Emulation and detection of physical faults and cyber-attacks on building energy systems through real-time hardware-in-the-loop experiments

Li, Guowen; Ren, Lingyu; Pradhan, Ojas; O’Neill, Zheng; Wen, Jin; Yang, Zhiyao; Fu, Yangyang; Chu, Mengyuan; Huang, Jiajing; Wu, Teresa; Candan, K. Selcuk; Adetola, Veronica; Zhu, Qi

doi:10.1016/j.enbuild.2024.114596

Emulation and detection of physical faults and cyber-attacks on building energy systems through real-time hardware-in-the-loop experiments

Journal Article · Wed Jul 24 00:00:00 EDT 2024 · Energy and Buildings

DOI:https://doi.org/10.1016/j.enbuild.2024.114596· OSTI ID:2458230

Li, Guowen ^[1]; Ren, Lingyu ^[2]; Pradhan, Ojas ^[3]; O’Neill, Zheng ^[1]; Wen, Jin ^[3]; Yang, Zhiyao ^[1]; Fu, Yangyang ^[1]; Chu, Mengyuan ^[1]; Huang, Jiajing ^[4]; Wu, Teresa ^[4]; Candan, K. Selcuk ^[4]; Adetola, Veronica ^[5]; Zhu, Qi ^[6]

Texas A & M Univ., College Station, TX (United States)
Raytheon Technologies Research Center, East Hartford, CT (United States)
Drexel Univ., Philadelphia, PA (United States)
Arizona State Univ., Tempe, AZ (United States)
Pacific Northwest National Laboratory (PNNL), Richland, WA (United States)
Northwestern Univ., Evanston, IL (United States)

The increasing use of remote or mobile access, integrated wearable technologies, data exchange, and cloud-based data analytics in modern smart buildings is steering the building industry towards open communication technologies. The increased connectivity and accessibility could lead to more cyber-attacks in smart buildings. On the other hand, physical faults (e.g., HVAC -heating, ventilation, and air-conditioning faults) may have similar adverse impacts as those from the cyber-attacks on building energy systems, such as occupant discomfort, energy wastage, and equipment downtime. However, current physical behavior-based anomaly detection methods fail to differentiate between cyber-attacks and physical faults in building energy systems. Moreover, the challenge in collecting real-world threat data with ground truth has led researchers to rely on numerical models with user-defined assumptions, which may not accurately reflect real-world conditions due to the lack of in-situ experimental datasets. To address these challenges and gaps, this paper presents a flexible hardware-in-the-loop (HIL) testbed for generating cyber-attack and physical fault datasets and demonstrating threat detection algorithms in a real building automation system (BAS) environment. This testbed combines hardware (i.e., real BAS with local HVAC controllers and a physical network) with software (i.e., high-fidelity models to represent behaviors of building envelope and HVAC energy systems), enabling emulations of realistic threats. Five HIL experiments, including one baseline without any threats, two with physical faults, and two with cyber-attacks, were conducted to generate datasets containing detailed network traffic and system states. A joint classification framework, incorporating a network analyzer and a physical HVAC fault detector, was proposed to automatically detect cyber-physical abnormalities on BAS at both the network and the physical HVAC levels. The network analyzer comprises a conditional random fields (CRF) based command validator and a statistics-based detection strategy. The fault detector employs a weather and schedule-based pattern matching and feature-based principal component analysis (WPM-FPCA) method. Evaluation of the classification using four metrics from the multi-class confusion matrix revealed an average accuracy of 90.2%, recall of 89.7%, precision of 88.5% and F1-score of 89.2%. Finally, these results demonstrate that the proposed joint classification framework can effectively differentiate between specific types of cyber-attacks (e.g., device reinitialization attack, network Denial-of-Service attack) and physical faults (e.g., air handling unit operational fault, cooling coil valve stuck) in real time for improved building energy management.

View Accepted Manuscript (DOE)

Research Organization:: Pacific Northwest National Laboratory (PNNL), Richland, WA (United States)

Sponsoring Organization:: USDOE Office of Energy Efficiency and Renewable Energy (EERE), Energy Efficiency Office. Building Technologies Office

Grant/Contract Number:: AC05-76RL01830; EE0009150

OSTI ID:: 2458230

Alternate ID(s):: OSTI ID: 2466310
OSTI ID: 2567482

Report Number(s):: PNNL-SA--197891

Journal Information:: Energy and Buildings, Journal Name: Energy and Buildings Vol. 320; ISSN 0378-7788

Publisher:: ElsevierCopyright Statement

Country of Publication:: United States

Language:: English

References (38)

Secure the Internet, one home at a time Xu, Kuai; Wang, Feng; Jia, Xiaohua Security and Communication Networks, Vol. 9, Issue 16 https://doi.org/10.1002/sec.1569	journal	July 2016
Hardware-in-the-loop simulation for the design and testing of engine-control systems Isermann, R.; Schaffnit, J.; Sinsel, S. Control Engineering Practice, Vol. 7, Issue 5 https://doi.org/10.1016/S0967-0661(98)00205-6	journal	May 1999
Fault detection for non-condensing boilers using simulated building automation system sensor data Shohet, Rony; Kandil, Mohamed S.; Wang, Yidan Advanced Engineering Informatics, Vol. 46 https://doi.org/10.1016/j.aei.2020.101176	journal	October 2020
Modeling and evaluation of cyber-attacks on grid-interactive efficient buildings Fu, Yangyang; O'Neill, Zheng; Yang, Zhiyao Applied Energy, Vol. 303 https://doi.org/10.1016/j.apenergy.2021.117639	journal	December 2021
A review of data-driven fault detection and diagnostics for building HVAC systems Chen, Zhelun; O’Neill, Zheng; Wen, Jin Applied Energy, Vol. 339 https://doi.org/10.1016/j.apenergy.2023.121030	journal	June 2023
A critical review of cyber-physical security for building automation systems Li, Guowen; Ren, Lingyu; Fu, Yangyang Annual Reviews in Control, Vol. 55 https://doi.org/10.1016/j.arcontrol.2023.02.004	journal	January 2023
A data-driven approach to simultaneous fault detection and diagnosis in data centers Asgari, Sahar; Gupta, Rohit; Puri, Ishwar K. Applied Soft Computing, Vol. 110 https://doi.org/10.1016/j.asoc.2021.107638	journal	October 2021
Automated daily pattern filtering of measured building performance data Miller, Clayton; Nagy, Zoltán; Schlueter, Arno Automation in Construction, Vol. 49 https://doi.org/10.1016/j.autcon.2014.09.004	journal	January 2015
Generative adversarial network for fault detection diagnosis of chillers Yan, Ke; Chong, Adrian; Mo, Yuchang Building and Environment, Vol. 172 https://doi.org/10.1016/j.buildenv.2020.106698	journal	April 2020
Context aware intrusion detection for building automation systems Pan, Zhiwen; Hariri, Salim; Pacheco, Jesus Computers & Security, Vol. 85 https://doi.org/10.1016/j.cose.2019.04.011	journal	August 2019
Online model-based fault detection and diagnosis strategy for VAV air handling units Wang, Haitao; Chen, Youming; Chan, Cary W. H. Energy and Buildings, Vol. 55 https://doi.org/10.1016/j.enbuild.2012.08.016	journal	December 2012
Improved sensor fault detection, diagnosis and estimation for screw chillers using density-based clustering and principal component analysis Li, Guannan; Hu, Yunpeng Energy and Buildings, Vol. 173 https://doi.org/10.1016/j.enbuild.2018.05.025	journal	August 2018
An agent-based hardware-in-the-loop simulation framework for building controls Huang, Sen; Wang, Weimin; Brambley, Michael R. Energy and Buildings, Vol. 181 https://doi.org/10.1016/j.enbuild.2018.09.038	journal	December 2018
Unsupervised learning for fault detection and diagnosis of air handling units Yan, Ke; Huang, Jing; Shen, Wen Energy and Buildings, Vol. 210 https://doi.org/10.1016/j.enbuild.2019.109689	journal	March 2020
A flexible and generic functional mock-up unit based threat injection framework for grid-interactive efficient buildings: A case study in Modelica Fu, Yangyang; O’Neill, Zheng; Adetola, Veronica Energy and Buildings, Vol. 250 https://doi.org/10.1016/j.enbuild.2021.111263	journal	November 2021
A holistic fault impact analysis of the high-performance sequences of operation for HVAC systems: Modelica-based case study in a medium-office building Lu, Xing; Fu, Yangyang; O'Neill, Zheng Energy and Buildings, Vol. 252 https://doi.org/10.1016/j.enbuild.2021.111448	journal	December 2021
Real vs. simulated: Questions on the capability of simulated datasets on building fault detection for energy efficiency from a data-driven perspective Huang, Jiajing; Wen, Jin; Yoon, Hyunsoo Energy and Buildings, Vol. 259 https://doi.org/10.1016/j.enbuild.2022.111872	journal	March 2022
Fault detection analysis using data mining techniques for a cluster of smart office buildings Capozzoli, Alfonso; Lauro, Fiorella; Khan, Imran Expert Systems with Applications, Vol. 42, Issue 9 https://doi.org/10.1016/j.eswa.2015.01.010	journal	June 2015
Active Model Discrimination with Applications to Fraud Detection in Smart Buildings * *This work is supported in part by an Early Career Faculty grant from NASA’s Space Technology Research Grants Program and DARPA grant N66001-14-1-4045. Harirchi, Farshad; Yong, Sze Zheng; Jacobsen, Emil IFAC-PapersOnLine, Vol. 50, Issue 1 https://doi.org/10.1016/j.ifacol.2017.08.1616	journal	July 2017
Understanding the physical and economic consequences of attacks on control systems Huang, Yu-Lun; Cárdenas, Alvaro A.; Amin, Saurabh International Journal of Critical Infrastructure Protection, Vol. 2, Issue 3 https://doi.org/10.1016/j.ijcip.2009.06.001	journal	October 2009
Modeling, analyzing and predicting security cascading attacks in smart buildings systems-of-systems Hachem, Jamal EL; Chiprianov, Vanea; Babar, Muhammad Ali Journal of Systems and Software, Vol. 162 https://doi.org/10.1016/j.jss.2019.110484	journal	April 2020
A Method for Revealing and Addressing Security Vulnerabilities in Cyber-physical Systems by Modeling Malicious Agent Interactions with Formal Verification Wardell, Dean C.; Mills, Robert F.; Peterson, Gilbert L. Procedia Computer Science, Vol. 95 https://doi.org/10.1016/j.procs.2016.09.289	journal	January 2016
Application of data-driven attack detection framework for secure operation in smart buildings Elnour, Mariam; Meskin, Nader; Khan, Khaled Sustainable Cities and Society, Vol. 69 https://doi.org/10.1016/j.scs.2021.102816	journal	June 2021
Review Article: Methods for Fault Detection, Diagnostics, and Prognostics for Building Systems—A Review, Part I Katipamula, Srinivas; Brambley, Michael HVAC&R Research, Vol. 11, Issue 1 https://doi.org/10.1080/10789669.2005.10391123	journal	January 2005
Review Article: Methods for Fault Detection, Diagnostics, and Prognostics for Building Systems—A Review, Part II Katipamula, Srinivas; Brambley, Michael HVAC&R Research, Vol. 11, Issue 2 https://doi.org/10.1080/10789669.2005.10391133	journal	April 2005
Modelica Buildings library Wetter, Michael; Zuo, Wangda; Nouidui, Thierry S. Journal of Building Performance Simulation, Vol. 7, Issue 4 https://doi.org/10.1080/19401493.2013.765506	journal	March 2013
A cosine-based correlation information entropy approach for building automatic fault detection baseline construction Huang, Jiajing; Yoon, Hyunsoo; Pradhan, Ojas Science and Technology for the Built Environment, Vol. 28, Issue 9 https://doi.org/10.1080/23744731.2022.2080110	journal	June 2022
Empirical analysis of the prevalence of HVAC faults in commercial buildings Crowe, Eliot; Chen, Yimin; Reeve, Hayden Science and Technology for the Built Environment, Vol. 29, Issue 10 https://doi.org/10.1080/23744731.2023.2263324	journal	October 2023
A hardware-in-the-loop (HIL) testbed for cyber-physical energy systems in smart commercial buildings Li, Guowen; Yang, Zhiyao; Fu, Yangyang Science and Technology for the Built Environment, Vol. 30, Issue 5 https://doi.org/10.1080/23744731.2024.2336839	journal	April 2024
A research study on unsupervised machine learning algorithms for early fault detection in predictive maintenance Amruthnath, Nagdev; Gupta, Tarun 2018 5th International Conference on Industrial Engineering and Applications (ICIEA) https://doi.org/10.1109/IEA.2018.8387124	conference	April 2018
Intrusion Detection & Response using an Unsupervised Artificial Neural Network on a Single Board Computer for Building Control Resilience Jones, C. Birk; Carter, Cedric; Thomas, Zachary 2018 Resilience Week (RWS) https://doi.org/10.1109/RWEEK.2018.8473533	conference	August 2018
Multilayer Data-Driven Cyber-Attack Detection System for Industrial Control Systems Based on Network, System, and Process Data Zhang, Fan; Kodituwakku, Hansaka Angel Dias Edirisinghe; Hines, J. Wesley IEEE Transactions on Industrial Informatics, Vol. 15, Issue 7 https://doi.org/10.1109/TII.2019.2891261	journal	July 2019
Model-Based Attack Detection and Mitigation for Automatic Generation Control Sridhar, Siddharth; Govindarasu, Manimaran IEEE Transactions on Smart Grid, Vol. 5, Issue 2 https://doi.org/10.1109/TSG.2014.2298195	journal	March 2014
Review of hardware-in-the-loop simulation and its prospects in the automotive area Fathy, Hosam K.; Filipi, Zoran S.; Hagena, Jonathan Defense and Security Symposium, SPIE Proceedings https://doi.org/10.1117/12.667794	conference	May 2006
Automatic Deployment of Specification-based Intrusion Detection in the BACnet Protocol Esquivel-Vargas, Herson; Caselli, Marco; Peter, Andreas Proceedings of the 2017 Workshop on Cyber-Physical Systems Security and PrivaCy https://doi.org/10.1145/3140241.3140244	conference	November 2017
Assessing and mitigating impact of time delay attack Lou, Xin; Tran, Cuong; Tan, Rui Proceedings of the 10th ACM/IEEE International Conference on Cyber-Physical Systems https://doi.org/10.1145/3302509.3311042	conference	April 2019
Learning-based framework for sensor fault-tolerant building HVAC control with model-assisted learning Xu, Shichao; Fu, Yangyang; Wang, Yixuan Proceedings of the 8th ACM International Conference on Systems for Energy-Efficient Buildings, Cities, and Transportation https://doi.org/10.1145/3486611.3486644	conference	November 2021
CYDRES: CYber Defense and REsilient System for securing grid-interactive efficient buildings Li, Guowen; O'Neill, Zheng; Wen, Jin Proceedings of the 10th ACM International Conference on Systems for Energy-Efficient Buildings, Cities, and Transportation https://doi.org/10.1145/3600100.3626273	conference	November 2023

Similar Records

A hardware-in-the-loop (HIL) testbed for cyber-physical energy systems in smart commercial buildings

Journal Article · Mon Apr 15 00:00:00 EDT 2024 · Science and Technology for the Built Environment · OSTI ID:2567485

Development of A Hardware-In-the-Loop (HIL) Testbed for Cyber-Physical Security in Smart Buildings

Conference · Mon Feb 06 23:00:00 EST 2023 · OSTI ID:2331282

Related Subjects

32 ENERGY CONSERVATION, CONSUMPTION, AND UTILIZATION
97 MATHEMATICS AND COMPUTING
building energy management system
cyber-attacks
hardware-in-the-loop
physical faults
smart building

Emulation and detection of physical faults and cyber-attacks on building energy systems through real-time hardware-in-the-loop experiments

Citation Formats

References (38)

Similar Records

Related Subjects