Current browse context:
cs.SE
Change to browse by:
References & Citations
Computer Science > Software Engineering
Title: Active Fuzzing for Testing and Securing Cyber-Physical Systems
(Submitted on 28 May 2020 (v1), last revised 16 Jul 2020 (this version, v2))
Abstract: Cyber-physical systems (CPSs) in critical infrastructure face a pervasive threat from attackers, motivating research into a variety of countermeasures for securing them. Assessing the effectiveness of these countermeasures is challenging, however, as realistic benchmarks of attacks are difficult to manually construct, blindly testing is ineffective due to the enormous search spaces and resource requirements, and intelligent fuzzing approaches require impractical amounts of data and network access. In this work, we propose active fuzzing, an automatic approach for finding test suites of packet-level CPS network attacks, targeting scenarios in which attackers can observe sensors and manipulate packets, but have no existing knowledge about the payload encodings. Our approach learns regression models for predicting sensor values that will result from sampled network packets, and uses these predictions to guide a search for payload manipulations (i.e. bit flips) most likely to drive the CPS into an unsafe state. Key to our solution is the use of online active learning, which iteratively updates the models by sampling payloads that are estimated to maximally improve them. We evaluate the efficacy of active fuzzing by implementing it for a water purification plant testbed, finding it can automatically discover a test suite of flow, pressure, and over/underflow attacks, all with substantially less time, data, and network access than the most comparable approach. Finally, we demonstrate that our prediction models can also be utilised as countermeasures themselves, implementing them as anomaly detectors and early warning systems.
Submission history
From: Christopher M. Poskitt [view email][v1] Thu, 28 May 2020 16:19:50 GMT (342kb,D)
[v2] Thu, 16 Jul 2020 08:15:48 GMT (342kb,D)
Link back to: arXiv, form interface, contact.