Login | Register

Cyber-Attack Detection and Isolation of Switched Cyber-Physical System

Title:

Cyber-Attack Detection and Isolation of Switched Cyber-Physical System

Kazemi, MohamadGhasem (2025) Cyber-Attack Detection and Isolation of Switched Cyber-Physical System. PhD thesis, Concordia University.

[thumbnail of Kazemi_PhD_S2026.pdf]
Text (application/pdf)
Kazemi_PhD_S2026.pdf - Accepted Version
Restricted to Repository staff only until 29 November 2027.
Available under License Spectrum Terms of Access.
13MB

Abstract

This thesis investigates the cybersecurity aspects of switched Cyber-Physical Systems (CPS) under both synchronous and asynchronous switching conditions. In contrast to linear systems, the design of cyber-attacks by adversaries, as well as the detection, isolation, identification, and development of resilient control strategies by defenders, present greater complexity in switched systems due to the presence of multiple operational modes. A switched linear system is characterized by a finite set of system matrices as the modes of the system and a switching law that governs which mode is currently active. Accordingly, a distinct controller is designed for each mode within the switched system framework. However, the activation time of the controller corresponding to a given mode may not align with the activation time of the plant’s mode that makes the switching asynchronous.
In the first topic, we will deal with the cybersecurity of synchronous switched systems. To begin with, we design a covert cyber-attack for this class of dynamical system by playing the role of attacker in such a way that the system follows the reference of the attacker while it remains stealthy from the monitoring system. To detect the covert attack as the defender, we will develop a new detection methodology by using a switched auxiliary system with special structure on the plant side along with some observers on the Command & Control (C&C). The main approach is using a bank of switched Unknown Input Observers (UIO) to detect and isolate different types of cyber-attacks on input channels as well as measurement channel. The proposed methodology can also detect and isolate covert attack and zero-dynamics attack in the synchronous switched systems.
In the second topic, cybersecurity of asynchronous switched systems is considered. The problem of cyber-attack design for this class of dynamical systems will be investigated by proposing a stealthy cyber-attack. Then, the problem of cyber-attack detection and isolation for switched systems under asynchronous switching condition will be addressed. As there exist asynchronicity between the mode information of the plant and the &C sides, cyber-attack detection or control design will be more challenging. To detect the presence of cyber-attacks in switched systems under the asynchronous switching condition, in one approach, we propose a methodology that is based on an auxiliary system on the plant side with nonlinear switched dynamics along with an asynchronous switched nonlinear observer on the C&C side. Although this methodology solved the detection problem in switched systems with the asynchronous switching condition and can be more secured compared to the linear switched cases, achieving isolation objectives is challenging based on this methodology. Correspondingly, we developed a detection and isolation methodology that is based on a bank of asynchronous switched unknown input observer (SUIO) for the auxiliary system with specific structure and dynamics. Since the observers are developed for the auxiliary system rather than the main plant, the auxiliary system can be designed to satisfy all the limitations and conditions of the asynchronous SUIO while incorporating the H∞ criterion.
Furthermore, cyber-attack detection, isolation and recovery control for a network of Multi-Agent Systems (MASs) with switched dynamics will be considered as the third topic. We address formation control for a network of switched MAS, representing a general framework that can be readily extended to consensus problems. The formation control of MAS with switched dynamics has been developed based on a fully distributed approach. Then, the detection of cyber-attack on the communication channels among different agents will be discussed and according to the detected cyberattacks, isolation of the under-attack channels will be considered. Finally, a resilient control strategy will be developed.

Divisions:Concordia University > Gina Cody School of Engineering and Computer Science > Electrical and Computer Engineering
Item Type:Thesis (PhD)
Authors:Kazemi, MohamadGhasem
Institution:Concordia University
Degree Name:Ph. D.
Program:Electrical and Computer Engineering
Date:30 November 2025
Thesis Supervisor(s):Khorasani, Khashayar
ID Code:996524
Deposited By: MohamadGhasem Kazemi
Deposited On:29 Jun 2026 17:30
Last Modified:29 Jun 2026 17:30
All items in Spectrum are protected by copyright, with all rights reserved. The use of items is governed by Spectrum's terms of access.

Repository Staff Only: item control page

Downloads per month over past year

Research related to the current document (at the CORE website)
- Research related to the current document (at the CORE website)
Back to top Back to top