Stealthy attacks formalized as STL formulas for Falsification of CPS Security

Proceedings of the 26th ACM International Conference on Hybrid Systems: Computation and Control Pub Date : 2023-05-09 DOI:10.1145/3575870.3587122

Aniruddh Chandratre, Tomas Hernandez Acosta, Tanmay Khandait, Giulia Pedrielli, Georgios Fainekos

{"title":"Stealthy attacks formalized as STL formulas for Falsification of CPS Security","authors":"Aniruddh Chandratre, Tomas Hernandez Acosta, Tanmay Khandait, Giulia Pedrielli, Georgios Fainekos","doi":"10.1145/3575870.3587122","DOIUrl":null,"url":null,"abstract":"We propose a framework for security vulnerability analysis for Cyber-Physical Systems (CPS). Our framework imposes only minimal assumptions on the structure of the CPS. Namely, we consider CPS with feedback control loops, state observers, and anomaly detection algorithms. Moreover, our framework does not require any knowledge about the dynamics or the algorithms used in the CPS. Under this common CPS architecture, we develop tools that can identify vulnerabilities in the system and their impact on the functionality of the CPS. We pose the CPS security problem as a falsification (or Search Based Test Generation (SBTG)) problem guided by security requirements expressed in Signal Temporal Logic (STL). We propose two different categories of security requirements encoded in STL: (1) detectability (stealthiness) and (2) effectiveness (impact on the CPS function). Finally, we demonstrate in simulation on an inverted pendulum and on an Unmanned Aerial Vehicle (UAV) that both specifications are falsifiable using our SBTG techniques.","PeriodicalId":426801,"journal":{"name":"Proceedings of the 26th ACM International Conference on Hybrid Systems: Computation and Control","volume":"57 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 26th ACM International Conference on Hybrid Systems: Computation and Control","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3575870.3587122","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

We propose a framework for security vulnerability analysis for Cyber-Physical Systems (CPS). Our framework imposes only minimal assumptions on the structure of the CPS. Namely, we consider CPS with feedback control loops, state observers, and anomaly detection algorithms. Moreover, our framework does not require any knowledge about the dynamics or the algorithms used in the CPS. Under this common CPS architecture, we develop tools that can identify vulnerabilities in the system and their impact on the functionality of the CPS. We pose the CPS security problem as a falsification (or Search Based Test Generation (SBTG)) problem guided by security requirements expressed in Signal Temporal Logic (STL). We propose two different categories of security requirements encoded in STL: (1) detectability (stealthiness) and (2) effectiveness (impact on the CPS function). Finally, we demonstrate in simulation on an inverted pendulum and on an Unmanned Aerial Vehicle (UAV) that both specifications are falsifiable using our SBTG techniques.

查看原文本刊更多论文

隐蔽攻击形式化为伪造CPS安全的STL公式

我们提出了一个网络物理系统(CPS)安全漏洞分析框架。我们的框架只对CPS的结构施加了最小的假设。也就是说，我们考虑CPS与反馈控制回路，状态观测器和异常检测算法。此外，我们的框架不需要任何关于CPS中使用的动态或算法的知识。在这个通用的CPS架构下，我们开发了可以识别系统中的漏洞及其对CPS功能的影响的工具。我们将CPS安全问题视为由信号时序逻辑(STL)表达的安全需求指导的伪造(或基于搜索的测试生成(SBTG))问题。我们提出了用STL编码的两种不同类别的安全需求:(1)可探测性(隐身性)和(2)有效性(对CPS功能的影响)。最后，我们在倒立摆和无人机(UAV)上的仿真中证明，使用我们的SBTG技术，这两个规范都是可证伪的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 26th ACM International Conference on Hybrid Systems: Computation and Control

自引率

0.00%

发文量