揭示网络控制系统隐形攻击的形式化验证方法

Proceedings of the 3rd international conference on High confidence networked systems Pub Date : 2014-04-15 DOI:10.1145/2566468.2566484

N. Trcka, M. Moulin, S. D. Bopardikar, A. Speranzon

{"title":"揭示网络控制系统隐形攻击的形式化验证方法","authors":"N. Trcka, M. Moulin, S. D. Bopardikar, A. Speranzon","doi":"10.1145/2566468.2566484","DOIUrl":null,"url":null,"abstract":"We develop methods to determine if networked control systems can be compromised by stealth attacks, and derive design strategies to secure these systems. A stealth attack is a form of a cyber-physical attack where the adversary compromises the information between the plant and the controller, with the intention to drive the system into a bad state and at the same time stay undetected. We define the discovery problem as a formal verification problem, where generated counterexamples (if any) correspond to actual attack vectors. The analysis is entirely performed in Simulink, using Simulink Design Verifier as the verification engine. A small case study is presented to illustrate the results, and a branch-and-bound algorithm is proposed to perform optimal system securing.","PeriodicalId":339979,"journal":{"name":"Proceedings of the 3rd international conference on High confidence networked systems","volume":"124 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-04-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"A formal verification approach to revealing stealth attacks on networked control systems\",\"authors\":\"N. Trcka, M. Moulin, S. D. Bopardikar, A. Speranzon\",\"doi\":\"10.1145/2566468.2566484\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"We develop methods to determine if networked control systems can be compromised by stealth attacks, and derive design strategies to secure these systems. A stealth attack is a form of a cyber-physical attack where the adversary compromises the information between the plant and the controller, with the intention to drive the system into a bad state and at the same time stay undetected. We define the discovery problem as a formal verification problem, where generated counterexamples (if any) correspond to actual attack vectors. The analysis is entirely performed in Simulink, using Simulink Design Verifier as the verification engine. A small case study is presented to illustrate the results, and a branch-and-bound algorithm is proposed to perform optimal system securing.\",\"PeriodicalId\":339979,\"journal\":{\"name\":\"Proceedings of the 3rd international conference on High confidence networked systems\",\"volume\":\"124 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-04-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 3rd international conference on High confidence networked systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2566468.2566484\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 3rd international conference on High confidence networked systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2566468.2566484","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

摘要

我们开发了方法来确定网络控制系统是否可以被隐形攻击所破坏，并推导出保护这些系统的设计策略。隐形攻击是网络物理攻击的一种形式，攻击者破坏设备和控制器之间的信息，意图将系统带入不良状态，同时不被发现。我们将发现问题定义为形式化验证问题，其中生成的反例(如果有的话)对应于实际的攻击向量。分析完全在Simulink中完成，使用Simulink Design Verifier作为验证引擎。通过一个小的实例来说明结果，并提出了一种分支定界算法来实现最优的系统安全。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

A formal verification approach to revealing stealth attacks on networked control systems

We develop methods to determine if networked control systems can be compromised by stealth attacks, and derive design strategies to secure these systems. A stealth attack is a form of a cyber-physical attack where the adversary compromises the information between the plant and the controller, with the intention to drive the system into a bad state and at the same time stay undetected. We define the discovery problem as a formal verification problem, where generated counterexamples (if any) correspond to actual attack vectors. The analysis is entirely performed in Simulink, using Simulink Design Verifier as the verification engine. A small case study is presented to illustrate the results, and a branch-and-bound algorithm is proposed to perform optimal system securing.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 3rd international conference on High confidence networked systems

自引率

0.00%

发文量

期刊最新文献

A module for anomaly detection in ICS networks A formal verification approach to revealing stealth attacks on networked control systems Understanding the security of interoperable medical devices using attack graphs Resilient distributed parameter estimation in heterogeneous time-varying networks Energy-based attack detection in networked control systems