微信服务号

微信订阅号

2025年3月26日 5:03 星期三
首页 > 过刊浏览>2019年第30卷第7期 >2018-2032. DOI:10.13328/j.cnki.jos.005756
PDF HTML阅读 XML下载 导出引用 引用提醒
具有多传感器的CPS系统的攻击检测
作者:
作者简介:

杨康(1992-),女,山东菏泽人,硕士,主要研究领域为CPS的安全性,形式化验证;李晓娟(1968-),女,博士,教授,CCF专业会员,主要研究领域为系统形式建模与验证,机器人系统软件安全,计算机网络协议分析;王瑞(1981-),女,博士,副教授,CCF专业会员,主要研究领域为形式化方法;施智平(1974-),男,博士,教授,CCF高级会员,主要研究领域为形式化,人工智能;关永(1966-),男,博士,教授,博士生导师,CCF专业会员,主要研究领域为形式化验证,系统可靠性,嵌入式系统;Xiaoyu Song(1963-),男,博士,教授,博士生导师,主要研究领域为形式化方法.

通讯作者:

王瑞,E-mail:rwang04@cnu.edu.cn

中图分类号:

TP309

基金项目:

国家自然科学基金(61877040,61702348,61602325);国家重点研发计划(2017YFB1301100)


Attack Detection of CPS System with Multi-sensors
Author:
Fund Project:

National Natural Science Foundation of China (61877040, 61702348, 61602325); National Key R&D Plan (2017YFB1301100)

  • 摘要
    • | |
  • 访问统计
    • |
  • 参考文献 [25]
    • |
  • 相似文献 [20]
    • | | |
  • 文章评论
    摘要:

    信息物理系统(cyber-physical systems,简称CPS)是基于环境感知实现计算、通信与物理元素紧密结合的下一代智能系统,广泛应用于安全攸关的系统和工业控制等领域.信息技术与物理世界的相互作用使得CPS容易受到各种恶意攻击,从而破坏其安全性.主要研究存在瞬态故障的CPS中传感器的攻击检测问题.考虑具有多个传感器测量相同物理变量的系统,其中一些传感器可能受到恶意攻击并提供错误的测量.此外,使用抽象传感器模型,每个传感器为控制器提供一个真实值的可能间隔.已有的用于检测传感器被恶意攻击的方法是保守的.当专业攻击者在一段时间内轻微地或不频繁地操纵传感器的输出时,现有方法很难捕获到攻击,如隐身攻击.为了解决这个问题,设计了一种基于融合间隔和历史测量的传感器攻击检测方法.该方法首先为不同的传感器构建不同的故障模型,使用系统动力学方程把历史测量融入到攻击检测方法中,从不同的方面分析传感器的测量.另外,利用历史测量和融合间隔解决了两个传感器的测量相交时是否存在故障的问题.该方法的核心思想是利用传感器之间的成对不一致关系检测和识别攻击.从EV3地面车辆上获得真实的测量数据来验证算法的性能.实验结果表明,所提出的方法优于现有方法,对各种攻击类型都有较好的检测和识别性能,特别是对于隐身攻击,检测率和识别率大约提高了90%以上.

    Abstract:

    Cyber-physical systems (CPS) are next-generation intelligent systems based on environment-aware computing, communication, and physical elements. They are widely used in security-critical systems and industrial control. The interaction of information technology and the physical world makes CPS vulnerable to various malicious attacks, thereby undermining its security. This work mainly studies the attack detection problem of sensors in CPS systems with transient faults. This study considers a system with multiple sensors measuring the same physical variables, and some sensors may be malicious attacked and provide erroneous measurements. In addition, this study uses an abstract sensor model where each sensor provides the controller with an interval of possible values for the true value. Existing methods for detecting sensor malicious attacks are conservative. When a professional attacker manipulates the sensor's output slightly or infrequently over a period of time, existing methods are difficult to capture attacks, such as stealth attacks. In order to solve this problem, this study designs a sensor attack detection algorithm based on fusion intervals and historical measurements. First, the algorithm constructs different fault models for different sensors, integrates historical measurements into the attack detection method using system dynamics equations, and analyzes sensor measurements from different aspects. In addition, combined with historical measurement and fusion interval, the problem of whether there are faults when the two sensors intersect is solved. The core idea of this method is to detect and identify attack by using pairwise inconsistency between sensors. This study obtains real measurement data from EV3 ground vehicles to verify the performance of the algorithm. The experimental results show that the proposed method is superior to the state-of-the-art algorithm, and has better detection and recognition performance for various attack types. Especially for stealth attacks, the detection rate and recognition rate are increased by more than 90%.

    参考文献
    [1] Miao F, Zhu Q, Pajic M, Pappas GJ. Coding schemes for securing cyber-physical systems against stealthy data injection attacks. IEEE Trans. on Control of Network Systems, 2017,4(1):106-117.
    [2] Kim KD, Kumar PR. Cyber-physical systems:A perspective at the centennial. Proc. of the IEEE, 2012,100:1287-1308.
    [3] Kong LL. Analysis of deception models and detection algorithms on CPS control layer[MS. Thesis]. Shanghai:East China University of Science and Technology, 2015(in Chinese with English abstract).
    [4] Jiang Y, Song H, Wang R, Gu M, Sun J, Sha L. Data-centered runtime verification of wireless medical cyber-physical system. IEEE Trans. on Industrial Informatics, 2017,13(4):1900-1909.
    [5] Jiang Y, Zhang H, Song X, Jiao X, Hung WNN, Gu M, Sun J. Bayesian-network-based reliability analysis of plc systems. IEEE Trans. on Industrial Electronics, 2013,60(11):5325-5336.
    [6] Yang K, Wang R, Jiang Y, Luo C, Guan Y, Li X, Shi Z. Enhanced resilient sensor attack detection using fusion interval and measurement history. In:Proc. of the 2018 Int'l Conf. on Hardware/Software Codesign and System Synthesis (CODES+ISSS). 2018. 1-3.[doi:10.1109/CODESISSS.2018.8525941]
    [7] Cardenas AA, Amin S, Sastry S. Secure control:Towards survivable cyber-physical systems. In:Proc. of the Int'l Conf. on Distributed Computing Systems Workshops. IEEE, 2008. 495-500.
    [8] Checkoway S, Mccoy D, Anderson D, Kantor B, Shacham H, Savage S, Koscher K, Czeskis A, Roesner F, Kohno T. Comprehensive experimental analyses of automotive attack surfaces. In:Proc. of the Usenix Conf. on Security. 2012. 6.
    [9] Koscher K, Czeskis A, Roesner F, et al. Experimental security analysis of a modern automobile. IEEE Journal of Selected Topics in Quantum Electronics, 2010,41(3):447-462.
    [10] Slay J, Miller M. Lessons learned from the maroochy water breach. In:Proc. of the Int'l Conf. on Critical Infrastructure Protection. 2007. 73-82.[doi:10.1007/978-0-387-75462-8_6]
    [11] Farwell JP, Rohozinski R. Stuxnet and the future of cyber war. Survival, 2011,53(1):23-40.
    [12] Xiao L, Boyd S, Lall S. A scheme for robust distributed sensor fusion based on average consensus. In:Proc. of the Int'l Symp. on Information Processing in Sensor Networks. IEEE, 2005. 9.
    [13] Olfati-Saber R, Shamma JS. Consensus filters for sensor networks and distributed sensor fusion. In:Proc. of the IEEE Conf. and the European Control Conf. on Decision and Control, CDC-ECC 2005. 2006. 698-6703.
    [14] Yang K, Wang R, Jiang Y, Song H, Luo C, Guan Y, Li X, Shi Z. Sensor attack detection using history based pairwise inconsistency. Future Generation Computer Systems, 2018,86:392-402.
    [15] Marzullo K. Tolerating failures of continuous-valued sensors. ACM Trans. on Computer Systems, 1990,8(4):284-304.
    [16] Ivanov R, Pajic M, Lee I. Attack-resilient sensor fusion for safety-critical cyber-physical systems. ACM Trans. on Embedded Computing Systems, 2016,15(1):1-24.
    [17] Ivanov R, Pajic M, Lee I. Resilient multidimensional sensor fusion using measurement history. In:Proc. of the Int'l Conf. on High Confidence Networked Systems. 2014. 1-10.
    [18] Kalman RE. A new approach to linear filtering and prediction problems. Journal of Basic Engineering Transactions, 1960, 82(Series D):35-45.
    [19] Kwon C, Hwang I. Security analysis for cyber-physical systems against stealthy deception attacks. In:Proc. of the American Control Conf. IEEE, 2013. 3344-3349.
    [20] Jayasimha DN. Fault tolerance in a multisensory environment. In:Proc. of the 13th Symp. on Reliable Distributed Systems, SRDS'94. 1994. 2-11.
    [21] Park J, Ivanov R, Weimer J, et al. Sensor attack detection in the presence of transient faults. In:Proc. of the 6th ACM/IEEE Int'l Conf. on Cyber-physical Systems. ACM, 2015. 1-10.
    [22] Willsky AS. A survey of design methods for failure detection in dynamic systems. Automatica, 1975,12(6):601-611.
    [23] Shoukry Y, Martin P, Tabuada P, Srivastava M. Non-invasive spoofing attacks for anti-lock braking systems. In:Proc. of the Int'l Conf. on Cryptographic Hardware and Embedded Systems. Springer-Verlag, 2013. 55-72.
    附中文参考文献:
    [3] 孔令霖.CPS控制层欺骗攻击模型与检测算法的研究[硕士学位论文].上海:华东理工大学,2015.
    引证文献
    网友评论
    网友评论
    分享到微博
    发 布
引用本文

杨康,王瑞,关永,李晓娟,施智平,Xiaoyu SONG.具有多传感器的CPS系统的攻击检测.软件学报,2019,30(7):2018-2032

复制
分享
文章指标
  • 点击次数:3386
  • 下载次数: 5772
  • HTML阅读次数: 2860
  • 引用次数: 0
历史
  • 收稿日期:2018-07-13
  • 最后修改日期:2018-09-28
  • 在线发布日期: 2019-04-03
文章二维码
友情链接:中国科学院软件研究所中国计算机学会中国科学院国家自然科学基金委员会CCF数字图书馆Int'l J of Softw Info计算机系统应用
您是第19732594位访问者
版权所有:中国科学院软件研究所 京ICP备05046678号-3
地址:北京市海淀区中关村南四街4号,邮政编码:100190
电话:010-62562563 传真:010-62562533 Email:jos@iscas.ac.cn
技术支持:北京勤云科技发展有限公司

京公网安备 11040202500063号