Attack Detection of CPS System with Multi-sensors

被引：0

作者：

Yang K. ^{[1
]}

Wang R. ^{[1
,2
]}

Guan Y. ^{[2
]}

Li X.-J. ^{[1
,2
]}

Shi Z.-P. ^{[2
]}

Song X. ^{[3
]}

机构：

[1] Beijing Key Laboratory of Light Industrial Robots and Safety Verification, College of Information Engineering, Capital Normal University, Beijing

[2] National International Science and Technology Cooperation Demonstration Base of Interdisciplinary of Electronic System Reliability and Mathematics (Capital Normal University), Beijing

[3] Portland State University, Portland, 97230, OR

来源：

Ruan Jian Xue Bao/Journal of Software | 2019年 / 30卷 / 07期

基金：

中国国家自然科学基金; 国家重点研发计划;

关键词：

Cyber-physical system; Multi-sensor fusion algorithm; Security; Sensor attack detection and identification; Transient fault;

D O I：

10.13328/j.cnki.jos.005756

中图分类号：

学科分类号：

摘要：

Cyber-physical systems (CPS) are next-generation intelligent systems based on environment-aware computing, communication, and physical elements. They are widely used in security-critical systems and industrial control. The interaction of information technology and the physical world makes CPS vulnerable to various malicious attacks, thereby undermining its security. This work mainly studies the attack detection problem of sensors in CPS systems with transient faults. This study considers a system with multiple sensors measuring the same physical variables, and some sensors may be malicious attacked and provide erroneous measurements. In addition, this study uses an abstract sensor model where each sensor provides the controller with an interval of possible values for the true value. Existing methods for detecting sensor malicious attacks are conservative. When a professional attacker manipulates the sensor's output slightly or infrequently over a period of time, existing methods are difficult to capture attacks, such as stealth attacks. In order to solve this problem, this study designs a sensor attack detection algorithm based on fusion intervals and historical measurements. First, the algorithm constructs different fault models for different sensors, integrates historical measurements into the attack detection method using system dynamics equations, and analyzes sensor measurements from different aspects. In addition, combined with historical measurement and fusion interval, the problem of whether there are faults when the two sensors intersect is solved. The core idea of this method is to detect and identify attack by using pairwise inconsistency between sensors. This study obtains real measurement data from EV3 ground vehicles to verify the performance of the algorithm. The experimental results show that the proposed method is superior to the state-of-the-art algorithm, and has better detection and recognition performance for various attack types. Especially for stealth attacks, the detection rate and recognition rate are increased by more than 90%. © Copyright 2019, Institute of Software, the Chinese Academy of Sciences. All rights reserved.

引用

页码：2018 / 2032

页数：14

共 23 条

[1] Miao F., Zhu Q., Pajic M., Pappas G.J., Coding schemes for securing cyber-physical systems against stealthy data injection attacks, IEEE Trans. on Control of Network Systems, 4, 1, pp. 106-117, (2017)
[2] Kim K.D., Kumar P.R., Cyber-physical systems: A perspective at the centennial, Proc. of the IEEE, 100, pp. 1287-1308, (2012)
[3] Kong L.L., Analysis of deception models and detection algorithms on CPS control layer, (2015)
[4] Jiang Y., Song H., Wang R., Gu M., Sun J., Sha L., Data-centered runtime verification of wireless medical cyber-physical system, IEEE Trans. on Industrial Informatics, 13, 4, pp. 1900-1909, (2017)
[5] Jiang Y., Zhang H., Song X., Jiao X., Hung W.N.N., Gu M., Sun J., Bayesian-network-based reliability analysis of plc systems, IEEE Trans. on Industrial Electronics, 60, 11, pp. 5325-5336, (2013)
[6] Yang K., Wang R., Jiang Y., Luo C., Guan Y., Li X., Shi Z., Enhanced resilient sensor attack detection using fusion interval and measurement history, Proc. of the 2018 Int'l Conf. on Hardware/Software Codesign and System Synthesis, pp. 1-3, (2018)
[7] Cardenas A.A., Amin S., Sastry S., Secure control: Towards survivable cyber-physical systems, Proc. of the Int'l Conf. on Distributed Computing Systems Workshops, pp. 495-500, (2008)
[8] Checkoway S., Mccoy D., Anderson D., Kantor B., Shacham H., Savage S., Koscher K., Czeskis A., Roesner F., Kohno T., Comprehensive experimental analyses of automotive attack surfaces, Proc. of the Usenix Conf. on Security, (2012)
[9] Koscher K., Czeskis A., Roesner F., Et al., Experimental security analysis of a modern automobile, IEEE Journal of Selected Topics in Quantum Electronics, 41, 3, pp. 447-462, (2010)
[10] Slay J., Miller M., Lessons learned from the maroochy water breach, Proc. of the Int'l Conf. on Critical Infrastructure Protection, pp. 73-82, (2007)

← 1 2 3 →