Analysis and Design of Stealthy Cyber Attacks on Unmanned Aerial Systems

Kwon, Cheolhyeon; Liu, Weiyi; Hwang, Inseok

doi:10.2514/1.i010201

Cited by 62 publications

(53 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As shown in [22], [11], for LTI systems without any additional data integrity guarantees, the setR α = ∞ k=0R α k can be bounded or unbounded depending on the system dynamics and the set of compromised sensors K. From Theorem 2, this property is preserved for the set R as well. For this reason, we will be using the definition ofR α to analyze boundedness of R, and to simplify the notation due to linearity of the constraint we will assume that α = 1 -i.e., for this analysis we consider the stealthiness attack constraint as…”

Section: A Perfectly Attackable Systemsmentioning

confidence: 87%

“…Here, T is the length of the detector's time window, and c i for i = 1, ..., T are predefined non-negative coefficients, with c T being strictly positive. The above formulation captures both fixed window size detectors, where T is a constant, as well as detectors where the time window size T satisfies T = k. Also, the definition of the detection function g k covers a wide variety of commonly used intrusion detectors, such as χ 2 and sequential probability ratio test (SPRT) detectors previously considered in these scenarios [20], [18], [23], [19], [11], [12]. The alarm is triggered when the value of the detection function g k satisfies that g k > threshold, (7) and the probability of the alarm at time k can be captured as…”

Section: A System Model Without Attacksmentioning

confidence: 99%

“…From Definition 4, there exists t i ∈ µ such that j ∈ t i ,t i + L , wheret i = t i +f (Figure 3). Now, from (10) and (11) we have that…”

Section: Stealthy Attacks In Systems With Intermittent Integrity mentioning

confidence: 99%

“…Still, irrelevant of the utilized attack detection mechanism, after compromising a suitable subset of sensors, an intelligent attacker can significantly degrade control performance while remaining undetected (i.e., stealthy). For instance, for resilient state estimation techniques as in [4], [25], measurements from at least half of the sensors should not be tampered with [4], [31], while [22], [11] capture attack requirements for Kalman filter-based estimators. The reason for such conservative results lies in the common initial assumption that once a sensor or its communication to the estimator is compromised, all values received from the sensors can be potentially corrupted -i.e., integrity of the data received from these sensors cannot be guaranteed.…”

Section: Introductionmentioning

confidence: 99%

“…Specifically, we study the performance of linear filters equipped with residualbased intrusion detectors in the presence of attacks on sensor measurements. We build on the system model from [22], [11], [23] by capturing that the use of authentication mechanisms in intermittent time-points ensures that sensor measurements received at these points are valid. To keep our discussion and results general, we consider a wide class of detection functions that encompasses commonly used detectors, including χ 2 and SPRT detectors.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Jovanov

Pajić

2019

IEEE Trans. Automat. Contr.

View full text Add to dashboard Cite

The increase in network connectivity has also resulted in several high-profile attacks on cyber-physical systems. An attacker that manages to access a local network could remotely affect control performance by tampering with sensor measurements delivered to the controller. Recent results have shown that with network-based attacks, such as Man-in-the-Middle attacks, the attacker can introduce an unbounded state estimation error if measurements from a suitable subset of sensors contain false data when delivered to the controller. While these attacks can be addressed with the standard cryptographic tools that ensure data integrity, their continuous use would introduce significant communication and computation overhead. Consequently, we study effects of intermittent data integrity guarantees on system performance under stealthy attacks. We consider linear estimators equipped with a general type of residual-based intrusion detectors (including χ 2 and SPRT detectors), and show that even when integrity of sensor measurements is enforced only intermittently, the attack impact is significantly limited; specifically, the state estimation error is bounded or the attacker cannot remain stealthy. Furthermore, we present methods to:(1) evaluate the effects of any given integrity enforcement policy in terms of reachable state-estimation errors for any type of stealthy attacks, and (2) design an enforcement policy that provides the desired estimation error guarantees under attack. Finally, on three automotive case studies we show that even with less than 10% of authenticated messages we can ensure satisfiable control performance in the presence of attacks.

show abstract

Section: A Perfectly Attackable Systemsmentioning

confidence: 87%

Section: A System Model Without Attacksmentioning

confidence: 99%

“…From Definition 4, there exists t i ∈ µ such that j ∈ t i ,t i + L , wheret i = t i +f (Figure 3). Now, from (10) and (11) we have that…”

Section: Stealthy Attacks In Systems With Intermittent Integrity mentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Jovanov

Pajić

2019

IEEE Trans. Automat. Contr.

View full text Add to dashboard Cite

show abstract

Analysis of Vulnerabilities in Cybersecurity in Unmanned Air Vehicles

Mehdi

Zukhraf

Maryam

2022

Studies in Computational Intelligence

View full text Add to dashboard Cite

A systems and control perspective of CPS security

Dibaji

Pirani

Flamholz

et al. 2019

Annual Reviews in Control

348

191

View full text Add to dashboard Cite

The comprehensive integration of instrumentation, communication, and control into physical systems has led to the study of Cyber-Physical Systems (CPS), a field that has recently garnered increased attention. A key concern that is ubiquitous in CPS is a need to ensure security in the face of cyber attacks. In this paper, we carry out a survey of systems and control methods that have been proposed for the security of CPS. We classify these methods into three categories based on the type of defense proposed against the cyberattacks: prevention, resilience, and detection & isolation. A unified threat assessment metric is proposed in order to evaluate how CPS security is achieved in each of these three cases. Also surveyed are risk assessment tools and the effect of network topology on CPS security. An emphasis has been placed on power and transportation applications in the overall survey. Index Terms-cyber-physical systems, resilient control I. INTRODUCTION Motivated by concerns about sustainability, efficiency, and resiliency, several sectors including energy, transportation, water, and healthcare systems have witnessed significant advances in instrumentation, monitoring, and automation over the past decade. The resulting integration of information, communication, and computation with physically engineered systems demands a detailed investigation into the analysis and synthesis of Cyber-Physical Systems (CPS) so as to realize the desired performance metrics of efficiency, sustainability, and safety. The extensive and intricate presence of cyber components also introduces a vulnerability of unwanted access to these systems. The available communication technologies, referred to as SCADA (Supervisory Control and Data Acquisition), are witnessing significant advances, triggering a shift from protected, closed, and wired networks to open and wireless networks which, as a side effect, are more vulnerable to outside interference.

show abstract

Analysis and Design of Stealthy Cyber Attacks on Unmanned Aerial Systems

Cited by 62 publications

References 27 publications

Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Analysis of Vulnerabilities in Cybersecurity in Unmanned Air Vehicles

A systems and control perspective of CPS security

Contact Info

Product

Resources

About