Proceedings of the
The 33rd European Safety and Reliability Conference (ESREL 2023)
3 – 8 September 2023, Southampton, UK
Resilience Enhancement of Cyber-Physical Systems Against Hybrid Attacks
1Department of Advanced Design and System Engineering, City University of Hong Kong, Hong Kong SAR, China.
2Department of Management Science, Xi'an Jiaotong University, ShaanXi, China.
3Industrial Engineering Laboratory, CentraleSupélec, Université Paris-Saclay, France
ABSTRACT
With the advancement of information and communication technology, modern critical infrastructure systems, e.g., power grids, tend to be controlled automatically and remotely through cyber systems. Such coupling of physical and cyber systems promotes more efficient operations and inversely induces the vulnerability of two aspects in the face of potential cyber-physical attacks. Specifically, high-impact low-probability extreme weather events can trigger disruption scenarios where many components in the physical system fail, while malicious attackers with limited offensive resources prefer information interference such as denial-of-service (DoS) attacks and false data injection (FDI) attacks to affect the availability and integrity of cyber systems. Considering the serious consequences of natural disasters and malicious cyber-attacks, it is necessary to develop a resilience enhancement framework from the cyber-physical perspective. In this paper, a defender-attacker-defender model is proposed for the resilient strategy of cyber-physical systems against hybrid uncertain threats. The first defend-level problem aims to protect the cyber-physical systems by optimally allocating protection equipment, e.g., distributed energy resources and intelligent firewalls. The attack-level problem formulates the best cyber-attack strategy, including the timing and intensity of the DoS and FDI attacks. Both the first defense and attack strategies should consider the stochastic disruption scenarios caused by natural hazards. And the second defend-level problem targets to optimal operation of the cyber-physical system based on the available components and resources at each disruption scenario. To solve the proposed tri-level stochastic optimization problem, we implement the duality theory to reformulate the tri-level problem into a max-min problem, and then exploit a column-and-constraints generation algorithm to obtain the solution. Detailed case studies are conducted in IEEE 13-node and 33-node systems to showcase the effectiveness of the proposed framework. The numerical results indicate that the designed defense strategy can bolster the cyber-physical system resilience against hybrid threats.
Keywords: Cyber-physical systems, Interdependence, Hybrid attacks, Resilience enhancement, Optimization.
