Please wait a minute...
浙江大学学报(工学版)
浙江大学学报(工学版)  2021, Vol. 55 Issue (6): 1185-1198    DOI: 10.3785/j.issn.1008-973X.2021.06.020
电气工程     
攻击与故障共存的ICPS综合安全控制方法
李炜(),张建军
兰州理工大学 电气工程与信息工程学院,甘肃 兰州 730050
Integrated security control method for industrial cyber-physical system with attack and fault
Wei LI(),Jian-jun ZHANG
College of Electrical and Information Engineering, Lanzhou University of Technology, Lanzhou 730050, China
 全文: PDF(1665 KB)   HTML
摘要:

针对同时存在假数据注入(FDI)攻击与执行器故障的工业信息物理融合系统(ICPS),在离散事件触发机制(DETCS)下,综合应用Lyapunov稳定性理论及更具少保守性的仿射Bessel-Legendre不等式,研究执行器故障与FDI攻击估计、综合安全控制与通讯协同设计问题. 从主动防御攻击的态势入手,综合考虑通讯资源与计算资源的高效利用与合理分配,给出DETCS下的ICPS综合安全控制架构,将鲁棒估计器与综合安全控制器的设计统一于同一非均匀数据传输机制下. 将执行器故障与FDI攻击增广为同一向量,给出系统状态、增广故障鲁棒估计器的设计方法. 基于所得估计结果并结合事件触发条件,对执行和传感双侧网络中的FDI攻击分别采用分离与补偿的防御策略,对执行器故障进行故障调节,给出综合安全控制器设计方法,实现对FDI攻击和执行器故障主动容侵和主动容错的综合安全控制与通讯协同设计. 通过数值算例和四容水箱实例,仿真验证了提出方法的有效性.
关键词: 工业信息物理融合系统(ICPS)假数据注入攻击执行器故障鲁棒H估计控制与通讯协同设计    
Abstract:

The problems of actuator fault and FDI attacks estimation, integrated security control and communication co-design were analyzed for industrial cyber-physical system (ICPS) with false data injection (FDI) attacks and actuator fault under the discrete event-triggered communication scheme (DETCS) through comprehensively using some less conservative technologies such as the Lyapunov stability theory and affine Bessel-Legendre inequality. The integrated security control architecture of ICPS under DETCS was given, and the design of the robust estimator and integrated security controller was unified in the same non-uniform data transmission mechanism by starting from the situation of actively defense attacks and considering the efficient using and reasonable allocation of communication resources and computing resources. The actuator fault and FDI attacks were expanded to the same vector. The design method of the system state and the augmented fault robust estimator was given. A separate and compensated defense strategy was adopted for FDI attacks in two-side networks of actuating and sensing based on the obtained estimation results and event trigger conditions. The method to compensate actuator fault was used for actuator failure. An integrated security controller’s design method was provided. Then the integrated security control and communication co-design of active attack and fault tolerance for FDI attacks and actuator fault were realized. The effectiveness of the proposed method was verified by the simulation of a numerical and a quadruple-tank example.
Key words: industry cyber-physical system (ICPS)    false data injection attack    actuator fault    robust H estimation    co-design of control and communication
收稿日期: 2020-07-03 出版日期: 2021-07-30
CLC:  TP 277  
基金资助: 国家自然科学基金资助项目(61364011,61763027)
作者简介: 李炜(1963—),女,教授,博导,从事动态系统故障诊断与容错控制研究. orcid.org/0000-0001-8974-4601. E-mail: liwei@lut.cn
服务  
把本文推荐给朋友
加入引用管理器
E-mail Alert
作者相关文章  
李炜
张建军

引用本文:

李炜,张建军. 攻击与故障共存的ICPS综合安全控制方法[J]. 浙江大学学报(工学版), 2021, 55(6): 1185-1198.

Wei LI,Jian-jun ZHANG. Integrated security control method for industrial cyber-physical system with attack and fault. Journal of ZheJiang University (Engineering Science), 2021, 55(6): 1185-1198.

链接本文:

https://www.zjujournals.com/eng/CN/10.3785/j.issn.1008-973X.2021.06.020        https://www.zjujournals.com/eng/CN/Y2021/V55/I6/1185

图 1  ICPS综合安全控制架构
图 2  基于提出方法的系统输出曲线
图 3  基于无容错/容侵能力方法的系统输出曲线
图 4  系统状态估计误差
图 5  执行器故障估计及估计误差
图 6  执行侧攻击估计及估计误差
图 7  传感侧攻击估计及估计误差
图 8  基于所提方法的输出曲线
图 9  基于文献[23]方法的输出曲线
图 10  DETCS下的数据发送时刻与传输间隔
1 GUAN X P, YANG B, CHEN C L, et al A comprehensive overview of cyber-physical systems: from perspective of feedback system[J]. IEEE/CAA Journal of Automatica Sinica, 2016, 3 (1): 3- 16
doi: 10.1109/JAS.2016.7373769
2 白昱阳, 黄彦浩, 陈思远, 等 云边智能: 电力系统运行控制的边缘计算方法及其应用现状与展望[J]. 自动化学报, 2020, 46 (3): 397- 410
BAI Yu-yang, HUANG Yan-hao, CHEN Si-yuan, et al Cloud-edge intelligence: status quo and future prospective of edge computing approaches and applications in power system operation and control[J]. Acta Automatica Sinica, 2020, 46 (3): 397- 410
3 KHAITAN S K, MCCALLEY J D Design techniques and applications of cyber physical systems: a survey[J]. IEEE Systems Journal, 2015, 9 (2): 350- 365
doi: 10.1109/JSYST.2014.2322503
4 关新平, 陈彩莲, 杨博, 等 工业网络系统的感知-传输-控制-体化: 挑战和进展[J]. 自动化学报, 2019, 45 (1): 25- 36
GUAN Xin-ping, CHEN Cai-lian, YANG Bo, et al Towards the integration of sensing, transmission and control for industrial network systems: challenges and recent developments[J]. Acta Automatica Sinica, 2019, 45 (1): 25- 36
doi: 10.3969/j.issn.1003-8930.2019.01.005
5 邢黎闻 孙优贤院士论工业信息物理融合系统[J]. 信息化建设, 2018, (1): 10- 11
XING Li-wen Academician Sun You-xian on the physical integration system of industrial information[J]. Information Construction, 2018, (1): 10- 11
6 WOIF M, SERPANOS D Safety and security in cyber-physical systems and internet-of-things systems[J]. Proceedings of the IEEE, 2018, 106 (1): 9- 20
doi: 10.1109/JPROC.2017.2781198
7 刘烃, 田决, 王稼舟, 等 信息物理融合系统综合安全威胁与防御研究[J]. 自动化学报, 2019, 45 (1): 5- 24
LIU Ting, TIAN Jue, WANG Jia-zhou, et al Integrated security threats and defense of cyber-physical systems[J]. Acta Automatica Sinica, 2019, 45 (1): 5- 24
8 MIAO F, ZHU Q Y, PAJIK M, et al Coding schemes for securing cyber-physical systems against stealthy data injection attacks[J]. IEEE Transactions on Control of Network Systems, 2016, 4 (1): 106- 117
9 ZHOU T Q, SHEN J, LI X, et al Logarithmic encryption scheme for cyber–physical systems employing Fibonacci Q-matrix[J]. Future Generation Computer Systems, 2018, 108: 1307- 1313
10 PASQUALETTI F, DORFLER F, BULLO F Attack detection and identification in cyber-physical systems[J]. IEEE Transactions on Automatic Control, 2013, 58 (11): 2715- 2729
doi: 10.1109/TAC.2013.2266831
11 刘大龙, 冯冬芹 采用多尺度主成分分析的控制系统欺骗攻击检测[J]. 浙江大学学报: 工学版, 2018, 52 (9): 1738- 1746
LIU Da-long, FENG Dong-qin Deceptive attack detection of control system using multi-scale principal component analysis[J]. Journal of Zhejiang University: Engineering Science, 2018, 52 (9): 1738- 1746
12 DING D R, HAN Q L, XIANG Y, et al A survey on security control and attack detection for industrial cyber-physical systems[J]. Neurocomputing, 2018, 275: 1674- 1683
doi: 10.1016/j.neucom.2017.10.009
13 LU A Y, YANG G H Event-triggered secure observer-based control for cyber-physical systems under adversarial attacks[J]. Information Sciences, 2017, 420: 96- 109
doi: 10.1016/j.ins.2017.08.057
14 FENG J, WANG S Q Reliable fuzzy control for a class of nonlinear, networked control systems with time delay[J]. Acta Automatica Sinica, 2012, 38 (7): 1091- 1099
15 PENG C, HAN Q L, YUE D To transmit or not to transmit: a discrete event-triggered communication scheme for networked Takagi–Sugeno fuzzy systems[J]. IEEE Transactions on Fuzzy Systems, 2012, 21 (1): 164- 170
16 TAHOUN A H, FANG H J Adaptive stabilization of networked control systems tolerant to unknown actuator failures[J]. International Journal of Systems Science, 2011, 42 (7): 1155- 1164
doi: 10.1080/00207720903308975
17 李炜, 李亚洁 基于离散事件触发通信机制的非均匀传输网络化控制系统故障调节与通信满意协同设计[J]. 吉林大学学报: 工学版, 2018, 48 (1): 245- 258
LI Wei, LI Ya-jie Satisfactory integrated design between failure accommodation and communication for non-uniform transmission networked control system under discrete event-triggered communication scheme[J]. Journal of Jilin University: Engineering and Technology Edition, 2018, 48 (1): 245- 258
18 SU S W, BAO J, LEE P L A hybrid active–passive fault–tolerant control approach[J]. Asia-Pacific Journal of Chemical Engineering, 2010, 1 (1): 54- 62
19 李炜, 陈文婧 事件触发非均匀传输NCS少保守性鲁棒 ${H_\infty }$主动优化选择容错控制 [J]. 计算机应用研究, 2019, 36 (7): 2049- 2053
LI Wei, CHEN Wen-jing Active optimization choice of NCS less conservative robust ${H_\infty }$ fault-tolerant controller under event trigger non-uniform transmission [J]. Application Research of Computers, 2019, 36 (7): 2049- 2053
20 YASEEN A A, BAYART M Cyber-attack detection with fault accommodation based on intelligent generalized predictive control[J]. IFAC-Papers OnLine, 2017, 50 (1): 2601- 2608
doi: 10.1016/j.ifacol.2017.08.111
21 LI W, SHI Y H, LI Y J Research on secure control and communication for cyber-physical systems under cyber-attacks[J]. Transactions of the Institute of Measurement and Control, 2019, 41 (12): 3421- 3437
doi: 10.1177/0142331219826658
22 YE D, LUO S P A co-design methodology for cyber-physical systems under actuator fault and cyber attack[J]. Journal of the Franklin Institute, 2019, 356 (4): 1856- 1879
doi: 10.1016/j.jfranklin.2019.01.009
23 史娅红. 网络攻击下CPS安全控制与通讯的协同设计研究[D]. 兰州: 兰州理工大学, 2019.
SHI Ya-hong. Research on co-design of security control and communication for cyber physical system under cyber-attacks[D]. Lanzhou: Lanzhou University of Technology, 2019.
24 PENG C, YANG T C Event-triggered communication and control co-design for networked control systems[J]. Automatica, 2013, 49 (5): 1326- 1332
doi: 10.1016/j.automatica.2013.01.038
25 TALLAPRAGADA P, CHOPRA N Event-triggered decentralized dynamic output feedback control for LTI systems[J]. IFAC Proceedings Volumes, 2012, 45 (26): 31- 36
doi: 10.3182/20120914-2-US-4030.00057
26 FRIDMAN E A refined input delay approach to sampled-data control[J]. Automatica, 2010, 46 (2): 421- 427
doi: 10.1016/j.automatica.2009.11.017
27 邱爱兵, 吉虹钢, 顾菊平 非均匀采样数据系统时变故障估计与调节最优集成设计[J]. 自动化学报, 2014, 40 (7): 1493- 1504
QIU Ai-bing, JI Hong-gang, GU Ju-ping Optimal integrated design of time-varying fault estimation and accommodation for noun uniformly sampled data systems[J]. Acta Automatica Sinica, 2014, 40 (7): 1493- 1504
28 LEE W I, LEE S Y, PARK P, et al Affine Bessel–Legendre inequality: application to stability analysis for systems with time-varying delays[J]. Automatica, 2018, 93: 535- 539
doi: 10.1016/j.automatica.2018.03.073
[1] 孔祥玉,王晓兵,李红增,罗家宇. 面向工业平稳/非平稳复杂系统的在线故障监测技术[J]. 浙江大学学报(工学版), 2021, 55(10): 1856-1866.
[2] 刘兴,余建波. 注意力卷积GRU自编码器及其在工业过程监控的应用[J]. 浙江大学学报(工学版), 2021, 55(9): 1643-1651.
[3] 谭晓栋,罗建禄,李庆,邱静. 机械系统的故障演化测试性建模及预计[J]. 浙江大学学报(工学版), 2016, 50(3): 442-448.
[4] 陈特欢, 徐巍华, 许超, 谢磊. 基于PSO的管道泄漏模型反问题求解及敏感性分析[J]. 浙江大学学报(工学版), 2014, 48(10): 1850-1855.
[5] 李德骏, 杨竣程, 林冬冬, 杨灿军, 金波, 陈鹰. 单片机与CPLD技术的海底接驳盒
电能监控系统[J]. J4, 2012, 46(8): 1369-1374.
[6] 于保华, 杨世锡,周晓峰. 基于故障-测点互信息的传感器多目标优化配置[J]. J4, 2012, 46(1): 156-162.
[7] 段斌, 梁军, 费正顺, 杨敏, 胡斌. 基于GA-ANN的非线性半参数建模方法[J]. J4, 2011, 45(6): 977-983.
[8] 徐贵斌, 周东华. 基于在线学习神经网络的状态依赖型故障预测[J]. J4, 2010, 44(7): 1251-1254.
[9] 杜文莉, 王坤, 钱锋. 基于特征空间降维的溶剂脱水分离过程监控[J]. J4, 2010, 44(7): 1255-1259.
[10] 曹玉苹, 田学民. 基于信息散度的过程故障检测与诊断[J]. J4, 2010, 44(7): 1315-1320.
[11] 林勇, 周晓军, 杨先勇, 等. 基于双谱识别和人工免疫网络的智能故障检测[J]. J4, 2009, 43(10): 1777-1782.