Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Jovanov, Ilija; Pajić, Miroslav

doi:10.1109/tac.2019.2898510

Cited by 55 publications

(57 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [30], the authors distinguish between the notions of information and infrastructure dependability, and clearly illustrate the need to formally model and reason about the dependability aspects of CPS applications. Jovanov and Pajic [31] focus on the CPSs communication aspects and study the effects of intermittent data integrity guarantees on system performance under stealthy attacks. Cardenas et al [32] also tackle the security issues in CPSs by identifying the problem of secure control, investigating the defenses that information security and control theory provide, and proposing a set of challenges that need to be addressed to improve the survivability of a CPS in case of cyberattacks.…”

Section: Related Workmentioning

confidence: 99%

Predictive Formal Analysis of Resilience in Cyber-Physical Systems

et al. 2019

View full text Add to dashboard Cite

The behavioral analysis of cyber-physical systems in safety-critical scenarios is a challenging task. In this paper, the endogenous and exogenous aspects of resilience are of cornerstone importance in system design and verification. Endogenous resilience is the inherent ability of the system to detect and process internal faults and malicious attacks. Exogenous resilience is the permanent capability of the system to maintain a safe operation within its ambient environment. In this paper, we present a predictive dual-sided contract-based formal methodology to address both aspects of resilience on top of a distributed object-oriented component-based software model. It is illustrated by a case study of urban drone rescue systems. We exploit the formalism of timed automata and the toolbox UPPAAL to predict by abstraction and analyze (simulate and verify) endogenous resilience. Instead of presenting the final models of the case study, we reflect our experience with UPPAAL in generic patterns of system design and contract specification, reusable in other contexts with adaptations. The analysis of exogenous resilience is specific to the considered drone rescue system. It consists of synthesizing by iterative model-checking safe flight paths for the drones within a 3D virtual model of urban surroundings true to modern cities. INDEX TERMS Resilience, safety, distributed control, object-oriented software, component-based architectures, design by contracts, timed automata, 3D models, model-checking, temporal logic, fairness.

show abstract

Section: Related Workmentioning

confidence: 99%

Predictive Formal Analysis of Resilience in Cyber-Physical Systems

et al. 2019

View full text Add to dashboard Cite

show abstract

“…For localization, the UAV mainly relies on a GPS sensor that can be compromised to effectively steer the UAV away from its original path. While aggressive attacks can be detected, some may remain stealthy by introducing only bounded errors at each step [20,26,22,16]. For example, Fig.…”

Section: Stochastic Gamesmentioning

confidence: 99%

Security-Aware Synthesis Using Delayed-Action Games

Elfar

Wang

Pajić

2019

Computer Aided Verification

Self Cite

View full text Add to dashboard Cite

Stochastic multiplayer games (SMGs) have gained attention in the field of strategy synthesis for multi-agent reactive systems. However, standard SMGs are limited to modeling systems where all agents have full knowledge of the state of the game. In this paper, we introduce delayed-action games (DAGs) formalism that simulates hiddeninformation games (HIGs) as SMGs, where hidden information is captured by delaying a player's actions. The elimination of private variables enables the usage of SMG off-the-shelf model checkers to implement HIGs. Furthermore, we demonstrate how a DAG can be decomposed into subgames that can be independently explored, utilizing parallel computation to reduce the model checking time, while alleviating the state space explosion problem that SMGs are notorious for. In addition, we propose a DAG-based framework for strategy synthesis and analysis. Finally, we demonstrate applicability of the DAG-based synthesis framework on a case study of a human-on-the-loop unmanned-aerial vehicle system under stealthy attacks, where the proposed framework is used to formally model, analyze and synthesize security-aware strategies for the system.

show abstract

“…These attacks are usually studied in two categories (Cárdenas et al, 2008a;Kwon et al, 2013;Lun et al, 2019). First, deceptive attacks, where the adversary interferes in the connection between sensor-controller-actuator and sends incorrect information (Amin et al, 2010;Jovanov and Pajic, 2019;Kwon et al, 2013;Liu et al, 2011;Miao et al, 2016). Second, denial-of-service attacks, where the adversary prevents sensors, controllers, or actuators from receiving data (Amin et al, 2009;Gupta et al, 2010).…”

Section: Introduction and Related Workmentioning

confidence: 99%

Security-Aware Design of Cyber-Physical Systems for Control Applications

Mahfouzi

2021

Linköping Studies in Science and Technology. Dissertations

View full text Add to dashboard Cite

Cyberfysiska system interagerar med den fysiska och digitala världen. Cyberfysiska system innehåller ofta ett flertal styrsystem. Dessa system är uppkopplade till Internet och är därför särskilt sårbara mot cyberattacker. Flera attacker är särskilt riktade mot styrsystem. Denna avhandling fokuserar på säkerhetshot mot styrsystem i cyberfysiska system. Vi presenterar unika tillstånd för styrsystem som används till att utveckla system för att upptäcka, förhindra och mildra attacker mot cyberfysiska system. Vi påvisar även säkerhetsutmaningar baserade på icke-intuitiva tids-och fördröjningsberoenden som skapas då ett flertal styrsystem delar resurser. Vidare så tar vi hänsyn till realtidskommunikation för reglerapplikationer som implementeras på ett underliggande datornätverk där vi schemalägger och dirigerar meddelanden på så sätt att säkerheten maximeras. Till sist behandlar vi säkerhetsutmaningar som uppstår då reglerapplikationer i cyberfysiska system allokeras som molntjänster via Internet. Denna avhandling innehåller experiment som påvisar effektiviteten av verifierbar beräkning för att i realtid verifiera molntjänstens beräkningar.

show abstract

Relaxing Integrity Requirements for Attack-Resilient Cyber-Physical Systems

Cited by 55 publications

References 31 publications

Predictive Formal Analysis of Resilience in Cyber-Physical Systems

Predictive Formal Analysis of Resilience in Cyber-Physical Systems

Security-Aware Synthesis Using Delayed-Action Games

Security-Aware Design of Cyber-Physical Systems for Control Applications

Contact Info

Product

Resources

About