A Formal Approach to Cyber-Physical Attacks

We apply formal methods to lay and streamline theoretical foundations to reason about Cyber-Physical Systems (CPSs) and cyber-physical attacks. We focus on integrity and DoS attacks to sensors and actuators of CPSs, and on the timing aspects of these attacks. Our contributions are threefold: (1) we define a hybrid process calculus to model both CPSs and cyber-physical attacks. (2) we define a threat model of cyber-physical attacks and provide the means to assess attack tolerance/vulnerability with respect to a given attack. (3) we formalise how to estimate the impact of a successful attack on a CPS and investigate possible quantifications of the success chances of an attack. We illustrate definitions and results by means of a non-trivial engineering application.

• Publication year

  2016

• Venue

  IEEE Computer Security Foundations Symposium

• Publication date

  2016-11-04

• Fields of study

  Computer Science, Engineering

• Identifiers
  DOI 10.1109/CSF.2017.12arXiv 1611.01377
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Security

  2019cited by this paper
• Weak Simulation Quasimetric in a Gossip Scenario

  2017cited by this paper
• CPDY: Extending the Dolev-Yao Attacker with Physical-Layer Interactions

  2016cited by this paper
• A Calculus of Cyber-Physical Systems

  2016influential reference
• Towards the Automated Verification of Cyber-Physical Security Protocols: Bounding the Number of Timed Intruders

  2016cited by this paper
• On Attacker Models and Profiles for Cyber-Physical Systems

  2016cited by this paper
• Cyber-Physical Systems Security: a Systematic Mapping Study

  2016cited by this paper
• A system dynamics approach for assessing the impact of cyber attacks on critical infrastructures

  2015influential reference
• Availability by Design:A Complementary Approach to Denial-of-Service

  2015cited by this paper
• Cyber-Physical Systems Security: Experimental Analysis of a Vinyl Acetate Monomer Plant

  2015influential reference
• Security, privacy and trust in Internet of Things: The road ahead

  2015cited by this paper
• Response and reconfiguration of cyber-physical control systems: A survey

  2015cited by this paper
• Game-Theoretic Methods for Robustness, Security, and Resilience of Cyberphysical Control Systems: Games-in-Games Principle for Optimal Cross-Layer Resilient Control Systems

  2015cited by this paper
• A semantic analysis of key management protocols for wireless sensor networks

  2014cited by this paper
• Vulnerabilities of cyber-physical systems to stale data - Determining the optimal time to launch attacks

  2014cited by this paper
• Resilience of Process Control Systems to Cyber-Physical Attacks

  2013influential reference
• Broadcast, Denial-of-Service, and Secure Communication

  2013cited by this paper
• Modelling MAC-Layer Communications in Wireless Systems

  2013cited by this paper
• Game theory meets network security and privacy

  2013cited by this paper
• The Cyber-Physical Attacker

  2012cited by this paper
• A secure control framework for resource-limited adversaries

  2012cited by this paper
• Modeling security in cyber-physical systems

  2012cited by this paper
• Semantic Analysis of Gossip Protocols for Wireless Sensor Networks

  2011cited by this paper
• MATPOWER: Steady-State Operations, Planning, and Analysis Tools for Power Systems Research and Education

  2011cited by this paper
• HYPE: Hybrid modelling by composition of flows

  2011cited by this paper
• Chemical Safety and Hazard Investigation Board

  2010cited by this paper
• Understanding the physical and economic consequences of attacks on control systems

  2009cited by this paper
• U.S. Chemical Safety and Hazard Investigation Board

  2007cited by this paper
• Lessons Learned from the Maroochy Water Breach

  2007cited by this paper
• Semantics and pragmatics of Real-Time Maude

  2007cited by this paper
• Probabilistic reachability and safe sets computation for discrete time stochastic hybrid systems

  2006influential reference
• Hybrid process algebra

  2005cited by this paper
• Metrics for labelled Markov processes

  2004cited by this paper
• The Phi-Calculus: A Language for Distributed Control of Reconfigurable Embedded Systems

  2003cited by this paper
• Crossover: Online Pests Plaguing the Offline World

  2003cited by this paper
• Mobile Objects as Mobile Processes

  2002cited by this paper
• Broadcast.

  1999cited by this paper
• A Process Algebra for Hybrid Systems

  1999cited by this paper
• A Uniform Approach for the Definition of Security Properties

  1999influential reference
• The theory of hybrid automata

  1996cited by this paper
• The Algorithmic Analysis of Hybrid Systems

  1995cited by this paper
• A Process Algebra for Timed Systems

  1995cited by this paper
• The Polyadic π-Calculus: a Tutorial

  1993cited by this paper
• Hybrid Automata: An Algorithmic Approach to the Specification and Verification of Hybrid Systems

  1992cited by this paper

• Showcasing standards and approaches for cybersecurity, safety, and privacy issues in connected and autonomous vehicles

  2025cites this paper
• Approximating Quantified Information Leakage in Cyber-Physical Systems Through Their Digital Twins

  2025cites this paper
• Constructing Cyber-Physical System Testing Suites Using Active Sensor Fuzzing

  2023cites this paper
• VATT&EK: Formalization of Cyber Attacks on Intelligent Transport Systems - a TTP based approach for Automotive and Rail

  2023cites this paper
• Quantitative Robustness Analysis of Sensor Attacks on Cyber-Physical Systems

  2023cites this paper
• Markov-Based Malware Propagation Modeling and Analysis in Multi-Layer Networks

  2022cites this paper
• Intrusion Response Systems for Cyber-Physical Systems: A Comprehensive Survey

  2022cites this paper
• Relational Analysis of Sensor Attacks on Cyber-Physical Systems

  2021cites this paper
• Modeling Data Flows with Network Calculus in Cyber-Physical Systems: Enabling Feature Analysis for Anomaly Detection Applications

  2021cites this paper
• A Semantic Framework for Direct Information Flows in Hybrid-Dynamic Systems

  2021cites this paper
• A Survey on Recent Advanced Research of CPS Security

  2021cites this paper
• A weak semantic approach to bisimulation metrics in models with nondeterminism and continuous state spaces

  2021cites this paper
• An actor-based framework for asynchronous event-based cyber-physical systems

  2021cites this paper
• Security Metrics at Work on the Things in IoT Systems

  2020cites this paper
• Adversary Model for Attacks Against IEC 61850 Real-Time Communication Protocols

  2020cites this paper
• An Actor-Based Approach for Security Analysis of Cyber-Physical Systems

  2020cites this paper
• Active fuzzing for testing and securing cyber-physical systems

  2020cites this paper
• Synthesis of covert actuator attackers for free

  2020cites this paper
• Synthesis of Supremal Successful Normal Actuator Attackers on Normal Supervisors

  2019cites this paper
• A Formal Approach to Physics-based Attacks in Cyber-physical Systems

  2019cites this paper
• Challenges and Opportunities for Model-Based Security Risk Assessment of Cyber-Physical Systems

  2019cites this paper
• A Chaotic Cryptographic Solution for Low-Range Wireless Communications in Industry 4.0

  2019cites this paper
• On the decidability of linear bounded periodic cyber-physical systems

  2019cites this paper
• Measuring security in IoT communications

  2019cites this paper
• Synthesis of Actuator Attackers for Free

  2019cites this paper
• Learning-Guided Network Fuzzing for Testing Cyber-Physical System Defences

  2019cites this paper
• Formal Security Verification of Industry 4.0 Applications

  2019cites this paper
• IoT Device Identification via Network-Flow Based Fingerprinting and Learning

  2019cites this paper
• Towards Bounded Synthesis of Resilient Supervisors

  2019cites this paper
• Analysing the Provenance of IoT Data

  2019cites this paper
• Bounded Synthesis of Resilient Supervisors

  2019cites this paper
• An Open Source Software Architecture for Smart Buildings

  2018cites this paper
• Supervisor Obfuscation Against Actuator Enablement Attack

  2018cites this paper
• A Hybrid, Dynamic Logic for Hybrid-Dynamic Information Flow

  2018cites this paper
• Privacy, Security and Trust in the Internet of Neurons

  2018cites this paper
• Explainable Security

  2018cites this paper
• Towards a formal notion of impact metric for cyber-physical attacks (full version)

  2018cites this paper
• On cyber-physical attacks in bilateral teleoperation systems: An experimental analysis

  2018cites this paper
• A Modest Security Analysis of Cyber-Physical Systems: A Case Study

  2018influential citation
• Hybrid Rebeca: Modeling and Analyzing of Cyber-Physical Systems

  2018cites this paper
• A Roadmap Toward the Resilient Internet of Things for Cyber-Physical Systems

  2018cites this paper
• Weak Bisimulation Metrics in Models with Nondeterminism and Continuous State Spaces

  2018cites this paper
• Synthesis of Successful Actuator Attackers on Supervisors

  2018cites this paper
• A Probabilistic Calculus of Cyber-Physical Systems

  2017cites this paper
• Extending Taylor Approximation to Hybrid Systems with Integrals

  2016cites this paper
• A Calculus of Cyber-Physical Systems

  2016cites this paper
• Cyber-Physical Systems Security: a Systematic Mapping Study

  2016cites this paper
• A Semantic Theory of the Internet of Things - (Extended Abstract)

  2015cites this paper
• Engineering for Industry 4 . 0 Section 1 – State of the art of the Department

  year unknowncites this paper