Analysis of Information Flow Security in Cyber-physical Systems

Author

Ravi Akella
Han Tang
Bruce M. McMillin, Missouri University of Science and TechnologyFollow

Abstract

Information flow is a fundamental concept underlying the security of a system. Confidentiality of information in a system can be breached through unrestricted information flow. Physical components added to a cyber system considerably increase the difficulty of determining information flow and the difficulty of mitigating the corresponding confidentiality problem. Fundamentally, physical actions inherently divulge information through simple observation. This work applies classical models of non-deducibility and non-inference to cyber-physical systems (CPSs) to determine information flow in the coupled cyber and physical worlds. the results demonstrate that the combined physical and cyber properties of a CPS can both protect and divulge information. the key to formalizing this analysis is to find a uniform semantic representation of the cyber and physical components, their interaction, and the physics of the system, and to devise a formal modeling technique for determining information flow. This paper presents a semantic model for information flow analysis in a CPS and describes an approach to perform the analysis, including both trace-Based analysis and automated analysis through process algebra specification. Two model infrastructures demonstrate the approach, a gas pipeline system and a smart electric power grid system. in the gas pipeline system, cooperating flow control system devices exchange confidential information to produce physical actions in the pipeline. in the smart grid, cooperating flexible alternating current transmission system devices exchange confidential information to produce physical actions. the approach can verify whether these infrastructures inherently preserve confidentiality. © 2010 Elsevier B.V.

Recommended Citation

R. Akella et al., "Analysis of Information Flow Security in Cyber-physical Systems," International Journal of Critical Infrastructure Protection, vol. 3, no. 3 thru 4, pp. 157 - 173, Elsevier, Dec 2010.

The definitive version is available at https://doi.org/10.1016/j.ijcip.2010.09.001

Department(s)

Computer Science

Comments

National Science Foundation, Grant 0420869

Keywords and Phrases

Cyber-physical systems; Gas pipelines; Information flow; Non-deducibility; Non-inference; Smart grid

International Standard Serial Number (ISSN)

1874-5482

Document Type

Article - Journal

Document Version

Citation

File Type

text

Language(s)

English

Rights

© 2024 Elsevier, All rights reserved.

Publication Date

01 Dec 2010