research-article

Design-time Quantification of Integrity in Cyber-physical Systems

Authors:

Eric Rothstein Morris,

Carlos G. Murguia,

Martín OchoaAuthors Info & Claims

PLAS '17: Proceedings of the 2017 Workshop on Programming Languages and Analysis for Security

Pages 63 - 74

https://doi.org/10.1145/3139337.3139347

Published: 30 October 2017 Publication History

Get Access

Abstract

In a software system it is possible to quantify the amount of information that is leaked or corrupted by analysing the flows of information present in the source code. In a cyber-physical system, information flows are not only present at the digital level but also at a physical level, and they are also present to and fro the two levels. In this work, we provide a methodology to formally analyse a composite, cyber-physical system model (combining physics and control) using an information flow-theoretic approach. We use this approach to quantify the level of vulnerability of a system with respect to attackers with different capabilities. We illustrate our approach by means of a water distribution case study.

References

[1]

B.M. Adams, W.H. Woodall, and C.A. Lowry 1992. The use (and misuse) of false alarm probabilities in control chart design. Frontiers in Statistical Quality Control 4 (1992), 155--168.

Crossref

Google Scholar

[2]

Sridhar Adepu and Aditya Mathur 2016. Using Process Invariants to Detect Cyber Attacks on a Water Treatment System. Springer International Publishing, Cham, 91--104. https://doi.org/10.1007/978--3--319--33630--5_7

Crossref

Google Scholar

[3]

Rajeev Alur. 2015. Principles of cyber-physical systems. MIT Press.

Google Scholar

[4]

R. Alur, C. Courcoubetis, N. Halbwachs, T.A. Henzinger, P.-H. Ho, X. Nicollin, A. Olivero, J. Sifakis, and S. Yovine 1995. The algorithmic analysis of hybrid systems. Theoretical Computer Science Vol. 138, 1 (1995), 3 -- 34. 1145/2976749.2978388

Digital Library

Google Scholar

[5]

C.S. van Dobben de Bruyn. 1968. Cumulative sum tests : theory and practice. London : Griffin.

Google Scholar

[6]

A. Wald 1945. Sequential Tests of Statistical Hypotheses. Ann. Math. Statist. Vol. 16 (1945), 117--186.

Crossref

Google Scholar

[7]

S. Weerakkody and B. Sinopoli 2015. Detecting integrity attacks on control systems using a moving target approach 2015 54th IEEE Conference on Decision and Control (CDC). 5820--5826.

Google Scholar

[8]

S. Weerakkody, B. Sinopoli, S. Kar, and A. Datta. 2016. Information flow for security in control systems. 2016 IEEE 55th Conference on Decision and Control (CDC). 5065--5072. https://doi.org/10.1109/CDC.2016.7799044

Crossref

Google Scholar

[9]

A. Willsky. 1976. A survey of design methods for failure detection in dynamic systems. Automatica Vol. 12 (1976), 601 -- 611. endthebibliography

Digital Library

Google Scholar

Cited By

View all

Castellanos JOchoa MCardenas AArden OZHOU JBilge LDumitras T(2021)AttkFinder: Discovering Attack Vectors in PLC Programs using Information Flow AnalysisProceedings of the 24th International Symposium on Research in Attacks, Intrusions and Defenses10.1145/3471621.3471864(235-250)Online publication date: 6-Oct-2021
https://dl.acm.org/doi/10.1145/3471621.3471864
Amir-Mohammadian SCao JHo Au MConti MTippenhauer N(2021)A Semantic Framework for Direct Information Flows in Hybrid-Dynamic SystemsProceedings of the 7th ACM on Cyber-Physical System Security Workshop10.1145/3457339.3457981(5-15)Online publication date: 24-May-2021
https://dl.acm.org/doi/10.1145/3457339.3457981
Murguia CShames IFarokhi FNešic D(2020)Privacy Against State estimation: An Optimization Framework based on the Data Processing InequalityIFAC-PapersOnLine10.1016/j.ifacol.2020.12.126053:2(7368-7373)Online publication date: 2020
https://doi.org/10.1016/j.ifacol.2020.12.1260
Show More Cited By

Index Terms

Design-time Quantification of Integrity in Cyber-physical Systems
1. Security and privacy
  1. Formal methods and theory of security
    1. Formal security models
    2. Logic and verification
  2. Systems security
    1. Information flow control
2. Theory of computation
  1. Logic
    1. Logic and verification

Recommendations

Information Flow Quantification Framework for Cyber Physical System with Constrained Resources
COMPSAC '15: Proceedings of the 2015 IEEE 39th Annual Computer Software and Applications Conference - Volume 02

In Cyber Physical Systems (CPSs), traditional security mechanisms such as cryptography and access control are not enough to ensure the security of the system. In a CPS, security is violated through complex interactions between the cyber and physical ...
Towards Independent In-Cloud Evolution of Cyber-Physical Systems
CPSNA '14: Proceedings of the 2014 IEEE International Conference on Cyber-Physical Systems, Networks, and Applications

The capabilities of Cyber-Physical Systems (CPSs) are increasingly being extended towards new composite services deployed across a range of smart sensing and controlling devices. These services enable the emergence of multiple end-to-end cyber-physical ...
On synergies of cyber and physical security modelling in vulnerability assessment of railway systems

Display Omitted Cyber-physical systems need holistic methods to discover relationships between physical and cyber components.Security threats attempt to both physical and cyber elements.Model-driven techniques accounting for joint physical and cyber-...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

PLAS '17: Proceedings of the 2017 Workshop on Programming Languages and Analysis for Security

October 2017

128 pages

ISBN:9781450350990

DOI:10.1145/3139337

Program Chairs:
Nataliia Bielova
INRIA, France
,
Marco Gaboardi
University at Buffalo, SUNY, USA

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than the author(s) must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected].

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 30 October 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

CCS '17

Sponsor:

SIGSAC

CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security

October 30, 2017

Texas, Dallas, USA

Acceptance Rates

PLAS '17 Paper Acceptance Rate 8 of 10 submissions, 80%;

Overall Acceptance Rate 43 of 77 submissions, 56%

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

8
Total Citations
View Citations
103
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)0

Reflects downloads up to 01 Oct 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Castellanos JOchoa MCardenas AArden OZHOU JBilge LDumitras T(2021)AttkFinder: Discovering Attack Vectors in PLC Programs using Information Flow AnalysisProceedings of the 24th International Symposium on Research in Attacks, Intrusions and Defenses10.1145/3471621.3471864(235-250)Online publication date: 6-Oct-2021
https://dl.acm.org/doi/10.1145/3471621.3471864
Amir-Mohammadian SCao JHo Au MConti MTippenhauer N(2021)A Semantic Framework for Direct Information Flows in Hybrid-Dynamic SystemsProceedings of the 7th ACM on Cyber-Physical System Security Workshop10.1145/3457339.3457981(5-15)Online publication date: 24-May-2021
https://dl.acm.org/doi/10.1145/3457339.3457981
Murguia CShames IFarokhi FNešic D(2020)Privacy Against State estimation: An Optimization Framework based on the Data Processing InequalityIFAC-PapersOnLine10.1016/j.ifacol.2020.12.126053:2(7368-7373)Online publication date: 2020
https://doi.org/10.1016/j.ifacol.2020.12.1260
Rothstein-Morris ESun JChattopadhyay S(2020)Systematic Classification of Attackers via Bounded Model CheckingVerification, Model Checking, and Abstract Interpretation10.1007/978-3-030-39322-9_11(226-247)Online publication date: 16-Jan-2020
https://dl.acm.org/doi/10.1007/978-3-030-39322-9_11
Murguia CRuths J(2018)On Reachable Sets of Hidden CPS Sensor Attacks2018 Annual American Control Conference (ACC)10.23919/ACC.2018.8431582(178-184)Online publication date: Jun-2018
https://doi.org/10.23919/ACC.2018.8431582
Kafash SGiraldo JMurguia CCardenas ARuths J(2018)Constraining Attacker Capabilities Through Actuator Saturation2018 Annual American Control Conference (ACC)10.23919/ACC.2018.8430881(986-991)Online publication date: Jun-2018
https://doi.org/10.23919/ACC.2018.8430881
Castellanos JOchoa MZhou J(2018)Finding Dependencies between Cyber-Physical Domains for Security Testing of Industrial Control SystemsProceedings of the 34th Annual Computer Security Applications Conference10.1145/3274694.3274745(582-594)Online publication date: 3-Dec-2018
https://dl.acm.org/doi/10.1145/3274694.3274745
Liu JCorbett-Davies JFerraiuolo AIvanov ALuo MSuh GMyers ACampbell MLie DMannan MRashid ATippenhaeur N(2018)Secure Autonomous Cyber-Physical Systems Through Verifiable Information Flow ControlProceedings of the 2018 Workshop on Cyber-Physical Systems Security and PrivaCy10.1145/3264888.3264889(48-59)Online publication date: 15-Oct-2018
https://dl.acm.org/doi/10.1145/3264888.3264889

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Information Flow Quantification Framework for Cyber Physical System with Constrained Resources

Towards Independent In-Cloud Evolution of Cyber-Physical Systems

On synergies of cyber and physical security modelling in vulnerability assessment of railway systems