Distributed Detection of Single-Stage Multipoint Cyber Attacks in a Water Treatment Plant
| Title | Distributed Detection of Single-Stage Multipoint Cyber Attacks in a Water Treatment Plant |
| Publication Type | Conference Paper |
| Year of Publication | 2016 |
| Authors | Adepu, Sridhar, Mathur, Aditya |
| Conference Name | Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security |
| Date Published | May 2016 |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4233-9 |
| Keywords | actuator security, composability, compositionality, Cyber Attacks, cyber physical systems, cyber security, distributed detection, Human Behavior, invariants, Metrics, pubcrawl, Resiliency, SCADA, SCADA Systems Security, security by design, water treatment |
| Abstract | A distributed detection method is proposed to detect single stage multi-point (SSMP) attacks on a Cyber Physical System (CPS). Such attacks aim at compromising two or more sensors or actuators at any one stage of a CPS and could totally compromise a controller and prevent it from detecting the attack. However, as demonstrated in this work, using the flow properties of water from one stage to the other, a neighboring controller was found effective in detecting such attacks. The method is based on physical invariants derived for each stage of the CPS from its design. The attack detection effectiveness of the method was evaluated experimentally against an operational water treatment testbed containing 42 sensors and actuators. Results from the experiments point to high effectiveness of the method in detecting a variety of SSMP attacks but also point to its limitations. Distributing the attack detection code among various controllers adds to the scalability of the proposed method. |
| URL | https://dl.acm.org/doi/10.1145/2897845.2897855 |
| DOI | 10.1145/2897845.2897855 |
| Citation Key | adepu_distributed_2016 |