Cybersecurity for Control Systems: A Process-Aware Perspective

Farshad Khorrami, Prashanth Krishnamurthy, Ramesh Karri

Research output: Contribution to journalReview article

Abstract

Modern industrial control systems and other complex cyber-physical systems such as smart grid, unmanned vehicles, manufacturing plants, chemical plants, and nuclear reactors are complex interconnected systems with extensive cyber and physical components, necessitating robust cyber-security techniques. These systems are complex interconnected combinations of heterogeneous hardware and software components and include sensors, actuators, physical systems and processes being controlled or monitored, computational nodes, communication protocols, and controllers. Besides computing/communications/networking based cyber-Attacks, CPS are vulnerable to process-Aware attacks that aim to disrupt the proper functioning or hamper performance, efficiency, stability, and safety of the physical systems/processes of the CPS. By modifying the information flow or the computational behavior of the system, process-Aware attacks can disrupt the functioning the CPS to thereby hamper the performance or stability of the overall system or its components. Increasing network connectivity of the computational nodes of a CPS facilitates the maintenance and on-demand reprogrammability of computational nodes, greatly reducing the operator workload. However, this increasing connectivity raises the potential for cyber-Attacks that attempt unauthorized modifications of the run-Time parameters or control logic in the computational nodes. Hence, to improve the assurance of CPS, it is vital to develop effective real-Time attack monitoring and threat mitigation mechanisms.

Original languageEnglish (US)
Article number7523254
Pages (from-to)75-83
Number of pages9
JournalIEEE Design and Test
Volume33
Issue number5
DOIs
StatePublished - Oct 1 2016

    Fingerprint

ASJC Scopus subject areas

  • Hardware and Architecture
  • Software
  • Electrical and Electronic Engineering

Cite this