Cybersecurity Challenges in Distributed Control (original) (raw)
Related papers
Cyber-Defensive Architecture for Networked Industrial Control Systems
This paper deals with the inevitable consequence of the convenience and efficiency we benefit from the open, networked control system operation of safety-critical applications: vulnerability to such system from cyber-attacks. Even with numerous metrics and methods for intrusion detection and mitigation strategy, a complete detection and deterrence of internal code flaws and outside cyber-attacks has not been found and would not be found anytime soon. Considering the ever incompleteness of detection and prevention and the impact and consequence of malfunctions of the safety-critical operations caused by cyber incidents, this paper proposes a new computer control system architecture which assures resiliency even under compromised situations. The proposed architecture is centered on diversification of hardware systems and unidirectional communication from the proposed system in alerting suspicious activities to upper layers. This paper details the architectural structure of the proposed cyber defensive computer control system architecture for power substation applications and its validation in lab experimentation and on a cybersecurity testbed.
2017
Today’s society relies upon the smooth and secure functioning of the mission-critical infrastructures and their services. Much of this critical infrastructure relies on the complex cyber-physical systems and the industrial control systems. In recent years, securing these two types of systems has been a top priority due to a significant increase in number of attacks. Most of these systems are often several decades old, and they were developed without significant consideration of the security requirements. As such, there is an urgent need to protect these cyber-physical and industrial systems from external vulnerabilities. In this paper, we present a survey of the cyber-physical and industrial control systems, and explore the possibility and necessity for security of such systems. We discuss the various types of cyber-physical and industrial control systems currently being used, assess the vulnerabilities of such systems, discuss the literature on the cyber-physical and industrial con...
Attack models and scenarios for networked control systems
HiCoNS'12 - Proceedings of the 1st ACM International Conference on High Confidence Networked Systems, 2012
Cyber-secure networked control is modeled, analyzed, and experimentally illustrated in this paper. An attack space defined by the adversary's system knowledge, disclosure, and disruption resources is introduced. Adversaries constrained by these resources are modeled for a networked control system architecture. It is shown that attack scenarios corresponding to replay, zero dynamics, and bias injection attacks can be analyzed using this framework. An experimental setup based on a quadruple-tank process controlled over a wireless network is used to illustrate the attack scenarios, their consequences, and potential counter-measures.
Cyber-Physical Attack Detection for Networked Control Systems
2020
Until 1960s, control systems consisted mainly of mechanical or analog electronic devices exchanging information among system components, i.e., sensors, controllers, and actuators, via wired communication. However, recent advancement in computer and communication industries have led to the growing use of Internet, embedded systems, wireless and digital communication technologies in many industrial control systems and transformed them into Networked Control Systems (NCSs). A defining feature of an NCS is that it consists of a number of devices implemented distributively so that system information is exchanged through a shared communication network. In light of many distinct advantages of NCSs including flexible architectures and less installation and maintenance costs, the development and application of NCSs have been recently boosted in a wide range of practical areas and critical infrastructures including transportation systems, electrical power systems and smart grids, remote surge...
Integrated protection of industrial control systems from cyber-attacks: the ATENA approach
International Journal of Critical Infrastructure Protection
Industrial and Automation Control systems traditionally achieved security thanks to the use of proprietary protocols and isolation from the telecommunication networks. Nowadays, the advent of the Industrial Internet of Things poses new security challenges. In this paper, we first highlight the main security challenges that advocate for new risk assessment and security strategies. To this end we propose a security framework and advanced tools to properly manage vulnerabilities, and to timely react to the threats. The proposed architecture fills the gap between computer science and control theoretic approaches. The physical layers connected to Industrial Control Systems are prone to disrupt when facing cyber-attacks. Considering the modules of the proposed architecture, we focus on the development of a practical framework to compare information about physical faults and cyber-attacks. This strat
Cybersecurity for industrial control systems: A survey
Computers & Security, 2020
Industrial Control System (ICS) is a general term that includes supervisory control & data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as pro- grammable logic controllers (PLC). ICSs are often found in the industrial sectors and critical infrastruc- tures, such as nuclear and thermal plants, water treatment facilities, power generation, heavy industries, and distribution systems. Though ICSs were kept isolated from the Internet for so long, significant achiev- able business benefits are driving a convergence between ICSs and the Internet as well as information technology (IT) environments, such as cloud computing. As a result, ICSs have been exposed to the at- tack vectors used in the majority of cyber-attacks. However, ICS devices are inherently much less secure against such advanced attack scenarios. A compromise to ICS can lead to enormous physical damage and danger to human lives. In this work, we have a close look at the shift of the ICS from stand-alone systems to cloud-based environments. Then we discuss the major works, from industry and academia towards the development of the secure ICSs, especially applicability of the machine learning techniques for the ICS cyber-security. The work may help to address the challenges of securing industrial processes, particularly while migrating them to the cloud environments.
Iet Control Theory and Applications, 2022
Nowadays, interconnected cyber-physical systems (CPSs) are widely used with increasing deployments of Industrial Internet of Things (IIoT) applications. Other than operating properly under system uncertainties, CPSs should be secured under unwanted adversaries. To mark such challenges, this paper proposes the solution of secure decentralized robust control for uncertain CPSs under replayed time-delay and false-data injection attacks altogether. Potentially, considered attacks can force the whole system to instability and crash. Three challenges are addressed, and solutions are presented: (1) model non-linearity and uncertainties, (2) existing simultaneous time-delay and potential false-data injection attacks with skew probability density functions, and (3) requirement to use real-time attack detection. Thus, a novel, robust control method to deal with thwart attacks on a closed-loop control system is proposed to provide the system's trustworthiness. Additionally, novel attack detection methodologies are presented to detect these advanced attacks rapidly based on statistical methods such as Spearman's correlation coefficient, Neyman-Pearson (NP) error classification, and trend analysis. Ultimately, the proposed novel attack detection and robust control protocol are verified and evaluated in real-time. 1 This is an open access article under the terms of the Creative Commons Attribution License, which permits use, distribution and reproduction in any medium, provided the original work is properly cited.
A Novel Method for Resilient Networked Industrial Control System Security
Current Industry processing is using the digital data which are coming from different geographical location and different environmental resources with the help of internet. Here no one can be trusted and it is possible more than a few kind threads come from different directions. Multidimensional approach to the network security is the only way able to crash these challenges. Diffusion methods or canned attacks which are recommended by the conventional network security system are outdated and impractical. It is essential to create a new resilient architecture that can survive the different types of attack and then need the speedy recovery if a breach does occur. Resilient Industrial networked control system is very important for every organization which is using a number of decisive infrastructures. Proposed method provide a framework of the control system application to build effective security mechanism that integrate all aspects of cyber security, incorporating desktop and business computing systems with industrial automation and control systems through a novel attack resilient algorithm. This paper to recommend the path to reduce the complexity of the control system and provide the safety mechanism for reliable system which is decreased the threads and increase the data integrity with privacy in all kind of organizational processing.
Distributed Control of Cyber Physical System on Various Domains: A Critical Review
Systems
Cyber-Physical System (CPS) is a symbol of the fourth industrial revolution (4IR) by integrating physical and computational processes which can associate with humans in various ways. In short, the relationship between Cyber networks and the physical component is known as CPS, which is assisting to incorporate the world and influencing our ordinary life significantly. In terms of practical utilization of CPS interacting abundant difficulties. Currently, CPS is involved in modern society very vastly with many uptrend perspectives. All the new technologies by using CPS are accelerating our journey of innovation. In this paper, we have explained the research areas of 14 important domains of Cyber-Physical Systems (CPS) including aircraft transportation systems, battlefield surveillance, chemical production, energy, agriculture (food supply), healthcare, education, industrial automation, manufacturing, mobile devices, robotics, transportation, and vehicular. We also demonstrated the chal...