Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system
Cyber-physical systems (CPS) consist of sensors, actuators, and controllers all communicating over a network; if any subset becomes compromised, an attacker could cause significant damage. With access to data logs and a model of the CPS, the physical effects of an attack could potentially be detecte...
Saved in:
| Main Authors: | , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2018
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/4906 https://ink.library.smu.edu.sg/context/sis_research/article/5909/viewcontent/Chen_Poskitt_Sun.SP.2018.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-5909 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-59092020-02-13T07:45:41Z Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system CHEN, Yuqi POSKITT, Christopher M. SUN, Jun Cyber-physical systems (CPS) consist of sensors, actuators, and controllers all communicating over a network; if any subset becomes compromised, an attacker could cause significant damage. With access to data logs and a model of the CPS, the physical effects of an attack could potentially be detected before any damage is done. Manually building a model that is accurate enough in practice, however, is extremely difficult. In this paper, we propose a novel approach for constructing models of CPS automatically, by applying supervised machine learning to data traces obtained after systematically seeding their software components with faults ("mutants"). We demonstrate the efficacy of this approach on the simulator of a real-world water purification plant, presenting a framework that automatically generates mutants, collects data traces, and learns an SVM-based model. Using cross-validation and statistical model checking, we show that the learnt model characterises an invariant physical property of the system. Furthermore, we demonstrate the usefulness of the invariant by subjecting the system to 55 network and code-modification attacks, and showing that it can detect 85% of them from the data logs generated at runtime. 2018-05-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/4906 info:doi/10.1109/SP.2018.00016 https://ink.library.smu.edu.sg/context/sis_research/article/5909/viewcontent/Chen_Poskitt_Sun.SP.2018.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University anomaly detection attacks attestation cyber physical systems invariants machine learning mutation testing system modelling water treatment systems Information Security Software Engineering |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
anomaly detection attacks attestation cyber physical systems invariants machine learning mutation testing system modelling water treatment systems Information Security Software Engineering |
| spellingShingle |
anomaly detection attacks attestation cyber physical systems invariants machine learning mutation testing system modelling water treatment systems Information Security Software Engineering CHEN, Yuqi POSKITT, Christopher M. SUN, Jun Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| description |
Cyber-physical systems (CPS) consist of sensors, actuators, and controllers all communicating over a network; if any subset becomes compromised, an attacker could cause significant damage. With access to data logs and a model of the CPS, the physical effects of an attack could potentially be detected before any damage is done. Manually building a model that is accurate enough in practice, however, is extremely difficult. In this paper, we propose a novel approach for constructing models of CPS automatically, by applying supervised machine learning to data traces obtained after systematically seeding their software components with faults ("mutants"). We demonstrate the efficacy of this approach on the simulator of a real-world water purification plant, presenting a framework that automatically generates mutants, collects data traces, and learns an SVM-based model. Using cross-validation and statistical model checking, we show that the learnt model characterises an invariant physical property of the system. Furthermore, we demonstrate the usefulness of the invariant by subjecting the system to 55 network and code-modification attacks, and showing that it can detect 85% of them from the data logs generated at runtime. |
| format |
text |
| author |
CHEN, Yuqi POSKITT, Christopher M. SUN, Jun |
| author_facet |
CHEN, Yuqi POSKITT, Christopher M. SUN, Jun |
| author_sort |
CHEN, Yuqi |
| title |
Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| title_short |
Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| title_full |
Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| title_fullStr |
Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| title_full_unstemmed |
Learning from mutants: Using code mutation to learn and monitor invariants of a cyber-physical system |
| title_sort |
learning from mutants: using code mutation to learn and monitor invariants of a cyber-physical system |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2018 |
| url |
https://ink.library.smu.edu.sg/sis_research/4906 https://ink.library.smu.edu.sg/context/sis_research/article/5909/viewcontent/Chen_Poskitt_Sun.SP.2018.pdf |
| _version_ |
1770575091604652032 |