Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode

We consider the trusted operation of cyber-physical processes based on an assessment of the system’s state and operating mode and present a method for detecting anomalies in the behavior of a cyber-physical system (CPS) based on the analysis of the data transmitted by its sensory subsystem. Probabil...

Descripción completa

Detalles Bibliográficos
Autores principales: Basan, Elena, Basan, Alexandr, Nekrasov, Alexey, Fidge, Colin, Ishchukova, Evgeniya, Basyuk, Anatoly, Lesnikov, Alexandr
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9963395/
https://www.ncbi.nlm.nih.gov/pubmed/36850592
http://dx.doi.org/10.3390/s23041996
_version_ 1784896242502860800
author Basan, Elena
Basan, Alexandr
Nekrasov, Alexey
Fidge, Colin
Ishchukova, Evgeniya
Basyuk, Anatoly
Lesnikov, Alexandr
author_facet Basan, Elena
Basan, Alexandr
Nekrasov, Alexey
Fidge, Colin
Ishchukova, Evgeniya
Basyuk, Anatoly
Lesnikov, Alexandr
author_sort Basan, Elena
collection PubMed
description We consider the trusted operation of cyber-physical processes based on an assessment of the system’s state and operating mode and present a method for detecting anomalies in the behavior of a cyber-physical system (CPS) based on the analysis of the data transmitted by its sensory subsystem. Probability theory and mathematical statistics are used to process and normalize the data in order to determine whether or not the system is in the correct operating mode and control process state. To describe the mode-specific control processes of a CPS, the paradigm of using cyber-physical parameters is taken as a basis, as it is the feature that most clearly reflects the system’s interaction with physical processes. In this study, two metrics were taken as a sign of an anomaly: the probability of falling into the sensor values’ confidence interval and parameter change monitoring. These two metrics, as well as the current mode evaluation, produce a final probability function for our trust in the CPS’s currently executing control process, which is, in turn, determined by the operating mode of the system. Based on the results of this trust assessment, it is possible to draw a conclusion about the processing state in which the system is operating. If the score is higher than 0.6, it means the system is in a trusted state. If the score is equal to 0.6, it means the system is in an uncertain state. If the trust score tends towards zero, then the system can be interpreted as unstable or under stress due to a system failure or deliberate attack. Through a case study using cyber-attack data for an unmanned aerial vehicle (UAV), it was found that the method works well. When we were evaluating the normal flight mode, there were no false positive anomaly estimates. When we were evaluating the UAV’s state during an attack, a deviation and an untrusted state were detected. This method can be used to implement software solutions aimed at detecting system faults and cyber-attacks, and thus make decisions about the presence of malfunctions in the operation of a CPS, thereby minimizing the amount of knowledge and initial data about the system.
format Online
Article
Text
id pubmed-9963395
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-99633952023-02-26 Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode Basan, Elena Basan, Alexandr Nekrasov, Alexey Fidge, Colin Ishchukova, Evgeniya Basyuk, Anatoly Lesnikov, Alexandr Sensors (Basel) Article We consider the trusted operation of cyber-physical processes based on an assessment of the system’s state and operating mode and present a method for detecting anomalies in the behavior of a cyber-physical system (CPS) based on the analysis of the data transmitted by its sensory subsystem. Probability theory and mathematical statistics are used to process and normalize the data in order to determine whether or not the system is in the correct operating mode and control process state. To describe the mode-specific control processes of a CPS, the paradigm of using cyber-physical parameters is taken as a basis, as it is the feature that most clearly reflects the system’s interaction with physical processes. In this study, two metrics were taken as a sign of an anomaly: the probability of falling into the sensor values’ confidence interval and parameter change monitoring. These two metrics, as well as the current mode evaluation, produce a final probability function for our trust in the CPS’s currently executing control process, which is, in turn, determined by the operating mode of the system. Based on the results of this trust assessment, it is possible to draw a conclusion about the processing state in which the system is operating. If the score is higher than 0.6, it means the system is in a trusted state. If the score is equal to 0.6, it means the system is in an uncertain state. If the trust score tends towards zero, then the system can be interpreted as unstable or under stress due to a system failure or deliberate attack. Through a case study using cyber-attack data for an unmanned aerial vehicle (UAV), it was found that the method works well. When we were evaluating the normal flight mode, there were no false positive anomaly estimates. When we were evaluating the UAV’s state during an attack, a deviation and an untrusted state were detected. This method can be used to implement software solutions aimed at detecting system faults and cyber-attacks, and thus make decisions about the presence of malfunctions in the operation of a CPS, thereby minimizing the amount of knowledge and initial data about the system. MDPI 2023-02-10 /pmc/articles/PMC9963395/ /pubmed/36850592 http://dx.doi.org/10.3390/s23041996 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Basan, Elena
Basan, Alexandr
Nekrasov, Alexey
Fidge, Colin
Ishchukova, Evgeniya
Basyuk, Anatoly
Lesnikov, Alexandr
Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title_full Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title_fullStr Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title_full_unstemmed Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title_short Trusted Operation of Cyber-Physical Processes Based on Assessment of the System’s State and Operating Mode
title_sort trusted operation of cyber-physical processes based on assessment of the system’s state and operating mode
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9963395/
https://www.ncbi.nlm.nih.gov/pubmed/36850592
http://dx.doi.org/10.3390/s23041996
work_keys_str_mv AT basanelena trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT basanalexandr trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT nekrasovalexey trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT fidgecolin trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT ishchukovaevgeniya trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT basyukanatoly trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode
AT lesnikovalexandr trustedoperationofcyberphysicalprocessesbasedonassessmentofthesystemsstateandoperatingmode

Ejemplares similares