination control of discrete event systems in the presence of combined sensor and actuator attacks. Discrete event systems are modeled as automata, and sensor attacks are defined using specific attack languages. The approach involves employing multiple local supervisors to control the system. The primary objective is to devise these local supervisors to ensure the system's safety, even when facing sensor and actuator attacks. The paper establishes the necessary and sufficient conditions for the existence of such supervisors in terms of conditional decomposability, CA-controllability, and CA-observability. Furthermore, a methodology is developed to compute local state estimates when sensor attacks occur. Based on the local state estimates, local supervisors are designed to ensure the safety of a system even under cyber attacks.

Systems and Control

Wenhai Qi,Mingxuan Sha,Ju H. Park,Zheng-Guang Wu,Huaicheng Yan

DOI: https://doi.org/10.1109/tsmc.2024.3427646

2024-01-01

Abstract:This article is concerned with the observer-based asynchronous control for discrete hidden semi-Markov switching power systems under random denial-of-service (DoS) attacks. Considering the mismatched behavior between the controller and the system, the designed controller based on the observer model runs asynchronously with the system. The hidden stochastic switching model is introduced to characterize this mismatched behavior. Due to the difficulty in obtaining complete information about the semi-Markov kernel (SMK) in practice, the elements in the SMK of the underlying system associated with the hidden mode are considered to be incompletely known. Next, regarding the random DoS attacks and incomplete SMK, the conditions on the existence of the asynchronous controller based on the observer model are proposed by employing the stochastic Lyapunov function, and the closed-loop system is guaranteed to be mean-square stable. Finally, the effectiveness of the proposed scheme is validated through an example.

Ruochen Tai,Liyong Lin,Yuting Zhu,Rong Su

DOI: https://doi.org/10.48550/arXiv.2103.07132

2021-03-12

Abstract:In this paper, we investigate the covert sensor attack synthesis problem in the framework of supervisory control of networked discrete-event systems (DES), where the observation channel and the control channel are assumed to be non-FIFO and have bounded network delays. We focus on the class of sensor attacks satisfying the following properties: 1) the attacker might not have the same observation capability as the networked supervisor; 2) the attacker aims to remain covert, i.e., hide its presence against the networked monitor; 3) the attacker could insert, delete, or replace compromised observable events; 4) it performs bounded sensor attacks, i.e., the length of each string output of the sensor attacker is upper bounded by a given constant. The solution methodology proposed in this work is to solve the covert sensor attack synthesis problem for networked DES by modeling it as the well studied Ramadge-Wonham supervisor synthesis problem, and the constructions work for both the damage-reachable attacks and the damage-nonblocking attacks. In particular, we show the supremal covert sensor attack exists in the networked setup and can be effectively computed by using the normality property based synthesis approach.

Systems and Control

Ximing Yang,Ran Liu,Tieshan Li,Yue Long,Hanqing Yang,Xiaoyang Gao,C. L. Philip Chen

DOI: https://doi.org/10.1109/icist59754.2023.10367183

2023-01-01

Abstract:The issue of security control for cyber-physical systems (CPSs) is now receiving a lot of attention. Among them, the network layer is more seriously affected by cyberattacks than the physical layer. In this paper, we investigate the denial-of-service (DoS) attacks and false data injection (FDI) attack on data transmission. Firstly, the FDI attack that exists in the actuator is estimated by proposing the observer. Then, due to the presence of DoS attacks in the sensor channels, the estimation effect of the former observer is affected. To solve this problem, a new resilient observer is proposed by introducing the switching mechanism. The proposed resilient observer can effectively reduce the adverse effects of DoS attacks on data transmission. Next, a false data estimation-based security controller is proposed, which can ensure the stability of the closed-loop system. Finally, a simulation is given to verify the effectiveness of the proposed method.

Zhaocong Liu,Junyao Hou,Xiang Yin,Shaoyuan Li

DOI: https://doi.org/10.1109/cac51589.2020.9327818

2020-01-01

Abstract:Discrete event systems (DES) are of highly logics and complexity, since their activities are precisely characterized by asynchronous event occurrences constrained by supervisors that issue control decisions. In practice, we face networked environments with rapid evolution of computation and communication technologies, which leads to the proliferation of networked discrete event systems (NDES) where plant(s) and supervisor(s) are communicated via wired or wireless networks. Although the network connection introduces more uncertainties than conventional DES, NDES have been extensively investigated in the past few years for their conveniences and flexibilities such that various achievements are obtained. Therefore, in this paper, we review existing works on NDES from perspectives of system modeling, property analysis and supervisory control.

Tenglong Kang,Yifan Hou,Ding Liu

DOI: https://doi.org/10.3390/s24144445

2024-07-09

Abstract:This paper investigates the problem of synthesizing network attacks against fault diagnosis in the context of discrete event systems (DESs). It is assumed that the sensor observations sent to the operator that monitors a system are tampered with by an active attacker. We first formulate the process of online fault diagnosis under attack. Then, from the attack viewpoint, we define a sensor network attacker as successful if it can degrade the fault diagnosis in the case of maintaining itself as undiscovered by the operator. To verify such an attacker, an information structure called a joint diagnoser (JD) is proposed, which describes all possible attacks in a given attack scenario. Based on the refined JD, i.e., stealthy joint diagnoser (SJD), we present an algorithmic procedure for synthesizing a successful attacker if it exists.

Yining Li,Jing Wu,Shaoyuan Li

DOI: https://doi.org/10.1049/iet-cta.2016.1226

IF: 2.67

2017-01-01

IET Control Theory and Applications

Abstract:To characterise the resilience of a control system in cyber-physical systems (CPSs) against actuator attacks and sensor attacks, we introduce new notions of controllability and observability to derive conditions under whether the state can be stabled and reconstructed by the existing control signal and measurements over a period of time. With the understanding that some of the available system's inputs and outputs may have been compromised by the adversary, we derive the necessary and sufficient conditions to utilise standard controllability and observability matrix tests to be calculated in checking whether a CPS is `controllable and observable under attacks', and verify the theorems by a simulation of 9-bus power grid system under attacks.

Ángel Guadarrama Estrada,,Gloria Osorio-Gordillo,Carlos Astorga-Zaragoza,Juan Reyes-Reyes,,,

DOI: https://doi.org/10.58571/cnca.amca.2023.063

2023-10-27

Abstract:This article focuses on the design of a Luenberger structure observer with residual generation for the detection of different attack schemes (Denial of Service (DoS) and False Data Injection (FDI)) targeting the sensors and actuators of a discrete cyber-physical system. To simulate a more realistic attack signal, Markovian distribution logic is used to simulate the behavior of the signals. To demonstrate the effectiveness of the proposed scheme, a system of three interconnected tanks is used.

Yu Wang,Alper Kamil Bozkurt,Nathan Smith,Miroslav Pajic

2023-06-29

Abstract:Resilience to sensor and actuator attacks is a major concern in the supervisory control of discrete events in cyber-physical systems (CPS). In this work, we propose a new framework to design supervisors for CPS under attacks using finite-state transducers (FSTs) to model the effects of the discrete events. FSTs can capture a general class of regular-rewriting attacks in which an attacker can nondeterministically rewrite sensing/actuation events according to a given regular relation. These include common insertion, deletion, event-wise replacement, and finite-memory replay attacks. We propose new theorems and algorithms with polynomial complexity to design resilient supervisors against these attacks. We also develop an open-source tool in Python based on the results and illustrate its applicability through a case study

Formal Languages and Automata Theory,Systems and Control

Wenmin He,Shi Li,Choon Ki Ahn,Jian Guo,Zhengrong Xiang

DOI: https://doi.org/10.1109/jsyst.2021.3111978

IF: 4.802

2021-01-01

IEEE Systems Journal

Abstract:Cyber-physical systems (CPSs) can be accessed and controlled remotely, which increases their application prospects; however, these characteristics also make them more vulnerable to cyberattacks. In addition, an increasing number of resource-saving sampled-data control methods have attracted attention in the field of research. How to ensure the stability of the system that is attacked by cyberattacks and to reduce further the communication resources is a challenge. In this article, we study the security control problem of stochastic interconnected CPSs under two-channel denial-of-service attacks based on sampled-data output-feedback. First, the state observer and controller are designed with only the system output of the sampling points in the nonattack intervals. Next, the time intervals related to stable and unstable dynamics are distinguished. By analyzing the Lyapunov function in the intervals classified as previously mentioned respectively, the relationship between the sampling period and attack characteristics is derived to ensure that the system is globally mean-square uniformly ultimately bounded. The simulation results are presented to substantiate the analysis.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Magdi S. Mahmoud,Mutaz M. Hamdan

DOI: https://doi.org/10.1080/23335777.2019.1631889

2019-06-24

Abstract:Cyber-Physical Systems (CPS) are defined as integrations of computation, communication, and control in order to achieve the desired performance of physical processes. Security threats have a high possibility of affecting CPS by several cyber attacks without providing any indication about failure. One important problem, especially in power systems, is the control problem of systems under cyber attacks. In this paper, a secure observer-based controller for discrete-time CPS subject to both cyber (denial of service (DoS) and deception) and physical attacks will be presented. The occurrences of the cyber and physical attacks will be considered as Bernoulli distributed white sequences with variable conditional probabilities. A sufficient condition is first derived under which the observer-based controller is guaranteed to have the desired security level using the stochastic analysis techniques. Then, the observer and controller gains will be designed by solving a linear matrix inequality using YALMIP and MATLAB. Finally, an illustrative example is provided to demonstrate the feasibility of the proposed system.