Sunandan Adhikary,Ipsita Koley,Sumana Ghosh,Saurav Kumar Ghosh,Soumyajit Dey,Debdeep Mukhopadhyay

DOI: https://doi.org/10.1145/3411498.3419966

2020-07-16

Abstract:We consider the problem of provably securing a given control loop implementation in the presence of adversarial interventions on data exchange between plant and controller. Such interventions can be thwarted using continuously operating monitoring systems and also cryptographic techniques, both of which consume network and computational resources. We provide a principled approach for intentional skipping of control loop executions which may qualify as a useful control theoretic countermeasure against stealthy attacks which violate message integrity and authenticity. As is evident from our experiments, such a control theoretic counter-measure helps in lowering the cryptographic security measure overhead and resulting resource consumption in Control Area Network (CAN) based automotive CPS without compromising performance and safety.

Cryptography and Security,Systems and Control

Rahul Kumar,Rajeeb Dey,Kevin Guelton,Arun Bali,Uday Pratap Singh

DOI: https://doi.org/10.1016/j.jfranklin.2024.106661

IF: 4.246

2024-02-04

Journal of the Franklin Institute

Abstract:A cyber–physical system (CPS) is often vulnerable to cyber-attacks that can cause immense damage in real-time to the data and operation of the physical system. To prevent CPS from entering an unsafe state of operation due to Man-in-the-Middle (MitM) attack, an adaptive control strategy based on a novel backstepping framework is proposed that is different from the classical n -step predictor scheme. The proposed scheme is computationally faster owing to the fact that the scheme is independent of the design of virtual control laws (VCLs) and also has the capability to handle uncertain system dynamics thereby safeguarding the CPSs from MitM attack. The overall control scheme is proved to be stable in the sense of exponential mean square stability. The article discusses computational complexity analysis of the overall closed-loop control. Moreover, to handle the uncertainties arising from False-Data Injection (FDI), a Radial Basis Function Neural Network (RBFNN), initialized by a Sparrow Search Algorithm (SSA), is employed. The efficacy of the proposed neuro-adaptive control scheme is validated by considering a nonlinear model of the DC motor and comparing the results of the proposed scheme with some existing results.

automation & control systems,engineering, electrical & electronic, multidisciplinary,mathematics, interdisciplinary applications

Wenjie Liu,Lidong Li,Jian Sun,Fang Deng,Gang Wang,Jie Chen

2024-06-06

Abstract:The rise of cyber-security concerns has brought significant attention to the analysis and design of cyber-physical systems (CPSs). Among the various types of cyberattacks, denial-of-service (DoS) attacks and false data injection (FDI) attacks can be easily launched and have become prominent threats. While resilient control against DoS attacks has received substantial research efforts, countermeasures developed against FDI attacks have been relatively limited, particularly when explicit system models are not available. To address this gap, the present paper focuses on the design of data-driven controllers for unknown linear systems subject to FDI attacks on the actuators, utilizing input-state data. To this end, a general FDI attack model is presented, which imposes minimally constraints on the switching frequency of attack channels and the magnitude of attack matrices. A dynamic state feedback control law is designed based on offline and online input-state data, which adapts to the channel switching of FDI attacks. This is achieved by solving two data-based semi-definite programs (SDPs) on-the-fly to yield a tight approximation of the set of subsystems consistent with both offline clean data and online attack-corrupted data. It is shown that under mild conditions on the attack, the proposed SDPs are recursively feasible and controller achieves exponential stability. Numerical examples showcase its effectiveness in mitigating the impact of FDI attacks.

Systems and Control

Jinyan Li,Xiaomeng Li,Hongru Ren,Hongyi Li

DOI: https://doi.org/10.1002/rnc.7601

IF: 3.8973

2024-08-27

International Journal of Robust and Nonlinear Control

Abstract:This paper focuses on a detection‐based resilient control issue for cyber‐physical systems (CPSs) subject to false data injection (FDI) attacks, where FDI attacks occur in the communication channels from the sensor‐to‐controller and controller‐to‐actuator. Firstly, to reduce the adverse impacts of FDI attacks on estimation performance, an unbiased estimator is constructed by tackling the equality‐constrained optimization problem. Then, an effective attack detection mechanism is devised by introducing a pseudo‐innovation sequence to formulate the detection function, which can successfully detect two‐channel FDI attacks. Based on these detection results, a resilient controller combining linear quadratic Gaussian and H∞ controllers is provided to guarantee the mean‐square asymptotic stability of CPSs with H∞ performance. Finally, the validity of the proposed resilient control approach is demonstrated by a simulation involving satellite control system.

automation & control systems,engineering, electrical & electronic,mathematics, applied

Wenjie Liu,Lidong Li,Jian Sun,Fang Deng,Gang Wang,Jie Chen

DOI: https://doi.org/10.48550/arxiv.2311.08207

2023-01-01

Abstract:The rise of cyber-security concerns has brought significant attention to theanalysis and design of cyber-physical systems (CPSs). Among the various typesof cyberattacks, denial-of-service (DoS) attacks and false data injection (FDI)attacks can be easily launched and have become prominent threats. Whileresilient control against DoS attacks has received substantial researchefforts, countermeasures developed against FDI attacks have been relativelylimited, particularly when explicit system models are not available. To addressthis gap, the present paper focuses on the design of data-driven controllersfor unknown linear systems subject to FDI attacks on the actuators, utilizinginput-state data. To this end, a general FDI attack model is presented, whichimposes minimally constraints on the switching frequency of attack channels andthe magnitude of attack matrices. A dynamic state feedback control law isdesigned based on offline and online input-state data, which adapts to thechannel switching of FDI attacks. This is achieved by solving two data-basedsemi-definite programs (SDPs) on-the-fly to yield a tight approximation of theset of subsystems consistent with both offline clean data and onlineattack-corrupted data. It is shown that under mild conditions on the attack,the proposed SDPs are recursively feasible and controller achieves exponentialstability. Numerical examples showcase its effectiveness in mitigating theimpact of FDI attacks.

Baoling Miao,Hao Wang,Yan-Jun Liu,Lei Liu

DOI: https://doi.org/10.1109/jetcas.2023.3253483

IF: 5.877

2023-01-01

IEEE Journal on Emerging and Selected Topics in Circuits and Systems

Abstract:In this paper, for a class of nonlinear cyber-physical systems (CPSs), the problem of adaptive security control for false data injection (FDI) attacks on the sensor and actuator is solved. Both sensor and actuator are destroyed by attackers, which makes the feedback control design unable to access the traditional error surface. Firstly, a state observer is constructed to mitigate the impact of sensor attacks. And then neural networks are used to approximate the nonlinear term and compensate for state-dependent actuator attacks. Finally, in order to reduce the impact of FDI attacks, we design a special time-varying symmetry barrier function in backstepping control design, which can achieve specific output signal constraints under FDI attacks. Through the above control strategy, the output constraint control problem of CPSs under FDI attacks is solved. Finally, a numerical simulation example demonstrates the effectiveness of the proposed controller.

engineering, electrical & electronic

Kang-Di Lu,Zheng-Guang Wu

DOI: https://doi.org/10.1109/tcsii.2022.3181827

2022-01-01

Abstract:In cyber-physical power systems (CPPSs), false data injection attack (FDIA) has drawn much attention due to its stealthiness. It is of great importance to investigate the potential behaviors of attackers to improve the cyber-security of CPPSs. However, most FDIA models are often constructed separately on the effect of attackers or the impact of attacks. Accordingly, this brief proposes a multi-objective stealthy FDIA scheme in AC grid model. The attack model is described as a multi-objective optimization problem, where minimization of contaminated measurements and maximization of the attack impact are considered as two objectives while remaining stealthy. To deal with the established attack model, a non-dominated sorting genetic algorithm II (NSGAII) is introduced as the solver. To improve the efficiency of generating attack vector, a new representation mechanism is proposed to describe locations and values of injected states. Additionally, during the evolutionary process, we propose a mutation operation to balance the sparsity and impact of FDIA. Simulation results on the IEEE 14-bus, 30-bus, and 118-bus systems demonstrate the feasibility of the NSGAII-based FDIA model.

Zhang Yifang,Wu Zhengguang,Wu Zongze,Meng Deyuan

DOI: https://doi.org/10.1007/s11432-020-3190-2

2022-01-01

Science China Information Sciences

Abstract:We develop the resilient observer-based event-triggered control update strategy in this paper.It is utilized to achieve the input-to-state stability(ISS) of cyber-physical systems(CPSs) when there is an asynchronous denial-of-service(DoS) attack, which is launched by malicious adversaries both on measurement channel and control channel in a random attack strategy. To estimate the unmeasurable states while saving the limited networked bandwidth, an H_∞ observer-based event-triggered control scheme is first designed to guarantee the ISS of CPSs with economic communication. Moreover, the occurrence of Zeno behavior can be eliminated by providing the existence of a lower positive bound of any two inter-event times. Then, a recursive model of asynchronous DoS attacks is introduced. A resilient control update strategy is proposed and further analyzed to derive the stability criterion of CPSs. At last, a numerical simulation example is given to demonstrate the effectiveness of the introduced control update policy.

Da-Tian PENG,Jian-Min DONG,Zhong-Min CAI,Chang-Qing ZHANG,Qin-Ke PENG

DOI: https://doi.org/10.16383/j.aas.2018.c180331

2019-01-01

Abstract:Due to the stealthiness behavior, false data injection (FDI) attacks severely threaten the security of cyberphysical systems (CPS) . From the attackers perspective, this paper mainly studies how FDI attacks impact the stability of CPS. First, we give the FDI attack model where the false control and measurement data are injected into the forward and feedback channels, respectively. Then, we propose an FDI effectiveness model to quantify the attack impact on the state estimation and measurement residue of CPS. On this basis, we design a coordination strategy associated with attack vector and further derive the theoretical attack conditions to manipulate the stability of CPS, which are related to the stability of attack matrix H and system matrix A and the selected moment of time parameter ka. Finally, numerical simulations indicate that FDI attacks can effectively manipulate the stability of CPS including two classes of controlled plants: stable and unstable. This study further reveals the coordination behavior of FDI attacks, which provides important reference for securing the CPS and defending cyber attacks.

Jinyan Li,Xiao-Meng Li,Zhijian Cheng,Hongru Ren,Hongyi Li

DOI: https://doi.org/10.1016/j.ins.2024.121093

IF: 8.1

2024-07-10

Information Sciences

Abstract:This paper mainly studies an event-based secure control problem for cyber-physical systems against false data injection (FDI) attacks. First, a dynamic event-triggered transmission protocol is established to schedule the transmitted data from the sensor to the controller. Subsequently, an imperfect FDI attack model is constructed considering the real network environment, which would bypass the traditional residual-based detection methods. To overcome this drawback, an attack detection strategy based on secure history information is designed, which effectively mitigates the negative impact of uncertainty on the detection results. Based on the detection results, an event-based secure linear quadratic Gaussian control scheme is designed, which can guarantee system performance and reduce the communication load effectively. Finally, a simulation experiment verifies that the proposed control method outperforms other algorithms in the literature, and the detection accuracy is increased by 91% to 98%.

computer science, information systems

Hongming Zhu,Lezhong Xu,Zeyu Bao,Yifan Liu,Liyuan Yin,Weiran Yao,Chengwei Wu,Ligang Wu

DOI: https://doi.org/10.1109/ticps.2023.3293789

2023-01-01

Abstract:In this article, the secure control problem of the cyber-physical systems (CPS) is investigated when the communication network connecting a controller and an actuator is interfered by malicious adversaries. Both multiplicative and additive false data attacks are considered, and a general attack model is given to describe such attacks. Sufficient conditions are proposed to validate that whether a given controller is capable of maintaining the desired performance of CPS or not under a given attack scenario. Furthermore, conditions are given to design a secure controller for CPS with both multiplicative and additive false data attacks. Eventually, numerical simulation results are given to illustrate the effectiveness of the proposed secure control scheme in this article.

Zhiwen Wang,Bin Zhang,Xiangnan Xu,Usman,Long Li

DOI: https://doi.org/10.1177/01423312211069371

IF: 2.146

2022-01-12

Transactions of the Institute of Measurement and Control

Abstract:This paper investigates the security control problem of the cyber-physical system under false data injection attacks. A model predictive switching control strategy based on attack perception is proposed to compensate for the untrusted sequence of data caused by false data injection attacks. First, the binary attack detector is applied whether the system has suffered the attack. If the attack occurs, multistep correction is carried out for the future data according to the previous time data, and the waiting period [Formula: see text] is set. The input and output sequence of the controller is reconstructed, and the system is modeled as a constant time-delay switched system. Subsequently, the Lyapunov methods and average-dwell time are combined to provide sufficient conditions for the asymptotical stability of closed-loop switched system. Finally, the simulation of the networked first-order inverted pendulum model reveals that the control technique can efficiently suppress the influence of the attacks.

automation & control systems,instruments & instrumentation

Feiyang Hong,Zhejing Bao,Miao You

DOI: https://doi.org/10.1109/CCDC52312.2021.9601681

2021-01-01

Abstract:Recent studies show that the cyber-attacks such as false data injection attack (FDIA) are capable of severely threatening power system security, in such a way that the undetected errors are introduced into the states estimations by evading the conventional bad data detection (BDD) methods. This paper proposes a tri-level optimization model against the FDIA by formulating the attack actions and identifying the optimal defense strategies constrained by the limited resources. In the lower level, an economic dispatching is implemented to seek the operational strategy aiming at minimizing the operating costs under the given attack. The middle level formulates the behaviors of the attacker to discover the most destructive attack strategy intended by the attacker based on the defense strategy determined by the upper level. The upper level represents the actions of the planner and determines the optimal defense allocation on the measuring meters. The min-max-min tri-level model can be solved by the column-and-constraint generation (C&CG) algorithm. Simulations are implemented to identify the components which should be protected under the limited defense resources and severe attacks.

Yue-Ming Wang,Yuan-Xin Li

DOI: https://doi.org/10.1080/23307706.2022.2136274

2022-10-21

Journal of Control and Decision

Abstract:In this article, an adaptive security control scheme is presented for cyber-physical systems (CPSs) suffering from false data injection (FDI) attacks and time-varying state constraints. Firstly, an adaptive bound estimation mechanism is introduced in the backstepping control design to mitigate the effect of FDI attacks. Secondly, to solve the unknown sign time-varying state-feedback gains aroused by the FDI attacks, a type of Nussbaum function is employed in the adaptive security control. Then, by constructing a barrier Lyapunov function, it can be ensured that all signals of controlled system are bounded and the time-varying state constraints are not transgressed. Finally, the provided simulation examples demonstrate the effectiveness of the proposed controller.

Yingying Wang,Xuewen Zhao,Hehao Jin,Yuehui Ji

DOI: https://doi.org/10.1109/CCDC62350.2024.10587808

2024-05-25

Abstract:A novel adaptive predefined-time resilient control is proposed for cyber-physical systems with stealthy false data injection attacks. As the sensors are attacked by ill-disposed hackers, the state information cannot be measured exactly. The system dynamic of the compromised states is deduced theoretically, characterized by nonlinear uncertainty dynamics and unknown control directions at the last step. In the framework of backstepping recursive procedures, an adaptive resilient controller is developed, the stability time and convergence accuracy of the output tracking error can be preset by controller gains. Especially, the Nussbaum functions are adopted at the last step in the adaptive control. Finally, a numerical example is conducted to verify that the proposed control can provide a favorable predefine time stabilization performance.

Engineering,Computer Science

Yang Gao,Jiaqi Wang,Jiali Ma,Yifei Wu

DOI: https://doi.org/10.1109/TCSII.2022.3217823

2023-01-01

Abstract:This brief investigates the event-triggered adaptive fixed-time secure control problem for nonlinear cyber-physical systems (CPSs) under false data-injection attacks. By employing adding a power integrator technique, an adaptive controller along with the triggering mechanism is designed by using the compromised state variables. To compensate the effect of the unknown attacks, a dynamic switching function is introduced into the controller and a corresponding switching mechanism is developed based on the fixed-time stability theorem. Under the adaptive secure control scheme, the dynamic controller parameter can be regulated online to compensate the cyber attacks such that the fixed-time stability can be ensured for the considered nonlinear CPSs and Zeno behavior can be avoided. A simulation example is given to demonstrate the effectiveness of the proposed control strategy.

Computer Science,Engineering

Lezhong Xu,Hongming Zhu,Kang Guo,Yabin Gao,Chengwei Wu

DOI: https://doi.org/10.1109/ticps.2024.3359154

2024-01-01

Abstract:This paper investigates the problem of cyber-physical systems in the presence of false data injection attacks. When the communication network connects the controller and the actuator, malicious adversaries can execute false data injection attacks to modify the control commands, deteriorating the performance of the system. A more general attack model is established to describe false data injection attacks including multiplicative and additive attacks. To effectively mitigate such attacks, an output-based secure controller is designed. Sufficient criteria are derived to guarantee that the cyber-physical system under such attacks is stochastically stable. Furthermore, a condition is proposed to design the secure control gain using singular value decomposition, providing a more specific form of the controller. Finally, simulation results are provided to illustrate the effectiveness of the proposed secure control scheme.

Sunandan Adhikary,Ipsita Koley,Saurav Kumar Ghosh,Sumana Ghosh,Soumyajit Dey

DOI: https://doi.org/10.1109/tcad.2024.3443007

IF: 2.9

2024-11-09

IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Abstract:Modern cyber-physical systems (CPSs) employ an increasingly large number of software control loops to enhance their autonomous capabilities. Such large task sets and their dependencies may lead to deadline misses caused by platform-level timing uncertainties, resource contention, etc. To ensure the schedulability of the task set in the embedded platform in the presence of these uncertainties, there exist co-design techniques that assign task periodicities such that control costs are minimized. Another line of work exists that addresses the same platform schedulability issue by skipping a bounded number of control executions within a fixed number of control instances. Considering that control tasks are designed to perform robustly against delayed actuation (due to deadline misses, network packet drops etc.) a bounded number of control skips can be applied while ensuring certain performance margin. Our work combines these two control scheduling co-design disciplines and develops a strategy to adaptively employ control skips or update periodicities of the control tasks depending on their current performance requirements. For this we leverage a novel theory of automata-based control skip sequence generation while ensuring periodicity, safety and stability constraints. We demonstrate the effectiveness of this dynamic resource sharing approach in an automotive Hardware-in-loop setup with realistic control task set implementations.

engineering, electrical & electronic,computer science, interdisciplinary applications, hardware & architecture

Yuehui Ji,Qiang Gao,Junjie Liu

DOI: https://doi.org/10.1007/s11071-023-08246-8

IF: 5.741

2023-04-18

Nonlinear Dynamics

Abstract:An adaptive resilient control is concerned for a class of cyber-physical systems (CPSs) in the presence of stealthy false data injection attacks in sensor networks and strict-feedback nonlinear dynamics. As the sensors are attacked by ill-disposed hackers, the exactly measured state information is unavailable for state feedback control. After theory ratiocinations, the initial issue of false data injection attacks is transformed into nonlinear uncertainty dynamics and unknown control directions at the last step. At each step in the recursive backstepping control, extended state observers (ESOs) in active disturbance rejection control (ADRC) are investigated to approximate the lumped system uncertainties. Specially, the Nussbaum functions are introduced at the last step in the adaptive control. All the closed-loop signals are proved to be semi-globally uniformly ultimately bounded by Lyapunov theory. Finally, numerical simulations verify that the proposed control can afford favorable stabilization performance and counter false data injection attack.

engineering, mechanical,mechanics

Hao Fu,Prashanth Krishnamurthy,Farshad Khorrami

2024-09-29

Abstract:Cyber-physical systems (CPS) play a pivotal role in numerous critical real-world applications that have stringent requirements for safety. To enhance the CPS resiliency against attacks, redundancy can be integrated in real-time controller implementations by designing strategies that switch among multiple controllers. However, existing switching strategies typically overlook remediation measures for compromised controllers, opting instead to simply exclude them. Such a solution reduces the CPS redundancy since only a subset of controllers are used. To address this gap, this work proposes a multi-controller switching strategy with periodic re-initialization to remove attacks. Controllers that finish re-initialization can be reused by the switching strategy, preserving the CPS redundancy and resiliency. The proposed switching strategy is designed to ensure that at each switching moment, a controller that has just completed re-initialization is available, minimizing the likelihood of compromise. Additionally, the controller's working period decreases with the number of involved controllers, reducing the controller's exposure time to attacks. An anomaly detector is used to detect CPS attacks during the controller's working period. Upon alarm activation, the current control signal is set to a predefined value, and a switch to an alternative controller occurs at the earliest switching moment. Our switching strategy is shown to be still effective even if the anomaly detector fails to detect (stealthy) attacks.

Systems and Control