Dynamic watermarking for general LTI systems

  title={Dynamic watermarking for general LTI systems},
  author={Pedro Hespanhol and Matthew Porter and Ram Vasudevan and Anil Aswani},
  journal={2017 IEEE 56th Annual Conference on Decision and Control (CDC)},
Detecting attacks in control systems is an important aspect of designing secure and resilient control systems. Recently, a dynamic watermarking approach was proposed for detecting malicious sensor attacks for SISO LTI systems with partial state observations and MIMO LTI systems with a full rank input matrix and full state observations; however, these previous approaches cannot be applied to general LTI systems that are MIMO and have partial state observations. This paper designs a dynamic… 

Figures from this paper

Statistical Watermarking for Networked Control Systems

A statistical watermarking test that can detect both sensor and communication attacks in closed-loop LTI systems with subcontrollers is derived and two approaches to design such a controller using Heymann's lemma and a multi-input generalization of Heymann' lemma are provided.

Detecting Generalized Replay Attacks via Time-Varying Dynamic Watermarking

This article develops a linear time-varying (LTV) extension to previous dynamic watermarking methods by designing a matrix normalization factor to accommodate the temporal changes in the system.

Sensor Switching Control Under Attacks Detectable by Finite Sample Dynamic Watermarking Tests

New finite sample hypothesis tests for dynamic watermarking in the case of bounded disturbances are developed, using the modern theory of concentration of measure for random matrices to overcome the problem of switching between two sets of sensors.

Secure Control of Networked Control Systems Using Dynamic Watermarking

The secure control of networked control systems developing a new dynamic watermarking (DW) scheme is investigated, and theoretical analysis shows that the system performance can be recovered from FDIA using the proposed scheme.

Detecting Deception Attacks on Autonomous Vehicles via Linear Time-Varying Dynamic Watermarking

A replay attack, which replays previously recorded measurements, is shown to be detectable using LTV Dynamic Watermarking in a quick and repeatable manner and an auto-correlation normalizing factor is constructed to remove the effects of auto- Correlation.

Attack Detection for Networked Control Systems Using Event-Triggered Dynamic Watermarking

A new event-triggered dynamicWatermarking (ETDW) scheme is designed by treating watermarking as symmetric key encryption, based on the limit convergence theorem in probability, which demonstrates the validity of this proposed scheme.

Covariance-Robust Dynamic Watermarking

A new dynamic watermarking method is developed that is able to handle uncertainties in the covariance of measurement noise, and it is shown that the efficacy of the tests are exhibited on empirical examples chosen to reflect values observed in a standard simulation model of autonomous vehicles.

On the Design of Security-Guaranteeing Dynamic Watermarks

This letter addresses the problem of designing watermarks for linear systems affected by arbitrarily distributed noise and shows how the fundamental security guarantee of DW can fail when the statistics of the watermark are not chosen appropriately taking into account the parameters of the noise process that affects the system.

Active detection for exposing intelligent attacks in control systems

This paper considers approaches for detecting integrity attacks carried out by intelligent and resourceful adversaries in control systems and carefully review two approaches for active detection: physical watermarking at the control input, and a moving target approach for generating system dynamics.

The Watermark-Securable Subspace of a Linear System Containing a Single Malicious Actuator

This paper presents a precise characterization of the watermark-securable subspace for any system containing at most one malicious actuator, and shows how this space can be decomposed into two orthogonal subspaces, called the watermarksensitive and the watermarked subspace.



Secure Estimation and Control for Cyber-Physical Systems Under Adversarial Attacks

A new simple characterization of the maximum number of attacks that can be detected and corrected as a function of the pair (A,C) of the system is given and it is shown that it is impossible to accurately reconstruct the state of a system if more than half the sensors are attacked.

Detecting integrity attacks on control systems using robust physical watermarking

An attack model for an adversary who uses knowledge of the system as well as access to a subset of real time control inputs and sensor outputs to construct stealthy virtual outputs is formulated and a robust physical watermark and detector to counter such an adversary is proposed.

Secure control against replay attacks

  • Yilin MoB. Sinopoli
  • Computer Science, Mathematics
    2009 47th Annual Allerton Conference on Communication, Control, and Computing (Allerton)
  • 2009
This paper analyzes the effect of replay attacks on a control system and proposes a countermeasure that guarantees a desired probability of detection by trading off either detection delay or LQG performance, either by decreasing control accuracy or increasing control effort.

False data injection attacks against state estimation in wireless sensor networks

An ellipsoidal algorithm is provided to compute its inner and outer approximations of the set of all the estimation biases that an attacker can inject into the system without being detected, providing a quantitative measure of the resilience of the system to such attacks.

Security in stochastic control systems: Fundamental limitations and performance bounds

This work proposes a novel metric, ε-stealthiness, to characterize the resilience of stochastic cyber-physical systems to attacks and faults and quantifies the difficulty to detect an attack when an arbitrary detection algorithm is implemented by the controller.

Theory and implementation of dynamic watermarking for cybersecurity of advanced transportation systems

It is shown how dynamic watermarking can handle nonlinearities arising in vehicular models and indeed restores the property of collision freedom even in the presence of attacks.

Dynamic Watermarking: Active Defense of Networked Cyber–Physical Systems

A general technique is addressed by which the actuators can detect the actions of malicious sensors in the system and disable closed-loop control based on their information, called watermarking, which employs the technique of actuators injecting private excitation into the system, which will reveal malicious tampering with signals.

Physical Authentication of Control Systems: Designing Watermarked Control Inputs to Detect Counterfeit Sensor Outputs

A wide variety of motivations exists for launching an attack on CPSs, ranging from economic reasons, such as obtaining a financial gain, all the way to terrorism, for instance, threatening an entire population by manipulating life-critical resources.

Detecting Integrity Attacks on SCADA Systems

The main contributions of this paper lies in enumerating the conditions of the feasibility of the replay attack, and suggesting countermeasures that optimize the probability of detection by conceding control performance.

Attack Detection and Identification in Cyber-Physical Systems

This paper proposes a mathematical framework for cyber-physical systems, attacks, and monitors, and describes fundamental monitoring limitations from system-theoretic and graph- theoretic perspectives and designs centralized and distributed attack detection and identification monitors.