Secure Cyberattack and Anomaly Detections in the Presence of Actuators Lags and Communication Delays With Application to Industrial Gas Turbines

IEEE Transactions on Industrial Cyber-Physical Systems Pub Date : 2024-03-15 DOI:10.1109/TICPS.2024.3401615

Nasim Ensansefat;Mojtaba Kordestani;Ali Chaibakhsh;Mehrdad Saif;Khashayar Khorasani

{"title":"Secure Cyberattack and Anomaly Detections in the Presence of Actuators Lags and Communication Delays With Application to Industrial Gas Turbines","authors":"Nasim Ensansefat;Mojtaba Kordestani;Ali Chaibakhsh;Mehrdad Saif;Khashayar Khorasani","doi":"10.1109/TICPS.2024.3401615","DOIUrl":null,"url":null,"abstract":"Cyber-Physical Systems (CPSs) utilize Networked Control Systems (NCS), where the supervised controller is connected to the network through communication links. It facilitates the network with online accessibility that reduces maintenance costs and enhances reliability. However, open access often raises the risk of cyber-attacks. Besides, a communication channel delay due to limited bandwidth is often possible, which may lead to instability problems. This paper introduces a new observer-based resilient control framework to deal with cyber-attacks and communication delays. As such, deception and Denial pf Service (DoS) actuator attacks are considered by defining appropriate unified functions. Following that, an augmented state-space model is proposed for the CPS with time delay in the communication links. Next, states are estimated by a sliding mode observer from the corrupted measurements. Then, a residual generation is appropriated to identify cyber-attacks in the augmented system and to assess the cyber-attack detection approach. The Lyapunov stability theory guarantees the convergence of the estimation. Experimental data on an industrial gas turbine is utilized to validate the system model. Test results indicate that the sliding mode observer enjoys a secure framework for network communications.","PeriodicalId":100640,"journal":{"name":"IEEE Transactions on Industrial Cyber-Physical Systems","volume":"2 ","pages":"130-142"},"PeriodicalIF":0.0000,"publicationDate":"2024-03-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Industrial Cyber-Physical Systems","FirstCategoryId":"1085","ListUrlMain":"https://ieeexplore.ieee.org/document/10531084/","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Cyber-Physical Systems (CPSs) utilize Networked Control Systems (NCS), where the supervised controller is connected to the network through communication links. It facilitates the network with online accessibility that reduces maintenance costs and enhances reliability. However, open access often raises the risk of cyber-attacks. Besides, a communication channel delay due to limited bandwidth is often possible, which may lead to instability problems. This paper introduces a new observer-based resilient control framework to deal with cyber-attacks and communication delays. As such, deception and Denial pf Service (DoS) actuator attacks are considered by defining appropriate unified functions. Following that, an augmented state-space model is proposed for the CPS with time delay in the communication links. Next, states are estimated by a sliding mode observer from the corrupted measurements. Then, a residual generation is appropriated to identify cyber-attacks in the augmented system and to assess the cyber-attack detection approach. The Lyapunov stability theory guarantees the convergence of the estimation. Experimental data on an industrial gas turbine is utilized to validate the system model. Test results indicate that the sliding mode observer enjoys a secure framework for network communications.

查看原文本刊更多论文

执行器滞后和通信延迟情况下的安全网络攻击和异常检测，应用于工业燃气轮机

网络物理系统（CPS）利用网络控制系统（NCS），其中受监控的控制器通过通信链路与网络连接。这有利于网络的在线访问，从而降低维护成本并提高可靠性。然而，开放式接入往往会增加网络攻击的风险。此外，由于带宽有限，通信通道经常会出现延迟，这可能会导致不稳定问题。本文介绍了一种新的基于观测器的弹性控制框架，以应对网络攻击和通信延迟。因此，通过定义适当的统一函数，考虑了欺骗和拒绝服务（DoS）执行器攻击。随后，为通信链路中存在时间延迟的 CPS 提出了一个增强状态空间模型。接着，通过滑模观测器从损坏的测量结果中估计状态。然后，利用残差生成来识别增强系统中的网络攻击，并评估网络攻击检测方法。Lyapunov 稳定性理论保证了估计的收敛性。利用工业燃气轮机的实验数据来验证系统模型。测试结果表明，滑模观测器为网络通信提供了一个安全框架。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Industrial Cyber-Physical Systems

自引率

0.00%

发文量