面向工业互联网中数据不透明性的隐私保护控制策略设计  被引量：7

作　　者：沈逸 周纯杰[1] 胡晓娅[1] 程骋 何心 邰若晨 SHEN Yi;ZHOU ChunJie;HU XiaoYa;CHENG Cheng;HE Xin;TAI RuoChen(School of Artificial Intelligence and Automation,Huazhong University of Science and Technology,Wuhan 430074,China;School of Mechanical Science and Engineering,Huazhong University of Science and Technology,Wuhan 430074,China;School of Electrical and Electronic Engineering,Nanyang Technological University,Singapore 639798,Singapore)

机构地区：[1]华中科技大学人工智能与自动化学院,武汉430074 [2]华中科技大学机械科学与工程学院,武汉430074 [3]南洋理工大学电气与电子工程学院,新加坡639798,新加坡

出　　处：《中国科学：技术科学》2022年第1期152-164,共13页Scientia Sinica(Technologica)

基　　金：国家重点研发计划(编号:2018YFB1701202);国家自然科学基金青年基金(批准号:51905197)资助项目。

摘　　要：随着信息通讯技术(information and communication technologies,ICT)的发展及其在工业环境中的应用,工业互联网应运而生.相比于传统工业相对封闭安全的生产环境,工业互联网面临着严峻的数据隐私安全挑战.为了提供能够抵御网络威胁的鲁棒防御策略,本文研究了面向工业互联网中数据不透明性的隐私保护控制问题.在此问题中,受控系统被建模为网络化离散事件系统(discrete-event system,DES)并且系统中存在着可以利用观测数据来推测系统秘密信息的恶意窃听者.本文的目标是通过设计网络化监督器从而实现以下两个目标:(1)窃听者无法利用观测数据推测出系统秘密信息,即不透明性强制;(2)在网络化监督器的控制下,系统能实现给定的控制目标.为了解决此隐私保护控制问题,首先,本文提出了一套针对网络化离散事件系统的隐私保护控制架构;其次,本文将系统中各子模块建模为有限状态自动机以模拟其动力学;最后,基于构建的状态机模型,通过将原隐私保护控制问题转化为经典的Ramadge-Wonham监督控制问题,本文设计了网络化监督器合成算法.进一步地,本文证明了所设计合成算法的正确性与完备性以及最大网络化监督器的存在性.With the continuous development of information and communication technologies(ICT)as well as their applications in the industrial environment,industrial internet comes into being.In comparison to the relatively closed and secure production environment of traditional industries,the industrial internet faces significant security challenges in terms of data privacy.This paper investigates the privacy-preserving control problem for data opacity of the industrial internet to provide a resilient defending strategy against cyber threats,where the system to be controlled is modeled as a networked discrete-event system(DES)and malicious eavesdroppers exist to infer the system secret based on its observations.We here aim at designing a networked supervisor to achieve the following two objectives:(1)eavesdroppers cannot infer the system secret based on its observations,which is formulated as the requirement of opacity enforcement,(2)under the control of the designed networked supervisor,the system could still achieve the predetermined control requirement.To solve the previously mentioned privacy-preserving supervisory control problem,this paper first proposes a privacy-preserving control architecture for networked DES,in which each component is modeled as a finite-state automaton to simulate its dynamics.We design an algorithm based on the constructed models to synthesize the networked supervisor by transforming the original privacy-preserving control problem into a classical Ramadge-Wonham supervisory control problem.Furthermore,this paper proves(1)the designed synthesis algorithm is sound and complete,and(2)the existence of the supremal networked supervisor for this privacy-preserving supervisory control problem.

关 键 词：工业互联网 网络化离散事件系统 隐私保护控制 网络化监督器 有限状态自动机 不透明性 

分 类 号：TP393.09[自动化与计算机技术—计算机应用技术] TP309[自动化与计算机技术—计算机科学与技术]