Ensuring Resilience Against Stealthy Attacks on Cyber-Physical Systems

Paul Griffioen; Bruce H. Krogh; Bruno Sinopoli

doi:10.1109/TAC.2024.3401013

Ensuring Resilience Against Stealthy Attacks on Cyber-Physical Systems

Paul Griffioen, Bruce H. Krogh, Bruno Sinopoli

Research output: Contribution to journal › Article › peer-review

Abstract

This article provides a tool for analyzing mechanisms that aim to achieve resilience against stealthy, or undetectable, attacks on cyber-physical systems. We consider attackers who are able to corrupt all of the inputs and outputs of the system. To counter such attackers, a response scheme must be implemented that keeps the attacker from corrupting the inputs and outputs of the system for certain periods of time. To aid in the design of such a response scheme, our tool provides sufficient lengths for these periods of time in order to ensure safety with a particular probability. We provide an upper bound on how long the system can remain under stealthy attack before the safety constraints are violated. Furthermore, we show how a detector limits the set of biases an attacker can exert on the system while still remaining stealthy, aiding a system operator in the design of the detector. Our contributions are demonstrated with an illustrative example.

Original language	English
Pages (from-to)	8234-8246
Number of pages	13
Journal	IEEE Transactions on Automatic Control
Volume	69
Issue number	12
DOIs	https://doi.org/10.1109/TAC.2024.3401013
State	Published - 2024

Keywords

Cyber-physical systems (CPSs)
fault detection
fault-tolerant systems
robust control

Access to Document

10.1109/TAC.2024.3401013

Cite this

@article{39dca8dfe8f44ea8b0f20683ed15d959,

title = "Ensuring Resilience Against Stealthy Attacks on Cyber-Physical Systems",

abstract = "This article provides a tool for analyzing mechanisms that aim to achieve resilience against stealthy, or undetectable, attacks on cyber-physical systems. We consider attackers who are able to corrupt all of the inputs and outputs of the system. To counter such attackers, a response scheme must be implemented that keeps the attacker from corrupting the inputs and outputs of the system for certain periods of time. To aid in the design of such a response scheme, our tool provides sufficient lengths for these periods of time in order to ensure safety with a particular probability. We provide an upper bound on how long the system can remain under stealthy attack before the safety constraints are violated. Furthermore, we show how a detector limits the set of biases an attacker can exert on the system while still remaining stealthy, aiding a system operator in the design of the detector. Our contributions are demonstrated with an illustrative example.",

keywords = "Cyber-physical systems (CPSs), fault detection, fault-tolerant systems, robust control",

author = "Paul Griffioen and Krogh, {Bruce H.} and Bruno Sinopoli",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.",

year = "2024",

doi = "10.1109/TAC.2024.3401013",

language = "English",

volume = "69",

pages = "8234--8246",

journal = "IEEE Transactions on Automatic Control",

issn = "0018-9286",

number = "12",

}

TY - JOUR

T1 - Ensuring Resilience Against Stealthy Attacks on Cyber-Physical Systems

AU - Griffioen, Paul

AU - Krogh, Bruce H.

AU - Sinopoli, Bruno

PY - 2024

Y1 - 2024

N2 - This article provides a tool for analyzing mechanisms that aim to achieve resilience against stealthy, or undetectable, attacks on cyber-physical systems. We consider attackers who are able to corrupt all of the inputs and outputs of the system. To counter such attackers, a response scheme must be implemented that keeps the attacker from corrupting the inputs and outputs of the system for certain periods of time. To aid in the design of such a response scheme, our tool provides sufficient lengths for these periods of time in order to ensure safety with a particular probability. We provide an upper bound on how long the system can remain under stealthy attack before the safety constraints are violated. Furthermore, we show how a detector limits the set of biases an attacker can exert on the system while still remaining stealthy, aiding a system operator in the design of the detector. Our contributions are demonstrated with an illustrative example.

AB - This article provides a tool for analyzing mechanisms that aim to achieve resilience against stealthy, or undetectable, attacks on cyber-physical systems. We consider attackers who are able to corrupt all of the inputs and outputs of the system. To counter such attackers, a response scheme must be implemented that keeps the attacker from corrupting the inputs and outputs of the system for certain periods of time. To aid in the design of such a response scheme, our tool provides sufficient lengths for these periods of time in order to ensure safety with a particular probability. We provide an upper bound on how long the system can remain under stealthy attack before the safety constraints are violated. Furthermore, we show how a detector limits the set of biases an attacker can exert on the system while still remaining stealthy, aiding a system operator in the design of the detector. Our contributions are demonstrated with an illustrative example.

KW - Cyber-physical systems (CPSs)

KW - fault detection

KW - fault-tolerant systems

KW - robust control

UR - http://www.scopus.com/inward/record.url?scp=85193249204&partnerID=8YFLogxK

U2 - 10.1109/TAC.2024.3401013

DO - 10.1109/TAC.2024.3401013

M3 - Article

AN - SCOPUS:85193249204

SN - 0018-9286

VL - 69

SP - 8234

EP - 8246

JO - IEEE Transactions on Automatic Control

JF - IEEE Transactions on Automatic Control

IS - 12

ER -

Ensuring Resilience Against Stealthy Attacks on Cyber-Physical Systems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this