Linqing Hu,Junqi Zhang,Jie Zhang,Shaoyin Cheng,Yuyi Wang,Weiming Zhang,Nenghai Yu

DOI: https://doi.org/10.1016/j.inffus.2024.102822

IF: 18.6

2024-01-01

Information Fusion

Abstract:Multi-sensor Fusion (MSF) algorithms are critical components in modern autonomous driving systems, particularly in localization and AI-powered perception modules, which play a vital role in ensuring vehicle safety. The Error-State Kalman Filter (ESKF), specifically employed for localization fusion, is widely recognized for its robustness and accuracy in MSF implementations. While existing studies have demonstrated the vulnerability of ESKF to sensor spoofing attacks, these works have primarily focused on a black-box implementation, leading to an insufficient security analysis. Specifically, due to the lack of theoretical guidance in previous methods, these studies have consistently relied on exponential functions to fit attack sequences across all scenarios. As a result, the attacker had to explore an extensive parameter space to identify effective attack sequences, lacking the ability to adaptively generate optimal ones. This paper aims to fill this crucial gap by conducting a thorough security analysis of the ESKF model and presenting a simple approach for modeling injection errors in these systems. By utilizing this error modeling, we introduce a new attack strategy that employs constrained optimization to reduce the energy needed to reach the same deviation target, guaranteeing that the attack is both efficient and effective. This method increases the stealthiness of the attack, making it harder to detect. Unlike previous methods, our approach can dynamically produce nearly perfect injection signals without requiring multiple attempts to find the best parameter combination in different scenarios. Through extensive simulations and real-world experiments, we demonstrate the superiority of our method compared to state-of-the-art attack strategies. Our results indicate that our approach requires significantly less injection energy to achieve the same deviation target. Additionally, we validate the practical applicability and impact of our method through end-to-end testing on an AI-powered autonomous driving system.

Yilin Mo,Emanuele Garone,Alessandro Casavola,Bruno Sinopoli

DOI: https://doi.org/10.1109/cdc.2010.5718158

2010-01-01

Abstract:In this paper we study the effect of false data injection attacks on state estimation carried over a sensor network monitoring a discrete-time linear time-invariant Gaussian system. The steady state Kalman filter is used to perform state estimation while a failure detector is employed to detect anomalies in the system. An attacker wishes to compromise the integrity of the state estimator by hijacking a subset of sensors and sending altered readings. In order to inject fake sensor measurements without being detected the attacker will need to carefully design his actions to fool the estimator as abnormal sensor measurements would result in an alarm. It is important for a designer to determine the set of all the estimation biases that an attacker can inject into the system without being detected, providing a quantitative measure of the resilience of the system to such attacks. To this end, we will provide an ellipsoidal algorithm to compute its inner and outer approximations of such set. A numerical example is presented to further illustrate the effect of false data injection attack on state estimation.

Jinxing Hua,Fei Hao

DOI: https://doi.org/10.1016/j.isatra.2022.06.015

Abstract:This article investigates a security problem in cyber-physical systems under multisensory framework. Data packets from each sensor are transmitted to a remote estimator through wireless channels which could be attacked by a attacker and injected false data. Based on the data of reliable sensors and the relativity between reliable and unreliable sensors, a revised multi-sensor Kalman filter fusion algorithm is proposed. Under the proposed algorithm, an optimal linear false data injection attack strategy which is more general with an arbitrary mean of Gaussian distribution is designed. To further improve the detection performance, an Expected SARSA-based attack detection algorithm is proposed. Finally, simulation results based on an unmanned aerial vehicle are provided to illustrate the feasibility and efficiency of the obtained results.

Chaoqun Yang,Li Feng,Heng Zhang,Shibo He,Zhiguo Shi

DOI: https://doi.org/10.1109/tsipn.2018.2790361

2018-01-01

IEEE Transactions on Signal and Information Processing over Networks

Abstract:Networked radar systems are vulnerable to different types of attacks, including electronic countermeasure (ECM) jamming and false data injection (FDI) attack. Substantial research has concentrated on ECM jamming, which interferes with radar echoes between a radar and targets. However, FDI attack in which an attacker somehow replaces or modifies radars' measurements, has rarely been considered. FDI attack is much stealthier than ECM jamming, making detection more difficult. In this paper, we take the first attempt to investigate the FDI attack's effects on a networked radar system. Further, we propose a novel data fusion algorithm to combat this attack. The proposed algorithm can dramatically reduce the attack's adverse effects, since it creatively introduces data's confidence factors into data fusion and adaptively decreases the fusion weights of the injected data. Numerical results verify the effectiveness of the proposed algorithm.

Yuming Yin,Jinhong Zhang,Mengqi Guo,Xiaobin Ning,Yuan Wang,Jianshan Lu

DOI: https://doi.org/10.3390/s23073676

2023-04-01

Abstract:High-precision and robust localization is critical for intelligent vehicle and transportation systems, while the sensor signal loss or variance could dramatically affect the localization performance. The vehicle localization problem in an environment with Global Navigation Satellite System (GNSS) signal errors is investigated in this study. The error state Kalman filtering (ESKF) and Rauch-Tung-Striebel (RTS) smoother are integrated using the data from Inertial Measurement Unit (IMU) and GNSS sensors. A segmented RTS smoothing algorithm is proposed in order to estimate the error state, which is typically close to zero and mostly linear, which allows more accurate linearization and improved state estimation accuracy. The proposed algorithm is evaluated using simulated GNSS signals with and without signal errors. The simulation results demonstrate its superior accuracy and stability for state estimation. The designed ESKF algorithm yielded an approximate 3% improvement in long straight line and turning scenarios compared to classical EKF algorithm. Additionally, the ESKF-RTS algorithm exhibited a 10% increase in the localization accuracy compared to the ESKF algorithm. In the double turning scenarios, the ESKF algorithm resulted in an improvement of about 50% in comparison to the EKF algorithm, while the ESKF-RTS algorithm improved by about 50% compared to the ESKF algorithm. These results indicated that the proposed ESKF-RTS algorithm is more robust and provides more accurate localization.

Guoqing Zhang,Wengen Gao,Jiaming Zhu,Yaru Li

DOI: https://doi.org/10.1088/1742-6596/2788/1/012029

2024-06-01

Journal of Physics: Conference Series

Abstract:Abstract False data injection attacks (FDIAs) cause incorrect system states by tampering with measurements, seriously affecting the EMS’s control process. However, the well-designed FDIAs can bypass traditional bad data detection (BDD) mechanisms. Aiming at the challenge, we improve the unscented Kalman filter and combine AIUKF with weighted least squares (WLS) to detect FDIAs. Utilizing the different convergence rates of the two estimators, the cosine similarity is introduced for FDIA detection. Various test conditions in IEEE-14-bus are simulated to underline the capability of AIUKF in state estimation. The results indicate that the proposed detection approach is superior for detecting FDIAs.

Yilin Mo,B. Sinopoli

2010-01-01

Abstract:This paper analyzes the effects of false data injection attacks on Control System. We assume that the system, equipped with a Kalman filter and LQG controller, is used to monitor and control a discrete linear time invariant Gaussian system. We further assume that the system is equipped with a failure detector. An attacker wishes to destabilize the system by compromising a subset of sensors and sending corrupted readings to the state estimator. In order to inject fake sensor measurements without being detected the attacker needs to carefully design its inputs to fool the failure detector, since abnormal sensor measurements usually trigger an alarm from the failure detector. We will provide a necessary and sufficient condition under which the attacker could destabilize the system while successfully bypassing the failure detector. A design method for the defender to improve the resilience of the CPS against such kind of false data injection attacks is also provided.

Haitao Jiang,Dayu Yan,Jiale Wang,Jie Yin

DOI: https://doi.org/10.1007/s10291-024-01623-9

2024-04-25

GPS Solutions

Abstract:Safety-critical navigation systems often involve multiple sensor types, including global navigation satellite system (GNSS), to enhance positioning accuracy. Additionally, the systems' reliability has been significantly improved through the application of fault detection and exclusion (FDE) techniques. An enhanced AIME (Autonomous Integrity Monitoring by Extrapolation) method is introduced in our approach to identify faulty satellites. This is accomplished by analyzing the measured Kalman filter (KF) innovations and their covariances within a sliding window. Furthermore, a strategy for fault separation, detection, and exclusion is developed for GNSS and IMU, making use of their relationship within the KF innovation vector derived from the GNSS measurement model. Similarly, the innovation vector derived from the visual measurement model is employed to detect visual faults, with the assumption that the inertial measuring unit (IMU) is fault-free. Upon detecting faults, we proceed to redesign the system noise matrix and measurement noise matrix within the KF using test statistics, effectively excluding measurement faults from satellites and IMU. In order to assess the performance of our proposed method, we conducted a field test utilizing the collected vehicle-mounted dataset. The results demonstrate the effectiveness of our FDE method in accurately identifying faulty satellites, detecting IMU faults of varying magnitudes, and excluding abnormal visual observations. Furthermore, after fault exclusion, the maximum position error during the fault time period decreased by an average of 62%.

remote sensing

Guoqing Zhang,Wengen Gao,Yunfei Li,Yixuan Liu,Xinxin Guo,Wenlong Jiang

DOI: https://doi.org/10.1016/j.compeleceng.2024.109834

IF: 4.152

2024-11-11

Computers & Electrical Engineering

Abstract:The transition to smart grids introduces significant cybersecurity vulnerabilities, particularly with the rise of False Data Injection Attacks (FDIAs). These attacks allow malicious actors to manipulate sensor data, alter the internal state of the grid, and bypass traditional Bad Data Detection (BDD) systems. FDIAs pose a serious threat to grid security, potentially leading to incorrect state estimation and destabilization of the power system, which could result in system outages and economic losses. To address this challenge, this paper proposes a novel detection and localization method. First, false data and measurement errors are modeled as non-Gaussian noise. Recognizing the limitations of the traditional Extended Kalman Filter (EKF) under non-Gaussian conditions, the Maximum Correntropy Criterion (MCC) is integrated into the EKF to improve the robustness of state estimation. Additionally, the Maximum Correntropy Criterion Extended Kalman Filter (MCCEKF) is combined with Weighted Least Squares (WLS), and cosine similarity is introduced to quantify the differences between these two estimators for FDIA detection. A partition approach is then used to construct a logical localization matrix, with cosine similarity detection applied in each section to generate a detection matrix. By performing a logical AND operation on these matrices, the attacked bus is identified. Simulations on IEEE-14-bus and IEEE-30-bus systems validate the proposed approach, demonstrating its effectiveness in reliably detecting and localizing FDIAs in smart grids.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Xiaoyu Ye,Fujun Song,Meng Tang,Yunwei Guo,Qinghua Zeng

DOI: https://doi.org/10.1088/1361-6501/acfe2a

IF: 2.398

2023-09-29

Measurement Science and Technology

Abstract:Multi-source information fusion state estimation algorithms are an important means for drones to perceive ego-state, and accurate and robust estimation of external forces is crucial for precise control of quadrotors. This paper proposes a method that integrates a dynamic model into a multi-rate EKF framework on manifold. By estimating the magnitude of the external force acting on vehicle, meanwhile, a dynamic constraint on velocity loop is established to reduce the discrepancy between the model-predicted motion and the actual motion. Moreover, the estimated external force is integrated into the zero velocity update (ZUPT) criterion for zero speed judgment, effectively reducing false detections while improving the accuracy of zero speed state recognition. However, multi-source measurements significantly increase the probability of data signal errors. To address this issue, we use a robust estimation algorithm to improve EKF's sensitivity to abnormal measurements, flexibly adjusting measurement weights while rejecting unreasonable measurements. Validation with open-source indoor and outdoor datasets shows that our algorithm improves pose estimation performance while maintaining accurate positioning accuracy compared to non-dynamic fusion under the same filtering parameters. It provides accurate external force estimation, offering multi-source data support in areas such as human-machine interaction and carrying variable mass payloads.

engineering, multidisciplinary,instruments & instrumentation

Yawen Tan,Pindi Weng,Bo Chen,Li Yu

DOI: https://doi.org/10.1007/s11432-021-3428-y

2023-01-01

Science China Information Sciences

Abstract:Cyber-physical systems(CPSs)that integrate computation,network,and physical objects play essential roles in the era of Industry 4.0[1,2].However,the introduction of networks makes it face the threat of cyber-attacks[3].Among various types of cyber-attacks,a false data injection(FDI)attack degrades the estimation performance for CPSs by injecting wrong signals and is one of the most dangerous attacks[4,5].Therefore,the joint estimation of FDI attacks and system states is of great significance to the security of CPSs.

Wenying Xu,Zidong Wang,Liang Hu,Jrgen Kurths,Jurgen Kurths

DOI: https://doi.org/10.1109/tac.2021.3131145

IF: 6.549

2021-01-01

IEEE Transactions on Automatic Control

Abstract:This article is concerned with the security issue in the state estimation problem for a networked control system (NCS). A new model of joint false data injection (FDI) attack is established wherein attacks are injected to both the remote estimator and the communication channels. Such a model is general that includes most existing FDI attack models as special cases. The joint FDI attacks are subjected to limited access and/or resource constraints, and this gives rise to a few attack scenarios to be examined one by one. Our objective is to establish the so-called insecurity conditions under which there exists an attack sequence capable of driving the estimation bias to infinity while bypassing the anomaly detector. By resorting to the generalized inverse theory, necessary and sufficient conditions are derived for the insecurity under different attack scenarios. Subsequently, easy-to-implement algorithms are proposed to generate attack sequences on insecure NCSs with respect to different attack scenarios. In particular, by using a matrix splitting technique, the constraint-induced sparsity of the attack vectors is dedicatedly investigated. Finally, several numerical examples are presented to verify the effectiveness of the proposed FDI attacks.

automation & control systems,engineering, electrical & electronic

Haibin Guo,Zhong-Hua Pang,Chao Li

DOI: https://doi.org/10.1109/jas.2023.124086

2024-03-19

IEEE/CAA Journal of Automatica Sinica

Abstract:Dear Editor, This letter investigates a novel stealthy false data injection (FDI) attack scheme based on side information to deteriorate the multi-sensor estimation performance of cyber-physical systems (CPSs). Compared with most existing works depending on the full system knowledge, this attack scheme is only related to attackers' sensor and physical process model. The design principle of the attack signal is derived to diverge the system estimation performance. Next, it is proven that the proposed attack scheme can successfully bypass the residual-based detector. Finally, all theoretical results are verified by numerical simulation.

automation & control systems

Haibin Guo,Jian Sun,Zhong-Hua Pang,Guo-Ping Liu

DOI: https://doi.org/10.1109/tcyb.2023.3255583

IF: 11.8

2023-01-01

IEEE Transactions on Cybernetics

Abstract:Security is a crucial issue for cyber-physical systems, and has become a hot topic up to date. From the perspective of malicious attackers, this article aims to devise an efficient scheme on false data-injection (FDI) attacks such that the performance on remote state estimation is degraded as much as possible. First, an event-based stealthy FDI attack mechanism is introduced to selectively inject false data while evading a residual-based anomaly detector. Compared with some existing methods, the main advantage of this mechanism is that it decides when to launch the FDI attacks dynamically according to real-time residuals. Second, the state estimation error covariance of the compromised system is used to evaluate the performance degradation under FDI attacks, and the larger the state estimation error covariance, the more the performance degradation. Moreover, under attack stealthiness constraints, an optimal strategy is presented to maximize the trace of the state estimation error covariance. Finally, simulation experiments are carried out to illustrate the superiority of the proposed method compared with some existing ones.

automation & control systems,computer science, cybernetics, artificial intelligence

Lovro Markovic,Marin Kovac,Robert Milijas,Marko Car,Stjepan Bogdan

DOI: https://doi.org/10.48550/arXiv.2109.04908

IF: 3.7

2021-09-10

Robotics

Abstract:This paper addresses the issues of unmanned aerial vehicle (UAV) indoor navigation, specifically in areas where GPS and magnetometer sensor measurements are unavailable or unreliable. The proposed solution is to use an error state extended Kalman filter (ES -EKF) in the context of multi-sensor fusion. Its implementation is adapted to fuse measurements from multiple sensor sources and the state model is extended to account for sensor drift and possible calibration inaccuracies. Experimental validation is performed by fusing IMU data obtained from the PixHawk 2.1 flight controller with pose measurements from LiDAR Cartographer SLAM, visual odometry provided by the Intel T265 camera and position measurements from the Pozyx UWB indoor positioning system. The estimated odometry from ES-EKF is validated against ground truth data from the Optitrack motion capture system and its use in a position control loop to stabilize the UAV is demonstrated.

Xiaoyu Ye,Fujun Song,Zongyu Zhang,Rui Zhang,Qinghua Zeng

2023-10-03

Abstract:Due to the state trajectory-independent features of invariant Kalman filtering (InEKF), it has attracted widespread attention in the research community for its significantly improved state estimation accuracy and convergence under disturbance. In this paper, we formulate the full-source data fusion navigation problem for fixed-wing unmanned aerial vehicle (UAV) within a framework based on error state right-invariant extended Kalman filtering (ES-RIEKF) on Lie groups. We merge measurements from a multi-rate onboard sensor network on UAVs to achieve real-time estimation of pose, air flow angles, and wind speed. Detailed derivations are provided, and the algorithm's convergence and accuracy improvements over established methods like Error State EKF (ES-EKF) and Nonlinear Complementary Filter (NCF) are demonstrated using real-flight data from UAVs. Additionally, we introduce a semi-aerodynamic model fusion framework that relies solely on ground-measurable parameters. We design and train an Long Short Term Memory (LSTM) deep network to achieve drift-free prediction of the UAV's angle of attack (AOA) and side-slip angle (SA) using easily obtainable onboard data like control surface deflections, thereby significantly reducing dependency on GNSS or complicated aerodynamic model parameters. Further, we validate the algorithm's robust advantages under GNSS denied, where flight data shows that the maximum positioning error stays within 30 meters over a 130-second denial period. To the best of our knowledge, this study is the first to apply ES-RIEKF to full-source navigation applications for fixed-wing UAVs, aiming to provide engineering references for designers. Our implementations using MATLAB/Simulink will open source.

Robotics

Kaushik Iyer,Abhijit Dey,Bing Xu,Nitin Sharma,Li-Ta Hsu

DOI: https://doi.org/10.1109/tvt.2024.3360076

IF: 6.8

2024-01-01

IEEE Transactions on Vehicular Technology

Abstract:Recent urbanization has posed challenges for the global navigation satellite system (GNSS) to provide accurate navigation solutions. This is especially true in GNSS-denied environments, where the clear line of sight (LOS) path between the satellites and receiver is lacking. For such environments, fusion-based techniques relying on external sensors and/or other signals are widely used. However, such external sensors and signals may not be feasible and/or cost-effective every time. To overcome these limitations, this work proposes a system that makes explicit use of past available measurements, under certain assumptions, to generate new synthetic measurements. For this purpose, two functions are proposed in this work: a geometrically decaying series and a linear combination of past measurements. To enhance the overall performance of the system, an inertial measurement unit (IMU) is used as an additional measurement source in the extended Kalman filter (EKF). In addition, an approach to adapt the noise co-variances that support the generation of synthetic measurements is proposed. Furthermore, we derive the optimal gain under specific assumptions for a concrete theoretical understanding of the proposed algorithm. The proposed algorithm is tested and validated through two real-world datasets collected in Hong Kong, one corresponding to a moving vehicle inside a significantly long sea tunnel and another set in a harsh urban area, involving complex trajectories. A detailed analysis of the results has been performed with respect to all the aforementioned contributions. Additionally, the proposed algorithm has been compared with other existing algorithms. Experimental results show that a mean error of about 4 m is attained inside the tunnel, while it is around 4.6 m for the second scenario set in a harsh urban environment.

telecommunications,engineering, electrical & electronic,transportation science & technology

Simegnew Yihunie Alaba

2024-05-14

Abstract:Global Positioning System (GPS) navigation provides accurate positioning with global coverage, making it a reliable option in open areas with unobstructed sky views. However, signal degradation may occur in indoor spaces and urban canyons. In contrast, Inertial Measurement Units (IMUs) consist of gyroscopes and accelerometers that offer relative motion information such as acceleration and rotational changes. Unlike GPS, IMUs do not rely on external signals, making them useful in GPS-denied environments. Nonetheless, IMUs suffer from drift over time due to the accumulation of errors while integrating acceleration to determine velocity and position. Therefore, fusing the GPS and IMU is crucial for enhancing the reliability and precision of navigation systems in autonomous vehicles, especially in environments where GPS signals are compromised. To ensure smooth navigation and overcome the limitations of each sensor, the proposed method fuses GPS and IMU data. This sensor fusion uses the Unscented Kalman Filter (UKF) Bayesian filtering technique. The proposed navigation system is designed to be robust, delivering continuous and accurate positioning critical for the safe operation of autonomous vehicles, particularly in GPS-denied environments. This project uses KITTI GNSS and IMU datasets for experimental validation, showing that the GNSS-IMU fusion technique reduces GNSS-only data's RMSE. The RMSE decreased from 13.214, 13.284, and 13.363 to 4.271, 5.275, and 0.224 for the x-axis, y-axis, and z-axis, respectively. The experimental result using UKF shows promising direction in improving autonomous vehicle navigation using GPS and IMU sensor fusion using the best of two sensors in GPS-denied environments.

Systems and Control,Computer Vision and Pattern Recognition,Robotics

Tian-Yu Zhang,Dan Ye,Yang Shi

DOI: https://doi.org/10.1109/tac.2022.3209396

IF: 6.549

2022-01-01

IEEE Transactions on Automatic Control

Abstract:This article focuses on how false-data injection (FDI) attacks compromise state omniscience, which needs each node in a jointly detectable sensor network to estimate the entire plant state through distributed observers. To reveal the global vulnerability of state omniscience, we investigate decentralized FDI (DFDI) attacks that destabilize the estimation error dynamics but eliminate their influences on the residual in each sensor node. First, the sufficiency and necessity for the existence of such attacks are studied from system eigenvalues and attackable sensors. Second, the self-generated DFDI attack sequences independent of system real-time data are designed to achieve the attack objective with elaborate parameters. Especially, the DFDI attack sequences are improved to maintain real values even if the system matrix only has unstable imaginary eigenvalues. Finally, we analyze the secure range for observer interaction weights and the sensor protection scheme to guarantee the security of state omniscience under DFDI attacks. The theoretical results for DFDI attacks are demonstrated with the linearized discrete-time model of an aircraft system.

automation & control systems,engineering, electrical & electronic

Guoqing Zhang,Wengen Gao,Yunfei Li,Xinxin Guo,Pengfei Hu,Jiaming Zhu

DOI: https://doi.org/10.3390/en16207203

IF: 3.2

2023-10-23

Energies

Abstract:An accurate power state is the basis of the normal functioning of the smart grid. However, false data injection attacks (FDIAs) take advantage of the vulnerability in the bad data detection mechanism of the power system to manipulate the process of state estimation. By attacking the measurements, then affecting the estimated state, FDIAs have become a serious hidden danger that affects the security and stable operation of the power system. To address the bad data detection vulnerability, in this paper, a false data attack detection method based on weighted least squares (WLS) and an adaptive interpolation extended Kalman filter (AIEKF) is proposed. On the basis of applying WLS and AIEKF, the Euclidean distance is used to calculate the deviation values of the two-state estimations to determine whether the current moment is subjected to a false data injection attack in the power system. Extensive experiments were conducted to simulate an IEEE-14-bus power system, showing that the adaptive interpolation extended Kalman filter can compensate for the deficiency in the bad data detection mechanism and successfully detect FDIAs.

energy & fuels