Research On Resilient Control Technology Of Information Security Protection For Industrial Control Systems From Control Process Perspective

While the Industrial Internet promotes the upgrading of industrial control systems(ICS s),it also introduces the information security issues for ICSs.Cyber attacks on ICSs can have devastating consequences,causing serious economic losses and even casualties.The information security of ICSs is related to the national economic lifeline and is an important part of national security.It has national strategic needs to ensure the information security of ICSs,and it is of great practical significance to study the information security protection strategies of ICSs.At present,the information security protection methods of ICSs mainly draw on the protection technology of IT systems,and they cannot effectively protect ICSs by deeply combining the characteristics of ICSs.The characteristics of ICSs determine that it must be based on the way of system security engineering,integrate the means of security communication network,security control system and security control process,so as to form a unified system architecture method for the information security protection of ICSs.This topic presents the information security protection framework of ICSs from control process perspective,and uses resilient control technology to ensure the dynamic and stable performance of ICSs under attacks.Under false data injection attacks,a finite-time resilient control strategy is studied to improve the dynamic performance of the ICSs under attacks.A finite-time convergent extended state observer is designed based on the super-twisting sliding mode algorithm,on this basis,a finite-time convergent resilient controller is designed based on the prescribed performance control and global fast terminal sliding mode control algorithms.Thus,the finite-time convergence property of the entire closed-loop system under attacks is guaranteed,further the recovery time of ICSs after being attacked is guaranteed.At the same time,the feedback linearization technology is used to unify sensor attacks and actuator attacks,so the strong nonlinear system model of ICSs under attacks is transformed into an approximate linear system,thus the burden of resilient control design is reduced,then an adaptive resilient controller is designed based on the transformed system model to offset the impact of the attacks on the system in real time.In order to suppress more extreme false data injection attacks,a L2 gain resilient control strategy under fast time-varying false data injection attacks is proposed.By adding a robust term to the resilient controller,the tracking error of the system and the observation error of the disturbance observer are suppressed simultaneously,thus the adverse effect of fast timevarying attacks on ICSs is eliminated.At the same time,a passivity-based resilient control strategy against quantified false data injection attacks is proposed.The degree of influence of the attacks on the system is attributed to the increase or decrease of the control command and system output,a passive sub-controller is designed by means of damping injection to ensure the passivity of the system under attacks,and a robust sub-controller is designed by the L2 gain interference suppression technology to enhance the robustness of the system under attacks,thus the attacks are suppressed by means of energy control.In order to improve the resilient control efficiency,an optimal efficiency resilient control strategy is designed by taking advantage of optimal control and model predictive control.The taylor expansion technology is used to solve the disadvantage of large calculation in traditional model predictive control algorithm,and the goal of responding to attacks with the least system energy loss is achieved.The experimental platform of a three-phase permanent magnet synchronous motor speed control system is built,and the effectiveness of the algorithm is experimentally verified.At the same time,by combining with the merit of unlimited storage of cloud computing technology and the advantage of timely response of on-site systems,a cloud-based resilient control strategy is proposed.The local resilient controller is used to defend against ordinary actuator attacks and the cloud resilient controller is used to resist against extreme actuator attacks,which expands the defense scope against actuator attacks and simplifies the design idea of the resilient control mechanism,also makes the large-scale application of cloud-based resilient control strategies in ICSs possible.