The wireless control network: Monitoring for malicious behavior

Conference Paper

We consider the problem of stabilizing a plant with a network of resource constrained wireless nodes. In a companion paper, we developed a protocol where each node repeatedly transmits an appropriate (stabilizing) linear combination of the values in its neighborhood. In this paper, we design an Intrusion Detection System (IDS) for this control scheme, which observes the transmissions of certain nodes and uses that information to (a) recover the plant outputs (for data-logging and diagnostic purposes) and (b) identify malicious behavior by any of the wireless nodes in the network. We show that if the connectivity of the network is sufficiently high, the IDS only needs to observe a subset of the nodes in the network in order to achieve this objective. Our approach provides a characterization of the set of nodes that should be observed, a systematic procedure for the IDS to use to identify the malicious nodes and recover the outputs of the plant, and an upper bound on the delay required to obtain the necessary information.

Full Text

Duke Authors

Cited Authors

  • Sundaram, S; Pajic, M; Hadjicostis, CN; Mangharam, R; Pappas, GJ

Published Date

  • December 2010

Published In

Start / End Page

  • 5979 - 5984

International Standard Serial Number (ISSN)

  • 0743-1546

Digital Object Identifier (DOI)

  • 10.1109/CDC.2010.5717166