Attack Detection in Linear Networked Control Systems by Using Learning Methodology

A novel learning-based attack detection scheme for linear networked control systems (NCS) is introduced. The class of attacks considered here tends to increase network induced delays and packet losses which affects the physical system dynamics. For the network side, an adaptive observer is proposed to generate the attack detection residual, which in turn is utilized to determine the onset of an attack when it exceeds a predefined threshold. The uncertain stochastic physical system dynamics as a result of network-induced delays of packet losses require an optimal Q-learning based event-triggered controller that optimizes the control policy and the event-triggering instants simultaneously. The magnitude of the state vector of the physical system works as the detection signal for both sensor and actuator attacks. The maximum tolerable delay by the physical system due to packet losses is also derived. Simulations are included to demonstrate the effectiveness of the proposed schemes using the network and sensor/actuator attacks.

[1]  Sarangapani Jagannathan,et al.  Optimal Defense and Control for Cyber-Physical Systems , 2015, 2015 IEEE Symposium Series on Computational Intelligence.

[2]  Radha Poovendran,et al.  A Passivity Framework for Modeling and Mitigating Wormhole Attacks on Networked Control Systems , 2013, IEEE Transactions on Automatic Control.

[3]  Guevara Noubir,et al.  Linear programming models for jamming attacks on network traffic flows , 2008, WiOpt 2008.

[4]  Hao Xu,et al.  Stochastic optimal control of unknown linear networked control system in the presence of random delays and packet losses , 2012, Autom..

[5]  Bruno Sinopoli,et al.  Secure control against replay attacks , 2009, 2009 47th Annual Allerton Conference on Communication, Control, and Computing (Allerton).

[6]  Karl Henrik Johansson,et al.  A secure control framework for resource-limited adversaries , 2012, Autom..

[7]  Guevara Noubir,et al.  Linear programming models for jamming attacks on network traffic flows , 2008, 2008 6th International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks and Workshops.

[8]  Panganamala Ramana Kumar,et al.  Dynamic Watermarking: Active Defense of Networked Cyber–Physical Systems , 2016, Proceedings of the IEEE.

[9]  Eytan Modiano,et al.  Receiver-based flow control for networks in overload , 2013, INFOCOM 2013.

[10]  Hao Xu,et al.  Finite-horizon near optimal adaptive control of uncertain linear discrete-time systems , 2015 .

[11]  Sarangapani Jagannathan,et al.  Attack Detection and Approximation in Nonlinear Networked Control Systems Using Neural Networks , 2020, IEEE Transactions on Neural Networks and Learning Systems.

[12]  Frank L. Lewis,et al.  Stochastic Optimal Design for Unknown Linear Discrete‐Time System Zero‐Sum Games in Input‐Output form Under Communication Constraints , 2014 .

[13]  Douglas W. Browning,et al.  Flow control in high-speed communication networks , 1994, IEEE Trans. Commun..

[14]  Florian Dörfler,et al.  Attack Detection and Identification in Cyber-Physical Systems -- Part II: Centralized and Distributed Monitor Design , 2012, ArXiv.

[15]  Avimanyu Sahoo,et al.  Stochastic Optimal Regulation of Nonlinear Networked Control Systems by Using Event-Driven Adaptive Dynamic Programming , 2017, IEEE Transactions on Cybernetics.

[16]  Prashant B. Swadas,et al.  Dpraodv: A Dyanamic Learning System Against Blackhole Attack in Aodv Based Manet , 2009, ArXiv.

[17]  Avimanyu Sahoo,et al.  Optimal event-triggered control of uncertain linear networked control systems: A co-design approach , 2017, 2017 IEEE Symposium Series on Computational Intelligence (SSCI).