In recent years, different solutions have been proposed to detect advanced stealthy cyber-attacks against networked control systems. In this article, we propose a blended detection scheme that properly leverages and combines two existing detection ideas, namely, watermarking and moving target . In particular, a watermarked signal and a nonlinear static auxiliary function are combined to both limit the attacker's disclosure resources and obtain an unidentifiable moving target. The proposed scheme is capable of detecting a broad class of false data injection attacks, including zero-dynamics, replay, and covert attacks. Moreover, it is shown that the proposed approach mitigates the drawbacks of standard moving target and watermarking defense strategies. Finally, an extensive simulation study is reported to contrast the proposed detector with recent competitor schemes and provide tangible evidence of the effectiveness of the proposed solution.

中文翻译：

---

网络物理系统中错误数据注入攻击的混合主动检测策略

近年来，已提出了不同的解决方案来检测针对网络控制系统的高级隐式网络攻击。在本文中，我们提出了一种混合检测方案，该方案可以适当地利用并结合两个现有的检测思路，即：水印 和 运动目标 。特别是，将带水印的信号和非线性静态辅助函数组合在一起，既限制了攻击者的披露资源，又获得了无法识别的移动目标。所提出的方案能够检测广泛的错误数据注入攻击，包括零动态，重放和隐蔽攻击。而且，表明所提出的方法减轻了标准移动目标和水印防御策略的缺点。最后，据报道进行了广泛的仿真研究，以将拟议的探测器与最新的竞争者方案进行对比，并为拟议解决方案的有效性提供了切实的证据。