Learning-Guided Network Fuzzing for Testing Cyber-Physical System Defences
The threat of attack faced by cyber-physical systems (CPSs), especially when they play a critical role in automating public infrastructure, has motivated research into a wide variety of attack defence mechanisms. Assessing their effectiveness is challenging, however, as realistic sets of attacks to test them against are not always available. In this paper, we propose smart fuzzing, an automated, machine learning guided technique for systematically finding ‘test suites’ of CPS network attacks, without requiring any expertise in the system’s control programs or physical processes. Our approach uses predictive machine learning models and metaheuristic search algorithms to guide the fuzzing of actuators so as to drive the CPS into different unsafe physical states. We demonstrate the efficacy of smart fuzzing by implementing it for two real-world CPS testbeds—a water purification plant and a water distribution system—finding attacks that drive them into 27 different unsafe states involving water flow, pressure, and tank levels, including six that were not covered by an established attack benchmark. Finally, we use our approach to test the effectiveness of an invariant-based defence system for the water treatment plant, finding two attacks that were not detected by its physical invariant checks, highlighting a potential weakness that could be exploited in certain conditions.
| Slides (2019-11-ASE-for-web.pdf) | 5.99MiB |
Thu 14 NovDisplayed time zone: Tijuana, Baja California change
16:00 - 17:40 | Emerging DomainsDemonstrations / Journal First Presentations / Research Papers at Cortez 1 Chair(s): Joshua Garcia University of California, Irvine | ||
16:00 20mTalk | Improving the Decision-Making Process of Self-Adaptive Systems by Accounting for Tactic Volatility Research Papers Jeffrey Palmerino Rochester Institute of Technology, Qi Yu Rochester Institute of Technology, Travis Desell University of North Dakota, Daniel Krutz Rochester Institute of Technology Pre-print | ||
16:20 20mTalk | Learning-Guided Network Fuzzing for Testing Cyber-Physical System Defences Research Papers Yuqi Chen Singapore University of Technology and Design, Singapore, Chris Poskitt Singapore University of Technology and Design, Jun Sun Singapore Management University, Singapore, Sridhar Adepu Singapore University of Technology and Design, Singapore, Fan Zhang Zhejiang University, Zhejiang Lab, and Alibaba-Zhejiang University Joint Institute of Frontier Technologies, China DOI Pre-print File Attached | ||
16:40 20mTalk | Uncertainty-wise Test Case Generation and Minimization for Cyber-Physical Systems Journal First Presentations Man Zhang Kristiania University, Shaukat Ali Simula Research Lab, Tao Yue Nanjing University of Aeronautics and Astronautics & Simula Research Laboratory Link to publication | ||
17:00 20mTalk | Finding Trends in Software Research Journal First Presentations George Mathew Department of Computer Science, North Carolina State University, Amritanshu Agrawal Wayfair, Tim Menzies North Carolina State University Link to publication | ||
17:20 10mDemonstration | XRaSE: Towards Virtually Tangible Software using Augmented Reality Demonstrations Rohit Mehra Accenture Labs, India, Vibhu Saujanya Sharma Accenture Labs, Vikrant Kaulgud Accenture Labs, India, Sanjay Podder Accenture | ||
17:30 10mDemonstration | MuSC: A Tool for Mutation Testing of Ethereum Smart Contract Demonstrations Zixin Li Nanjing University, Haoran Wu State Key Laboratory for Novel Software Technology, Nanjing University, Jiehui Xu Nanjing University, Xingya Wang State Key Laboratory for Novel Software Technology, Nanjing University, Lingming Zhang The University of Texas at Dallas, Zhenyu Chen Nanjing University | ||