DoS攻击下CPS双重安全控制与通讯的协同设计

兰州理工大学学报 ›› 2020, Vol. 46 ›› Issue (6): 85-97.

• 自动化技术与计算机技术 • 上一篇下一篇

DoS攻击下CPS双重安全控制与通讯的协同设计

李炜^1,2,3, 魏凯锋¹, 李亚洁¹, 史娅红¹

1.兰州理工大学电气工程与信息工程学院, 甘肃兰州 730050;
2.兰州理工大学甘肃省工业过程先进控制重点实验室, 甘肃兰州 730050;
3.兰州理工大学电气与控制工程国家级实验教学示范中心, 甘肃兰州 730050

收稿日期:2019-07-09 出版日期:2020-12-28 发布日期:2021-01-07
作者简介:李炜(1963-),女,陕西西安人,教授,博导
基金资助:
国家自然科学基金(61364011)

Co-design of CPS dual security control and communication under DoS attack

LI Wei^1,2,3, WEI Kai-feng¹, LI Ya-jie¹, SHI Ya-hong¹

1. College of Electrical and Information Engineering, Lanzhou Univ. of Tech., Lanzhou 730050, China;
2. Key Laboratory of Gansu Advanced Control for Industrial Processes, Lanzhou Univ. of Tech., Lanzhou 730050, China;
3. National Demonstration Center for Experimental Electrical and Control Engineering Education, Lanzhou Univ. of Tech., Lanzhou 730050, China

Received:2019-07-09 Online:2020-12-28 Published:2021-01-07

摘要/Abstract

摘要： 针对一类具有执行器故障与DoS攻击的CPS,基于边缘计算理念,并结合事件触发通讯机制,研究了CPS双重安全控制与通讯的协同设计问题.首先,基于边缘计算的资源分配,提出DETCS下的CPS双重安全控制架构,并把有限能量的DoS攻击转化为一种特殊的时延,在DETCS下建立了具有故障与攻击的闭环CPS模型;其次,借助时滞系统理论,通过构造适当的Lyapunov-Krasovskii泛函,利用仿射Bessel-Legendre等不等式,分别给出了DoS攻击下状态与故障估计鲁棒观测器、执行器故障和DoS攻击双重安全控制与通讯协同设计的方法;最后,通过对四容水箱系统的仿真验证了文中理论结果的有效性与可行性.

关键词: 双重安全控制, 离散事件触发通讯机制, DoS攻击, 边缘计算

Abstract: In view of a class of CPS with actuator failure and DoS attacks, this paper studies the cooperative design of CPS dual security control and communication on the basis of concept of edge computation combined with event-triggered communication mechanism. Firstly, based on the resource allocation of edge computing, the CPS dual security control architecture under the discrete event trigger mechanism is proposed, meanwhile transforming the finite energy DoS attack into a special delay, and the closed-loop CPS model under fault and attack is established under the scheme of discrete event triggering. Secondly, the appropriate Lyapunov-Krasovskii functional with the aid of the time-delay system theory and using affine Bessel-Legendre and other inequalities are both constructed. The robust observer of state and fault estimation under DoS attack and the dual security control and communication collaborative design method under DoS attack are presented respectively. Finally, the effectiveness and feasibility of present theoretical results in this paper are verified by the simulation of four-tank water tank system.

Key words: dual security control, discrete event-triggered communication scheme, denial of service attack, edge computing

中图分类号:

TP273

李炜, 魏凯锋, 李亚洁, 史娅红. DoS攻击下CPS双重安全控制与通讯的协同设计[J]. 兰州理工大学学报, 2020, 46(6): 85-97.

LI Wei, WEI Kai-feng, LI Ya-jie, SHI Ya-hong. Co-design of CPS dual security control and communication under DoS attack[J]. Journal of Lanzhou University of Technology, 2020, 46(6): 85-97.

参考文献

[1] 温景容,武穆清,宿景芳.信息物理融合系统 [J].自动化学报,2012,38(4):507-517.
[2] 刘烃,田决,王稼舟,等.信息物理融合系统综合安全威胁与防御研究 [J].自动化学报,2019,45(1):5-24.
[3] HUO Zhihong,FANG Huajing.Fault-tolerant control research for networked control system under communication constraints [J].Acta Automatica Sinica,2006,32(5):659-666.
[4] 郑英,王彦伟,方华京.基于T-S模型的网络化控制系统的鲁棒容错控制 [J].华中科技大学学报(自然科学版),2008,36(3):111-113.
[5] 邱爱兵,吉虹钢,顾菊平.非均匀采样数据系统时变故障估计与调节最优集成设计 [J].自动化学报, 2014, 40(7):1493-1504.
[6] MA A J,WANG Q,DONG C Y,et al.Fault detection for networked control systems based on dynamic feedbackobserve [C]//The 25th Chinese Control and Decision Conference (CCDC).Guiyang:[s.n.],2013:4995-4998.
[7] 李炜,张富玉,李亚洁.DETCS下非均匀传输NCS故障容错与通讯的协同设计 [J].兰州理工大学学报,2017,43(2):80-91.
[8] 王君,李淑真,李炜.基于事件触发机制的NCS主被动混合鲁棒H_∞容错控制 [J].信息与控制,2017,46(2):144-152.
[9] SU S W,JIE B,LEE P L.A hybrid active-passive fault-tolerant control approach [J].Asia-Pacific Journal of Chemical Engineering,2010,1(1/2):54-62.
[10] WANG J,YAO X,LI W.Hybrid active-passive robust fault-tolerant control of event-triggered nonlinear NCS [J].Open Electrical & Electronic Engineering Journal,2017,11(1):68-86.
[11] YUAN Y,SUN F,ZHU Q.Resilient control in the presence of DoS attack:switched system approach [J].International Journal of Control Automation & Systems,2015,13(6):1423-1435.
[12] YUAN Y,YUAN H,GUO L,et al.Resilient control of networked control system under DoS attacks:a unified game approach [J].IEEE Transactions on Industrial Informatics,2016,12(5):1786-1794.
[13] 庞岩,王娜,夏浩.基于博弈论的信息物理融合系统安全控制 [J].自动化学报,2019,45(1):185-195.
[14] FENG Shuai,TESI P.Resilient control under Denial-of-Service:Robust design [C]//American Control Conference.[S.l.]:IEEE,2016:134-139.
[15] PERSIS C D,TESI P.Input-to-state stabilizing control under denial-of-service [J].IEEE Transactions on Automatic Control,2015,60(11):2930-2944.
[16] CHEN P,LI J,FEI M.Resilient event-triggering H_∞ load frequency control for multi-area power systems with energy-limited DoS attacks [J].IEEE Transactions on Power Systems,2017,32(5):4110-4118.
[17] 杨飞生,汪璟,潘泉,等.网络攻击下信息物理融合电力系统的弹性事件触发控制 [J].自动化学报,2019,45(1):110-119.
[18] SONG Y,AO W,WEN C.Adaptive cyber-physical system attack detection and reconstruction with application to power systems [J].IET Control Theory & Applications,2016,10(12):1458-1468.
[19] SHOUKRY Y,TABUADA P.Event-triggered state observers for sparse sensor noise/attacks [J].IEEE Transactions on Automatic Control,2016,61(8):2079-2091.
[20] AN L,YANG G H.Secure state estimation against sparse sensor attacks with adaptive switching mechanism [J].IEEE Transactions on Automatic Control,2018,63(8):2596-2603.
[21] ZHOU J,YU L,ZHANG D.Secure estimation and event-triggered control for cyber-physical systems based on intermediate estimator [C]//37th Chinese Control Conference.Wuhan:[s.n.],2018:6229-6234.
[22] 敖伟,宋永端,温长云.受攻击信息物理系统的分布式安全状态估计与控制一种有限时间方法 [J].自动化学报,2019,45(1):174-184.
[23] 李雪,李雯婷,杜大军,等.拒绝服务攻击下基于UKF的智能电网动态状态估计研究 [J].自动化学报,2019,45(1):120-131.
[24] SU L,YE D.A cooperative detection and compensation mechanism against Denial-of-Service attack for cyber-physical systems [J].Information Sciences,2018,444:122-134.
[25] FAWZI H,TABUADA P,DIGGAVI S.Secure estimation and control for cyber-physical systems under adversarial attacks [J].Automatic Control IEEE Transactions on,2012,59(6):1454-1467.
[26] YASEEN A A,BAYART M.Cyber-attack detection with fault accommodation based on intelligent generalized predictive control [J].IFAC-persOnLine,2017,50:2601-2608.
[27] YE D,LUO S P.A co-design methodology for cyber-physical systems under actuator fault and cyber attack [J].Journal of the Franklin Institute,2019,356(4):1856-1879.
[28] LI Wei,SHI Yahong,LI Yajie.Research on secure control and communication for cyber-physical systems under cyber-attacks [J].Transactions of the Institute of Measurement & Control,2019,41(11):0142331219826658.
[29] PENG C,HAN Q L,YUE D.To transmit or not to transmit:a discrete event-triggered communication scheme for networked takagi-sugeno fuzzy systems [J].IEEE Transactions on Fuzzy Systems,2013,21(1):164-170.
[30] 边缘计算产业联盟.边缘计算参考架构2.0 [J].自动化博览,2018(1):60-62.
[31] 肖会芹,何勇,吴敏,等.基于T-S模糊模型非线性网络控制系统改进H_∞跟踪控制 [J].控制理论与应用,2012,29(1):71-78.
[32] FRIDMAN E.A refined input delay approach to sampled-data control [J].Automatica,2010,46(2):421-427.

DoS攻击下CPS双重安全控制与通讯的协同设计

Co-design of CPS dual security control and communication under DoS attack

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 1

编辑推荐

Metrics

本文评价