Discrete event system framework for fault diagnosis with measurement inconsistency: case study of rogue DHCP attack

Fault detection and diagnosis ( FDD ) facilitates reliable operation of systems. Various approaches have been proposed for FDD like Analytical redundancy ( AR ), Principal component analysis ( PCA ), Discrete event system ( DES ) model etc., in the literature. Performance of FDD schemes greatly depends on accuracy of the sensors which measure the system parameters. Due to various reasons like faults, communication errors etc., sensors may occasionally miss or report erroneous values of some system parameters to FDD engine, resulting in measurement inconsistency of these parameters. Schemes like AR, PCA etc., have mechanisms to handle measurement inconsistency, however, they are computationally heavy. DES based FDD techniques are widely used because of computational simplicity, but they cannot handle measurement inconsistency efficiently. Existing DES based schemes do not use Measurement inconsistent ( MI ) parameters for FDD. These parameters are not permanently unmeasurable or erroneous, so ignoring them may lead to weak diagnosis. To address this issue, we propose a Measurement inconsistent discrete event system ( MIDES ) framework, which uses MI parameters for FDD at the instances they are measured by the sensors. Otherwise, when they are unmeasurable or erroneously reported, the MIDES invokes an estimator diagnoser that predicts the state( s ) the system is expected to be in, using the subsequent parameters measured by the other sensors. The efficacy of the proposed method is illustrated using a pump-valve system. In addition, an MIDES based intrusion detection system has been developed for detection of rogue dynamic host configuration protocol ( DHCP) server attack by mapping the attack to a fault in the DES framework.

[1]  Youssef Iraqi,et al.  Mitigation of DHCP starvation attack , 2012, Computers & electrical engineering.

[2]  S. Joe Qin,et al.  Joint diagnosis of process and sensor faults using principal component analysis , 1998 .

[3]  Santosh Biswas,et al.  Application of stochastic discrete event system framework for detection of induced low rate TCP attack. , 2015, ISA transactions.

[4]  Jameson M. Wetmore,et al.  Encyclopedia of information ethics and security , 2008 .

[5]  Erik Frisk,et al.  Sensor Placement for Fault Diagnosis , 2008, IEEE Transactions on Systems, Man, and Cybernetics - Part A: Systems and Humans.

[6]  Xiao Lu,et al.  Kalman filtering for delayed singular systems with multiplicative noise , 2016, IEEE/CAA Journal of Automatica Sinica.

[7]  Zineb Simeu-Abazi,et al.  Fault diagnosis for discrete event systems: Modelling and verification , 2010, Reliab. Eng. Syst. Saf..

[8]  Stefan Savage,et al.  802.11 Denial-of-Service Attacks: Real Vulnerabilities and Practical Solutions , 2003, USENIX Security Symposium.

[9]  Jacques Demerjian,et al.  DHCP Authentication Using Certificates , 2004, SEC.

[10]  Zhe Zhang,et al.  Online rotor mixed fault diagnosis way based on spectrum analysis of instantaneous power in squirrel cage induction motors , 2004 .

[11]  Renfa Li,et al.  Security-aware signal packing algorithm for CAN-based automotive cyber-physical systems , 2015, IEEE/CAA Journal of Automatica Sinica.

[12]  Hong Cheng,et al.  Robust Principal Component Analysis with Missing Data , 2014, CIKM.

[13]  Caisheng Wang,et al.  Active Diagnosability of Discrete Event Systems and its Application to Battery Fault Diagnosis , 2014, IEEE Transactions on Control Systems Technology.

[14]  Jouni Ikonen,et al.  Forcing usage rules in public wireless LANs , 2002, 27th Annual IEEE Conference on Local Computer Networks, 2002. Proceedings. LCN 2002..

[15]  Sirish L. Shah,et al.  Missing Data Treatment Using Iterative PCA and Data Reconciliation , 2004 .

[16]  Cheng-zhi Chi,et al.  Application of Analytic Redundancy-based Fault Diagnosis of Sensors to Onboard Maintenance System , 2012 .

[17]  Anupam Basu,et al.  Fault diagnosis in discrete time hybrid systems - A case study , 2007, Inf. Sci..

[18]  Santosh Biswas,et al.  LAN attack detection using Discrete Event Systems. , 2011, ISA transactions.

[19]  Rolf Isermann,et al.  Fault-Diagnosis Applications: Model-Based Condition Monitoring: Actuators, Drives, Machinery, Plants, Sensors, and Fault-tolerant Systems , 2011 .

[20]  Hemangee K. Kapoor,et al.  A Discrete Event System Approach to Online Testing of Speed Independent Circuits , 2015, VLSI Design.

[21]  Shahin Hashtrudi-Zad,et al.  Fault diagnosis in discrete-event systems: framework and model reduction , 2003, IEEE Trans. Autom. Control..

[22]  Stéphane Lafortune,et al.  Coordinated decentralized protocols for failure diagnosis of discrete event systems , 1998, Proceedings of the 37th IEEE Conference on Decision and Control (Cat. No.98CH36171).

[23]  Alessandro Giua,et al.  Diagnosability of Discrete-Event Systems Using Labeled Petri Nets , 2014, IEEE Transactions on Automation Science and Engineering.

[24]  Stéphane Lafortune,et al.  Failure diagnosis using discrete event models , 1994, Proceedings of 1994 33rd IEEE Conference on Decision and Control.

[25]  Raja Sengupta,et al.  Diagnosability of discrete-event systems , 1995, IEEE Trans. Autom. Control..

[26]  Long Wang,et al.  Robust fault detection with missing measurements , 2008, Int. J. Control.

[27]  Juha T. Tanttu,et al.  An expert system for multivariable controller design , 1993, Autom..

[28]  Lijie Guo,et al.  A Hybrid Process Monitoring and Fault Diagnosis Approach for Chemical Plants , 2015 .

[29]  Karl Henrik Johansson,et al.  Active actuator fault detection and diagnostics in HVAC systems , 2012, BuildSys@SenSys.

[30]  Changchun Hua,et al.  An algebraic detection approach for control systems under multiple stochastic cyber-attacks , 2015, IEEE/CAA Journal of Automatica Sinica.

[31]  Stéphane Lafortune,et al.  Failure diagnosis of dynamic systems: an approach based on discrete event systems , 2001, Proceedings of the 2001 American Control Conference. (Cat. No.01CH37148).

[32]  Amit Patra,et al.  A Formal Approach to On-Line Monitoring of Digital VLSI Circuits: Theory, Design and Implementation , 2005, J. Electron. Test..

[33]  Rolf Isermann,et al.  Fault detection with limit checking , 2006 .

[34]  Gregory Provan,et al.  Model-based diagnosis and control reconfiguration for discrete event systems: an integrated approach , 1999, Proceedings of the 38th IEEE Conference on Decision and Control (Cat. No.99CH36304).