当前位置: X-MOL 学术Automatica › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Combining switching mechanism with re-initialization and anomaly detection for resiliency of cyber–physical systems
Automatica ( IF 4.8 ) Pub Date : 2024-11-20 , DOI: 10.1016/j.automatica.2024.111994
Hao Fu, Prashanth Krishnamurthy, Farshad Khorrami

Cyber–physical systems (CPS) play a pivotal role in numerous critical real-world applications that have stringent requirements for safety. To enhance the CPS resiliency against attacks, redundancy can be integrated in real-time controller implementations by designing strategies that switch among multiple controllers. However, existing switching strategies typically overlook remediation measures for compromised controllers, opting instead to simply exclude them. Such a solution reduces the CPS redundancy since only a subset of controllers are used. To address this gap, this work proposes a multi-controller switching strategy with periodic re-initialization to remove attacks. Controllers that finish re-initialization can be reused by the switching strategy, preserving the CPS redundancy and resiliency. The proposed switching strategy is designed to ensure that at each switching moment, a controller that has just completed re-initialization is available, minimizing the likelihood of compromise. Additionally, the controller’s working period decreases with the number of involved controllers, reducing the controller’s exposure time to attacks. An anomaly detector is used to detect CPS attacks during the controller’s working period. Upon alarm activation, the current control signal is set to a predefined value, and a switch to an alternative controller occurs at the earliest switching moment. Our switching strategy is shown to be still effective even if the anomaly detector fails to detect (stealthy) attacks. The efficacy of our strategy is analyzed through three derived conditions under a proposed integrated attack-defense model for mean-square boundedness of the CPS states. Simulation results on a third-order system and a single-machine infinite-bus (SMIB) system confirm that our approach significantly bolsters CPS resiliency by leveraging the advantages of re-initialization, anomaly detection, and switching mechanisms.

中文翻译:


将切换机制与重新初始化和异常检测相结合,以实现信息物理系统的弹性



信息物理系统 (CPS) 在许多对安全有严格要求的关键实际应用中发挥着关键作用。为了增强 CPS 对攻击的弹性,可以通过设计在多个控制器之间切换的策略,将冗余集成到实时控制器实施中。但是,现有的交换策略通常会忽略针对受损控制器的补救措施,而是选择简单地将其排除在外。这种解决方案减少了 CPS 冗余,因为只使用了控制器的子集。为了解决这一差距,这项工作提出了一种多控制器切换策略,具有定期重新初始化以消除攻击。完成重新初始化的控制器可由交换策略重复使用,从而保留 CPS 冗余和弹性。建议的 switch 策略旨在确保在每个 switch 时刻,刚刚完成重新初始化的 controller 都可用,从而最大限度地降低泄露的可能性。此外,控制器的工作时间会随着涉及的控制器数量而减少,从而减少控制器遭受攻击的时间。异常检测器用于检测控制器工作期间的 CPS 攻击。警报激活后,电流控制信号设置为预定义值,并在最早的开关时刻切换到备用控制器。事实证明,即使异常检测器无法检测到(隐蔽)攻击,我们的切换策略仍然有效。在提出的 CPS 状态均方有界性综合攻击-防御模型下,通过三个派生条件分析了我们策略的有效性。 三阶系统和单机无限总线 (SMIB) 系统的仿真结果证实,我们的方法通过利用重新初始化、异常检测和切换机制的优势,显着增强了 CPS 弹性。
更新日期:2024-11-20
down
wechat
bug