A Moving Target Defense to Detect Stealthy Attacks in Cyber-Physical Systems

Cyber-Physical Systems (CPS) have traditionally been considered more static, with regular communication patterns when compared to classical information technology networks. Because the structure of most CPS remains unchanged during long periods of time, they become vulnerable to adversaries who can tailor their attacks based on their precise knowledge of the system dynamics, communications, and control. Moving Target Defense (MTD) has emerged as a strategy to add uncertainty about the state and execution of a system in order to prevent adversaries from having predictable effects with their attacks. In this work we propose a novel type of MTD strategy that randomly changes the availability of the sensor data, so that it is harder for adversaries to tailor stealthy attacks and at the same time it can minimize the impact of false-data injection attacks. Using tools from switched control systems we formulate an optimization problem to find the probability of the switching signals that increase the visibility of stealthy attacks while decreasing the deviation caused by false data injection attacks.

[1]  Xiaohong Guan,et al.  Hidden Moving Target Defense in Smart Grids , 2017, SPSR-SG@CPSWeek.

[2]  Ehab Al-Shaer,et al.  Moving Target Defense for Hardening the Security of the Power System State Estimation , 2014, MTD '14.

[3]  Debasish Chatterjee,et al.  Stabilizing Randomly Switched Systems , 2008, SIAM J. Control. Optim..

[4]  Henrik Sandberg,et al.  Limiting the Impact of Stealthy Attacks on Industrial Control Systems , 2016, CCS.

[5]  Ricardo G. Sanfelice,et al.  Hybrid attack monitor design to detect recurrent attacks in a class of cyber-physical systems , 2017, 2017 IEEE 56th Annual Conference on Decision and Control (CDC).

[6]  Katherine R. Davis,et al.  Power flow cyber attacks and perturbation-based defense , 2012, 2012 IEEE Third International Conference on Smart Grid Communications (SmartGridComm).

[7]  Carlos Murguia,et al.  CUSUM and chi-squared attack detection of compromised sensors , 2016, 2016 IEEE Conference on Control Applications (CCA).

[8]  Bruno Sinopoli,et al.  Detecting integrity attacks on control systems using a moving target approach , 2015, 2015 54th IEEE Conference on Decision and Control (CDC).

[9]  Sushil Jajodia,et al.  Moving Target Defense - Creating Asymmetric Uncertainty for Cyber Threats , 2011, Moving Target Defense.

[10]  Murat Kantarcioglu,et al.  Security and privacy trade-offs in CPS by leveraging inherent differential privacy , 2017, 2017 IEEE Conference on Control Technology and Applications (CCTA).