State estimation under false data injection attacks: Security analysis and system protection

Hu, Liang; Wang, Zidong; Han, Qing‐Long; Liu, Xiaohui

doi:10.1016/j.automatica.2017.09.028

Cited by 338 publications

(120 citation statements)

References 23 publications

(33 reference statements)

Supporting

Mentioning

119

Contrasting

Unclassified

Order By: Relevance

“…In [232], stealthy scenarios of sensor deception attacks in discrete-event systems are investigated through an insertion-deletion structure. Another example of such investigations is [233] where insecurity conditions that deception attacks remain undetected is studied. In [172], zero state inducing attacks (on A 2 ) are introduced where the output of the system with such attacks would remain the same as the case when initial conditions are zero, with the assumption that the initial conditions cannot be altered by the attackers.…”

Section: A Threat Assessmentmentioning

confidence: 99%

A systems and control perspective of CPS security

Dibaji

Pirani

Flamholz

et al. 2019

Annual Reviews in Control

382

191

View full text Add to dashboard Cite

The comprehensive integration of instrumentation, communication, and control into physical systems has led to the study of Cyber-Physical Systems (CPS), a field that has recently garnered increased attention. A key concern that is ubiquitous in CPS is a need to ensure security in the face of cyber attacks. In this paper, we carry out a survey of systems and control methods that have been proposed for the security of CPS. We classify these methods into three categories based on the type of defense proposed against the cyberattacks: prevention, resilience, and detection & isolation. A unified threat assessment metric is proposed in order to evaluate how CPS security is achieved in each of these three cases. Also surveyed are risk assessment tools and the effect of network topology on CPS security. An emphasis has been placed on power and transportation applications in the overall survey. Index Terms-cyber-physical systems, resilient control I. INTRODUCTION Motivated by concerns about sustainability, efficiency, and resiliency, several sectors including energy, transportation, water, and healthcare systems have witnessed significant advances in instrumentation, monitoring, and automation over the past decade. The resulting integration of information, communication, and computation with physically engineered systems demands a detailed investigation into the analysis and synthesis of Cyber-Physical Systems (CPS) so as to realize the desired performance metrics of efficiency, sustainability, and safety. The extensive and intricate presence of cyber components also introduces a vulnerability of unwanted access to these systems. The available communication technologies, referred to as SCADA (Supervisory Control and Data Acquisition), are witnessing significant advances, triggering a shift from protected, closed, and wired networks to open and wireless networks which, as a side effect, are more vulnerable to outside interference.

show abstract

Section: A Threat Assessmentmentioning

confidence: 99%

A systems and control perspective of CPS security

Dibaji

Pirani

Flamholz

et al. 2019

Annual Reviews in Control

382

191

View full text Add to dashboard Cite

show abstract

“…In [13,14], the time-delay attack was introduced, which illustrates that when the communication system is attacked and commands from controllers are delayed, some commands can not be executed in time and the disruption may occur. Besides that, false data injection in [19] can also cause false control from controllers. When false data is injected into the system, the false estimation may lead to false commands.…”

Section: Related Workmentioning

confidence: 99%

False Sequential Command Attack of Large-Scale Cyber-Physical Systems

Xiong

Yang²,

Wang

et al. 2018

Electronics

View full text Add to dashboard Cite

Previous studies have demonstrated that false commands can cause severe damage to large-scale cyber-physical systems (CPSs). We focus on a kind of threat called false sequential command attack, with which attackers can generate false sequential commands, resulting in the illegal control of the physical process. We present a feasible attack model. Attackers delay the disaggregation of former commands by manipulating maliciously sub-controllers. Simultaneously, bad feedback data is injected to defeat the controller to issue latter commands. Thus, false command sequence is executed and the disruption of physical process can be obtained. It is also difficult for the detector to identify such attacks as injecting bad data. We also discuss other possible attack paths and analyze the corresponding disadvantages. Compared with other paths, the proposed model is more feasible and has more difficulties to be detected. A case study is given to validate the feasibility and effectiveness of proposed false sequential command attack model. Finally, we discuss the possible countermeasure.

show abstract

“…In the former one, anomaly diagnosis schemes are designed to reveal the existence of attack and trigger alarm and/or recovery mechanism. For example, the problem of revealing the existence of attacks or vulnerable part of the system that requires protection is considered in [12] and [13]. In the research about resilient algorithm design, researchers pursuit a design of secure system which has graceful performance degradation in the presence of attack.…”

Section: Introductionmentioning

confidence: 99%

Game Theoretical Approach to Sequential Hypothesis Test with Byzantine Sensors

Hao

2019

2019 IEEE 58th Conference on Decision and Control (CDC)

View full text Add to dashboard Cite

In this paper, we consider the problem of sequential binary hypothesis test in adversary environment based on observations from s sensors, with the caveat that a subset of c sensors is compromised by an adversary, whose observations can be manipulated arbitrarily. We choose the asymptotic Average Sample Number (ASN) required to reach a certain level of error probability as the performance metric of the system. The problem is cast as a game between the detector and the adversary, where the detector aims to optimize the system performance while the adversary tries to deteriorate it. We propose a pair of flip attack strategy and voting hypothesis testing rule and prove that they form an equilibrium strategy pair for the game. We further investigate the performance of our proposed detection scheme with unknown number of compromised sensors and corroborate our result with simulation.

show abstract

State estimation under false data injection attacks: Security analysis and system protection

Cited by 338 publications

References 23 publications

A systems and control perspective of CPS security

A systems and control perspective of CPS security

False Sequential Command Attack of Large-Scale Cyber-Physical Systems

Game Theoretical Approach to Sequential Hypothesis Test with Byzantine Sensors

Contact Info

Product

Resources

About