Sparse Actuator Attack Detection and Identification: A Data-Driven Approach

This article aims to investigate the data-driven attack detection and identification problem for cyber-physical systems under sparse actuator attacks, by developing tools from subspace identification and compressive sensing theories. First, two sparse actuator attack models (additive and multiplicative) are formulated and the definitions of I/O sequence and data models are presented. Then, the attack detector is designed by identifying the stable kernel representation of cyber-physical systems, followed by the security analysis of data-driven attack detection. Moreover, two sparse recovery-based attack identification policies are proposed, with respect to sparse additive and multiplicative actuator attack models. These attack identification policies are realized by the convex optimization methods. Furthermore, the identifiability conditions of the presented identification algorithms are analyzed to evaluate the vulnerability of cyber-physical systems. Finally, the proposed methods are verified by the simulations on a flight vehicle system.