The evolution of manufacturing systems into a smart factory brings advantages but also increased cyber-risks. This paper investigates the problem of intrusion detection and autonomous response to cyber-attacks targeting the control logic of industrial control applications for the smart factory. Specifically, we propose ASiMOV (Asynchronous Modular Verification), a self-protecting architecture for cyber–physical systems realizing a verifiable control application. ASiMOV is inspired by modular redundancy and leverages virtualization technologies to respond and to prevent cyber-attacks to the control logic. Using simulation experiments, we evaluate: the effects of an attack on an industrial control application enhanced by ASiMOV; the delay introduced by ASiMOV within a control loop; and the cyber-attack detection delay. Results show that, in the simulated scenario, the controller can work with a sampling rate of up to 200 Hertz. Any tampering with the control logic is detected without false positives/negatives in a time equal to the latency between the proposed control application and the proposed IDS (e.g., tens to hundreds of milliseconds).

中文翻译：

---

ASiMOV：智能工厂的自我保护控制应用

制造系统向智能工厂的演进带来了优势，但也增加了网络风险。本文研究了针对智能工厂工业控制应用的控制逻辑的入侵检测和网络攻击自主响应问题。具体来说，我们提出了 ASiMOV（异步模块化验证），这是一种用于网络物理系统的自我保护架构，实现了可验证的控制应用。 ASiMOV 的灵感来自模块化冗余，并利用虚拟化技术来响应和防止对控制逻辑的网络攻击。通过模拟实验，我们评估： ASiMOV 增强的工业控制应用受到攻击的影响； ASiMOV 在控制环路中引入的延迟；以及网络攻击检测延迟。结果表明，在模拟场景中，控制器可以在高达 200 Hz 的采样率下工作。在等于所提出的控制应用和所提出的IDS之间的等待时间（例如，数十到数百毫秒）的时间内，检测到对控制逻辑的任何篡改，而不会出现误报/误报。