A Moving Target Defense for Securing Cyber-Physical Systems

Griffioen, Paul; Weerakkody, Sean; Sinopoli, Bruno

doi:10.1109/tac.2020.3005686

Cited by 59 publications

(37 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Assuming the parameters of these elements are changed fast enough, the dynamics of the plant becomes a moving target for the adversary [13], [14]. In other words, the adversary does not have enough time to learn properly, makes errors and perpetrates attacks that are not covert [8], [9]. Next, we discuss in more details the concepts of challenge-response and auxiliary state.…”

Section: Related Workmentioning

confidence: 99%

Resilience Estimation of Cyber-Physical Systems via Quantitative Metrics

Barbeau

Cuppens

et al. 2021

IEEE Access

View full text Add to dashboard Cite

This paper is about the estimation of the cyber-resilience of Cyber-Physical Systems (CPS). We define two new resilience estimation metrics: k-steerability and-monitorability. They aim at assisting designers to evaluate and increase the cyber-resilience of CPS when facing stealthy attacks. The k-steerability metric reflects the ability of a controller to act on individual plant state variables when, at least, k different groups of functionally diverse input signals may be processed. The-monitorability metric indicates the ability of a controller to monitor individual plant state variables with different groups of functionally diverse outputs. Paired together, the metrics lead to CPS reaching (k,)-resilience. When k and are both greater than one, a CPS can absorb and adapt to control-theoretic attacks manipulating input and output signals. We also relate the parameters k and to the recoverability of a system. We define recoverability strategies to mitigate the impact of perpetrated attacks. We show that the values of k and can be augmented by combining redundancy and diversity in hardware and software, in order to apply the moving target paradigm. We validate the approach via simulation and numeric results.

show abstract

Section: Related Workmentioning

confidence: 99%

Resilience Estimation of Cyber-Physical Systems via Quantitative Metrics

Barbeau

Cuppens

et al. 2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Constraint (15) ensures that any node without an active selfloop will be connected to a node with an active selfloop (either directly or via an intermediary node). Constraint (16) ensures that every node has either an active self-loop or has a path to exactly one node with an active self-loop. Finally, a solver solveSM T M odel(.)…”

Section: Control Layer Design Framework: Cybersecuritymentioning

confidence: 99%

“…Such a moving target defense concept recently has attracted interest in the control systems community. We refer to [16] and [17] for single dynamical systems. In particular, focusing on a control design problem, [17] relies on the redundancy in the physical components of the underlying system and its moving target defense idea is based on an average dwell time condition, which would be conservative (see the previous paragraph).…”

Section: Introductionmentioning

confidence: 99%

Arbitrarily Fast Switched Distributed Stabilization of Partially Unknown Interconnected Multiagent Systems: A Proactive Cyber Defense Perspective

Rezaei¹,

Jafarian²,

Sicker³

2021

Preprint

View full text Add to dashboard Cite

A design framework recently has been developed to stabilize interconnected multiagent systems in a distributed manner, and systematically capture the architectural aspect of cyber-physical systems. Such a control theoretic framework, however, results in a stabilization protocol which is passive with respect to the cyber attacks and conservative regarding the guaranteed level of resiliency. We treat the control layer topology and stabilization gains as the degrees of freedom, and develop a mixed control and cybersecurity design framework to address the above concerns. From a control perspective, despite the agent layer modeling uncertainties and perturbations, we propose a new step-by-step procedure to design a set of control sublayers for an arbitrarily fast switching of the control layer topology. From a proactive cyber defense perspective, we propose a satisfiability modulo theory formulation to obtain a set of control sublayer structures with security considerations, and offer a frequent and fast mutation of these sublayers such that the control layer topology will remain unpredictable for the adversaries. We prove the robust input-to-state stability of the two-layer interconnected multiagent system, and validate the proposed ideas in simulation.

show abstract

“…This approach uses switched control systems that allow to detect sensor compromise and to minimize the impact of falsedata injection attacks. Griffioen et al [33] proposes a MTD approach for recognizing and isolating CPS integrity attacks on a set of sensors and actuators by introducing stochastic time-varying parameters in the control system. The underlying random dynamics of the system limits the attacker's knowledge of the model.…”

Section: Iii1 Network Mtd Approaches -mentioning

confidence: 99%

Switched-Based Resilient Control of Cyber-Physical Systems

Segovia-Ferreira¹,

Rubio‐Hernan²,

Cavalli³

et al. 2020

IEEE Access

View full text Add to dashboard Cite

We present a control-theoretic approach to achieve Cyber-Physical Systems (CPS) resilient designs. We assume situations in which the CPS must maintain the correct operation of a set of crucial functionalities despite ongoing adversarial misbehavior. The approach is based on a moving target defense paradigm, driven by a linear switching of state-space matrices, and applied at both the physical and network layers of a networked-control system. We show that the final system maintains stability. We also evaluate, via simulation, a step-by-step procedure that takes a transfer function, representing the dynamics of the physical process. As a result, we obtain a resilient CPS design structured around a topology of decentralized controllers. Results show that the obtained approach is both innovative and promising.

show abstract

A Moving Target Defense for Securing Cyber-Physical Systems

Cited by 59 publications

References 27 publications

Resilience Estimation of Cyber-Physical Systems via Quantitative Metrics

Resilience Estimation of Cyber-Physical Systems via Quantitative Metrics

Arbitrarily Fast Switched Distributed Stabilization of Partially Unknown Interconnected Multiagent Systems: A Proactive Cyber Defense Perspective

Switched-Based Resilient Control of Cyber-Physical Systems

Contact Info

Product

Resources

About