L. K. Carvalho, Yi-Chin Wu, R. Kwong, S. Lafortune
{"title":"监控系统中致动器使能攻击的检测和预防","authors":"L. K. Carvalho, Yi-Chin Wu, R. Kwong, S. Lafortune","doi":"10.1109/WODES.2016.7497863","DOIUrl":null,"url":null,"abstract":"The deployment of control systems with network-connected components nowadays has made feedback control systems vulnerable to attacks over the network. This paper considers the problem of intrusion detection and prevention in supervisory control systems, where the attacker has the ability to enable vulnerable actuator events that are disabled by the supervisor. We present a mathematical model for the system under such actuator enablement attacks and propose a defense strategy that detects attacks online and disables all controllable events after an attack is detected. We develop an algorithm for verifying whether the system can prevent damage from attacks with the proposed defense strategy, where damage is modeled as the reachability of a pre-defined set of “unsafe” states. The technical condition of interest that is necessary and sufficient in this context is characterized; it is termed “AE-safe controllability”. Finally, we illustrate the methodology with a traffic system example.","PeriodicalId":268613,"journal":{"name":"2016 13th International Workshop on Discrete Event Systems (WODES)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"40","resultStr":"{\"title\":\"Detection and prevention of actuator enablement attacks in supervisory control systems\",\"authors\":\"L. K. Carvalho, Yi-Chin Wu, R. Kwong, S. Lafortune\",\"doi\":\"10.1109/WODES.2016.7497863\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The deployment of control systems with network-connected components nowadays has made feedback control systems vulnerable to attacks over the network. This paper considers the problem of intrusion detection and prevention in supervisory control systems, where the attacker has the ability to enable vulnerable actuator events that are disabled by the supervisor. We present a mathematical model for the system under such actuator enablement attacks and propose a defense strategy that detects attacks online and disables all controllable events after an attack is detected. We develop an algorithm for verifying whether the system can prevent damage from attacks with the proposed defense strategy, where damage is modeled as the reachability of a pre-defined set of “unsafe” states. The technical condition of interest that is necessary and sufficient in this context is characterized; it is termed “AE-safe controllability”. Finally, we illustrate the methodology with a traffic system example.\",\"PeriodicalId\":268613,\"journal\":{\"name\":\"2016 13th International Workshop on Discrete Event Systems (WODES)\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"40\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 13th International Workshop on Discrete Event Systems (WODES)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WODES.2016.7497863\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 13th International Workshop on Discrete Event Systems (WODES)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WODES.2016.7497863","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Detection and prevention of actuator enablement attacks in supervisory control systems
The deployment of control systems with network-connected components nowadays has made feedback control systems vulnerable to attacks over the network. This paper considers the problem of intrusion detection and prevention in supervisory control systems, where the attacker has the ability to enable vulnerable actuator events that are disabled by the supervisor. We present a mathematical model for the system under such actuator enablement attacks and propose a defense strategy that detects attacks online and disables all controllable events after an attack is detected. We develop an algorithm for verifying whether the system can prevent damage from attacks with the proposed defense strategy, where damage is modeled as the reachability of a pre-defined set of “unsafe” states. The technical condition of interest that is necessary and sufficient in this context is characterized; it is termed “AE-safe controllability”. Finally, we illustrate the methodology with a traffic system example.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
