Towards fault tolerance and attack resiliency in cyber-physical energy systems through learning from data streams under harsh learning conditions

通过在恶劣的学习条件下从数据流中学习，实现网络物理能源系统的容错和攻击弹性

• 批准号: RGPIN-2021-02968
• 负责人: RazaviFar, Roozbeh
• 金额: $ 2.11万
• 依托单位: University of New Brunswick
• 依托单位国家: 加拿大
• 项目类别: Discovery Grants Program - Individual
• 财政年份: 2022
• 资助国家: 加拿大
• 起止时间: 2022-01-01 至 2023-12-31
• 项目状态: 已结题
• 来源: https://www.nserc-crsng.gc.ca/ase-oro/Details-Detailles_eng.asp?id=752241
• 关键词: Towards; fault; tolerance; attack; resiliency

The welfare and security of modern societies rely on the safe and secure operation of complex safety-critical cyber-physical systems (CPSs). With advancement of digitalization in modern industries, nowadays, CPSs are applied in various technical areas including energy, automotive, medicine, industries, transportation, and defense. CPSs are defined as the close interaction and seamless combination of physical processes and cyber components. These cyber modules monitor, make decisions and control the physical components, and adapt themselves to changes in non-stationary environments. Safety and security are major concerns for the CPS operation due to the great potential for the occurrence of faults, the broad attack surface, and the severe consequences of attacks and faults. CPSs dependency on digitalization, wireless communication, and remote control systems increases their vulnerabilities to malicious threats and cyber-attacks, which lead to the loss of system integrity and functionality. These widen the range of possible problems that cannot be properly addressed, unless under a unified view of safety and security characteristics. To maintain a high level of performance, safety, and security in CPSs; abnormal system operations and anomalies including faults (safety-related incidents) as well as malicious threats and cyber-attacks (security-related incidents) must be detected quickly. Although cyber-attacks and faults originate from different sources, may have similar signatures, and result in increased operating costs, the chance of line shutdown, and the possibility of detrimental environmental impacts. Nevertheless, the source and severity of each must be identified, so that corrective actions can be taken promptly. Therefore, early detection and diagnosis of cyber-attacks and faults are strategically essential for companies to remain competitive in world markets. In addition, from the unified view of safety and security, classifying cyber-attacks from faults is of paramount importance for assessing their possible effects on the system integrity and choosing an appropriate set of preventive and recovery actions for resilience. Furthermore, many cyber-attacks and system malfunctions do not have only safety, security, or life-threatening consequences but may seriously affect the ecology. To enhance the system resiliency, it is crucial to integrate the knowledge on machine learning, big data analytics, cybernetics, cyber security, and safety, to address potential failures and malicious threats. The objective is to focus on missing principal knowledge in detection, diagnosis, and prognosis along with machine learning, big data analytics, and cybernetics that would pave the way together towards attack-resilient and fault-tolerant CPSs. Although the proposed research can be applied to a wide range of applications, the focus of this proposal is toward cyber-physical energy and power systems, with applications to modern power grids.

现代社会的福利和安全依赖于复杂的安全关键网络物理系统（cps）的安全可靠运行。随着现代工业数字化的推进，cps应用于能源、汽车、医药、工业、交通、国防等各个技术领域。cps被定义为物理过程和网络组件的紧密交互和无缝结合。这些网络模块监控、决策和控制物理组件，并使自己适应非固定环境的变化。CPS系统故障发生的可能性大，攻击面广，攻击和故障造成的后果严重，安全保障是CPS系统运行的主要问题。cps对数字化、无线通信和远程控制系统的依赖增加了其遭受恶意威胁和网络攻击的脆弱性，从而导致系统完整性和功能的丧失。这些扩大了可能出现的问题的范围，除非对安全和安保特征有统一的看法，否则这些问题无法得到妥善解决。维持cps的高水平性能、安全和保安；系统运行异常、异常，包括故障（安全事件）、恶意威胁和网络攻击（安全事件），需要快速发现。尽管网络攻击和故障来自不同的来源，但可能具有相似的特征，并导致运营成本增加，线路关闭的可能性增加，以及对环境造成不利影响的可能性。然而，必须确定每个问题的来源和严重程度，以便及时采取纠正措施。因此，早期发现和诊断网络攻击和故障对于公司在世界市场上保持竞争力至关重要。此外，从安全的统一观点来看，从故障中对网络攻击进行分类对于评估其对系统完整性的可能影响以及选择一套适当的预防和恢复措施以实现弹性至关重要。此外，许多网络攻击和系统故障不仅具有安全、安保或危及生命的后果，而且可能严重影响生态。为了增强系统的弹性，整合机器学习、大数据分析、控制论、网络安全和安全方面的知识，以解决潜在的故障和恶意威胁至关重要。目标是专注于缺失的检测、诊断和预测方面的主要知识，以及机器学习、大数据分析和控制论，这些知识将为抵御攻击和容错的cps铺平道路。虽然所提出的研究可以应用于广泛的应用，但本提案的重点是网络物理能源和电力系统，并应用于现代电网。