Sequential detection of cyber-physical attacks on industrial systems
In: JSM 2016 (Joint Statistical Meeting) ; https://utt.hal.science/hal-02884669 ; JSM 2016 (Joint Statistical Meeting), Jul 2016, Chicago, United States, 2016
Konferenz
Zugriff:
International audience ; It is assumed that the observations represent a linear superposition of unknown nuisance parameters (stochastic or deterministic), random noise and a system parameter abruptly changing its current value from nominal to abnormal at an unknown but non-random change-point. It is assumed that this statistical model characterizes the cyber-physical attacks on industrial systems, like SCADA. The negative impact of unknown nuisance parameter on the detector is eliminated by utilizing the invariant statistics technique or statistical filtering technique. The statistical decision problem is formulated as a detection of abruptly arriving transient changes of finite duration. The criterion of optimality seeks to minimize the worst-case probability of missed detection subject to an acceptable level of the worst-case probability of false alarm within a given time period. To solve the problem, an optimal solution in a subclass of open-ended sequential tests with variable thresholds is proposed. The Variable Threshold Window Limited CUmulative SUM (VTWL CUSUM) test, previously developed for independent observations, is adapted now to the observation model with nuisance parameters. Finally, the variable threshold of the VTWL CUSUM test is optimized with respect to the optimality criterion and the probabilities of missed detection and false alarm are studied.
Titel: |
Sequential detection of cyber-physical attacks on industrial systems
|
---|---|
Autor/in / Beteiligte Person: | Do, van Long ; Fillatre, Lionel ; Nikiforov, Igor, V. ; Viettel Research and Development Institute ; Laboratoire d'Informatique, Signaux, et Systèmes de Sophia-Antipolis (I3S) / Projet MEDIACODING ; Signal, Images et Systèmes (Laboratoire I3S - SIS) ; Laboratoire d'Informatique, Signaux, et Systèmes de Sophia Antipolis (I3S) ; Université Nice Sophia Antipolis (1965 - 2019) (UNS)-Centre National de la Recherche Scientifique (CNRS)-Université Côte d'Azur (UniCA)-Université Nice Sophia Antipolis (1965 - 2019) (UNS)-Centre National de la Recherche Scientifique (CNRS)-Université Côte d'Azur (UniCA)-Laboratoire d'Informatique, Signaux, et Systèmes de Sophia Antipolis (I3S) ; Université Nice Sophia Antipolis (1965 - 2019) (UNS)-Centre National de la Recherche Scientifique (CNRS)-Université Côte d'Azur (UniCA)-Université Nice Sophia Antipolis (1965 - 2019) (UNS)-Centre National de la Recherche Scientifique (CNRS)-Université Côte d'Azur (UniCA) ; Laboratoire Modélisation et Sûreté des Systèmes (LM2S) ; Institut Charles Delaunay (ICD) ; Université de Technologie de Troyes (UTT)-Centre National de la Recherche Scientifique (CNRS)-Université de Technologie de Troyes (UTT)-Centre National de la Recherche Scientifique (CNRS) |
Link: | |
Zeitschrift: | JSM 2016 (Joint Statistical Meeting) ; https://utt.hal.science/hal-02884669 ; JSM 2016 (Joint Statistical Meeting), Jul 2016, Chicago, United States, 2016 |
Veröffentlichung: | HAL CCSD, 2016 |
Medientyp: | Konferenz |
Schlagwort: |
|
Sonstiges: |
|