Secure-by-Construction Synthesis for Control Systems

Bingzhuo Zhong; Siyuan Liu; Marco Caccamo; Majid Zamani

doi:10.1109/TAC.2025.3532541

Secure-by-Construction Synthesis for Control Systems

Bingzhuo Zhong
, Siyuan Liu
, Marco Caccamo
, Majid Zamani

Chair of Cyber-Physical Systems in Production Engineering

Research output: Contribution to journal › Article › peer-review

1 Scopus citations

Abstract

In this note, we present the synthesis of secure-byconstruction controllers that address safety and security properties simultaneously in cyber-physical systems. Our focus is on studying a specific security property called opacity, which characterizes the system's ability to maintain plausible deniability of its secret behavior in the presence of an intruder. These controllers are synthesized based on a concept of so-called (augmented) control barrier functions (CBFs). We propose conditions that facilitate the construction of the desired (augmented) CBFs and their corresponding secure-by-construction controllers. To compute these functions, we propose an iterative scheme that leverages iterative sum-of-square programming techniques. This approach enables efficient computation of these functions, particularly for polynomial systems. Finally, we validate the effectiveness of our results through a case study of a vehicle.

Original language	English
Pages (from-to)	4170-4177
Number of pages	8
Journal	IEEE Transactions on Automatic Control
Volume	70
Issue number	6
DOIs	https://doi.org/10.1109/TAC.2025.3532541
State	Published - Jun 2025

Keywords

Control barrier function (CBF)
cyber-physical systems (CPSs)
opacity
safety
secure-by-construction controller
security

Access to Document

10.1109/TAC.2025.3532541

Cite this

@article{e9b5f786deed4e8196a55f92a5d3d845,

title = "Secure-by-Construction Synthesis for Control Systems",

abstract = "In this note, we present the synthesis of secure-byconstruction controllers that address safety and security properties simultaneously in cyber-physical systems. Our focus is on studying a specific security property called opacity, which characterizes the system's ability to maintain plausible deniability of its secret behavior in the presence of an intruder. These controllers are synthesized based on a concept of so-called (augmented) control barrier functions (CBFs). We propose conditions that facilitate the construction of the desired (augmented) CBFs and their corresponding secure-by-construction controllers. To compute these functions, we propose an iterative scheme that leverages iterative sum-of-square programming techniques. This approach enables efficient computation of these functions, particularly for polynomial systems. Finally, we validate the effectiveness of our results through a case study of a vehicle.",

keywords = "Control barrier function (CBF), cyber-physical systems (CPSs), opacity, safety, secure-by-construction controller, security",

author = "Bingzhuo Zhong and Siyuan Liu and Marco Caccamo and Majid Zamani",

note = "Publisher Copyright: {\textcopyright} 2025 IEEE.",

year = "2025",

month = jun,

doi = "10.1109/TAC.2025.3532541",

language = "English",

volume = "70",

pages = "4170--4177",

journal = "IEEE Transactions on Automatic Control",

issn = "0018-9286",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "6",

}

TY - JOUR

T1 - Secure-by-Construction Synthesis for Control Systems

AU - Zhong, Bingzhuo

AU - Liu, Siyuan

AU - Caccamo, Marco

AU - Zamani, Majid

PY - 2025/6

Y1 - 2025/6

N2 - In this note, we present the synthesis of secure-byconstruction controllers that address safety and security properties simultaneously in cyber-physical systems. Our focus is on studying a specific security property called opacity, which characterizes the system's ability to maintain plausible deniability of its secret behavior in the presence of an intruder. These controllers are synthesized based on a concept of so-called (augmented) control barrier functions (CBFs). We propose conditions that facilitate the construction of the desired (augmented) CBFs and their corresponding secure-by-construction controllers. To compute these functions, we propose an iterative scheme that leverages iterative sum-of-square programming techniques. This approach enables efficient computation of these functions, particularly for polynomial systems. Finally, we validate the effectiveness of our results through a case study of a vehicle.

AB - In this note, we present the synthesis of secure-byconstruction controllers that address safety and security properties simultaneously in cyber-physical systems. Our focus is on studying a specific security property called opacity, which characterizes the system's ability to maintain plausible deniability of its secret behavior in the presence of an intruder. These controllers are synthesized based on a concept of so-called (augmented) control barrier functions (CBFs). We propose conditions that facilitate the construction of the desired (augmented) CBFs and their corresponding secure-by-construction controllers. To compute these functions, we propose an iterative scheme that leverages iterative sum-of-square programming techniques. This approach enables efficient computation of these functions, particularly for polynomial systems. Finally, we validate the effectiveness of our results through a case study of a vehicle.

KW - Control barrier function (CBF)

KW - cyber-physical systems (CPSs)

KW - opacity

KW - safety

KW - secure-by-construction controller

KW - security

UR - https://www.scopus.com/pages/publications/85216083013

U2 - 10.1109/TAC.2025.3532541

DO - 10.1109/TAC.2025.3532541

M3 - Article

AN - SCOPUS:85216083013

SN - 0018-9286

VL - 70

SP - 4170

EP - 4177

JO - IEEE Transactions on Automatic Control

JF - IEEE Transactions on Automatic Control

IS - 6

ER -

Secure-by-Construction Synthesis for Control Systems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this