Secure Contingency Prediction and Response for Cyber-Physical Systems

The complex nature of recent attacks on cyber-physical systems calls for more expressive models for contingency prediction and response. In this paper, in an attempt to address the primary difficulties facing the design of models for cyber-physical systems security, we propose a general model, termed secure contingency prediction and response (SCPR), that explicitly links the security status of the cyber layer with the operational status of the physical system. This is achieved by describing the security status of the cyber layer as the progression of an attacker through an attack graph and drawing a correspondence between compromised nodes in the attack graph and attacker capabilities in the physical layer. Using the proposed model, we formulate a novel cyber-physical systems security problem, termed control-aware intrusion response, in which actions in the cyber layer take into account the structural controllability of the physical system. The expressiveness of the proposed model is further illustrated by briefly discussing its applicability to some foundational cyber-physical systems security problems.

[1]  Erik Miehling Reasoning Under Uncertainty in Cyber-Physical Systems: Toward Efficient and Secure Operation , 2018 .

[2]  Joel Veness,et al.  Monte-Carlo Planning in Large POMDPs , 2010, NIPS.

[3]  Demosthenis Teneketzis,et al.  Optimal Defense Policies for Partially Observable Spreading Processes on Bayesian Attack Graphs , 2015, MTD@CCS.

[4]  Sherif Abdelwahed,et al.  Model-Based Response Planning Strategies for Autonomic Intrusion Protection , 2018, ACM Trans. Auton. Adapt. Syst..

[5]  D. Margaritis Learning Bayesian Network Model Structure from Data , 2003 .

[6]  Demosthenis Teneketzis,et al.  A POMDP Approach to the Dynamic Defense of Large-Scale Cyber Networks , 2018, IEEE Transactions on Information Forensics and Security.

[7]  Thomas M. Chen,et al.  Petri Net Modeling of Cyber-Physical Attacks on Smart Grid , 2011, IEEE Transactions on Smart Grid.

[8]  Maria Domenica Di Benedetto,et al.  Cyber-Physical Systems Security: a Systematic Mapping Study , 2016, J. Syst. Softw..

[9]  James L. Kirtley,et al.  Identifying and Anticipating Cyberattacks That Could Cause Physical Damage to Industrial Control Systems , 2019, IEEE Power and Energy Technology Systems Journal.

[10]  Katherine R. Davis,et al.  A Cyber-Physical Modeling and Assessment Framework for Power Grid Infrastructures , 2015, IEEE Transactions on Smart Grid.

[11]  Demosthenis Teneketzis,et al.  Control-Theoretic Approaches to Cyber-Security , 2019, Adversarial and Uncertain Reasoning for Adaptive Cyber Defense.

[12]  Paulo Tabuada,et al.  Secure Estimation and Control for Cyber-Physical Systems Under Adversarial Attacks , 2012, IEEE Transactions on Automatic Control.

[13]  Parinaz Naghizadeh Ardabili,et al.  Resilient Cyberphysical Systems and their Application Drivers: A Technology Roadmap , 2019, ArXiv.

[14]  Claire J. Tomlin,et al.  Secure estimation based Kalman Filter for cyber-physical systems against sensor attacks , 2018, Autom..

[15]  William H. Sanders,et al.  SCPSE: Security-Oriented Cyber-Physical State Estimation for Power Grid Critical Infrastructures , 2012, IEEE Transactions on Smart Grid.

[16]  Jianhui Wang,et al.  Cyber-Physical Modeling and Cyber-Contingency Assessment of Hierarchical Control Systems , 2015, IEEE Transactions on Smart Grid.

[17]  Chunjie Zhou,et al.  Assessing the Physical Impact of Cyberattacks on Industrial Cyber-Physical Systems , 2018, IEEE Transactions on Industrial Electronics.

[18]  Mohammad Shahidehpour,et al.  A Simplified Co-Simulation Model for Investigating Impacts of Cyber-Contingency on Power System Operations , 2018, IEEE Transactions on Smart Grid.

[19]  M. Pirani,et al.  A systems and control perspective of CPS security , 2019, Annu. Rev. Control..

[20]  Farrokh Aminifar,et al.  Cybersecurity in Distributed Power Systems , 2017, Proceedings of the IEEE.

[21]  Saman A. Zonouz,et al.  CPAC: securing critical infrastructure with cyber-physical access control , 2016, ACSAC.

[22]  Bruno Sinopoli,et al.  Challenges for Securing Cyber Physical Systems , 2009 .

[23]  Quanyan Zhu,et al.  Game-Theoretic Methods for Robustness, Security, and Resilience of Cyberphysical Control Systems: Games-in-Games Principle for Optimal Cross-Layer Resilient Control Systems , 2015, IEEE Control Systems.

[24]  Guoqiang Hu,et al.  Secure Fusion Estimation for Bandwidth Constrained Cyber-Physical Systems Under Replay Attacks , 2018, IEEE Transactions on Cybernetics.

[25]  Albert-László Barabási,et al.  Controllability of complex networks , 2011, Nature.

[26]  Nicanor Quijano,et al.  Controllability of Dynamical Systems: Threat Models and Reactive Security , 2013, GameSec.

[27]  Jean-Marie Flaus,et al.  A safety/security risk analysis approach of Industrial Control Systems: A cyber bowtie - combining new version of attack tree with bowtie analysis , 2018, Comput. Secur..