公开(公告)号：US11431733B2

公开(公告)日：2022-08-30

申请号：US16331409

申请日：2017-09-06

申请人： Singapore University of Technology and Design

发明人： Aditya Mathur ,  Sridhar Adepu ,  Siddhant Shrivastava ,  Myat Aung Kaung ,  Nils Tippenhauer ,  Giedre Sabaliauskaite

IPC分类号： H04L29/06 ,  G05B19/05 ,  H04L9/40 ,  G06F21/55 ,  G05B19/418 ,  G05B19/042

摘要： The present disclosure generally relates to a system and method for defending a utilities system against cyber-physical attacks associated with anomalies in a physical process operative in the utilities system. The defense system comprises: a set of sensors for collecting physical data associated with the physical process; a set of controller devices for monitoring process states of the physical process based on the physical data from the sensors; a set of verification devices for monitoring the physical process based on the physical data from the sensors, the physical data enabling the verification devices to detect the anomalies based on a set of invariants predefined for the physical process; and a set of actuators controllable by the controller devices or verification devices to remedy the anomalies and regulate the physical process, thereby defending the utilities system against the cyber-physical attacks.

公开(公告)号：US10911482B2

公开(公告)日：2021-02-02

申请号：US16090031

申请日：2017-03-28

申请人： Singapore University of Technology and Design

发明人： Aditya Mathur ,  Sridhar Adepu

IPC分类号： H04L29/06 ,  G06F21/55 ,  H04W12/12 ,  G05B19/04 ,  G06N20/00

摘要： A method of detecting cyber attacks on a cyber physical system is disclosed, and the system includes at least one computing device coupled to at least one sensor and/or actuator for controlling a physical process. The method comprises: deriving at least one invariant for the computing device, based on a system design of the system or computer code configured to control the system in relation to the physical process or data collected from the system during testing or operation of the system, the invariant defining a set of conditions that enable determination from the sensor and/or actuator regarding process anomalies of the physical process being controlled; configuring the invariant as corresponding computer code; and executing the invariant as the computer code on the computing device to monitor the physical process via the sensor and/or actuator and detect the process anomalies for detecting the cyber attacks.