Simulation and Real-World Evaluation of Attack Detection Schemes

Porter, Matthew; Joshi, Amrita; Hespanho, Pedro; Aswani, Anil; Johnson-Roberson, Matthew; Vasudevan, Ram

doi:10.23919/acc.2019.8815318

Cited by 15 publications

(8 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…SUch model was further generalized in [31] as an LTI system with partial state observations, and in [32] as a networked control system. Using dynamic watermarking to detect against attacks on sensors for real-world systems, such as robotics mobility platform [33], multi-vehicle transportation system testbed [34], and automatic power generation system [35] are also reported respectively.…”

Section: A Related Workmentioning

confidence: 99%

A Dynamic Watermarking Algorithm for Finite Markov Decision Problems

Tang¹,

Song²,

Gupta³

2021

Preprint

View full text Add to dashboard Cite

Dynamic watermarking, as an active intrusion detection technique, can potentially detect replay attacks, spoofing attacks, and deception attacks in the feedback channel for control systems. In this paper, we develop a novel dynamic watermarking algorithm for finite-state finite-action Markov decision processes and present upper bounds on the mean time between false alarms, and the mean delay between the time an attack occurs and when it is detected. We further compute the sensitivity of the performance of the control system as a function of the watermark. We demonstrate the effectiveness of the proposed dynamic watermarking algorithm by detecting a spoofing attack in a sensor network system.

show abstract

Section: A Related Workmentioning

confidence: 99%

A Dynamic Watermarking Algorithm for Finite Markov Decision Problems

Tang¹,

Song²,

Gupta³

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…This paper focuses on a particular detection method, Dynamic Watermarking, which adds a watermark signal to the control input to secure the measurement signals [4], [14]- [18]. Dynamic Watermarking is an active method meaning it makes alterations to the system which allow it to detect more complex attacks [19]- [21]. While, the specific methods of Dynamic Watermarking vary, in one popular approach the watermark is a multivariate Gaussian sequence that is generated by the controller.…”

Section: B Attack Detection Algorithmsmentioning

confidence: 99%

Detecting Deception Attacks on Autonomous Vehicles via Linear Time-Varying Dynamic Watermarking

Porte

Dey

Joshi

et al. 2020

2020 IEEE Conference on Control Technology and Applications (CCTA)

Self Cite

View full text Add to dashboard Cite

Cyber-physical systems (CPS) such as autonomous vehicles rely on both on-board sensors and external communications to estimate their state. Unfortunately, these communications render the system vulnerable to cyber-attacks. While many attack detection methods have begun to address these concerns, they are limited to linear time-invariant (LTI) systems. Though LTI system models provide accurate approximations for CPS such as autonomous vehicles at constant speed and turning radii, they are inaccurate for more complex motions such as lane changes, turns, and changes in velocity. Since these more complex motions are more suitably described by linear time-varying (LTV) system models rather than LTI models, Dynamic Watermarking, which adds a private excitation to the input signal to validate measurements, has recently been extended to LTV systems. However, this extension does not allow for LTV systems that require several steps before the effect of a given control input can be seen in the measurement signal. Additionally, there is no consideration for the timevarying effects of auto-correlation. Furthermore, a proof of concept was only provided using simulations of a simplified model.This paper relaxes the requirement for inputs to be visible in a single step and constructs an auto-correlation normalizing factor to remove the effects of auto-correlation. In addition, Dynamic Watermarking is applied to a high-fidelity vehicle model in CarSim ™ and a 1/10 scale autonomous rover to further reinforce the proof of concept for realistic systems. In each case, the vehicle follows a predefined path with time-varying velocity and turning radii. A replay attack, which replays previously recorded measurements, is shown to be detectable using LTV Dynamic Watermarking in a quick and repeatable manner.

show abstract

“…Although the controller with an integral action leads to a larger attack impact than a controller without an integral action both in our work as well as in (Urbina et al, 2016), we show that the integral action prevents the attack from being stealthy. Porter et al (2019) compare four different detectors with respect to their attack detection capability in simulation and real-world experiments. In the present work, we will only compare two of the four detectors in-vestigated in (Porter et al, 2019), but look at a more sophisticated attack strategy.…”

Section: Introductionmentioning

confidence: 99%

“…Porter et al (2019) compare four different detectors with respect to their attack detection capability in simulation and real-world experiments. In the present work, we will only compare two of the four detectors in-vestigated in (Porter et al, 2019), but look at a more sophisticated attack strategy. We also use a technique similar to the watermarking in (Porter et al, 2019) to achieve a detection of stealthy attacks.…”

Section: Introductionmentioning

confidence: 99%

“…In the present work, we will only compare two of the four detectors in-vestigated in (Porter et al, 2019), but look at a more sophisticated attack strategy. We also use a technique similar to the watermarking in (Porter et al, 2019) to achieve a detection of stealthy attacks. However, instead of injecting an additive noise signal to the controller output, u(k), we inject the noise directly into the controller dynamics in this work.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Experimental evaluation of sensor attacks and defense mechanisms in feedback systems

Umsonst,

Sandberg

2021

Preprint

View full text Add to dashboard Cite

In this work, we evaluate theoretical results on the feasibility of, the worst-case impact of, and defense mechanisms against a stealthy sensor attack in an experimental setup. We demonstrate that for a controller with stable dynamics the stealthy sensor attack is possible to conduct and the theoretical worst-case impact is close to the achieved practical one. However, although the attack should theoretically be possible when the controller has integral action, we show that the integral action slows the attacker down and the attacker is not able to remain stealthy if it has not perfect knowledge of the controller state. In addition to that, we investigate the effect of different anomaly detectors on the attack impact and conclude that the impact under detectors with internal dynamics is smaller. Finally, we use noise injection into the controller dynamics to unveil the otherwise stealthy attacks.

show abstract

Simulation and Real-World Evaluation of Attack Detection Schemes

Cited by 15 publications

References 20 publications

A Dynamic Watermarking Algorithm for Finite Markov Decision Problems

A Dynamic Watermarking Algorithm for Finite Markov Decision Problems

Detecting Deception Attacks on Autonomous Vehicles via Linear Time-Varying Dynamic Watermarking

Experimental evaluation of sensor attacks and defense mechanisms in feedback systems

Contact Info

Product

Resources

About