Runtime Enforcement of Programmable Logic Controllers

05/22/2021
by   Ruggero Lanotte, et al.
0

With the advent of Industry 4.0, industrial facilities and critical infrastructures are transforming into an ecosystem of heterogeneous physical and cyber components, such as programmable logic controllers, increasingly interconnected and therefore exposed to cyber-physical attacks, i.e., security breaches in cyberspace that may adversely affect the physical processes underlying industrial control systems. In this paper, we propose a formal approach based on runtime enforcement to ensure specification compliance in networks of controllers, possibly compromised by colluding malware that may tamper with actuator commands, sensor readings, and inter-controller communications. Our approach relies on an ad-hoc sub-class of Ligatti et al.'s edit automata to enforce controllers represented in Hennessy and Regan's Timed Process Language. We define a synthesis algorithm that, given an alphabet P of observable actions and a regular timed correctness property e, returns a monitor that enforces the property e during the execution of any (potentially corrupted) controller with alphabet P, and complying with the property e. Our monitors correct and suppress incorrect actions coming from corrupted controllers and emit actions in full autonomy when the controller under scrutiny is not able to do so in a correct manner. Besides classical requirements, such as transparency and soundness, the proposed enforcement enjoys deadlock- and diverge-freedom of monitored controllers, together with scalability when dealing with networks of controllers. Finally, we test the proposed enforcement mechanism on a non-trivial case study, taken from the context of industrial water treatment systems, in which the controllers are injected with different malware with different malicious goals.

READ FULL TEXT

page 7

page 19

research
07/18/2020

A process calculus approach to correctness enforcement of PLCs (full version)

We define a simple process calculus, based on Hennessy and Regan's Timed...
research
12/20/2018

Control Behavior Integrity for Distributed Cyber-Physical Systems

Cyber-physical control systems, such as industrial control systems (ICS)...
research
02/24/2021

Safe CPS from Unsafe Controllers

In this paper, we explore using runtime verification to design safe cybe...
research
08/04/2022

"Yeah, it does have a...Windows `98 Vibe”: Usability Study of Security Features in Programmable Logic Controllers

Programmable Logic Controllers (PLCs) drive industrial processes critica...
research
09/24/2021

Runtime Interchange for Adaptive Re-use of Intelligent Cyber-Physical System Controllers

Cyber-Physical Systems (CPSs) such as those found within autonomous vehi...
research
07/26/2021

Development of a 3D Digital Twin of the Swalmen Tunnel in the Rijkswaterstaat Project

In an ongoing project, a cooperation between the TU/e and the Dutch Depa...
research
02/08/2023

Finding Causally Different Tests for an Industrial Control System

Industrial control systems (ICSs) are types of cyber-physical systems in...

Please sign up or login with your details

Forgot password? Click here to reset