Optimization-based attack against control systems with CUSUM-based anomaly detection

Gabriele Gualandi; Martina Maggio; Alessandro Vittorio Papadopoulos

doi:10.1109/MED54222.2022.9837192

Optimization-based attack against control systems with CUSUM-based anomaly detection

Gabriele Gualandi, Martina Maggio, Alessandro Vittorio Papadopoulos

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

Abstract

Security attacks on sensor data can deceive a control system and force the physical plant to reach an unwanted and potentially dangerous state. Therefore, attack detection mechanisms are employed in cyber-physical control systems to detect ongoing attacks, the most prominent one being a threshold-based anomaly detection method called CUSUM. Literature defines the maximum impact of stealth attacks as the maximum deviation in the plant's state that an undetectable attack can introduce, and formulates it as an optimization problem. This paper proposes an optimization-based attack with different saturation models, and it investigates how the attack duration significantly affects the impact of the attack on the state of the plant. We show that more dangerous attacks can be discovered when allowing saturation of the control system actuators. The proposed approach is compared with the geometric attack, showing how longer attack durations can lead to a greater impact of the attack while keeping the attack stealthy.

Original language	English
Title of host publication	2022 30th Mediterranean Conference on Control and Automation, MED 2022
Publisher	IEEE - Institute of Electrical and Electronics Engineers Inc.
Pages	896-901
Number of pages	6
ISBN (Electronic)	9781665406734
DOIs	https://doi.org/10.1109/MED54222.2022.9837192
Publication status	Published - 2022
Externally published	Yes
Event	30th Mediterranean Conference on Control and Automation, MED 2022 - Athens, Greece Duration: 2022 Jun 28 → 2022 Jul 1

Publication series

Name	2022 30th Mediterranean Conference on Control and Automation, MED 2022

Conference

Conference	30th Mediterranean Conference on Control and Automation, MED 2022
Country/Territory	Greece
City	Athens
Period	2022/06/28 → 2022/07/01

Bibliographical note

Publisher Copyright:
© 2022 IEEE.

Subject classification (UKÄ)

Control Engineering

Access to Document

10.1109/MED54222.2022.9837192

Cite this

Gualandi, G., Maggio, M., & Vittorio Papadopoulos, A. (2022). Optimization-based attack against control systems with CUSUM-based anomaly detection. In 2022 30th Mediterranean Conference on Control and Automation, MED 2022 (pp. 896-901). (2022 30th Mediterranean Conference on Control and Automation, MED 2022). IEEE - Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/MED54222.2022.9837192

Gualandi, Gabriele ; Maggio, Martina ; Vittorio Papadopoulos, Alessandro. / Optimization-based attack against control systems with CUSUM-based anomaly detection. 2022 30th Mediterranean Conference on Control and Automation, MED 2022. IEEE - Institute of Electrical and Electronics Engineers Inc., 2022. pp. 896-901 (2022 30th Mediterranean Conference on Control and Automation, MED 2022).

@inproceedings{1a164f8d045c475ea0a818de647afe8d,

title = "Optimization-based attack against control systems with CUSUM-based anomaly detection",

abstract = "Security attacks on sensor data can deceive a control system and force the physical plant to reach an unwanted and potentially dangerous state. Therefore, attack detection mechanisms are employed in cyber-physical control systems to detect ongoing attacks, the most prominent one being a threshold-based anomaly detection method called CUSUM. Literature defines the maximum impact of stealth attacks as the maximum deviation in the plant's state that an undetectable attack can introduce, and formulates it as an optimization problem. This paper proposes an optimization-based attack with different saturation models, and it investigates how the attack duration significantly affects the impact of the attack on the state of the plant. We show that more dangerous attacks can be discovered when allowing saturation of the control system actuators. The proposed approach is compared with the geometric attack, showing how longer attack durations can lead to a greater impact of the attack while keeping the attack stealthy.",

author = "Gabriele Gualandi and Martina Maggio and \{Vittorio Papadopoulos\}, Alessandro",

note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 30th Mediterranean Conference on Control and Automation, MED 2022 ; Conference date: 28-06-2022 Through 01-07-2022",

year = "2022",

doi = "10.1109/MED54222.2022.9837192",

language = "English",

series = "2022 30th Mediterranean Conference on Control and Automation, MED 2022",

publisher = "IEEE - Institute of Electrical and Electronics Engineers Inc.",

pages = "896--901",

booktitle = "2022 30th Mediterranean Conference on Control and Automation, MED 2022",

address = "United States",

}

Gualandi, G, Maggio, M & Vittorio Papadopoulos, A 2022, Optimization-based attack against control systems with CUSUM-based anomaly detection. in 2022 30th Mediterranean Conference on Control and Automation, MED 2022. 2022 30th Mediterranean Conference on Control and Automation, MED 2022, IEEE - Institute of Electrical and Electronics Engineers Inc., pp. 896-901, 30th Mediterranean Conference on Control and Automation, MED 2022, Athens, Greece, 2022/06/28. https://doi.org/10.1109/MED54222.2022.9837192

Optimization-based attack against control systems with CUSUM-based anomaly detection. / Gualandi, Gabriele; Maggio, Martina; Vittorio Papadopoulos, Alessandro.
2022 30th Mediterranean Conference on Control and Automation, MED 2022. IEEE - Institute of Electrical and Electronics Engineers Inc., 2022. p. 896-901 (2022 30th Mediterranean Conference on Control and Automation, MED 2022).

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

TY - GEN

T1 - Optimization-based attack against control systems with CUSUM-based anomaly detection

AU - Gualandi, Gabriele

AU - Maggio, Martina

AU - Vittorio Papadopoulos, Alessandro

PY - 2022

Y1 - 2022

N2 - Security attacks on sensor data can deceive a control system and force the physical plant to reach an unwanted and potentially dangerous state. Therefore, attack detection mechanisms are employed in cyber-physical control systems to detect ongoing attacks, the most prominent one being a threshold-based anomaly detection method called CUSUM. Literature defines the maximum impact of stealth attacks as the maximum deviation in the plant's state that an undetectable attack can introduce, and formulates it as an optimization problem. This paper proposes an optimization-based attack with different saturation models, and it investigates how the attack duration significantly affects the impact of the attack on the state of the plant. We show that more dangerous attacks can be discovered when allowing saturation of the control system actuators. The proposed approach is compared with the geometric attack, showing how longer attack durations can lead to a greater impact of the attack while keeping the attack stealthy.

AB - Security attacks on sensor data can deceive a control system and force the physical plant to reach an unwanted and potentially dangerous state. Therefore, attack detection mechanisms are employed in cyber-physical control systems to detect ongoing attacks, the most prominent one being a threshold-based anomaly detection method called CUSUM. Literature defines the maximum impact of stealth attacks as the maximum deviation in the plant's state that an undetectable attack can introduce, and formulates it as an optimization problem. This paper proposes an optimization-based attack with different saturation models, and it investigates how the attack duration significantly affects the impact of the attack on the state of the plant. We show that more dangerous attacks can be discovered when allowing saturation of the control system actuators. The proposed approach is compared with the geometric attack, showing how longer attack durations can lead to a greater impact of the attack while keeping the attack stealthy.

UR - https://www.scopus.com/pages/publications/85136286305

U2 - 10.1109/MED54222.2022.9837192

DO - 10.1109/MED54222.2022.9837192

M3 - Paper in conference proceeding

AN - SCOPUS:85136286305

T3 - 2022 30th Mediterranean Conference on Control and Automation, MED 2022

SP - 896

EP - 901

BT - 2022 30th Mediterranean Conference on Control and Automation, MED 2022

PB - IEEE - Institute of Electrical and Electronics Engineers Inc.

T2 - 30th Mediterranean Conference on Control and Automation, MED 2022

Y2 - 28 June 2022 through 1 July 2022

ER -

Gualandi G, Maggio M, Vittorio Papadopoulos A. Optimization-based attack against control systems with CUSUM-based anomaly detection. In 2022 30th Mediterranean Conference on Control and Automation, MED 2022. IEEE - Institute of Electrical and Electronics Engineers Inc. 2022. p. 896-901. (2022 30th Mediterranean Conference on Control and Automation, MED 2022). doi: 10.1109/MED54222.2022.9837192

Optimization-based attack against control systems with CUSUM-based anomaly detection

Abstract

Publication series

Conference

Bibliographical note

Subject classification (UKÄ)

Access to Document

Other files and links

Fingerprint

Cite this