Multi-step Sensor Attackability in Cyber-Physical Systems

Wenli Duo; Shouguang Wang; Meng Chu Zhou

doi:10.1109/TAC.2025.3542214

Multi-step Sensor Attackability in Cyber-Physical Systems

Wenli Duo, Shouguang Wang, Meng Chu Zhou

Electrical and Computer Engineering

Research output: Contribution to journal › Article › peer-review

Abstract

This work investigates cyber attacks targeting cyber-physical systems in the framework of discrete event systems. From intruders’ perspective, we propose a concept called k-step attackability to explore attack scenarios where intruders are constrained by a limited number of attack operations. In particular, we focus on a class of sensor attacks where sensor readings can be replaced, deleted, and inserted during transmission. We examine k-step attackability under such attacks and address its verification problem by proposing a structure termed an attack recognizer. It evaluates whether an arbitrary strategy generated by an attack structure can compromise a system within a certain number of attacks. Furthermore, we extend this work to general attack scenarios and provide a method to identify desired attack strategies.

Original language	English (US)
Journal	IEEE Transactions on Automatic Control
DOIs	https://doi.org/10.1109/TAC.2025.3542214
State	Accepted/In press - 2025

All Science Journal Classification (ASJC) codes

Control and Systems Engineering
Computer Science Applications
Electrical and Electronic Engineering

Keywords

attackability
cyber-physical systems
Discrete event systems
sensor attacks

Access to Document

10.1109/TAC.2025.3542214

Cite this

@article{1d5ba0c684f448cdaff98dec3cb255da,

title = "Multi-step Sensor Attackability in Cyber-Physical Systems",

abstract = "This work investigates cyber attacks targeting cyber-physical systems in the framework of discrete event systems. From intruders{\textquoteright} perspective, we propose a concept called k-step attackability to explore attack scenarios where intruders are constrained by a limited number of attack operations. In particular, we focus on a class of sensor attacks where sensor readings can be replaced, deleted, and inserted during transmission. We examine k-step attackability under such attacks and address its verification problem by proposing a structure termed an attack recognizer. It evaluates whether an arbitrary strategy generated by an attack structure can compromise a system within a certain number of attacks. Furthermore, we extend this work to general attack scenarios and provide a method to identify desired attack strategies.",

keywords = "attackability, cyber-physical systems, Discrete event systems, sensor attacks",

author = "Wenli Duo and Shouguang Wang and Zhou, {Meng Chu}",

note = "Publisher Copyright: {\textcopyright} 1963-2012 IEEE.",

year = "2025",

doi = "10.1109/TAC.2025.3542214",

language = "English (US)",

journal = "IEEE Transactions on Automatic Control",

issn = "0018-9286",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - JOUR

T1 - Multi-step Sensor Attackability in Cyber-Physical Systems

AU - Duo, Wenli

AU - Wang, Shouguang

AU - Zhou, Meng Chu

PY - 2025

Y1 - 2025

N2 - This work investigates cyber attacks targeting cyber-physical systems in the framework of discrete event systems. From intruders’ perspective, we propose a concept called k-step attackability to explore attack scenarios where intruders are constrained by a limited number of attack operations. In particular, we focus on a class of sensor attacks where sensor readings can be replaced, deleted, and inserted during transmission. We examine k-step attackability under such attacks and address its verification problem by proposing a structure termed an attack recognizer. It evaluates whether an arbitrary strategy generated by an attack structure can compromise a system within a certain number of attacks. Furthermore, we extend this work to general attack scenarios and provide a method to identify desired attack strategies.

AB - This work investigates cyber attacks targeting cyber-physical systems in the framework of discrete event systems. From intruders’ perspective, we propose a concept called k-step attackability to explore attack scenarios where intruders are constrained by a limited number of attack operations. In particular, we focus on a class of sensor attacks where sensor readings can be replaced, deleted, and inserted during transmission. We examine k-step attackability under such attacks and address its verification problem by proposing a structure termed an attack recognizer. It evaluates whether an arbitrary strategy generated by an attack structure can compromise a system within a certain number of attacks. Furthermore, we extend this work to general attack scenarios and provide a method to identify desired attack strategies.

KW - attackability

KW - cyber-physical systems

KW - Discrete event systems

KW - sensor attacks

UR - http://www.scopus.com/inward/record.url?scp=85217953213&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85217953213&partnerID=8YFLogxK

U2 - 10.1109/TAC.2025.3542214

DO - 10.1109/TAC.2025.3542214

M3 - Article

AN - SCOPUS:85217953213

SN - 0018-9286

JO - IEEE Transactions on Automatic Control

JF - IEEE Transactions on Automatic Control

ER -

Multi-step Sensor Attackability in Cyber-Physical Systems

Abstract

All Science Journal Classification (ASJC) codes

Keywords

Access to Document

Other files and links

Fingerprint

Cite this