security of cyber physical systems
play

Security of Cyber-Physical Systems From Theory to Testbeds & - PowerPoint PPT Presentation

Jan 04, 2024 •298 likes •890 views

Security of Cyber-Physical Systems From Theory to Testbeds & Validation Joaquin Garcia-Alfaro CNRS SAMOVAR Lab & Tlcom SudParis Universit Paris-Saclay CyberICPS, ESORICS 2016, September 27, 2016 Context Dynamic Risk Approaches

  1. Security of Cyber-Physical Systems From Theory to Testbeds & Validation Joaquin Garcia-Alfaro CNRS SAMOVAR Lab & Télécom SudParis Université Paris-Saclay CyberICPS, ESORICS 2016, September 27, 2016

  2. Context Dynamic Risk Approaches for Automated Cyber Defense http://www.panoptesec.eu/ FP7-ICT-2013-10 Consortium 2

  3. Context Dynamic Risk Approaches for Automated Cyber Defense http://www.panoptesec.eu/ FP7-ICT-2013-10 Consortium 3

  4. What is SCADA? • Supervisory Control And Data Acquisition - Real-time technologies to centrally monitor/control remote/local equipment • Distributed Control Systems – E.g., large-scale transmission systems, such as electrical, oil and gas transportation networks • Industrial Control Systems – Less degree of distribution, but synonym in this talk 4

  5. Motivation • Malware moving from IT Systems to Operational Systems • Wrong configurations, lack of encryption, legacy (vulnerable) systems, third party access, ... Proposed Methodology ● Foster new theories, ● simulate/emulate case scenarios, ● & validate results using real environments. 5

  6. Typical SCADA Elements (1/3) • Probes/Sensors : monitoring devices to retrieve measurements related to specific physical phenomena • Effectors/Actuators : control devices, in charge of managing some external devices 6

  7. Typical SCADA Elements (2/3) Middleware based on • Remote Terminal Units • Programmable Logic Controllers to control those devices monitoring/controlling end- points, often deployed far away from the backend 7

  8. Typical SCADA Elements (3/3) IT/Master Terminal Units/Human Machine Interfaces • Located at the control center of the organization • Give access to the management of communications, collection of data, data storage, and control of sensors and actuators via the RTUs/PLCs 8

  9. Security Challenges* Plus • Reliability, • Safety, • Performance, ... Asset to protect: Information Process Priority IT Systems MTUs to I/O #1 C onfidentiality A vailability #2 I ntegrity I ntegrity #3 A vailability C onfidentiality * HIRSCHMANN, Why is Cyber Security Still a Problem? TOFINO Security Series 9

  10. The PANOPTESEC Approach • Dynamic Risk Assessment - Preempt Exploitation of Vulnerabilities - Use of Attack & Operational (“ Mission” ) Graphs Operational Security Oriented IT Security Oriented 10

  11. Project Emulation Environment (1/10) 11

  12. Project Emulation Environment (2/10) 12

  13. Project Emulation Environment (3/10) 13

  14. Project Emulation Environment (4/10) 14

  15. Project Emulation Environment (5/10) 15

  16. Project Emulation Environment (6/10) 16

  17. Project Emulation Environment (7/10) 17

  18. Project Emulation Environment (8/10) 18

  19. Project Emulation Environment (9/10) 19

  20. Project Emulation Environment (10/10) 20

  21. Evolution • Protect, as well, from threats that are affecting physical sensors and actuators - In other words ... + Source: Hacking Chemical Plants for Competition and Extortion , Krotofil and Larsen, DefCon23, 2015. 21

  22. Physical Elements • Probes/Sensors : monitoring devices in to retrieve measurements related to specific physical phenomena • Effectors/Actuators : control devices, in charge of managing some external devices 22

  23. Physical Elements Middleware based on: • Remote Terminal Units • Programmable Logic Controllers to control a myriad (thousand to million) of devices monitoring/controlling end-points, often deployed far away (hundreds to thousands of km) from the backend 23

  24. Outline • Brief Introduction • Cyber-Physical Systems • Feedback Control Verification • Summary & Perspectives 24

  25. Fundamental Questions … • What are Cyber-Physical Systems (CPSs)? • Are CPSs new? • How CPS security differs from traditional IT security? 25

  26. What are CPSs? • Systems that monitor behavior of physical processes and take actions to correct those behaviors ... but also 26

  27. Are CPSs new? Short answer: No, they are not* * Cyber–Physical Systems: A Perspective at the Centennial. Kim and Kumar. Proceedings of the IEEE, Vol. 100, pages 1287-1308, May 2012. 27

  28. The key ingredient in a CPS: Control • Control means making a (dynamical) system to work as required • Feedback is used to compute a corrective control action based on the distance between a reference signal and the system output • Examples: dynamically follow a trajectory (robotics), regulate a temperature, regulate the sending rate of a TCP sender (TCP cong. control), controlling a pendulum in its unstable equilibrium, etc. 28

  29. Networked Control System • From a methodological standpoint, we can model a CPS using a Networked- Control System (NCS) 29

  30. Traditional Issues Studied in the NCS Literature • Stabilizing a system under network delays & packet losses • Techniques to limit data rate (e.g., from control to plant) • Energy efficient networking for Wireless NCS • Security? - Since the stuxnet incident, the control community seems to be heavily working as well on security issues of CPSs 30

  31. CPS Vulnerabilities • Traditional Security Issues at the Cyber layer - Unencrypted communications - Controller settings manually configured (remotely or in person) - Default usernames and passwords - … • Attack Surface - Physical & control ( Physical -layer) - Communication & network ( Cyber -layer) - Supervisory & management ( Human -layer) - … • Attack Vectors - Data (Control & Measurements / Actuators & Sensors) - Estimations & Orders (Controller & HMIs) - ... 31

  32. Putting all Together … y System + = Network Controller u People & Control Loops Networked Control System (NCS) Information and Communications Technologies (ICT) Management Systems Programmable Automata Sensors & Actuators 32

  33. Sample Attacks* (Dynamics of the System) (Integrity, Availability) * A secure control framework for resource-limited adversaries. Texeira et al., Automatica, 51(1):135-148, 2015. 33

  34. Replay Attack 34

  35. Sample Attacks* (Dynamics of the System) (Secrecy) (Integrity, Availability) * A secure control framework for resource-limited adversaries. Texeira et al., Automatica, 51(1):135-148, 2015. 35

  36. Prevention of CPS Attacks • A well-designed control system shall resist external disturbances (failures & attacks), to a certain degree • Several control-theoretic techniques to prevent cyber-physical attacks have been proposed in the literature * • Most of the techniques aim at injecting authentication to the control signal & discover anomalous measurements - E.g., use a noisy control authentication signal to detect integrity attacks on sensor measurements - In the following, we elaborate further on the aforementioned technique * A survey on the security of cyber-physical systems. Wu, Sun, and Chen. Control Theory and Technology, 14(1):2–10, February 2016. 36

  37. Outline • Brief Introduction • Cyber-Physical Systems • Feedback Control Verification • Summary & Perspectives 37

  38. Revisiting a Watermark-based Detection Scheme to Handle Cyber-Physical Attacks* Joint work with Jose Rubio-Hernan & Luca de Cicco * 11th International Conference on Availability, Reliability and Security (ARES 2016), August 2016. (Best Paper Runner-Up Award)

  39. The Mo et al. Approach* (1/2) * Physical Authentication of Control Systems. Mo, Weerakkody and Sinopoli. IEEE Control Systems, Vol. 35, pages 93–109, 2015. 39

  40. The Mo et al. Approach* (2/2) * Physical Authentication of Control Systems. Mo, Weerakkody and Sinopoli. IEEE Control Systems, Vol. 35, pages 93–109, 2015. 40

  41. Simulating the Approach in Matlab/Simulink 41

  42. Validating the Approach in Matlab/Simulink 42

  43. Uncovered Issues 43

  44. An Implementation of our Proposed Attack 44

  45. Validating the Attack in Matlab/Simulink 45

  46. Detection Ratio 46

  47. Comparing Cyber and Cyber-Physical Adversary DR 47

  48. Revisiting the Mo et al. Approach 48

  49. Three Watermarks, period T=20s 49

  50. Three Watermarks, period T=7s 50

  51. Detection Ration vs. Switching Frequency (CDF) 51

  52. Back to the Suggested Methodology • Malware moving from IT Systems to Operational Systems • Wrong configurations, lack of encryption, legacy (vulnerable) systems, third party access, ... Proposed Methodology ● Foster new theoretical models, ● simulate/emulate case scenarios, ● & validate results using some testbeds . 52

  53. Preparing the Testbeds http://j.mp/1vGPIVp http://j.mp/1qViIsG http://j.mp/1lEAxDP 53

  54. Sample Testbeds http://j.mp/TSPScada 54

  55. Testbed ( ongoing ) Results 55

  56. Testbed ( ongoing ) Results 56

  57. Outline • Brief Introduction • Cyber-Physical Systems • Feedback Control Verification • Summary & Perspectives 57

Recommend

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center

AI and Cyber Warfare Ernesto Damiani 12-09-2019 ku.ac.ae KU Cyber-Physical Systems Center (C2PS) SECURITY OF THE GLOBAL ICT INFRASTRUCTURE Network and Communications Security Business Process Security and Privacy Security and

667 views • 15 slides
Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and the Intel-NSF Partnership for Cyber- Physical Systems Security and Privacy) Insup Lee (PI) PRECISE Center School of Engineering and Applied Science

1.11k views • 34 slides
Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical

Micro-Architectural Attacks on Cyber-Physical Systems 07/24/2019 Heechul Yun University of Kansas 1 Modern Cyber-Physical Systems Cyber Physical Systems (CPS) Cyber (Computer) + Physical (Plant) Real-time Control physical

310 views • 29 slides
Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control,

Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control,

KTH ROYAL INSTITUTE OF TECHNOLOGY Security of Cyber-Physical Systems Henrik Sandberg hsan@kth.se Department of Automatic Control, KTH, Stockholm, Sweden 7th oCPS PhD School on Cyber-Physical Systems, Lucca, Italy Outline Background and

881 views • 63 slides
Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos National Laboratory LA-UR-17-27644 Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA A Cyber-Physical Model

837 views • 7 slides
Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j

Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j

Differential Refinement Logic Sarah M. Loos and Andr Platzer Computer Science Department Carnegie Mellon University 1 Verified Cyber-Physical Systems [FM11] 2 Verified Cyber-Physical Systems x l x j p x k x i

1.97k views • 179 slides
Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models, Fundamental Limitations, and Monitor Design Fabio Pasqualetti Florian D orfler Francesco Bullo Center for Control, Dynamical systems and Computation

994 views • 11 slides
NSF/Intel Partnership on Cyber-Physical Systems Security and

NSF/Intel Partnership on Cyber-Physical Systems Security and

NSF Webinar on NSF Solicita9on 14-571 NSF/Intel Partnership on Cyber-Physical Systems Security and Privacy (CPS-Security) Farnam Jahanian, Keith

752 views • 35 slides
Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats

Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats

Cyber-Physical Systems Security IECE 553/453 Fall 2019 Prof. Dola Saha 1 Security Threats in the IoT Cyber attack on the Ukrainian power grid Power outage caused by hackers Security in the IoT is essential, not just for information

1.21k views • 76 slides
ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi,

ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi,

ARTINALI: Dynamic Invariant Detec4on for Cyber-Physical System Security Maryam Raiyat Aliabadi, Amita Kamath, Julien Gascon-Samson, Karthik Pa8abiraman Cyber-Physical Systems Distributed Controllers C2 C3 C1 Network a1 s2 s1 a2 Physical

482 views • 19 slides
Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of

Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of

Cyber-Physical Systems Security Alvaro A. Crdenas Department of Computer Science University of Texas at Dallas Modernization of our Physical Infrastructures Physical Systems are Being Modernized with New Technologies Smart Smart

601 views • 23 slides
Potential Weaknesses in the Cyber Systems of High-Security Physical Protection Systems John F.

Potential Weaknesses in the Cyber Systems of High-Security Physical Protection Systems John F.

Photos placed in horizontal position with even amount of white space between photos and header Potential Weaknesses in the Cyber Systems of High-Security Physical Protection Systems John F. Clem IAEA-CN-254-298 Sandia National Laboratories is

503 views • 17 slides
Formal Verification of Cyber-Physical Systems Matthew Chan , Daniel Ricketts, Sorin Lerner,

Formal Verification of Cyber-Physical Systems Matthew Chan , Daniel Ricketts, Sorin Lerner,

Formal Verification of Cyber-Physical Systems Matthew Chan , Daniel Ricketts, Sorin Lerner, Gregory Malecha University of California, San Diego veridrone.ucsd.edu Cyber-Physical Systems Cyber-Physical Systems Cyber-Physical Systems

1.04k views • 90 slides
Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work

Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work

Cyber-Physical Security for the Smart Grid Deepa Kundur Texas A&M University (Joint work with Shan Liu, Takis Zourntos and Karen Butler-Purry) CYBER SECURITY POWER SYSTEMS DYNAMICAL SYSTEMS 2 A Smarter Grid MARRIAGE OF INFORMATION

1.86k views • 46 slides
Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo University of Pennsylvania July 12, 2018 Overview of Research Tort and products liability for CPS Privacy and cybersecurity regulation NHTSA

472 views • 25 slides
Cyber-Physical Resilient Systems From Malware & Operational Security to Feedback Truthfulness

Cyber-Physical Resilient Systems From Malware & Operational Security to Feedback Truthfulness

Cyber-Physical Resilient Systems From Malware & Operational Security to Feedback Truthfulness Distinguishability Joaquin Garcia-Alfaro Institut Mines-Tlcom (Tlcom SudParis) & Universit Paris-Saclay ETIC-UPF Seminars,

429 views • 31 slides
CYBER-PHYSICAL SYSTEMS Constantinos Xenofontos cxenof02@ucy.ac.cy BEFORE WE START...

CYBER-PHYSICAL SYSTEMS Constantinos Xenofontos cxenof02@ucy.ac.cy BEFORE WE START...

CYBER-PHYSICAL SYSTEMS Constantinos Xenofontos cxenof02@ucy.ac.cy BEFORE WE START... Security not always means web or mobile etc. What are the Cyber-Physical

607 views • 39 slides
From Theory to Physical Systems: Putting It Together Automotive Cyber-Physical Systems How do

From Theory to Physical Systems: Putting It Together Automotive Cyber-Physical Systems How do

From Theory to Physical Systems: Putting It Together Automotive Cyber-Physical Systems How do we go from talking about C- spaces, DOF, and control theory to designing a real-life autonomous car? Team MITs Approach to the DARPA Urban

760 views • 27 slides
Practical approaches to managing and securing cyber-physical systems Sanjiv Doshi, Principal

Practical approaches to managing and securing cyber-physical systems Sanjiv Doshi, Principal

Practical approaches to managing and securing cyber-physical systems Sanjiv Doshi, Principal Engineer - Cisco Nov 2018 Ciscos take on Cyber-Physical Systems Cyber-Physical Systems are fundamentally integration of three components

321 views • 13 slides
Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators

893 views • 53 slides
A Cyber-Physical Approach to Securing Urban Transportation Systems Lead PI: Prof. Jianying Zhou

A Cyber-Physical Approach to Securing Urban Transportation Systems Lead PI: Prof. Jianying Zhou

A Cyber-Physical Approach to Securing Urban Transportation Systems Lead PI: Prof. Jianying Zhou (SUTD) SG-CRC18, 28 March 2018 Urban Transportation System Security Cyber-Physical Systems Transportation Energy Water Rail Auto

493 views • 17 slides
S V V .lu software verification & validation Testing of Cyber-Physical Systems:

S V V .lu software verification & validation Testing of Cyber-Physical Systems:

S V V .lu software verification & validation Testing of Cyber-Physical Systems: Diversity-driven Strategies Lionel Briand COW 57, London, UK Cyber-Physical Systems A system of collaborating computational elements controlling

808 views • 41 slides
Cyber Physical Security Analytics for Transactive Energy Systems Adam Hahn, Anurag Srivastava,

Cyber Physical Security Analytics for Transactive Energy Systems Adam Hahn, Anurag Srivastava,

Cyber Physical Security Analytics for Transactive Energy Systems Adam Hahn, Anurag Srivastava, Yue Zhang, WSU: Vignesh Venkata Gopala Krishnan, Kudrat Kaur, Siemens: Jiaxing Pi, Minh Nguyen, Sindhu Suresh 1 Overview Introduction

292 views • 17 slides
Security Challenges and Requirements for Industrial Control Systems in the Semiconductor

Security Challenges and Requirements for Industrial Control Systems in the Semiconductor

Security Challenges and Requirements for Industrial Control Systems in the Semiconductor Manufacturing Sector Malek Ben Salem Accenture Technology Labs NIST Workshop on Cyber-Security for Cyber-physical Devices April 23 rd , 2012 Outline

837 views • 37 slides

More recommend