Attack Detection Method based on Bayesian Hypothesis Testing Principle in CPS

Cyber physical system (CPS) introduces the concepts and methods of communication networks into traditional industrial processes, and realizes the control of physical processes by information flow, which is a key issue in national defense, military and industrial production. Many application problems provide solutions. However, this also makes the original pure industrial system environment face more security risks. Considering the security of the CPS control layer, based on the principle of Bayesian hypothesis testing, a detection method for the tampering of the measurement data of the control layer is proposed. This method uses the prior knowledge of the parameters to make the model still usable under the condition of a small sample amount of data. At the same time, the judgment conclusions made can accurately give the probability value of the attack behavior, which can more intuitively explain the possibility of the current statement. Compared with the previous traditional hypothesis testing method, this method is in line with the background of the CPS attack, so it has practical advantages. (C) 2021 The Authors. Published by Elsevier B.V. This is an open access article under the CC BY-NC-ND license (https://creativecommons.org/lincenses/by-nc-nd/4.0) Peer-review under responsibility of the scientific committee of the International Conference on Identification, Information and Knowledge in the internet of Things, 2020.