Attacks against process control systems

Cárdenas, Álvaro A.; Amin, Saurabh; Lin, Zong-Syun; Huang, Yu‐Lun; Huang, Chi Yen; Sastry, S. Shankar

doi:10.1145/1966913.1966959

Cited by 482 publications

(54 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As intelligent cyber‐attacks are adaptive to the process and control system behavior, we may assume that they are as powerful as having access to the measurement feedback signals (sensor attack), the control command signals (actuator attack), or auxiliary information such as the threshold and bias parameters in detection methods such as CUSUM . Being process and controller behavior aware, the attacks will therefore have information on the stability region of the process under two‐tier control, as well as existing alarm triggers on the ideal operating window imposed on the input and output variables.…”

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

“…Intelligent cyber‐attacks are designed such that the controller is able to compute feasible control actions (i.e., the falsified state is not outside the closed‐loop stability region Ω ρ ), but have large enough magnitude of variations such that the control system will not be able to drive the process to its operating steady state. The four most important types of such attacks are considered below.…”

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

“…There are many advantages to using a databased approach to develop the cyber‐attack detector . First, with attacks having possible access to information on process behavior (stability region and variable operating window), physical‐model‐based detection methods where the statistics threshold and false alarm bias are selected based on process operation are rendered ineffective . Second, during real‐life operation, plant model structure and parameters may be subject to modifications due to a changing operating environment.…”

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

See 2 more Smart Citations

A cyber‐secure control‐detector architecture for nonlinear processes

Chen

Christofides

2020

AIChE Journal

View full text Add to dashboard Cite

This work presents a detector‐integrated two‐tier control architecture capable of identifying the presence of various types of cyber‐attacks, and ensuring closed‐loop system stability upon detection of the cyber‐attacks. Working with a general class of nonlinear systems, an upper‐tier Lyapunov‐based Model Predictive Controller (LMPC), using networked sensor measurements to improve closed‐loop performance, is coupled with lower‐tier cyber‐secure explicit feedback controllers to drive a nonlinear multivariable process to its steady state. Although the networked sensor measurements may be vulnerable to cyber‐attacks, the two‐tier control architecture ensures that the process will stay immune to destabilizing malicious cyber‐attacks. Data‐based attack detectors are developed using sensor measurements via machine‐learning methods, namely artificial neural networks (ANN), under nominal and noisy operating conditions, and applied online to a simulated reactor‐reactor‐separator process. Simulation results demonstrate the effectiveness of these detection algorithms in detecting and distinguishing between multiple classes of intelligent cyber‐attacks. Upon successful detection of cyber‐attacks, the two‐tier control architecture allows convenient reconfiguration of the control system to stabilize the process to its operating steady state.

show abstract

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

Section: Cyber‐attack Design and Detectionmentioning

confidence: 99%

See 1 more Smart Citation

A cyber‐secure control‐detector architecture for nonlinear processes

Chen

Christofides

2020

AIChE Journal

View full text Add to dashboard Cite

show abstract

“…Traditional IT security mechanisms such as authentication and message integrity are insufficient for CPS security. However, as stated in [13], the major distinction of control systems with respect to other IT systems is the interaction with the physical world. In [25], the authors state that CPSs security is specifically concerned with attacks that cause physical impact; since IT security mechanisms do not usually account for the physical part of the system, they are thus ineffective against attacks that either target or exploit the physical components of CPSs.…”

Section: Quantitative Integrity Analysis On Cpsmentioning

confidence: 99%

“…Integrity attacks include stealthy attacks [19], message replay [36], covert attacks [50], and false-data injection [37], among others. Due to their focus on fault-detection techniques, many results based on control theory aim to protect CPSs from integrity attacks by relying on monitoring the physics of the system to detect anomalies (see, e.g., [5,13,35,38,44,52]).…”

Section: Introductionmentioning

confidence: 99%

Design-time Quantification of Integrity in Cyber-physical Systems

Morris

Murguia

Ochoa

2017

Proceedings of the 2017 Workshop on Programming Languages and Analysis for Security

View full text Add to dashboard Cite

In a software system it is possible to quantify the amount of information that is leaked or corrupted by analysing the flows of information present in the source code. In a cyber-physical system, information flows are not only present at the digital level, but also at a physical level, and to and fro the two levels. In this work, we provide a methodology to formally analyse a Cyber-Physical System composite model (combining physics and control) using an information flow-theoretic approach. We use this approach to quantify the level of vulnerability of a system with respect to attackers with different capabilities. We illustrate our approach by means of a water distribution case study.

show abstract