Active Detection for Exposing Intelligent Attacks in Control Systems
- Carnegie Mellon Univ., Pittsburgh, PA (United States)
In this paper, we consider approaches for detecting integrity attacks carried out by intelligent and resourceful adversaries in control systems. Passive detection techniques are often incorporated to identify malicious behavior. Here, the defender utilizes finely-tuned algorithms to process information and make a binary decision, whether the system is healthy or under attack. We demonstrate that passive detection can be ineffective against adversaries with model knowledge and access to a set of input/output channels. We then propose active detection as a tool to detect attacks. In active detection, the defender leverages degrees of freedom he has in the system to detect the adversary. Specifically, the defender will introduce a physical secret kept hidden from the adversary, which can be utilized to authenticate the dynamics. In this regard, we carefully review two approaches for active detection: physical watermarking at the control input, and a moving target approach for generating system dynamics. We examine practical considerations for implementing these technologies and discuss future research directions.
- Research Organization:
- Carnegie Mellon Univ., Pittsburgh, PA (United States)
- Sponsoring Organization:
- USDOE Office of Electricity (OE)
- DOE Contract Number:
- OE0000779
- OSTI ID:
- 1373581
- Resource Relation:
- Conference: 1st IEEE Conference on Control Technology and Applications , Kohala Coast (Hawaii), 27-30 Aug 2017
- Country of Publication:
- United States
- Language:
- English
Similar Records
Physical Watermarking for Securing Cyber-Physical Systems via Packet Drop Injections
Information flow for security in control systems