Guo Wei,Zhang Fan,Wu Zhaoqi,Wei Jin,Wu Jiangxing,Zhou Wenle

DOI: https://doi.org/10.1049/cje.2020.03.010

IF: 1.019

2020-01-01

Chinese Journal of Electronics

Abstract:Arbitration mechanism is the core element of Cyberspace mimic defense (CMD) scheme, providing the security effect of exception perception and exception shielding for the protected system. The existing arbitration methods confront the problem of confidence skewing caused by attack changes when calculating confidence. This paper proposes a correction method for confidence calculation based on Logistic function (Lcorrection). The method makes a grading on influence for different historical periods and filters the noise of fioverheatingfl exception outputs so that the confidence calculation process can adapt to the attack changes in real applications. The evaluations show that the L-correction can adequately handle the confidence skewing and skewingbased confidence cheating, improving the security of mimic arbitration mechanism.

Ping Chen,Jin Wei,Jiwei Chen,Zhuyang Yu

DOI: https://doi.org/10.1051/sands/2024015

2024-01-01

Security and Safety

Abstract:As modern systems widely deploy protective measures for control data in memory, such as Control-Flow Integrity (CFI), attackers’ ability to manipulate control data is greatly restricted. Consequently, attackers are turning to opportunities to manipulate non-control data in memory (known as Data-Oriented Attacks, or DOAs), which have been proven to pose significant security threats to memory. However, existing techniques to mitigate DOAs often introduce significant overhead due to the indiscriminate protection of a large range of data objects. To address this challenge, this paper adopts a Cyberspace Mimic Defense (CMD) strategy, a generic framework for addressing endogenous security vulnerabilities, to prevent attackers from executing DOAs using known or unknown security flaws. Specifically, we introduce a formalized expression algorithm that assesses whether DOA-attackers can construct inputs to exploit vulnerability points. Building on this, we devise a key-area CMD strategy that modifies the code pathway from input to the vulnerability point, thereby effectively thwarting the activation of the vulnerability. Finally, our simulation experiments demonstrate that the key-area CMD strategy can effectively prevent DOAs by selectively diversifying parts of the program code.

Hangning Dong,Chaoyong Li,Yonghe Zhang

DOI: https://doi.org/10.1016/j.jfranklin.2019.11.035

IF: 4.246

2019-01-01

Journal of the Franklin Institute

Abstract:This paper investigates the consensus problem of the multi-agent systems when subjected to external and malicious data injections. In particular, the primary objective is to develop a resilient network in the presence of attacks which aim to destabilize consensus dynamics by injecting bounded signals stealthily. To this end, a competitive strategy was utilized to establish a hidden layer of virtual system interconnected with the original system, so that the leader–follower consensus of the multi-agent systems can be guaranteed under proper topological conditions, and the technique derivation provides explicit rules on how to ensure stability of the overall system. Simulation results validate the theoretical contributions of this paper.

Jinliang Liu,Hao Zheng,Lijuan Zha,Engang Tian,Chen Peng

DOI: https://doi.org/10.1016/j.ins.2024.120878

IF: 8.1

2024-06-10

Information Sciences

Abstract:This article addresses secure consensus of discrete multiagent systems (DMASs) with information exchange under Multi-Round Robin Protocol (MRRP). Since the information exchange among agents is via the constrained networked transmission channel, it implies that the communication resources should be fully utilized. To overcome this issue, MRRP is employed to adjust the data packet transmissions and conserve the limited network resources. Considering that the transmitted signals may be tampered by malicious attacks during transmission process, an new control strategy is presented taking the negative effects of the deception and injection attacks into account. Based on the augmented system model, a sufficient condition is attained. Moreover, the distributed controller gain is obtained such that the DMASs reach consensus with definite bound in mean-square sense. One simulation example is exploited to demonstrate the validity of the acquired consensus control strategy.

computer science, information systems

Zequan Chen,Gang Cui,Lin Zhang,Xin Yang,Hui Li,Yan Zhao,Chengtao Ma,Tao Sun

DOI: https://doi.org/10.1109/access.2021.3077075

IF: 3.9

2021-01-01

IEEE Access

Abstract:Traditional defensive techniques are usually static and passive, and appear weak to confront highly adaptive and stealthy attacks. As a novel security theory, Cyberspace Mimic Defense (CMD) creates asymmetric uncertainty that favors the defender. CMD constructs multiple executors which are diverse functional equivalent variants for the protected target and arbitral mechanism. In this way, CMD senses the results of current running executors and changes the attack surface. Although CMD enhances the security of systems, there are still some critical gaps with respect to design a defensive strategy under costs and security. In this paper, we propose a dual model to dynamically select the number of executors being reconfigured according to the states of the executors. First, we establish a Markov anti-attack model to compare the effects of CMD under different types of attack. Then, we use a dynamic game of incomplete information to determine the optimal strategy, which achieves the balance of the number of reconfiguration and security. Finally, experimental results show that our dual model reduces defensive costs while guarantees security.

computer science, information systems,telecommunications,engineering, electrical & electronic

Vishnu S. Chipade,Dimitra Panagou

DOI: https://doi.org/10.48550/arXiv.2112.12098

2022-08-15

Abstract:In the prior literature on multi-agent area defense games, the assignments of the defenders to the attackers are done based on a cost metric associated only with the interception of the attackers. In contrast to that, this paper presents an Inter-Defender Collision-Aware Interception Strategy (IDCAIS) for defenders to intercept attackers in order to defend a protected area, such that the defender-to-attacker assignment protocol not only takes into account an interception-related cost but also takes into account any possible future collisions among the defenders on their optimal interception trajectories. In particular, in this paper, the defenders are assigned to intercept attackers using a mixed-integer quadratic program (MIQP) that: 1) minimizes the sum of times taken by defenders to capture the attackers under time-optimal control, as well as 2) helps eliminate or delay possible future collisions among the defenders on the optimal trajectories. To prevent inevitable collisions on optimal trajectories or collisions arising due to time-sub-optimal behavior by the attackers, a minimally augmented control using exponential control barrier function (ECBF) is also provided. Simulations show the efficacy of the approach.

Systems and Control,Computer Science and Game Theory,Multiagent Systems,Robotics

Zhen Han,Wei Wang,Changyun Wen,Lei Wang

DOI: https://doi.org/10.1109/tii.2024.3393142

IF: 12.3

2024-01-01

IEEE Transactions on Industrial Informatics

Abstract:This article focuses on the distributed adaptive consensus control problem for nonlinear systems with unknown parameters and denial-of-service (DoS) attacks. The communication channels among subsystems are directed and DoS attacks are executed on subsystems to jam the communication transmission. Besides, only part of these subsystems can access states of the desired reference system. To actively alleviate attack effects on the consensus performance, a distributed adaptive consensus control scheme with an active-defense mechanism is proposed. The active-defense mechanism consists of an attack-detection algorithm and a switching strategy. The distributed adaptive consensus controller is designed with normalized damping terms in control inputs and parameter update laws. In the presence of DoS attacks, a stability condition is derived based on the designed control scheme, which guarantees that the consensus errors are globally uniformly bounded under arbitrary switching dwell-time. Experimental results are provided to validate the effectiveness of the proposed control scheme with the active-defense mechanism.

Chenduo Ying,Ning Zheng,Yiming Wu,Ming Xu,Wen-An Zhang

DOI: https://doi.org/10.1109/tii.2023.3280318

IF: 12.3

2023-01-01

IEEE Transactions on Industrial Informatics

Abstract:This article investigates the secure and privacy-preserving consensus problem of multi-agent systems (MASs) with directed interaction topologies under multiple cyber attacks, which contain deception attacks and DoS attacks. First, a unified attack model is introduced to characterize such a multiple attack phenomenon. Besides, considering the existence of eavesdroppers who can intercept the data transmitted on the links, a fully distributed agent value reconstruction method based on the idea of state decomposition is designed to prevent the leakage of the agent's initial information. Then, a novel privacy-preserving adaptive resilient consensus algorithm (PPARCA) with certain graph robustness condition for MASs under the multiple cyber attacks is proposed. The algorithm adaptively takes different countermeasures in the face of different cyber attacks. PPARCA uses the reconstructed agents' states and combines with the modified Secure Acceptance and Broadcast Algorithm (SABA). Theoretical analysis shows that the proposed algorithm can effectively protect the privacy of the initial state of the agents, and reach resilient consensus in the face of cyber attacks. Finally, numerical simulations and Raspberry Pi MASs practical application experiments demonstrate the effectiveness of the proposed results.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Zhen Chen,Yong Liao,Youpeng Zhao,Zipeng Dai,Jian Zhao

2024-06-25

Abstract:Cooperative Multi-Agent Reinforcement Learning (CMARL) strategies are well known to be vulnerable to adversarial perturbations. Previous works on adversarial attacks have primarily focused on white-box attacks that directly perturb the states or actions of victim agents, often in scenarios with a limited number of attacks. However, gaining complete access to victim agents in real-world environments is exceedingly difficult. To create more realistic adversarial attacks, we introduce a novel method that involves injecting traitor agents into the CMARL system. We model this problem as a Traitor Markov Decision Process (TMDP), where traitors cannot directly attack the victim agents but can influence their formation or positioning through collisions. In TMDP, traitors are trained using the same MARL algorithm as the victim agents, with their reward function set as the negative of the victim agents' reward. Despite this, the training efficiency for traitors remains low because it is challenging for them to directly associate their actions with the victim agents' rewards. To address this issue, we propose the Curiosity-Driven Adversarial Attack (CuDA2) framework. CuDA2 enhances the efficiency and aggressiveness of attacks on the specified victim agents' policies while maintaining the optimal policy invariance of the traitors. Specifically, we employ a pre-trained Random Network Distillation (RND) module, where the extra reward generated by the RND module encourages traitors to explore states unencountered by the victim agents. Extensive experiments on various scenarios from SMAC demonstrate that our CuDA2 framework offers comparable or superior adversarial attack capabilities compared to other baselines.

Machine Learning,Artificial Intelligence,Cryptography and Security,Multiagent Systems

Hongchao Hu,Jiangxing Wu,Zhenpeng Wang,Guozhen Cheng

DOI: https://doi.org/10.1049/iet-ifs.2017.0086

2017-01-01

IET Information Security

Abstract:In recent years, both academia and industry in cyber security have tried to develop innovative defense technologies, expecting that to change the rules of the game between attackers and defenders. The authors start by analysing the root causes of security problems in cyberspace: (i) vulnerabilities in cyber systems are universal; (ii) current cyber systems are static, predictable and monoculture which allows adversaries to plan and launch attacks effectively; (iii) existing techniques cannot detect and eliminates attacks employing unknown vulnerabilities. Based on their analysis, they develop a novel defense framework, mimic defense (MD), that employs dynamic, heterogeneity, redundancy (DHR)' mechanism to defense cyber attacks. The main ideas behind MD are: constructing diverse functional equivalent variants for the protected target; scheduling some variants to run in parallel dynamically; and adopting policy-based arbitration mechanism to decide whose results of current running variants are correct. Theoretical analysis and simulation results show that DHR can significantly increase the difficulties for attackers and enhance the security of cyber systems, and the security enhancement can be more than ten times. They also present a proof-of-principle prototype that employ MD, mimic router, to examine its effectiveness. Finally, they conclude its limitations.

Runhua Wang,Qing Ling,Zhi Tian

2023-10-09

Abstract:This paper investigates the problem of decentralized resource allocation in the presence of Byzantine attacks. Such attacks occur when an unknown number of malicious agents send random or carefully crafted messages to their neighbors, aiming to prevent the honest agents from reaching the optimal resource allocation strategy. We characterize these malicious behaviors with the classical Byzantine attacks model, and propose a class of Byzantine-resilient decentralized resource allocation algorithms augmented with dual-domain defenses. The honest agents receive messages containing the (possibly malicious) dual variables from their neighbors at each iteration, and filter these messages with robust aggregation rules. Theoretically, we prove that the proposed algorithms can converge to neighborhoods of the optimal resource allocation strategy, given that the robust aggregation rules are properly designed. Numerical experiments are conducted to corroborate the theoretical results.

Optimization and Control

Lei He,Quan Ren,Bolin Ma,Weili Zhang,Jiangxing Wu

DOI: https://doi.org/10.23919/jcc.2021.00.011

2022-01-01

China Communications

Abstract:With the rapid development of information technology, the cyberspace security problem is increasingly serious. Kinds of dynamic defense technology have emerged such as moving target defense and mimic defense. This paper aims to describe the architecture and analyze the performance of Cyberspace Mimic DNS based on generalized stochastic Petri net. We propose a general method of anti-attacking analysis. For general attack and special attack model, the available probability, escaped probability and non-special awareness probability are adopted to quantitatively analyze the system performance. And we expand the GSPN model to adjust to engineering practice by specifying randomness of different output vectors. The result shows that the proposed method is effective, and Mimic system has high anti-attacking performance. To deal with the special attack, we can integrate the traditional defense mechanism in engineering practice. Besides, we analyze the performance of mimic DNSframework based on multi-ruling proxy and input-output desperation, the results represent we can use multi ruling or high-speed cache servers to achieve the consistent cost of delay, throughput compared with single authorized DNS, it can effectively solve 10% to 20% performance loss caused by general ruling proxy.

Zhuoxing Chen,Yiqin Lu,Jiancheng Qin,Zhe Cheng

DOI: https://doi.org/10.1109/access.2021.3111735

IF: 3.9

2021-01-01

IEEE Access

Abstract:Cyberspace mimic defense (CMD) is an active defense theory that has emerged in recent years. By dynamically constructing and scheduling multiple executors, the CMD can not only effectively defend against security threats caused by unknown cyberspace weaknesses, but also improve the present situation of information asymmetry between attackers and defenders in cyberspace. However, as one of the key technologies of the CMD, the scheduling strategy algorithm still needs to be improved in real-time security, reliability, and universality, which has restricted the development and large-scale deployment of the CMD. To solve this problem, we propose an optimal seed scheduling strategy algorithm (OSSSA) in this paper. After using continuous-time Markov processes to mathematically analyze the model of the mimic defense system in cyberspace, we introduce the key factors and their evaluation methods that affecting the CMD defense performance in the OSSSA, then propose a reliable working mechanism of the OSSSA. Furthermore, we present an evaluation method that can effectively evaluate the defense performance of the scheduling algorithms. Experimental results from software simulations and real experiments show that the OSSSA has better real-time defense performance than the current mainstream scheduling strategy algorithms, and can adapt to different practical application scenarios, which is helpful to the further development of the CMD.

computer science, information systems,telecommunications,engineering, electrical & electronic

Lucheng Sun,Tiejun Wu,Ya Zhang

DOI: https://doi.org/10.1080/00207721.2023.2268239

2023-10-14

International Journal of Systems Science Operations & Logistics

Abstract:The issue of defense strategy for cooperative control in multi-agent systems under false data injection attacks is investigated in this paper. False data injection attacks are typical cyber-attacks, some of which can evade detection and result in system instability. A communication strategy is proposed to ensure the security of multi-agent systems. In the proposed defense strategy, each agent is assigned to transmit its state to its neighbours and extra communication edges are stochastically triggered by the designed trigger signals. Furthermore, the communication topology condition is derived to ensure the security of multi-agent systems under the defense strategy. The theoretical results are verified through numerical simulation.

He Jiajun,Yuan Yali,Liang Sichu,Fu Jiale,Zhu Hongyu,Cheng Guang

DOI: https://doi.org/10.23919/jcc.ja.2022-0842

2024-09-10

China Communications

Abstract:In recent years, network attacks have been characterized by diversification and scale, which indicates a requirement for defense strategies to sacrifice generalizability for higher security. As the latest theoretical achievement in active defense, mimic defense demonstrates high robustness against complex attacks. This study proposes a Function-aware, Bayesian adjudication, and Adaptive updating Mimic Defense (FBAMD) theory for addressing the current problems of existing work including limited ability to resist unknown threats, imprecise heterogeneous metrics, and over-reliance on relatively-correct axiom. FBAMD incorporates three critical steps. Firstly, the common features of executors' vulnerabilities are obtained from the perspective of the functional implementation (i.e, input-output relationships extraction). Secondly, a new adjudication mechanism considering Bayes' theory is proposed by leveraging the advantages of both current results and historical confidence. Furthermore, posterior confidence can be updated regularly with prior adjudication information, which provides mimic system adaptability. The experimental analysis shows that FBAMD exhibits the best performance in the face of different types of attacks compared to the state-of-the-art over real-world datasets. This study presents a promising step toward the theoretical innovation of mimic defense.

telecommunications

Zhengcai Li,Yang Shi,Shengyuan Xu,Huiling Xu,Lewei Dong

DOI: https://doi.org/10.1109/tac.2024.3371895

IF: 6.549

2024-01-01

IEEE Transactions on Automatic Control

Abstract:This article provides a secure distributed output feedback model predictive control (DOFMPC) solution for the leader-following consensus problems of homogeneous linear disturbed multiagent systems against multiple cyber attacks. The false data injection (FDI) attacks on the sensor-controller communication channel and denial-of-service (DoS) attacks on the controller-actuator communication channel occur simultaneously. To defend against dual-channel multiple attacks, we propose a secure DOFMPC scheme consisting of three modules. Firstly, a robust multivariate observer is built to separate FDI attacks from uncompromised states. Secondly, a distributed output feedback model predictive controller is designed to generate effective control sequences. Thirdly, a buffered actuator is added to realize adequate compensation to defend against DoS attacks. The proposed secure DOFMPC scheme ensures the recursive feasibility of the formulated optimization control problem and achieves the leader-following consensus of the multiagent system. Finally, an illustrative example is presented to demonstrate the secure performance of the proposed DOFMPC scheme.

automation & control systems,engineering, electrical & electronic

Jianhua Sun,Kun Sun,Qi Li

DOI: https://doi.org/10.1109/CNS.2017.8228642

2017-01-01

Abstract:Traditional deception-based cyber defenses often undertake reactive strategies that utilize decoy systems or services for attack detection and information gathering. Unfortunately, the effectiveness of these defense mechanisms has been largely constrained by the low decoy fidelity, the poor scalability of decoy platform, and the static decoy configurations, which allow the attackers to identify and bypass the deployed decoys. In this paper, we develop a decoy-enhanced defense framework that can proactively protect critical servers against targeted remote attacks through deception. To achieve both high fidelity and good scalability, our system follows a hybrid architecture that separates lightweight yet versatile front-end proxies from back-end high-fidelity decoy servers. Moreover, our system can further invalidate the attackers' reconnaissance through dynamic proxy address shuffling. To guarantee service availability, we develop a transparent connection translation strategy to maintain existing connections during shuffling. Our evaluation on a prototype implementation demonstrates the effectiveness of our approach in defeating attacker reconnaissance and shows that it only introduces small performance overhead.

Jieling Liu,Zhiliang Wang,Jiahai Yang,Bo Wang,Lin He,Guanglei Song,Xinran Liu

DOI: https://doi.org/10.1109/ICC42927.2021.9500765

2021-01-01

Abstract:The intranets in modern organizations are facing severe data breaches and critical resource misuses. By reusing user credentials from compromised systems, Advanced Persistent Threat (APT) attackers can move laterally within the internal network. A promising new approach called deception technology makes the network administrator (i.e., defender) able to deploy decoys to deceive the attacker in the intranet and trap him into a honeypot. Then the defender ought to reasonably allocate decoys to potentially insecure hosts. Unfortunately, existing APT-related defense resource allocation models are infeasible because of the neglect of many realistic factors. In this paper, we make the decoy deployment strategy feasible by proposing a game-theoretic model called the APT Deception Game to describe interactions between the defender and the attacker. More specifically, we decompose the decoy deployment problem into two subproblems and make the problem solvable. Considering the best response of the attacker who is aware of the defender's deployment strategy, we provide an elitist reservation genetic algorithm to solve this game. Simulation results demonstrate the effectiveness of our deployment strategy compared with other heuristic strategies.

Chao Qi,Jiangxing Wu,Hongchao Hu,Guozhen Cheng,Wenyan Liu,Jianjian Ai,Chao Yang

DOI: https://doi.org/10.1109/INFCOMW.2016.7562109

2016-01-01

Abstract:Modifying flow rule attack is a type of attack against controllers in SDN, leading to severe influence on network. In this paper, we propose Mcad-SA, an aware decision-making security architecture with multi-controller, to deal with it. It schedules the controllers in a dynamic and random way and adopts the vote results from the majority of controllers to determine valid flow rules. Theory analysis proves its validity.

Xin Gong,Jintao Peng,Dong Yang,Zhan Shu,Tingwen Huang,Yukang Cui

2023-03-23

Abstract:This paper studies the leader-following consensuses of uncertain and nonlinear multi-agent systems against composite attacks (CAs), including Denial of Service (DoS) attacks and actuation attacks (AAs). A double-layer control framework is formulated, where a digital twin layer (TL) is added beside the traditional cyber-physical layer (CPL), inspired by the recent Digital Twin technology. Consequently, the resilient control task against CAs can be divided into two parts: One is distributed estimation against DoS attacks on the TL and the other is resilient decentralized tracking control against actuation attacks on the CPL. %The data-driven scheme is used to deal with both model non-linearity and model uncertainty, in which only the input and output data of the system are employed throughout the whole control process. First, a distributed observer based on switching estimation law against DoS is designed on TL. Second, a distributed model free adaptive control (DMFAC) protocol based on attack compensation against AAs is designed on CPL. Moreover, the uniformly ultimately bounded convergence of consensus error of the proposed double-layer DMFAC algorithm is strictly proved. Finally, the simulation verifies the effectiveness of the resilient double-layer control scheme.

Systems and Control,Artificial Intelligence