Security Analysis And Evaluation Of CPS

Cyber Physical System (CPS), the essential meaning of Internet of Things (IoT), is the converged system of computing process and physical process and the next generation intelligent system integrated with3C (Computer, Communication, Control). The application of CPS is very popular in our daily life including intelligent transportation system, telemedicine, smart grid and aerospace field. Because CPS is widely used and playing a significant role in our daily life, the consequences for society will be enormous if CPS is being attacked. So, it is necessary to conduct security analysis and evaluation of CPS. However, we not only need to do some researches about existed attacks, but also need to focus on the potential attacks within CPS, in order to analyze and evaluate the security performance of CPS.This thesis tries to construct the botnet named ASP2P in CPS and thus analyzes the potential botnet threats in the CPS. Through the feasibility of botnet phenomenon in CPS, we analyze the influence of botnet on CPS and research the security performance of CPS. In order to explain the potential threats in CPS more clearly, we need to consider the following problems:what are the characteristics of botnet in the CPS? How can botnet hide in the CPS? How can botnet in the CPS maximize attack power? How to verify the feasibility of the botnet in CPS? Because of the integration of computing process and physical process in CPS, how to construct the botnet representing the real CPS and how to analyze the security performance of CPS qualitatively are the challenges we are facing.Considering the problems mentioned above, we construct an advanced social peer-to-peer (ASP2P) botnet practically that combines the advantages of social networks and hybrid P2P structure in the way that bots receive encrypted commands from the social networks via HTTP and the C&C topology is hybrid peer-to-peer structure. Meanwhile, ASP2P botnet can attack the physical entities through gaining the control of the cyber entities. The results of the experiments show that constructing the botnet named ASP2P in CPS is feasible. And ASP2P botnet is more difficult to discover and defeat compared with other botnets. The most important is that the botnet has brought severe threats to CPS. So it indicates that it is necessary to provides measures to protect the CPS infrastructures, especially the detection of botnet.