Integrated security control method for industrial cyber-physical system with attack and fault |
Wei LI( ),Jian-jun ZHANG |
College of Electrical and Information Engineering, Lanzhou University of Technology, Lanzhou 730050, China |
Abstract The problems of actuator fault and FDI attacks estimation, integrated security control and communication co-design were analyzed for industrial cyber-physical system (ICPS) with false data injection (FDI) attacks and actuator fault under the discrete event-triggered communication scheme (DETCS) through comprehensively using some less conservative technologies such as the Lyapunov stability theory and affine Bessel-Legendre inequality. The integrated security control architecture of ICPS under DETCS was given, and the design of the robust estimator and integrated security controller was unified in the same non-uniform data transmission mechanism by starting from the situation of actively defense attacks and considering the efficient using and reasonable allocation of communication resources and computing resources. The actuator fault and FDI attacks were expanded to the same vector. The design method of the system state and the augmented fault robust estimator was given. A separate and compensated defense strategy was adopted for FDI attacks in two-side networks of actuating and sensing based on the obtained estimation results and event trigger conditions. The method to compensate actuator fault was used for actuator failure. An integrated security controller’s design method was provided. Then the integrated security control and communication co-design of active attack and fault tolerance for FDI attacks and actuator fault were realized. The effectiveness of the proposed method was verified by the simulation of a numerical and a quadruple-tank example.
Received: 03 July 2020
Published: 30 July 2021
Fund: 国家自然科学基金资助项目(61364011,61763027) |
针对同时存在假数据注入(FDI)攻击与执行器故障的工业信息物理融合系统(ICPS),在离散事件触发机制(DETCS)下,综合应用Lyapunov稳定性理论及更具少保守性的仿射Bessel-Legendre不等式,研究执行器故障与FDI攻击估计、综合安全控制与通讯协同设计问题. 从主动防御攻击的态势入手,综合考虑通讯资源与计算资源的高效利用与合理分配,给出DETCS下的ICPS综合安全控制架构,将鲁棒估计器与综合安全控制器的设计统一于同一非均匀数据传输机制下. 将执行器故障与FDI攻击增广为同一向量,给出系统状态、增广故障鲁棒估计器的设计方法. 基于所得估计结果并结合事件触发条件,对执行和传感双侧网络中的FDI攻击分别采用分离与补偿的防御策略,对执行器故障进行故障调节,给出综合安全控制器设计方法,实现对FDI攻击和执行器故障主动容侵和主动容错的综合安全控制与通讯协同设计. 通过数值算例和四容水箱实例,仿真验证了提出方法的有效性.
[1] |
GUAN X P, YANG B, CHEN C L, et al A comprehensive overview of cyber-physical systems: from perspective of feedback system[J]. IEEE/CAA Journal of Automatica Sinica, 2016, 3 (1): 3- 16
doi: 10.1109/JAS.2016.7373769
[2] |
白昱阳, 黄彦浩, 陈思远, 等 云边智能: 电力系统运行控制的边缘计算方法及其应用现状与展望[J]. 自动化学报, 2020, 46 (3): 397- 410 BAI Yu-yang, HUANG Yan-hao, CHEN Si-yuan, et al Cloud-edge intelligence: status quo and future prospective of edge computing approaches and applications in power system operation and control[J]. Acta Automatica Sinica, 2020, 46 (3): 397- 410
[3] |
KHAITAN S K, MCCALLEY J D Design techniques and applications of cyber physical systems: a survey[J]. IEEE Systems Journal, 2015, 9 (2): 350- 365
doi: 10.1109/JSYST.2014.2322503
[4] |
关新平, 陈彩莲, 杨博, 等 工业网络系统的感知-传输-控制-体化: 挑战和进展[J]. 自动化学报, 2019, 45 (1): 25- 36 GUAN Xin-ping, CHEN Cai-lian, YANG Bo, et al Towards the integration of sensing, transmission and control for industrial network systems: challenges and recent developments[J]. Acta Automatica Sinica, 2019, 45 (1): 25- 36
doi: 10.3969/j.issn.1003-8930.2019.01.005
[5] |
邢黎闻 孙优贤院士论工业信息物理融合系统[J]. 信息化建设, 2018, (1): 10- 11 XING Li-wen Academician Sun You-xian on the physical integration system of industrial information[J]. Information Construction, 2018, (1): 10- 11
[6] |
WOIF M, SERPANOS D Safety and security in cyber-physical systems and internet-of-things systems[J]. Proceedings of the IEEE, 2018, 106 (1): 9- 20
doi: 10.1109/JPROC.2017.2781198
[7] |
刘烃, 田决, 王稼舟, 等 信息物理融合系统综合安全威胁与防御研究[J]. 自动化学报, 2019, 45 (1): 5- 24 LIU Ting, TIAN Jue, WANG Jia-zhou, et al Integrated security threats and defense of cyber-physical systems[J]. Acta Automatica Sinica, 2019, 45 (1): 5- 24
[8] |
MIAO F, ZHU Q Y, PAJIK M, et al Coding schemes for securing cyber-physical systems against stealthy data injection attacks[J]. IEEE Transactions on Control of Network Systems, 2016, 4 (1): 106- 117
[9] |
ZHOU T Q, SHEN J, LI X, et al Logarithmic encryption scheme for cyber–physical systems employing Fibonacci Q-matrix[J]. Future Generation Computer Systems, 2018, 108: 1307- 1313
[10] |
PASQUALETTI F, DORFLER F, BULLO F Attack detection and identification in cyber-physical systems[J]. IEEE Transactions on Automatic Control, 2013, 58 (11): 2715- 2729
doi: 10.1109/TAC.2013.2266831
[11] |
刘大龙, 冯冬芹 采用多尺度主成分分析的控制系统欺骗攻击检测[J]. 浙江大学学报: 工学版, 2018, 52 (9): 1738- 1746 LIU Da-long, FENG Dong-qin Deceptive attack detection of control system using multi-scale principal component analysis[J]. Journal of Zhejiang University: Engineering Science, 2018, 52 (9): 1738- 1746
[12] |
DING D R, HAN Q L, XIANG Y, et al A survey on security control and attack detection for industrial cyber-physical systems[J]. Neurocomputing, 2018, 275: 1674- 1683
doi: 10.1016/j.neucom.2017.10.009
[13] |
LU A Y, YANG G H Event-triggered secure observer-based control for cyber-physical systems under adversarial attacks[J]. Information Sciences, 2017, 420: 96- 109
doi: 10.1016/j.ins.2017.08.057
[14] |
FENG J, WANG S Q Reliable fuzzy control for a class of nonlinear, networked control systems with time delay[J]. Acta Automatica Sinica, 2012, 38 (7): 1091- 1099
[15] |
PENG C, HAN Q L, YUE D To transmit or not to transmit: a discrete event-triggered communication scheme for networked Takagi–Sugeno fuzzy systems[J]. IEEE Transactions on Fuzzy Systems, 2012, 21 (1): 164- 170
[16] |
TAHOUN A H, FANG H J Adaptive stabilization of networked control systems tolerant to unknown actuator failures[J]. International Journal of Systems Science, 2011, 42 (7): 1155- 1164
doi: 10.1080/00207720903308975
[17] |
李炜, 李亚洁 基于离散事件触发通信机制的非均匀传输网络化控制系统故障调节与通信满意协同设计[J]. 吉林大学学报: 工学版, 2018, 48 (1): 245- 258 LI Wei, LI Ya-jie Satisfactory integrated design between failure accommodation and communication for non-uniform transmission networked control system under discrete event-triggered communication scheme[J]. Journal of Jilin University: Engineering and Technology Edition, 2018, 48 (1): 245- 258
[18] |
SU S W, BAO J, LEE P L A hybrid active–passive fault–tolerant control approach[J]. Asia-Pacific Journal of Chemical Engineering, 2010, 1 (1): 54- 62
[19] |
李炜, 陈文婧 事件触发非均匀传输NCS少保守性鲁棒 ${H_\infty }$主动优化选择容错控制 [J]. 计算机应用研究, 2019, 36 (7): 2049- 2053 LI Wei, CHEN Wen-jing Active optimization choice of NCS less conservative robust ${H_\infty }$ fault-tolerant controller under event trigger non-uniform transmission [J]. Application Research of Computers, 2019, 36 (7): 2049- 2053
[20] |
YASEEN A A, BAYART M Cyber-attack detection with fault accommodation based on intelligent generalized predictive control[J]. IFAC-Papers OnLine, 2017, 50 (1): 2601- 2608
doi: 10.1016/j.ifacol.2017.08.111
[21] |
LI W, SHI Y H, LI Y J Research on secure control and communication for cyber-physical systems under cyber-attacks[J]. Transactions of the Institute of Measurement and Control, 2019, 41 (12): 3421- 3437
doi: 10.1177/0142331219826658
[22] |
YE D, LUO S P A co-design methodology for cyber-physical systems under actuator fault and cyber attack[J]. Journal of the Franklin Institute, 2019, 356 (4): 1856- 1879
doi: 10.1016/j.jfranklin.2019.01.009
[23] |
史娅红. 网络攻击下CPS安全控制与通讯的协同设计研究[D]. 兰州: 兰州理工大学, 2019. SHI Ya-hong. Research on co-design of security control and communication for cyber physical system under cyber-attacks[D]. Lanzhou: Lanzhou University of Technology, 2019.
[24] |
PENG C, YANG T C Event-triggered communication and control co-design for networked control systems[J]. Automatica, 2013, 49 (5): 1326- 1332
doi: 10.1016/j.automatica.2013.01.038
[25] |
TALLAPRAGADA P, CHOPRA N Event-triggered decentralized dynamic output feedback control for LTI systems[J]. IFAC Proceedings Volumes, 2012, 45 (26): 31- 36
doi: 10.3182/20120914-2-US-4030.00057
[26] |
FRIDMAN E A refined input delay approach to sampled-data control[J]. Automatica, 2010, 46 (2): 421- 427
doi: 10.1016/j.automatica.2009.11.017
[27] |
邱爱兵, 吉虹钢, 顾菊平 非均匀采样数据系统时变故障估计与调节最优集成设计[J]. 自动化学报, 2014, 40 (7): 1493- 1504 QIU Ai-bing, JI Hong-gang, GU Ju-ping Optimal integrated design of time-varying fault estimation and accommodation for noun uniformly sampled data systems[J]. Acta Automatica Sinica, 2014, 40 (7): 1493- 1504
[28] |
LEE W I, LEE S Y, PARK P, et al Affine Bessel–Legendre inequality: application to stability analysis for systems with time-varying delays[J]. Automatica, 2018, 93: 535- 539
doi: 10.1016/j.automatica.2018.03.073
Viewed |
Full text
Cited |
Shared |
Discussed |