On the use of watermark-based schemes to detect cyber-physical attacks

Rubio‐Hernan, Jose; Cicco, Luca De; García-Alfaro, Joaquín

doi:10.1186/s13635-017-0060-9

Cited by 32 publications

(27 citation statements)

References 36 publications

(92 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Notice that such anomalies can either be unintentional failures, or stealthy attacks disguised by intentional modifications produced by a malicious entity that intends to disrupt the physical system. Assuming a system with appropriate measure to detect both failures and attacks, the PN controller can react to those anomalies, by enforcing some mitigation policies. At the data domain, we have network probes and effectors , conducting data monitoring—if instructed by the control domain.…”

Section: Our Proposalmentioning

confidence: 99%

Cyber‐physical architecture assisted by programmable networking

Rubio‐Hernan

Sahay

Cicco

et al. 2018

Internet Technology Letters

Self Cite

View full text Add to dashboard Cite

Cyber‐physical technologies are prone to attacks in addition to faults and failures. The issue of protecting cyber‐physical systems should be tackled by jointly addressing security at both cyber and physical domains in order to promptly detect and mitigate cyber‐physical threats. Toward this end, this letter proposes a new architecture combining control‐theoretic solutions together with programmable networking techniques to jointly handle crucial threats to cyber‐physical systems. The architecture paves the way for new interesting techniques research directions and challenges which we discuss in our work

show abstract

Section: Our Proposalmentioning

confidence: 99%

Cyber‐physical architecture assisted by programmable networking

Rubio‐Hernan

Sahay

Cicco

et al. 2018

Internet Technology Letters

Self Cite

View full text Add to dashboard Cite

show abstract

“…In the case of Watermark 1, L m|b = L (m) , η v k follows a Markovian process (10) with parameters α and β and ∆u v k ∼ N (0, Q) is an IID Gaussian process. In the case of Watermark 2, L m|b = L (b) , η v k is an IID Bernoulli process with drop probability p d and ∆u v k is a stationary Gaussian process which satisfies (14). Additionally, v v k ∼ N (0, R) and w v k ∼ N (0, Q) are IID processes.…”

Section: B Attack Strategymentioning

confidence: 99%

“…We now investigate a watermark consisting of stationary Gaussian noise generated by a HMM (14) and an IID Bernoulli drop process at the control input with drop probability equal to p d . Again, we design a watermark to address a performance and security trade-off.…”

Section: The Second Watermark Designmentioning

confidence: 99%

See 1 more Smart Citation

A Bernoulli-Gaussian physical watermark for detecting integrity attacks in control systems

Weerakkody

Özel

Sinopoli

2017

2017 55th Annual Allerton Conference on Communication, Control, and Computing (Allerton)

View full text Add to dashboard Cite

We examine the merit of Bernoulli packet drops in actively detecting integrity attacks on control systems. The aim is to detect an adversary who delivers fake sensor measurements to a system operator in order to conceal their effect on the plant. Physical watermarks, or noisy additive Gaussian inputs, have been previously used to detect several classes of integrity attacks in control systems. In this paper, we consider the analysis and design of Gaussian physical watermarks in the presence of packet drops at the control input. On one hand, this enables analysis in a more general network setting. On the other hand, we observe that in certain cases, Bernoulli packet drops can improve detection performance relative to a purely Gaussian watermark. This motivates the joint design of a Bernoulli-Gaussian watermark which incorporates both an additive Gaussian input and a Bernoulli drop process. We characterize the effect of such a watermark on system performance as well as attack detectability in two separate design scenarios. Here, we consider a correlation detector for attack recognition. We then propose efficiently solvable optimization problems to intelligently select parameters of the Gaussian input and the Bernoulli drop process while addressing security and performance trade-offs. Finally, we provide numerical results which illustrate that a watermark with packet drops can indeed outperform a Gaussian watermark.

show abstract

“…If data modification is not timely detected, it may result in severe disruption of the system or even in its complete damage. Badly secured IIoT structures and services may be used as entry points for network attacks and expose both data and systems to threats [3][4][5].…”

Section: Introductionmentioning

confidence: 99%

Detecting Integrity Attacks in IoT-based Cyber Physical Systems: a Case Study on Hydra Testbed

Battisti

Bernieri

Carli

et al. 2018

2018 Global Internet of Things Summit (GIoTS)

View full text Add to dashboard Cite

The Internet of Things paradigm improves the classical information sharing scheme. However, it has increased the need for granting the security of the connected systems. In the industrial field, the problem becomes more complex due to the need of protecting a large attack surface while granting the availability of the system and the real time response to the presence of threats. In this contribution, we deal with the injection of tampered data into the communication channel to affect the physical system. The proposed approach relies on designing a secure control system by coding the output matrices according to a secret pattern. This pattern is created by using the Fibonacci p-sequences, numeric sequence depending on a key. The proposed method is validated on the Hydra testbed, emulating the industrial control network of a water distribution system.

show abstract

On the use of watermark-based schemes to detect cyber-physical attacks

Cited by 32 publications

References 36 publications

Cyber‐physical architecture assisted by programmable networking

Cyber‐physical architecture assisted by programmable networking

A Bernoulli-Gaussian physical watermark for detecting integrity attacks in control systems

Detecting Integrity Attacks in IoT-based Cyber Physical Systems: a Case Study on Hydra Testbed

Contact Info

Product

Resources

About