On Approximate Opacity of Cyber-Physical Systems

TL;DR

This paper extends the concept of opacity in cyber-physical systems to metric systems, introducing approximate opacity to evaluate security levels based on measurement precision, and provides methods for verification and modeling.

Contribution

It introduces approximate opacity for metric systems, along with a simulation relation for verification and symbolic model construction for control systems.

Findings

Defines approximate opacity for metric systems.

Develops a simulation relation for system comparison.

Provides methods for constructing symbolic models.

Abstract

Opacity is an important information-flow security property in the analysis of cyber-physical systems. It captures the plausible deniability of the system's secret behavior in the presence of an intruder that may access the information flow. Existing works on opacity only consider non-metric systems by assuming that the intruder can always distinguish two different outputs precisely. In this paper, we extend the concept of opacity to systems whose output sets are equipped with metrics. Such systems are widely used in the modeling of many real-world systems whose measurements are physical signals. A new concept called approximate opacity is proposed in order to quantitatively evaluate the security guarantee level with respect to the measurement precision of the intruder. Then we propose a new simulation-type relation, called approximate opacity preserving simulation relation, which characterizes how close two systems are in terms of the satisfaction of approximate opacity. This allows us to verify approximate opacity for large-scale, or even infinite systems, using their abstractions. We also discuss how to construct approximate opacity preserving symbolic models for a class of discrete-time control systems. Our results extend the definitions and analysis techniques for opacity from non-metric systems to metric systems.