Information Flow Quantification Framework for Cyber Physical System with Constrained Resources

Author

Li Feng
Bruce M. McMillin, Missouri University of Science and TechnologyFollow

Abstract

In Cyber Physical Systems (CPSs), traditional security mechanisms such as cryptography and access control are not enough to ensure the security of the system. In a CPS, security is violated through complex interactions between the cyber and physical worlds, and, most insidiously, unintended information leakage through observable physical actions. Information flow analysis, which aims at controlling the way information flows among different entities, is better suited for CPSs. Information theory is widely used to quantify information leakage received by a program that produces a public output. Quantifying information leakage in CPSs can, however, be challenging due to implicit information flow between the cyber portion, the physical portion, and the outside world. This paper focuses on statistical methods to quantify information leakage in CPSs, especially, CPSs that allocate constrained resources. With aggregated physical observations, unintended information about the constrained resource might be leaked. The framework proposed is based on the advice tape concept of algorithmically quantifying information leakage and statistical analysis. An electric smart grid has been used as an example to develop confidence intervals of information leakage within a real CPS. The impact of this work is that it can be used as in algorithmic design to allocate electric power to nodes while maximizing the uncertainly of the information flow to an attacker.

Recommended Citation

L. Feng and B. M. McMillin, "Information Flow Quantification Framework for Cyber Physical System with Constrained Resources," Proceedings of the 39th IEEE Annual Computer Software and Applications Conference (2015, Taichung, Taiwan), vol. 2, pp. 50 - 59, IEEE Computer Society, Jul 2015.

The definitive version is available at https://doi.org/10.1109/COMPSAC.2015.92

Meeting Name

39th IEEE Annual Computer Software and Applications Conference, COMPSAC 2015 (2015: Jul. 1-5, Taichung, Taiwan)

Department(s)

Computer Science

Keywords and Phrases

Advice Tape; Confidence Interval; Information Flow; Quantify

International Standard Book Number (ISBN)

978-1-4673-6563-5

International Standard Serial Number (ISSN)

0730-3157

Document Type

Article - Conference proceedings

Document Version

Citation

File Type

text

Language(s)

English

Rights

© 2015 IEEE Computer Society, All rights reserved.

Publication Date

01 Jul 2015