Physical Aware Cyber Platform
Develop standard interface between cyber infrastructure and physical process applications to enable cyber-resilient response in support of resilient controls.
PI: Shwetha Niddodi, shwetha.niddodi@pnnl.gov
This project will explore increased resilience of high-fidelity cyber-physical systems (CPSs) by enabling dynamic agreement of Quality of Service (QoS) and security requirements with control. Resilience goals will be supported through forecasting, detecting, and handling various natural faults and cyber-attacks. The platform will proactively handle problems on the cyber infrastructure layer but inform control applications when it is unable to meet desired QoS guarantees.
- Goal I: Gather requirements security and QoS requirements for improving their control application decisions.
- Goal II: Define a standard API/taxonomy for security and QoS requirements and performance.
- Goal III: Investigate existing mitigation/counter-measure techniques and how they can be employed in support of resilient operation.
The project will approach these goals by engaging with control engineers to gather requirements by engaging with control scientists to understand the security and QoS requirements and what kind of situation awareness information would improve their control application decisions. These requirements will be leveraged to define a standard API taxonomy for communicating security, QoS requirements and abstracting host, network, and device concerns from the application. To determine when to take resilience actions, the project will develop a ‘detect, protect, and respond layer’ to enact proactive and reactive defense strategies against cyber-attacks by (1) leveraging state-of-the-art attack detection models for detecting attacks such as data integrity, denial of service, and insider/subversion attacks, (2) integrating authentication and authorization mechanisms (enabled per security policy) to protect the system against unauthorized use, and (3) leveraging existing mitigation strategies to filter traffic, quarantine a bad actor/specific communication, restrict privilege, etc.