TY - GEN
T1 - An efficient MQTT framework for control and protection of networked cyber-physical systems
AU - Ozgur, Utku
AU - Nair, Harikrishnan T.
AU - Sundararajan, Aditya
AU - Akkaya, Kemal
AU - Sarwat, Arif I.
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/12/19
Y1 - 2017/12/19
N2 - As more components of Cyber-Physical Systems (CPSes) get interconnected, their protection becomes imperative. For instance, Networked CPSes (NCPSes) which consist of multiple CPSes have greater attack surfaces given the added communication layer among member CPSes, and the inter-dependency between their physical and cyber subsystems. In particular, an attack on one subsystem may affect both. While there are many studies for CPS attack mitigations, NCPS attack scenarios were under-explored due to limitations of testbed development capabilities. To address this need, in this paper, an NCPS environment comprising two remote, identical IEEE 9-bus CPS testbeds is created. It is connected over a unique framework that uses Message Queueing Telemetry Transport (MQTT) protocol for secure communication. One CPS, called the 'controlling' testbed, provides relay settings for the other CPS which is called the 'controlled' testbed. To analyze the attack behaviors, at the communication level, message integrity, delay and packet drop attacks are conducted on this controlled testbed. These attacks trip the testbed's relays, triggering four coordinated, sequential scenarios at both cyber and physical subsystems that ultimately result in cascading failures. The paper's primary contribution lies in demonstrating the feasibility of coordinated cyber-physical attacks on a NCPS, and evaluating the proposed communication framework under such scenarios. The experiment results indicate that NCPS brings advantages in detecting and mitigating known attacks to CPSes.
AB - As more components of Cyber-Physical Systems (CPSes) get interconnected, their protection becomes imperative. For instance, Networked CPSes (NCPSes) which consist of multiple CPSes have greater attack surfaces given the added communication layer among member CPSes, and the inter-dependency between their physical and cyber subsystems. In particular, an attack on one subsystem may affect both. While there are many studies for CPS attack mitigations, NCPS attack scenarios were under-explored due to limitations of testbed development capabilities. To address this need, in this paper, an NCPS environment comprising two remote, identical IEEE 9-bus CPS testbeds is created. It is connected over a unique framework that uses Message Queueing Telemetry Transport (MQTT) protocol for secure communication. One CPS, called the 'controlling' testbed, provides relay settings for the other CPS which is called the 'controlled' testbed. To analyze the attack behaviors, at the communication level, message integrity, delay and packet drop attacks are conducted on this controlled testbed. These attacks trip the testbed's relays, triggering four coordinated, sequential scenarios at both cyber and physical subsystems that ultimately result in cascading failures. The paper's primary contribution lies in demonstrating the feasibility of coordinated cyber-physical attacks on a NCPS, and evaluating the proposed communication framework under such scenarios. The experiment results indicate that NCPS brings advantages in detecting and mitigating known attacks to CPSes.
UR - http://www.scopus.com/inward/record.url?scp=85046699035&partnerID=8YFLogxK
U2 - 10.1109/CNS.2017.8228674
DO - 10.1109/CNS.2017.8228674
M3 - Conference contribution
AN - SCOPUS:85046699035
T3 - 2017 IEEE Conference on Communications and Network Security, CNS 2017
SP - 421
EP - 426
BT - 2017 IEEE Conference on Communications and Network Security, CNS 2017
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2017 IEEE Conference on Communications and Network Security, CNS 2017
Y2 - 9 October 2017 through 11 October 2017
ER -