Impact Analysis of Cyber-Physical Attacks on a Water Tank System via Statistical Model Checking

Cyber-Physical Systems (CPSs) are integrations of distributed computing systems with physical processes that monitor and control entities in a physical environment. Although the range of their applications include several critical domains, the current trend is to verify CPSs with simulation-test sys...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:2020 IEEE/ACM 8th International Conference on Formal Methods in Software Engineering (FormaliSE) s. 34 - 43
Hlavní autoři: Munteanu, Andrei, Pasqua, Michele, Merro, Massimo
Médium: Konferenční příspěvek
Jazyk:angličtina
Vydáno: ACM 01.05.2020
Témata:
attack impact/mitigation
Cyber-physical attack
Model checking
Organizations
Process control
Safety
security analysis
Sensor systems
Sensors
Storage tanks
ISSN:2575-5099
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:Cyber-Physical Systems (CPSs) are integrations of distributed computing systems with physical processes that monitor and control entities in a physical environment. Although the range of their applications include several critical domains, the current trend is to verify CPSs with simulation-test systems rather than formal methodologies. In this paper, we test the effectiveness of statistical model checking, within the MODEST TOOLSET, when analyzing the security of a non-trivial quadruple-tank water system equipped with an ad-hoc intrusion detection system (IDS) capable of mitigating attacks. Our goal is to evaluate the impact of three carefully chosen cyber-physical attacks, i. e., attacks targeting sensors and/or actuators of the system with potential consequences on the safety of the inner physical process. Our security analysis estimates both the physical impact of the attacks and the performance of the proposed IDS.CCS CONCEPTS*Computer systems organization \rightarrow Sensors and actuators;*Software and its engineering \rightarrow Model checking.
ISSN:2575-5099
DOI:10.1145/3372020.3391563