Resilient and efficient safeguard mechanism design for deploying untrusted linear controllers

IF 4.8 2区计算机科学 Q1 AUTOMATION & CONTROL SYSTEMS

Automatica Pub Date : 2025-03-19 DOI:10.1016/j.automatica.2025.112262

Yiwen Lu, Yilin Mo

{"title":"Resilient and efficient safeguard mechanism design for deploying untrusted linear controllers","authors":"Yiwen Lu, Yilin Mo","doi":"10.1016/j.automatica.2025.112262","DOIUrl":null,"url":null,"abstract":"<div><div>Deployment of untrusted controllers is challenging. Such an untrusted controller may be provided by a malicious third party, who claims to deliver optimal control performance but actually attempts to exploit the system. Alternatively, untrusted controllers arising from benign factors such as inaccurate modeling or human error may also destabilize the system and cause security breaches. The system operator, with limited access to the knowledge of the system, may not be able to verify the untrusted controllers offline. To mitigate this risk, we propose a “plug-and-play” modification to the untrusted controller with minimal requirement on system knowledge, which switches to a known stabilizing controller when the norm of the difference between the untrusted and fallback control inputs exceeds a certain threshold. We show that for linear stochastic systems, this safeguard mechanism is both resilient and efficient, in the sense that: 1) the linear–quadratic cost of the system is always bounded even if the original untrusted controller is destabilizing; 2) in case the untrusted controller is stabilizing, the performance loss caused by the safeguard converges super-exponentially to 0 for Gaussian noise, while converging polynomially for general heavy-tailed noise. Finally, we demonstrate the effectiveness of the proposed safeguard strategy via numerical simulation on the Tennessee Eastman Process.</div></div>","PeriodicalId":55413,"journal":{"name":"Automatica","volume":"176 ","pages":"Article 112262"},"PeriodicalIF":4.8000,"publicationDate":"2025-03-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Automatica","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0005109825001542","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"AUTOMATION & CONTROL SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Deployment of untrusted controllers is challenging. Such an untrusted controller may be provided by a malicious third party, who claims to deliver optimal control performance but actually attempts to exploit the system. Alternatively, untrusted controllers arising from benign factors such as inaccurate modeling or human error may also destabilize the system and cause security breaches. The system operator, with limited access to the knowledge of the system, may not be able to verify the untrusted controllers offline. To mitigate this risk, we propose a “plug-and-play” modification to the untrusted controller with minimal requirement on system knowledge, which switches to a known stabilizing controller when the norm of the difference between the untrusted and fallback control inputs exceeds a certain threshold. We show that for linear stochastic systems, this safeguard mechanism is both resilient and efficient, in the sense that: 1) the linear–quadratic cost of the system is always bounded even if the original untrusted controller is destabilizing; 2) in case the untrusted controller is stabilizing, the performance loss caused by the safeguard converges super-exponentially to 0 for Gaussian noise, while converging polynomially for general heavy-tailed noise. Finally, we demonstrate the effectiveness of the proposed safeguard strategy via numerical simulation on the Tennessee Eastman Process.

查看原文本刊更多论文

求助全文

约1分钟内获得全文求助全文

来源期刊

Automatica 工程技术-工程：电子与电气

CiteScore

10.70

自引率

7.80%

发文量

617

审稿时长

5 months

期刊介绍： Automatica is a leading archival publication in the field of systems and control. The field encompasses today a broad set of areas and topics, and is thriving not only within itself but also in terms of its impact on other fields, such as communications, computers, biology, energy and economics. Since its inception in 1963, Automatica has kept abreast with the evolution of the field over the years, and has emerged as a leading publication driving the trends in the field. After being founded in 1963, Automatica became a journal of the International Federation of Automatic Control (IFAC) in 1969. It features a characteristic blend of theoretical and applied papers of archival, lasting value, reporting cutting edge research results by authors across the globe. It features articles in distinct categories, including regular, brief and survey papers, technical communiqués, correspondence items, as well as reviews on published books of interest to the readership. It occasionally publishes special issues on emerging new topics or established mature topics of interest to a broad audience. Automatica solicits original high-quality contributions in all the categories listed above, and in all areas of systems and control interpreted in a broad sense and evolving constantly. They may be submitted directly to a subject editor or to the Editor-in-Chief if not sure about the subject area. Editorial procedures in place assure careful, fair, and prompt handling of all submitted articles. Accepted papers appear in the journal in the shortest time feasible given production time constraints.