Intrusion-Damage Assessment and Mitigation in Cyber-Physical Systems for Control Applications

Mahfouzi, Rouhollah; Aminifar, Amir; Eles, Petru; Peng, Zebo; Villani, Mattias

doi:10.1145/2997465.2997478

Cited by 5 publications

(6 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this thesis, we focus on security measures for control systems. We highlight the specific characteristics of such systems and use the knowledge from the physical model of the plant to detect and mitigate attacks against CPSs (Mahfouzi et al, 2016). We emphasize the complex timing behaviors of CPSs that result from using shared resources.…”

Section: Summary Of Contributionsmentioning

confidence: 99%

“…Another sort of mitigation mechanism that is inspired by the fault-tolerant control approaches is to reconfigure the controller and devise a reactive strategy to compensate for the damage from the attack. This can be done, for example, by changing to a reactive control signal (Barreto et al, 2013), transmitting signals with a higher power when a jamming attack is detected (Liu et al, 2014), or by increasing the sampling frequency of the system (Farraj et al, 2014;Mahfouzi et al, 2016). In these cases, attack mitigation is protecting CPSs from faults that are caused intentionally by adversaries.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Security-Aware Design of Cyber-Physical Systems for Control Applications

Mahfouzi

2021

Linköping Studies in Science and Technology. Dissertations

Self Cite

View full text Add to dashboard Cite

Cyberfysiska system interagerar med den fysiska och digitala världen. Cyberfysiska system innehåller ofta ett flertal styrsystem. Dessa system är uppkopplade till Internet och är därför särskilt sårbara mot cyberattacker. Flera attacker är särskilt riktade mot styrsystem. Denna avhandling fokuserar på säkerhetshot mot styrsystem i cyberfysiska system. Vi presenterar unika tillstånd för styrsystem som används till att utveckla system för att upptäcka, förhindra och mildra attacker mot cyberfysiska system. Vi påvisar även säkerhetsutmaningar baserade på icke-intuitiva tids-och fördröjningsberoenden som skapas då ett flertal styrsystem delar resurser. Vidare så tar vi hänsyn till realtidskommunikation för reglerapplikationer som implementeras på ett underliggande datornätverk där vi schemalägger och dirigerar meddelanden på så sätt att säkerheten maximeras. Till sist behandlar vi säkerhetsutmaningar som uppstår då reglerapplikationer i cyberfysiska system allokeras som molntjänster via Internet. Denna avhandling innehåller experiment som påvisar effektiviteten av verifierbar beräkning för att i realtid verifiera molntjänstens beräkningar.

show abstract

Section: Summary Of Contributionsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Security-Aware Design of Cyber-Physical Systems for Control Applications

Mahfouzi

2021

Linköping Studies in Science and Technology. Dissertations

Self Cite

View full text Add to dashboard Cite

show abstract

“…In this paper, we assume that there exists a host-based intrusion detection and resource management (IDRM) task [25] on each processing node, similar to [22]. This task monitors the workload variations and application requirements and decides on the amount of resources which should be allocated to achieve confidentiality for each message.…”

Section: Intrusion Detection and Resource Management Taskmentioning

confidence: 99%

“…This task monitors the workload variations and application requirements and decides on the amount of resources which should be allocated to achieve confidentiality for each message. This variation could be due to a change in the active task set in multi-mode systems [17], [18], a change in resource requirements of applications [19]- [21], or a change in security requirements of applications due to intrusion [22].…”

Section: Intrusion Detection and Resource Management Taskmentioning

confidence: 99%

“…This change, for instance, could be due to a multi-mode mechanism where the active task set (and messages) changes at runtime to achieve better performance [17], [18]. Alternatively, this could be due to a change in resource requirements of applications either because of the state-dependency [19]- [21], or in response to an attack [22]. As a concrete example, in the automotive domain, the activation rates of several tasks (e.g., of the crankshaft, gears, or wheels) are proportional to the angular velocity of a specific component [21].…”

Section: Introduction and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Optimization of Message Encryption for Real-Time Applications in Embedded Systems

Aminifar

Eles

Peng

2018

IEEE Trans. Comput.

Self Cite

View full text Add to dashboard Cite

Abstract-Today, security can no longer be treated as a secondary issue in embedded and cyber-physical systems. Therefore, one of the main challenges in these domains is the design of secure embedded systems under stringent resource constraints and real-time requirements. However, there exists an inherent trade-off between the security protection provided and the amount of resources allocated for this purpose. That is, the more the amount of resources used for security, the higher the security, but the fewer the number of applications which can be run on the platform and meet their timing requirements. This trade-off is of high importance since embedded systems are often highly resource constrained. In this paper, we propose an efficient solution to maximize confidentiality, while also guaranteeing the timing requirements of real-time applications on shared platforms.

show abstract