微信服务号

微信订阅号

2025-4-21- 12
Home > Archive>Volume 30, Issue 7, 2019 >2018-2032. DOI:10.13328/j.cnki.jos.005756
PDF HTML XML Export Cite reminder
Attack Detection of CPS System with Multi-sensors
Author:
Affiliation:

Clc Number:

TP309

Fund Project:

National Natural Science Foundation of China (61877040, 61702348, 61602325); National Key R&D Plan (2017YFB1301100)

  • Article
    • | |
  • Metrics
    • |
  • Reference [25]
    • |
  • Related [20]
    • | | |
  • Comments
    Abstract:

    Cyber-physical systems (CPS) are next-generation intelligent systems based on environment-aware computing, communication, and physical elements. They are widely used in security-critical systems and industrial control. The interaction of information technology and the physical world makes CPS vulnerable to various malicious attacks, thereby undermining its security. This work mainly studies the attack detection problem of sensors in CPS systems with transient faults. This study considers a system with multiple sensors measuring the same physical variables, and some sensors may be malicious attacked and provide erroneous measurements. In addition, this study uses an abstract sensor model where each sensor provides the controller with an interval of possible values for the true value. Existing methods for detecting sensor malicious attacks are conservative. When a professional attacker manipulates the sensor's output slightly or infrequently over a period of time, existing methods are difficult to capture attacks, such as stealth attacks. In order to solve this problem, this study designs a sensor attack detection algorithm based on fusion intervals and historical measurements. First, the algorithm constructs different fault models for different sensors, integrates historical measurements into the attack detection method using system dynamics equations, and analyzes sensor measurements from different aspects. In addition, combined with historical measurement and fusion interval, the problem of whether there are faults when the two sensors intersect is solved. The core idea of this method is to detect and identify attack by using pairwise inconsistency between sensors. This study obtains real measurement data from EV3 ground vehicles to verify the performance of the algorithm. The experimental results show that the proposed method is superior to the state-of-the-art algorithm, and has better detection and recognition performance for various attack types. Especially for stealth attacks, the detection rate and recognition rate are increased by more than 90%.

    Reference
    [1] Miao F, Zhu Q, Pajic M, Pappas GJ. Coding schemes for securing cyber-physical systems against stealthy data injection attacks. IEEE Trans. on Control of Network Systems, 2017,4(1):106-117.
    [2] Kim KD, Kumar PR. Cyber-physical systems:A perspective at the centennial. Proc. of the IEEE, 2012,100:1287-1308.
    [3] Kong LL. Analysis of deception models and detection algorithms on CPS control layer[MS. Thesis]. Shanghai:East China University of Science and Technology, 2015(in Chinese with English abstract).
    [4] Jiang Y, Song H, Wang R, Gu M, Sun J, Sha L. Data-centered runtime verification of wireless medical cyber-physical system. IEEE Trans. on Industrial Informatics, 2017,13(4):1900-1909.
    [5] Jiang Y, Zhang H, Song X, Jiao X, Hung WNN, Gu M, Sun J. Bayesian-network-based reliability analysis of plc systems. IEEE Trans. on Industrial Electronics, 2013,60(11):5325-5336.
    [6] Yang K, Wang R, Jiang Y, Luo C, Guan Y, Li X, Shi Z. Enhanced resilient sensor attack detection using fusion interval and measurement history. In:Proc. of the 2018 Int'l Conf. on Hardware/Software Codesign and System Synthesis (CODES+ISSS). 2018. 1-3.[doi:10.1109/CODESISSS.2018.8525941]
    [7] Cardenas AA, Amin S, Sastry S. Secure control:Towards survivable cyber-physical systems. In:Proc. of the Int'l Conf. on Distributed Computing Systems Workshops. IEEE, 2008. 495-500.
    [8] Checkoway S, Mccoy D, Anderson D, Kantor B, Shacham H, Savage S, Koscher K, Czeskis A, Roesner F, Kohno T. Comprehensive experimental analyses of automotive attack surfaces. In:Proc. of the Usenix Conf. on Security. 2012. 6.
    [9] Koscher K, Czeskis A, Roesner F, et al. Experimental security analysis of a modern automobile. IEEE Journal of Selected Topics in Quantum Electronics, 2010,41(3):447-462.
    [10] Slay J, Miller M. Lessons learned from the maroochy water breach. In:Proc. of the Int'l Conf. on Critical Infrastructure Protection. 2007. 73-82.[doi:10.1007/978-0-387-75462-8_6]
    [11] Farwell JP, Rohozinski R. Stuxnet and the future of cyber war. Survival, 2011,53(1):23-40.
    [12] Xiao L, Boyd S, Lall S. A scheme for robust distributed sensor fusion based on average consensus. In:Proc. of the Int'l Symp. on Information Processing in Sensor Networks. IEEE, 2005. 9.
    [13] Olfati-Saber R, Shamma JS. Consensus filters for sensor networks and distributed sensor fusion. In:Proc. of the IEEE Conf. and the European Control Conf. on Decision and Control, CDC-ECC 2005. 2006. 698-6703.
    [14] Yang K, Wang R, Jiang Y, Song H, Luo C, Guan Y, Li X, Shi Z. Sensor attack detection using history based pairwise inconsistency. Future Generation Computer Systems, 2018,86:392-402.
    [15] Marzullo K. Tolerating failures of continuous-valued sensors. ACM Trans. on Computer Systems, 1990,8(4):284-304.
    [16] Ivanov R, Pajic M, Lee I. Attack-resilient sensor fusion for safety-critical cyber-physical systems. ACM Trans. on Embedded Computing Systems, 2016,15(1):1-24.
    [17] Ivanov R, Pajic M, Lee I. Resilient multidimensional sensor fusion using measurement history. In:Proc. of the Int'l Conf. on High Confidence Networked Systems. 2014. 1-10.
    [18] Kalman RE. A new approach to linear filtering and prediction problems. Journal of Basic Engineering Transactions, 1960, 82(Series D):35-45.
    [19] Kwon C, Hwang I. Security analysis for cyber-physical systems against stealthy deception attacks. In:Proc. of the American Control Conf. IEEE, 2013. 3344-3349.
    [20] Jayasimha DN. Fault tolerance in a multisensory environment. In:Proc. of the 13th Symp. on Reliable Distributed Systems, SRDS'94. 1994. 2-11.
    [21] Park J, Ivanov R, Weimer J, et al. Sensor attack detection in the presence of transient faults. In:Proc. of the 6th ACM/IEEE Int'l Conf. on Cyber-physical Systems. ACM, 2015. 1-10.
    [22] Willsky AS. A survey of design methods for failure detection in dynamic systems. Automatica, 1975,12(6):601-611.
    [23] Shoukry Y, Martin P, Tabuada P, Srivastava M. Non-invasive spoofing attacks for anti-lock braking systems. In:Proc. of the Int'l Conf. on Cryptographic Hardware and Embedded Systems. Springer-Verlag, 2013. 55-72.
    附中文参考文献:
    [3] 孔令霖.CPS控制层欺骗攻击模型与检测算法的研究[硕士学位论文].上海:华东理工大学,2015.
    Cited by
    Comments
    Comments
    分享到微博
    Submit
Get Citation

杨康,王瑞,关永,李晓娟,施智平,Xiaoyu SONG.具有多传感器的CPS系统的攻击检测.软件学报,2019,30(7):2018-2032

Copy
Share
Article Metrics
  • Abstract:3403
  • PDF: 5820
  • HTML: 2915
  • Cited by: 0
History
  • Received:July 13,2018
  • Revised:September 28,2018
  • Online: April 03,2019
Links:Institute of Software, CASChina Computer FederationCASNSFC
You are the first2036634Visitors
Copyright: Institute of Software, Chinese Academy of Sciences Beijing ICP No. 05046678-4
Address:4# South Fourth Street, Zhong Guan Cun, Beijing 100190,Postal Code:100190
Phone:010-62562563 Fax:010-62562533 Email:jos@iscas.ac.cn
Technical Support:Beijing Qinyun Technology Development Co., Ltd.

Beijing Public Network Security No. 11040202500063