Control Barrier Function based Attack-Recovery with Provable Guarantees

TL;DR

This paper introduces a control barrier function-based framework for detecting and recovering from actuator attacks in cyber-physical systems, providing provable safety guarantees and an efficient initial condition verification method.

Contribution

It proposes a novel attack detection and adaptive recovery mechanism using zeroing control barrier functions with provable security guarantees for CPS.

Findings

The detection mechanism is sound with no false negatives under certain conditions.

A sampling-based method verifies the viability of initial condition sets.

The approach effectively maintains safety in a quadrotor attack simulation.

Abstract

This paper studies provable security guarantees for cyber-physical systems (CPS) under actuator attacks. In particular, we consider CPS safety and propose a new attack detection mechanism based on zeroing control barrier function (ZCBF) conditions. In addition, we design an adaptive recovery mechanism based on how close the system is to violating safety. We show that under certain conditions, the attack-detection mechanism is sound, i.e., there are no false negatives for adversarial attacks. We propose sufficient conditions for the initial conditions and input constraints so that the resulting CPS is secure by design. We also propose a novel hybrid control to account for attack detection delays and avoid Zeno behavior. Next, to efficiently compute the set of initial conditions, we propose a sampling-based method to verify whether a set is a viability domain. Specifically, we devise a method for checking a modified barrier function condition on a finite set of points to assess whether a set can be rendered forward invariant. Then, we propose an iterative algorithm to compute the set of initial conditions and input constraints set to limit the effect of an adversary if it compromises vulnerable inputs. Finally, we use a Quadratic Programming (QP) approach for online recovery (as well as nominal) control synthesis. We demonstrate the effectiveness of the proposed method in a simulation case study involving a quadrotor with an attack on its motors.