Modeling Adversarial Physical Movement in a Railway Station-Reference-Cited by-同舟云学术

Modeling Adversarial Physical Movement in a Railway Station

Published:2020-01-22 Issue:1 Volume:4 Page:1-25
ISSN:2378-962X
Container-title:ACM Transactions on Cyber-Physical Systems
language:en
Short-container-title:ACM Trans. Cyber-Phys. Syst.

Author:

Cheh Carmen¹,Chen Binbin²,Temple William G.³,Sanders William H.⁴

Affiliation:

1. Department of Computer Science and Coordinated Science Laboratory, University of Illinois, Urbana, IL

2. Singapore University of Technology and Design (SUTD) and Advanced Digital Sciences Center (ADSC), Singapore

3. Advanced Digital Sciences Center (ADSC), Singapore

4. Department of Electrical and Computer Engineering and Coordinated Science Laboratory, University of Illinois, Urbana, IL

Abstract

Many real-world attacks on cyber-physical systems involve physical intrusions that directly cause damage or facilitate cyber attacks. Hence, in this work, we investigate the security risk of organizations with respect to different adversarial models of physical movement behavior. We study the case in which an intrusion detection mechanism is in place to alert the system administrator when users deviate from their normal movement behavior. We then analyze how different user behaviors may present themselves as different levels of threats in terms of their normal movement behavior within a given building topology. To quantify the differences in movement behavior, we define a WeightTopo metric that takes into account the building topology in addition to the movement pattern. We demonstrate our approach on a railway system case study and show how certain user roles, when abused by attackers, are especially vulnerable in terms of the physical intrusion detection probability. We also evaluate quantitatively how the similarity between an attacker’s movement behavior and a user’s movement behavior affects the detection probability of the evaluated intrusion detection system. Certain individual users are found to pose a higher threat, implying the need for customized monitoring.

Funder

Maryland Procurement Office

National Research Foundation

Human-Centered Cyber-physical Systems Programme at the Advanced Digital Sciences Center from Singapore's Agency for Science

National Cybersecurity R8D Directorate

National Cybersecurity R8D Programme

Prime Minister's Office, Singapore

Technology and Research (A*STAR).

Publisher

Association for Computing Machinery (ACM)

Subject

Artificial Intelligence,Control and Optimization,Computer Networks and Communications,Hardware and Architecture,Human-Computer Interaction

Link

https://dl.acm.org/doi/pdf/10.1145/3349584

Reference27 articles.

1. Graeme Baker. 2008. Schoolboy hacks into city’s tram system. The Telegraph (January 2008). Retrieved from http://www.telegraph.co.uk/news/worldnews/1575293/Schoolboy-hacks-into-citys-tram-system.html. Graeme Baker. 2008. Schoolboy hacks into city’s tram system. The Telegraph (January 2008). Retrieved from http://www.telegraph.co.uk/news/worldnews/1575293/Schoolboy-hacks-into-citys-tram-system.html.

2. Security evaluation of biometric authentication systems under real spoofing attacks

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Safe Maintenance of Railways using COTS Mobile Devices: The Remote Worker Dashboard;ACM Transactions on Cyber-Physical Systems;2023-10-14

2. Intrusion Detection Systems: A State-of-the-Art Taxonomy and Survey;Arabian Journal for Science and Engineering;2022-11-17

3. A review on cybersecurity in railways;Proceedings of the Institution of Mechanical Engineers, Part F: Journal of Rail and Rapid Transit;2022-04-26