Cheah Huei Yoong scite author profile

Cheah Huei Yoong

5Publications

6Citation Statements Received

38Citation Statements Given

How they've been cited

How they cite others

151

Affiliations

Singapore University of Technology and Design, Ngee Ann Polytechnic

Publications

Order By: Most citations

Deriving invariant checkers for critical infrastructure using axiomatic design principles

et al. 2021

View full text Add to dashboard Cite

Cyber-physical systems (CPSs) in critical infrastructure face serious threats of attack, motivating research into a wide variety of defence mechanisms such as those that monitor for violations of invariants, i.e. logical properties over sensor and actuator states that should always be true. Many approaches for identifying invariants attempt to do so automatically, typically using data logs, but these can miss valid system properties if relevant behaviours are not well-represented in the data. Furthermore, as the CPS is already built, resolving any design flaws or weak points identified through this process is costly. In this paper, we propose a systematic method for deriving invariants from an analysis of a CPS design, based on principles of the axiomatic design methodology from design science. Our method iteratively decomposes a high-level CPS design to identify sets of dependent design parameters (i.e. sensors and actuators), allowing for invariants and invariant checkers to be derived in parallel to the implementation of the system. We apply our method to the designs of two CPS testbeds, SWaT and WADI, deriving a suite of invariant checkers that are able to detect a variety of single- and multi-stage attacks without any false positives. Finally, we reflect on the strengths and weaknesses of our approach, how it can be complemented by other defence mechanisms, and how it could help engineers to identify and resolve weak points in a design before the controllers of a CPS are implemented.

show abstract

Framework for Continuous System Security Protection in SWaT

Yoong

Heng

2019

View full text Add to dashboard Cite

Towards Systematically Deriving Defence Mechanisms from Functional Requirements of Cyber-Physical Systems

Yoong

Palleti

Silva

et al. 2020

View full text Add to dashboard Cite

The threats faced by cyber-physical systems (CPSs) in critical infrastructure have motivated the development of different attack detection mechanisms, such as those that monitor for violations of invariants, i.e. properties that always hold in normal operation. Given the complexity of CPSs, several existing approaches focus on deriving invariants automatically from data logs, but these can miss possible system behaviours if they are not represented in that data. Furthermore, resolving any design flaws identified in this process is costly, as the CPS is already built. In this position paper, we propose a systematic method for deriving invariants before a CPS is built by analysing its functional requirements. Our method, inspired by the axiomatic design methodology for systems, iteratively analyses dependencies in the design to construct equations and process graphs that model the invariant relationships between CPS components. As a preliminary study, we applied it to the design of a water treatment plant testbed, implementing checkers for two invariants by using decision trees, and finding that they could detect some examples of attacks on the testbed with high accuracy and without false positives. Finally, we explore how developing our method further could lead to more robust CPSs and reduced costs by identifying design weaknesses before systems are implemented. CCS CONCEPTS • Computer systems organization → Embedded and cyberphysical systems; • Security and privacy → Intrusion detection systems; • General and reference → Design.

show abstract

Enterprise Mobile Tracking and Reminder System: MAE

Yoong

Swe²,

Xian³

et al. 2012

Int. J. Interact. Mob. Technol.

View full text Add to dashboard Cite

Abstract-Mobile phones have made significant improvements from providing voice communications to advanced features such as camera, GPS, Wi-Fi, SMS, voice recognition, Internet surfing, and touch screen. This paper presents an enterprise mobile tracking and reminder system (MAE) that enables the elderly to have a better elder-care experience. The high-level architecture and major software algorithms especially the tracking in Android phones and SMS functions in server are described. The analysis of data captured and performance study of the server are discussed. In order to show the effectiveness of MAE, a pilot test was carried out with a retirement village in Singapore and the feedback from the elderly was evaluated. Generally, most comments received from the elderly were positive.

show abstract

Mitigating Adversarial Attacks on Data-Driven Invariant Checkers for Cyber-Physical Systems

Maiti

Yoong²,

Palleti

et al. 2023

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Cheah Huei Yoong

Deriving invariant checkers for critical infrastructure using axiomatic design principles

Framework for Continuous System Security Protection in SWaT

Towards Systematically Deriving Defence Mechanisms from Functional Requirements of Cyber-Physical Systems

Enterprise Mobile Tracking and Reminder System: MAE

Mitigating Adversarial Attacks on Data-Driven Invariant Checkers for Cyber-Physical Systems

Contact Info

Product

Resources

About