A Formal Approach to Physics-based Attacks in Cyber-physical Systems

Lanotte, Ruggero; Merro, Massimo; Munteanu, Andrei; Viganò, Luca

doi:10.1145/3373270

Cited by 38 publications

(7 citation statements)

References 62 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Formal analysis of sensor attacks Lanotte et al [16], [17] propose formal approaches to model and analyze sensor attacks with a process calculus. The threat model allows attacks that manipulate sensor readings or control commands to compromise state.…”

Section: Related Workmentioning

confidence: 99%

“…However, relatively little work considers formal verification of such systems in the presence of sensor attacks. Some recent work emphasize timing aspects of sensor-related attacks [16], [17]; however, the work model the system's dynamics as a deterministic discrete time dynamical system, whereas most cyber-physical systems are best modeled with a nondeterministic combination of discrete and continuous dynamics.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Relational Analysis of Sensor Attacks on Cyber-Physical Systems

Xiang¹,

Fulton²,

Chong³

2021

Preprint

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Relational Analysis of Sensor Attacks on Cyber-Physical Systems

Xiang¹,

Fulton²,

Chong³

2021

Preprint

View full text Add to dashboard Cite

“…In this respect, the two main options were Uppaal-SMC [8] and modes. In [24], we tested Uppaal-SMC for the security analysis of the simple engine verified in [23] using prohver. From these two experiences, we realized that HMODEST provides us with a better and clearer representation of complex cyber-physical systems and cyber-physical attacks.…”

Section: Conclusion Related and Future Workmentioning

confidence: 99%

Impact Analysis of Cyber-Physical Attacks on a Water Tank System via Statistical Model Checking

Munteanu

Pasqua

Merro

2020

Proceedings of the 8th International Conference on Formal Methods in Software Engineering

Self Cite

View full text Add to dashboard Cite

Cyber-Physical Systems (CPSs) are integrations of distributed computing systems with physical processes that monitor and control entities in a physical environment. Although the range of their applications include several critical domains, the current trend is to verify CPSs with simulation-test systems rather than formal methodologies. In this paper, we test the effectiveness of statistical model checking, within the MODEST TOOLSET, when analyzing the security of a non-trivial quadruple-tank water system equipped with an ad-hoc intrusion detection system (IDS) capable of mitigating attacks. Our goal is to evaluate the impact of three carefully chosen cyber-physical attacks, i.e., attacks targeting sensors and/or actuators of the system with potential consequences on the safety of the inner physical process. Our security analysis estimates both the physical impact of the attacks and the performance of the proposed IDS. CCS CONCEPTS • Computer systems organization → Sensors and actuators; • Software and its engineering → Model checking.

show abstract

“…Fist of all, we introduce a formal language to specify controller programs. For this very purpose, we resort to process calculi, a successful and widespread formal approach in concurrency theory for representing complex systems, such as mobile systems [11] and cyberphysical systems [30], and used in many areas, including verification of security protocols [1,2] and security analysis of cyber-physical attacks [29]. Thus, we define a simple timed process calculus, based on Hennessy and Regan's Timed Process Language (TPL) [21], for specifying controllers, finite-state edit automata, and networks of communicating monitored controllers.…”

Section: Introductionmentioning

confidence: 99%

Runtime Enforcement of Programmable Logic Controllers

Lanotte¹,

Merro²,

Munteanu³

2021

Preprint

Self Cite

View full text Add to dashboard Cite

With the advent of Industry 4.0, industrial facilities and critical infrastructures are transforming into an ecosystem of heterogeneous physical and cyber components, such as programmable logic controllers, increasingly interconnected and therefore exposed to cyber-physical attacks, i.e., security breaches in cyberspace that may adversely affect the physical processes underlying industrial control systems.In this paper, we propose a formal approach based on runtime enforcement to ensure specification compliance in networks of controllers, possibly compromised by colluding malware that may tamper with actuator commands, sensor readings, and inter-controller communications. Our approach relies on an ad-hoc sub-class of Ligatti et al.'s edit automata to enforce controllers represented in Hennessy and Regan's Timed Process Language. We define a synthesis algorithm that, given an alphabet P of observable actions and a timed correctness property 𝑒, returns a monitor that enforces the property 𝑒 during the execution of any (potentially corrupted) controller with alphabet P, and complying with the property 𝑒. Our monitors correct and suppress incorrect actions coming from corrupted controllers and emit actions in full autonomy when the controller under scrutiny is not able to do so in a correct manner. Besides classical requirements, such as transparency and soundness, the proposed enforcement enjoys deadlock-and diverge-freedom of monitored controllers, together with scalability when dealing with networks of controllers. Finally, we test the proposed enforcement mechanism on a non-trivial case study, taken from the context of industrial water treatment systems, in which the controllers are injected with different malware with different malicious goals.CCS Concepts: • Security and privacy → Formal security models; Cyber-physical systems security.

show abstract

A Formal Approach to Physics-based Attacks in Cyber-physical Systems

Cited by 38 publications

References 62 publications

Relational Analysis of Sensor Attacks on Cyber-Physical Systems

Relational Analysis of Sensor Attacks on Cyber-Physical Systems

Impact Analysis of Cyber-Physical Attacks on a Water Tank System via Statistical Model Checking

Runtime Enforcement of Programmable Logic Controllers

Contact Info

Product

Resources

About