Model-based security analysis of a water treatment system
An approach to analyzing the security of a cyber-physical system (CPS) is proposed, where the behavior of a physical plant and its controller are captured in approximate models, and their interaction is rigorously checked to discover potential attacks that involve a varying number of compromised sen...
| Main Authors: | , , , |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | en_US |
| Published: |
Association for Computing Machinery
2018
|
| Online Access: | http://hdl.handle.net/1721.1/114444 https://orcid.org/0000-0002-0194-3989 https://orcid.org/0000-0003-4864-078X |
| _version_ | 1826202326820454400 |
|---|---|
| author | Kang, Eunsuk Adepu, Sridhar Jackson, Daniel Mathur, Aditya P. |
| author2 | Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science |
| author_facet | Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science Kang, Eunsuk Adepu, Sridhar Jackson, Daniel Mathur, Aditya P. |
| author_sort | Kang, Eunsuk |
| collection | MIT |
| description | An approach to analyzing the security of a cyber-physical system (CPS) is proposed, where the behavior of a physical plant and its controller are captured in approximate models, and their interaction is rigorously checked to discover potential attacks that involve a varying number of compromised sensors and actuators. As a preliminary study, this approach has been applied to a fully functional water treatment testbed constructed at the Singapore University of Technology and Design. The analysis revealed previously unknown attacks that were confirmed to pose serious threats to the safety of the testbed, and suggests a number of research challenges and opportunities for applying a similar type of formal analysis to cyber-physical security. |
| first_indexed | 2024-09-23T12:05:45Z |
| format | Article |
| id | mit-1721.1/114444 |
| institution | Massachusetts Institute of Technology |
| language | en_US |
| last_indexed | 2024-09-23T12:05:45Z |
| publishDate | 2018 |
| publisher | Association for Computing Machinery |
| record_format | dspace |
| spelling | mit-1721.1/1144442022-10-01T08:06:46Z Model-based security analysis of a water treatment system Kang, Eunsuk Adepu, Sridhar Jackson, Daniel Mathur, Aditya P. Massachusetts Institute of Technology. Department of Electrical Engineering and Computer Science Kang, Eunsuk Jackson, Daniel An approach to analyzing the security of a cyber-physical system (CPS) is proposed, where the behavior of a physical plant and its controller are captured in approximate models, and their interaction is rigorously checked to discover potential attacks that involve a varying number of compromised sensors and actuators. As a preliminary study, this approach has been applied to a fully functional water treatment testbed constructed at the Singapore University of Technology and Design. The analysis revealed previously unknown attacks that were confirmed to pose serious threats to the safety of the testbed, and suggests a number of research challenges and opportunities for applying a similar type of formal analysis to cyber-physical security. 2018-03-29T17:09:42Z 2018-03-29T17:09:42Z 2016-05 Article http://purl.org/eprint/type/ConferencePaper 978-1-4503-4171-4 http://hdl.handle.net/1721.1/114444 Kang, Eunsuk, et al. "Model-Based Security Analysis of a Water Treatment System." SEsCPS '16 Proceedings of the 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems, 14-22 May, 2016, Austin, Texas, ACM Press, 2016, pp. 22–28. https://orcid.org/0000-0002-0194-3989 https://orcid.org/0000-0003-4864-078X en_US http://dx.doi.org/10.1145/2897035.2897041 Proceedings of the 2nd International Workshop on Software Engineering for Smart Cyber-Physical Systems - SEsCPS '16 Creative Commons Attribution-Noncommercial-Share Alike http://creativecommons.org/licenses/by-nc-sa/4.0/ application/pdf Association for Computing Machinery MIT Web Domain |
| spellingShingle | Kang, Eunsuk Adepu, Sridhar Jackson, Daniel Mathur, Aditya P. Model-based security analysis of a water treatment system |
| title | Model-based security analysis of a water treatment system |
| title_full | Model-based security analysis of a water treatment system |
| title_fullStr | Model-based security analysis of a water treatment system |
| title_full_unstemmed | Model-based security analysis of a water treatment system |
| title_short | Model-based security analysis of a water treatment system |
| title_sort | model based security analysis of a water treatment system |
| url | http://hdl.handle.net/1721.1/114444 https://orcid.org/0000-0002-0194-3989 https://orcid.org/0000-0003-4864-078X |
| work_keys_str_mv | AT kangeunsuk modelbasedsecurityanalysisofawatertreatmentsystem AT adepusridhar modelbasedsecurityanalysisofawatertreatmentsystem AT jacksondaniel modelbasedsecurityanalysisofawatertreatmentsystem AT mathuradityap modelbasedsecurityanalysisofawatertreatmentsystem |