Attack-Tolerant networked control system based on the deception for the cyber-attacks

Yaseen, Amer Atta; Bayart, Mireille

doi:10.1109/wcicss.2015.7420321

Cited by 7 publications

(6 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The physical and economic impacts of cyberattacks on power systems have been discussed [35]- [38]. Thus, it is necessary to maintain the operation of control systems, even if the systems are under attack [39], [40]. To maintain normal operation during a cyberattack, methods to detect data tampering attacks with predicted values [41], [42] and to mitigate data tampering attacks by switching multiple controllers [43] have been proposed.…”

Section: Introductionmentioning

confidence: 99%

Dynamic Network Path Provisioning and Selection for the Detection and Mitigation of Data Tampering Attacks in Networked Control Systems

et al. 2021

View full text Add to dashboard Cite

Networked control systems can help build cost-effective and flexible industrial systems. A system that can function while being immune to cyberattacks is necessary. A method called fixed redundant path selection (FRPS) has been proposed to detect and mitigate data tampering attacks in a networked motion control system. This system contains redundant forward network paths from the controller to the motor sides to detect the attacked path by comparing the values that are received through respective paths.Then, a path selector on the motor side chooses a value on the path that is not attacked based on the majority decision. Increasing the number of redundant paths improves the detection performance of simultaneous attacks against multiple paths. However, it also increases the amount of traffic because the same data are transmitted to all of the redundant paths. This study proposes a dynamic redundant path selection (DRPS) method to balance the detection performance and the amount of traffic. The proposed method initially applies three redundant paths and changes the number of redundant paths to five only when the path selector detects a difference among the received values for the three paths. The experiments confirm that the proposed DRPS outperforms the conventional FRPS. The former can detect and mitigate the data tampering attacks while reducing the number of network paths during tampering detection when the system is exposed to simultaneous attacks against up to two of the redundant paths.INDEX TERMS Cyberattack, cyber-physical system, motion control, networked control system, tampering detection.

show abstract

Section: Introductionmentioning

confidence: 99%

Dynamic Network Path Provisioning and Selection for the Detection and Mitigation of Data Tampering Attacks in Networked Control Systems

et al. 2021

View full text Add to dashboard Cite

show abstract

“…Compared with the passive form, active attack tolerance can deal with many types of unknown cyber-attacks, and reduces the conservativeness of the control strategy. Yaseen and Bayart (2016, 2017) and Zhang et al (2018) adopt the intelligent generalized predictive controller to detect, identify and distinguish faults and cyber-attacks, and design fault-tolerant and attack-tolerant strategy against faults, hijacking attacks and spoofing attacks respectively. Du et al (2018) use a convex optimization method to balance the sparsity and magnitude of attack vectors, such that attacks can be detected with high probability.…”

Section: Introductionmentioning

confidence: 99%

Research on secure control and communication for cyber-physical systems under cyber-attacks

Shi

2019

Transactions of the Institute of Measurement and Control

View full text Add to dashboard Cite

This paper investigates the co-design problem of secure control and communication quality for cyber-physical systems (CPSs) to solve unavoidable problems, in which both actuator faults and cyber-attacks occur in practical implementations of CPSs. Firstly, based on the discrete event-triggered communication scheme (DETCS), a system framework for active fault-tolerant and passive attack-tolerant control is proposed. Then, a model of a closed-loop CPS is established that integrates a triggering condition, actuator faults and cyber-attacks into a single uniform framework. Secondly, using the partition and definition of different delay functions, the appropriate Lyapunov functions are constructed based on the time-delay system theory, and design methods for a robust observer with passive attack tolerance for estimation of the state and fault, and an active fault-tolerant and passive attack-tolerant controller are developed in terms of linear matrix inequality. In this way, the co-design goal involving active fault tolerant control, passive attack-tolerant control and the communication network is achieved. Finally, a simulation experiment of a quadruple-tank is carried out to demonstrate the effectiveness of the proposed method.

show abstract

“…The attack-tolerant scheme for NCS was introduced in [16]; this scheme considered three types of attacks in NCS, these types are represented by injection, modification, and replication of the sent and received data in the networked control loop.…”

Section: Introductionmentioning

confidence: 99%

“…In this paper, a modification for the scheme in [16] will be adopted to handle the Stuxnet case. We specially focus on the controller hijacking attack with the injection of a destructive control signal into the networked control loop.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Attack-tolerant networked control system in presence of the controller hijacking attack

Yaseen¹,

Bayart²

2016

2016 International Conference on Military Communications and Information Systems (ICMCIS)

Self Cite

View full text Add to dashboard Cite

International audienceIn this paper, an enhancement for the attacktolerant scheme in the Networked Control System (NCS) is introduced. The objective is to be able to react to an attack such as the Stuxnet case where the controller is reprogrammed and hijacked. The advantage of this proposed approach is that there is no need for a priori mathematical model of the controller. In order to implement the proposed scheme, a specific detector for the controller hijacking attack is designed. The performance of this scheme is evaluated be connected the detector to NCS with basic security elements such as Data Encryption Standard (DES), Message Digest (MD5), and timestamp. The test results of the proposed method show that the hijacked controller can be significantly detected and recovered

show abstract

Attack-Tolerant networked control system based on the deception for the cyber-attacks

Cited by 7 publications

References 14 publications

Dynamic Network Path Provisioning and Selection for the Detection and Mitigation of Data Tampering Attacks in Networked Control Systems

Dynamic Network Path Provisioning and Selection for the Detection and Mitigation of Data Tampering Attacks in Networked Control Systems

Research on secure control and communication for cyber-physical systems under cyber-attacks

Attack-tolerant networked control system in presence of the controller hijacking attack

Contact Info

Product

Resources

About