Detecting integrity attacks on control systems using robust physical watermarking

2017 IEEE 56th Annual Conference on Decision and Control (CDC)

Vasudevan

et al. 2017

Detecting attacks in control systems is an important aspect of designing secure and resilient control systems. Recently, a dynamic watermarking approach was proposed for detecting malicious sensor attacks for SISO LTI systems with partial state observations and MIMO LTI systems with a full rank input matrix and full state observations; however, these previous approaches cannot be applied to general LTI systems that are MIMO and have partial state observations. This paper designs a dynamic watermarking approach for detecting malicious sensor attacks for general LTI systems, and we provide a new set of asymptotic and statistical tests. We prove these tests can detect attacks that follow a specified attack model (more general than replay attacks), and we also show that these tests simplify to existing tests when the system is SISO or has full rank input matrix and full state observations. The benefit of our approach is demonstrated with a simulation analysis of detecting sensor attacks in autonomous vehicles. Our approach can distinguish between sensor attacks and wind disturbance (through an internal model principle framework), whereas improperly designed tests cannot distinguish between sensor attacks and wind disturbance.

Section: Introductionmentioning

confidence: 99%

Dynamic watermarking for general LTI systems

Hespanhol

2017 IEEE 56th Annual Conference on Decision and Control (CDC)

Vasudevan

et al. 2017

“…Next observe the upper block triangle of (19) is correct by construction of Q I,J,k i,j and by definition of the e i , and so we only have to prove that the lower-right block is correct. In particular, note that E((C j δ i,n − z n )(C j δ i,n − z n ) T ) = E((C j δ i,n )(C j δ i,n ) T )+Σ Z,I since z i,n is independent of δ i,n by (11). This implies that we have that as-lim n E((C j δ i,n − z n )(C j δ i,n − z n ) T ) = C j D i C T j + Σ Z,I .…”

Section: B Definition Of Testmentioning

confidence: 99%

Statistical Watermarking for Networked Control Systems

Hespanhol

2018 Annual American Control Conference (ACC)

Vasudevan

et al. 2018

Watermarking can detect sensor attacks in control systems by injecting a private signal into the control, whereby attacks are identified by checking the statistics of the sensor measurements and private signal. However, past approaches assume full state measurements or a centralized controller, which is not found in networked LTI systems with subcontrollers. Since generally the entire system is neither controllable nor observable by a single subcontroller, communication of sensor measurements is required to ensure closed-loop stability. The possibility of attacking the communication channel has not been explicitly considered by previous watermarking schemes, and requires a new design. In this paper, we derive a statistical watermarking test that can detect both sensor and communication attacks. A unique (compared to the non-networked case) aspect of the implementing this test is the state-feedback controller must be designed so that the closed-loop system is controllable by each sub-controller, and we provide two approaches to design such a controller using Heymann's lemma and a multi-input generalization of Heymann's lemma. The usefulness of our approach is demonstrated with a simulation of detecting attacks in a platoon of autonomous vehicles. Our test allows each vehicle to independently detect attacks on both the communication channel between vehicles and on the sensor measurements.

“…Initially, Dynamic Watermarking was developed for LTI systems with full rank input matrices and full state observations. These methods were proven to detect arbitrary attack models [15] including attacks that replayed a measured signal [16]. These methods were later extended to generalized LTI systems [17], and to networked control systems [18].…”

Section: Introductionmentioning

confidence: 99%

Simulation and Real-World Evaluation of Attack Detection Schemes

2019 American Control Conference (ACC)

Joshi

Hespanho

et al. 2019

A variety of anomaly detection schemes have been proposed to detect malicious attacks to Cyber-Physical Systems. Among these schemes, Dynamic Watermarking methods have been proven highly effective at detecting a wide range of attacks. Unfortunately, in contrast to other anomaly detectors, no method has been presented to design a Dynamic Watermarking detector to achieve a user-specified false alarm rate, or subsequently evaluate the capabilities of an attacker under such a selection. This paper describes methods to measure the capability of an attacker, to numerically approximate this metric, and to design a Dynamic Watermarking detector that can achieve a user-specified rate of false alarms. The performance of the Dynamic Watermarking detector is compared to three classical anomaly detectors in simulation and on a real-world platform. These experiments illustrate that the attack capability under the Dynamic Watermarking detector is comparable to those of classic anomaly detectors. Importantly, these experiments also make clear that the Dynamic Watermarking detector is consistently able to detect attacks that the other class of detectors are unable to identify.