TY - JOUR
T1 - A hybrid stochastic game for secure control of cyber-physical systems
AU - Miao, Fei
AU - Zhu, Quanyan
AU - Pajic, Miroslav
AU - Pappas, George J.
N1 - Funding Information:
In this work, we have proposed a zero-sum hybrid stochastic game model to capture the interactions between a cyber-physical system and an attacker—switching policy for the system under different types of sensor attacks. This framework allows us to find a control policy by calculating stationary strategy of the game with information of the system’s physical dynamics and cyber modes. We design a suboptimal value iteration algorithm for a finite horizon game, which considers a saddle-point equilibrium of a robust stochastic game at each iteration. To reduce the computational complexity, a real-time moving-horizon algorithm is then developed. Based on the concept of saddle-point equilibrium for the hybrid stochastic game, at each stage, we look one stage ahead to calculate anticipated future value. The stability conditions of the system under multiple types of attacks based on the stochastic game framework, and an alternative algorithm with unknown transition matrix or payoffs will be our future work. Fei Miao (S’13-M’16) is an Assistant Professor in the Department of Computer Science and Engineering at the University of Connecticut. Previously, she was a Postdoc Researcher in the Department of Electrical and Systems Engineering, GRASP Lab and PRECISE center, at the University of Pennsylvania. She received the B.Sc. degree in Automation from Shanghai Jiao Tong University in 2010, the M.A. degree in Statistics and the Ph.D. degree with the “Charles Hallac and Sarah Keil Wolf Award for Best Doctoral Dissertation” in Electrical and Systems Engineering from the University of Pennsylvania in 2015 and 2016, respectively. Her research interests include data-driven real-time optimization and control of cyber-physical systems under model uncertainties, and resilient and secure control cyber-physical systems. She was a Best Paper Award Finalist at the 6th ACM/IEEE International Conference on Cyber-Physical Systems in 2015. Quanyan Zhu (S’04-M’12) is an assistant professor in the Department of Electrical and Computer Engineering at New York University. He received the B. Eng. in Honors Electrical Engineering with distinction from McGill University in 2006, the M.A.Sc. from University of Toronto in 2008, and the Ph.D. from the University of Illinois at Urbana-Champaign (UIUC) in 2013. From 2013–2014, he was a postdoctoral research associate at the Department of Electrical Engineering, Princeton University. He is a recipient of many awards including NSERC Canada Graduate Scholarship (CGS), Mavis Future Faculty Fellowships, and NSERC Postdoctoral Fellowship (PDF). He spearheaded and chaired INFOCOM Workshop on Communications and Control on Smart Energy Systems (CCSES), Midwest Workshop on Control and Game Theory (WCGT), and 7th Game and Decision Theory for Cyber Security (GameSec). His current research interests include resilient and secure interdependent critical infrastructures, energy systems, cyber-physical systems, and smart cities. Miroslav Pajic (S’06-M’13) received the Dipl. Ing. and M.S. degrees in electrical engineering from the University of Belgrade, Serbia, in 2003 and 2007, respectively, and the M.S. and Ph.D. degrees in electrical engineering from the University of Pennsylvania, Philadelphia, in 2010 and 2012, respectively. He is currently an Assistant Professor in the Department of Electrical and Computer Engineering at Duke University. He also holds a secondary appointment in the Computer Science Department. Prior to joining Duke, Dr. Pajic was a Postdoctoral Researcher in the PRECISE Center, University of Pennsylvania, from 2012–2015. His research interests focus on the design and analysis of cyber-physical systems and in particular real-time and embedded systems, distributed/networked control systems, and high-confidence medical devices and systems. Dr. Pajic received various awards including ONR Young Investigator Award, NSF CAREER Award, the 2011 ACM SIGBED Frank Anger Memorial Award, the Best Paper Award at the 2014 ACM/IEEE International Conference on Cyber-Physical Systems (ICCPS), and the Best Student Paper award at the 2012 IEEE Real-Time and Embedded Technology and Applications Symposium (RTAS). George J. Pappas (S’90-M’91-SM’04-F’09) received the Ph.D. degree in electrical engineering and computer sciences from the University of California, Berkeley, CA, USA, in 1998. He is currently the Joseph Moore Professor and Chair of the Department of Electrical and Systems Engineering, University of Pennsylvania, Philadelphia, PA, USA. He also holds a secondary appointment with the Department of Computer and Information Sciences and the Department of Mechanical Engineering and Applied Mechanics. He is a Member of the GRASP Lab and the PRECISE Center. He had previously served as the Deputy Dean for Research with the School of Engineering and Applied Science. His research interests include control theory and, in particular, hybrid systems, embedded systems, cyber-physical systems, and hierarchical and distributed control systems, with applications to unmanned aerial vehicles, distributed robotics, green buildings, and bimolecular networks. Dr. Pappas has received various awards, such as the Antonio Ruberti Young Researcher Prize, the George S. Axelby Award, the Hugo Schuck Best Paper Award, the George H. Heilmeier Award, the National Science Foundation PECASE award and numerous best student papers awards at ACC, CDC, and ICCPS.
Funding Information:
This material is based on research sponsored by DARPA under agreement number FA8750-12-2-0247. The U.S. Government is authorized to reproduce and distribute reprints for Governmental purposes notwithstanding any copyright notation thereon. The views and conclusions contained herein are those of the authors and should not be interpreted as necessarily representing the official policies or endorsements, either expressed or implied, of DARPA or the U.S. Government. This work was also supported in part by NSFCNS-1505701, CNS-1505799 grants, and the Intel-NSF Partnership for Cyber-Physical Systems Security and Privacy. The material in this paper was partially presented at the 52nd IEEE Conference on Decision and Control, December 10–13, 2013, Florence, Italy and the 53rd IEEE Conference on Decision and Control, December 15–17, 2014, Los Angeles, CA, USA. This paper was recommended for publication in revised form by Associate Editor Bert Tanner under the direction of Editor Christos G. Cassandras.
Publisher Copyright:
© 2018 Elsevier Ltd
PY - 2018/7
Y1 - 2018/7
N2 - In this paper, we establish a zero-sum, hybrid state stochastic game model for designing defense policies for cyber-physical systems against different types of attacks. With the increasingly integrated properties of cyber-physical systems (CPS) today, security is a challenge for critical infrastructures. Though resilient control and detecting techniques for a specific model of attack have been proposed, to analyze and design detection and defense mechanisms against multiple types of attacks for CPSs requires new system frameworks. Besides security, other requirements such as optimal control cost also need to be considered. The hybrid game model we propose contains physical states that are described by the system dynamics, and a cyber state that represents the detection mode of the system composed by a set of subsystems. A strategy means selecting a subsystem by combining one controller, one estimator and one detector among a finite set of candidate components at each state. Based on the game model, we propose a suboptimal value iteration algorithm for a finite horizon game, and prove that the algorithm results an upper bound for the value of the finite horizon game. A moving-horizon approach is also developed in order to provide a scalable and real-time computation of the switching strategies. Both algorithms aim at obtaining a saddle-point equilibrium policy for balancing the system's security overhead and control cost. The paper illustrates these concepts using numerical examples, and we compare the results with previously system designs that only equipped with one type of controller.
AB - In this paper, we establish a zero-sum, hybrid state stochastic game model for designing defense policies for cyber-physical systems against different types of attacks. With the increasingly integrated properties of cyber-physical systems (CPS) today, security is a challenge for critical infrastructures. Though resilient control and detecting techniques for a specific model of attack have been proposed, to analyze and design detection and defense mechanisms against multiple types of attacks for CPSs requires new system frameworks. Besides security, other requirements such as optimal control cost also need to be considered. The hybrid game model we propose contains physical states that are described by the system dynamics, and a cyber state that represents the detection mode of the system composed by a set of subsystems. A strategy means selecting a subsystem by combining one controller, one estimator and one detector among a finite set of candidate components at each state. Based on the game model, we propose a suboptimal value iteration algorithm for a finite horizon game, and prove that the algorithm results an upper bound for the value of the finite horizon game. A moving-horizon approach is also developed in order to provide a scalable and real-time computation of the switching strategies. Both algorithms aim at obtaining a saddle-point equilibrium policy for balancing the system's security overhead and control cost. The paper illustrates these concepts using numerical examples, and we compare the results with previously system designs that only equipped with one type of controller.
KW - Saddle-point equilibrium
KW - Secure control
KW - Stochastic game
UR - http://www.scopus.com/inward/record.url?scp=85044599070&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85044599070&partnerID=8YFLogxK
U2 - 10.1016/j.automatica.2018.03.012
DO - 10.1016/j.automatica.2018.03.012
M3 - Article
AN - SCOPUS:85044599070
SN - 0005-1098
VL - 93
SP - 55
EP - 63
JO - Automatica
JF - Automatica
ER -