Naeimeh Fakhr Shamloo;Elena De Santis;Maria Domenica Di Benedetto
{"title":"Security and Diagnosability of Finite State Machines Under Cyber-Attacks","authors":"Naeimeh Fakhr Shamloo;Elena De Santis;Maria Domenica Di Benedetto","doi":"10.1109/TASE.2024.3416821","DOIUrl":null,"url":null,"abstract":"In many applications, security is a serious issue due to the high risk of cyber-attacks. An adversary can cause severe damage by providing wrong information about the system and consequently leading the controller to perform incorrectly. Detecting any malicious activity is necessary to cover up its negative effects and make the system operate reliably. In this paper, we propose a new approach to analyze security and diagnosability of a Finite-state machine (FSM) under multiple attacks. Different kinds of attacks are modeled by an FSM and the composition of the nominal and attack model can express all the effects of possible attacks on the given system. We define different concepts of security and give conditions under which detectability of the attacks is possible. Moreover, diagnosability of an FSM affected by multiple attacks is addressed, and the special case of critical observability under attack is characterized. Note to Practitioners—Nowadays, cyber-physical systems (CPSs) are being widely used in industry and the extensive use of communication networks by CPSs raises the concern of vulnerability to malicious attacks. Therefore, it is a major challenge to detect the attack specifically when multiple attacks might launch on different sensors or communication channels. These facts motivate us to investigate the attack detectability properties of a system modeled by Finite State Machines (FSMs). To this end, we consider one of the well-known types of cyber-attacks which can inject, replace or remove output information in the communication network, called the man-in-the-middle attack. This may also be modeled by an FSM. In this paper, we provide a good understanding of the security level of a system under this powerful kind of attack, which can provide better insight into the weaknesses and strengths of the system before designing a supervisor. In some applications e.g. in air traffic control, the designer needs to detect if a state belongs to a “critical set”, i.e. a set of dangerous or unsafe states. As a second important contribution of the paper, we investigate under which conditions this is possible even if the system is under attack. An extension to the more general property of diagnosability is illustrated.","PeriodicalId":51060,"journal":{"name":"IEEE Transactions on Automation Science and Engineering","volume":"22 ","pages":"5108-5116"},"PeriodicalIF":6.4000,"publicationDate":"2024-09-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Automation Science and Engineering","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10693943/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"AUTOMATION & CONTROL SYSTEMS","Score":null,"Total":0}
引用次数: 0
Abstract
In many applications, security is a serious issue due to the high risk of cyber-attacks. An adversary can cause severe damage by providing wrong information about the system and consequently leading the controller to perform incorrectly. Detecting any malicious activity is necessary to cover up its negative effects and make the system operate reliably. In this paper, we propose a new approach to analyze security and diagnosability of a Finite-state machine (FSM) under multiple attacks. Different kinds of attacks are modeled by an FSM and the composition of the nominal and attack model can express all the effects of possible attacks on the given system. We define different concepts of security and give conditions under which detectability of the attacks is possible. Moreover, diagnosability of an FSM affected by multiple attacks is addressed, and the special case of critical observability under attack is characterized. Note to Practitioners—Nowadays, cyber-physical systems (CPSs) are being widely used in industry and the extensive use of communication networks by CPSs raises the concern of vulnerability to malicious attacks. Therefore, it is a major challenge to detect the attack specifically when multiple attacks might launch on different sensors or communication channels. These facts motivate us to investigate the attack detectability properties of a system modeled by Finite State Machines (FSMs). To this end, we consider one of the well-known types of cyber-attacks which can inject, replace or remove output information in the communication network, called the man-in-the-middle attack. This may also be modeled by an FSM. In this paper, we provide a good understanding of the security level of a system under this powerful kind of attack, which can provide better insight into the weaknesses and strengths of the system before designing a supervisor. In some applications e.g. in air traffic control, the designer needs to detect if a state belongs to a “critical set”, i.e. a set of dangerous or unsafe states. As a second important contribution of the paper, we investigate under which conditions this is possible even if the system is under attack. An extension to the more general property of diagnosability is illustrated.
期刊介绍:
The IEEE Transactions on Automation Science and Engineering (T-ASE) publishes fundamental papers on Automation, emphasizing scientific results that advance efficiency, quality, productivity, and reliability. T-ASE encourages interdisciplinary approaches from computer science, control systems, electrical engineering, mathematics, mechanical engineering, operations research, and other fields. T-ASE welcomes results relevant to industries such as agriculture, biotechnology, healthcare, home automation, maintenance, manufacturing, pharmaceuticals, retail, security, service, supply chains, and transportation. T-ASE addresses a research community willing to integrate knowledge across disciplines and industries. For this purpose, each paper includes a Note to Practitioners that summarizes how its results can be applied or how they might be extended to apply in practice.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
