A Dynamic Coding Scheme to Prevent Covert Cyber-Attacks in Cyber-Physical Systems
Mahdi Taheri, Khashayar Khorasani, Nader Meskin
TL;DR
This work addresses covert cyber-attacks in cyber-physical systems by deriving necessary and sufficient disruption-resource conditions that define which input and output channels must be compromised. It then introduces a dynamic coding scheme with an encoder and decoder to shield the CPS, proving that with one secure input and two secure outputs, covert attacks can be prevented under specified design conditions. The authors formulate a horizon-based I/O model, utilize relative-degree concepts to avoid heavy controllability analyses, and validate the approach through a numerical flight-control case study. The findings offer a practical defense mechanism for CPS operators and suggest avenues for extending the method to distributed, multi-agent settings.
Abstract
In this paper, we address two main problems in the context of covert cyber-attacks in cyber-physical systems (CPS). First, we aim to investigate and develop necessary and sufficient conditions in terms of disruption resources of the CPS that enable adversaries to execute covert cyber-attacks. These conditions can be utilized to identify the input and output communication channels that are needed by adversaries to execute these attacks. Second, this paper introduces and develops a dynamic coding scheme as a countermeasure against covert cyber-attacks. Under certain conditions and assuming the existence of one secure input and two secure output communication channels, the proposed dynamic coding scheme prevents adversaries from executing covert cyber-attacks. A numerical case study of a flight control system is provided to demonstrate the capabilities of our proposed and developed dynamic coding scheme.