Automated Malware Design for Cyber Physical Systems
| Title | Automated Malware Design for Cyber Physical Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2021 |
| Authors | Tantawy, Ashraf |
| Conference Name | 2021 9th International Symposium on Digital Forensics and Security (ISDFS) |
| Date Published | June 2021 |
| Publisher | IEEE |
| ISBN Number | 978-1-6654-4481-1 |
| Keywords | Attack, Control System, CPS, Cyber physical system, Fault tolerance, formal specification, Hazards, Heuristic algorithms, Learning systems, Malware, predictability, pubcrawl, resilience, Resiliency, reverse engineering, Safety, safety property, SCADA, Scalability, security, Security Heuristics, Systematics |
| Abstract | The design of attacks for cyber physical systems is critical to assess CPS resilience at design time and run-time, and to generate rich datasets from testbeds for research. Attacks against cyber physical systems distinguish themselves from IT attacks in that the main objective is to harm the physical system. Therefore, both cyber and physical system knowledge are needed to design such attacks. The current practice to generate attacks either focuses on the cyber part of the system using IT cyber security existing body of knowledge, or uses heuristics to inject attacks that could potentially harm the physical process. In this paper, we present a systematic approach to automatically generate integrity attacks from the CPS safety and control specifications, without knowledge of the physical system or its dynamics. The generated attacks violate the system operational and safety requirements, hence present a genuine test for system resilience. We present an algorithm to automate the malware payload development. Several examples are given throughout the paper to illustrate the proposed approach. |
| URL | https://ieeexplore.ieee.org/document/9486384 |
| DOI | 10.1109/ISDFS52919.2021.9486384 |
| Citation Key | tantawy_automated_2021 |